0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x0)

[ 2269.122834]  ? splice_direct_to_actor+0x980/0x980
[ 2269.122845]  ? selinux_file_permission+0x92/0x520
[ 2269.122862]  ? security_file_permission+0x24e/0x570
[ 2269.122883]  do_sendfile+0x553/0x1090
[ 2269.122905]  ? do_pwritev+0x270/0x270
[ 2269.122919]  ? wait_for_completion_io+0x270/0x270
[ 2269.122934]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2269.122944]  ? vfs_write+0x354/0xa70
[ 2269.122962]  __x64_sys_sendfile64+0x1d1/0x210
[ 2269.122976]  ? __ia32_sys_sendfile+0x220/0x220
[ 2269.122992]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2269.123006]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2269.123022]  do_syscall_64+0x33/0x40
[ 2269.123035]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2269.123044] RIP: 0033:0x7fb754cd3b19
[ 2269.123059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2269.123066] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2269.123081] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2269.123089] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2269.123096] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2269.123104] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2269.123122] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2269.178461] ISOFS: Unable to identify CD-ROM format.
18:19:41 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/keys\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x6c2fb2b8)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$sock_SIOCGIFCONF(r2, 0x8912, &(0x7f0000000080)=@buf={0x8, &(0x7f0000000000)="cee42d0e318dda45"})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/pm_debug_messages', 0x22902, 0x0)
sendfile(r4, r0, &(0x7f00000000c0), 0x3)

[ 2269.197494] udc-core: couldn't find an available UDC or it's busy
[ 2269.198669] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:19:41 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_80211_join_ibss(&(0x7f0000000080)='wlan0\x00', &(0x7f0000000340)=@default_ibss_ssid, 0x6, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

[ 2269.234097] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2269.244423] udc-core: couldn't find an available UDC or it's busy
[ 2269.245541] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:19:41 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xff03}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:19:41 executing program 2:
ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f00000001c0)={0x0, 0x8})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c1000001000010000000000000000000000000005000000000000001010008008001100", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00'], 0x102c}}, 0x0)
ioctl$sock_inet_SIOCSIFNETMASK(r5, 0x891c, &(0x7f0000000280)={'veth1_to_team\x00', {0x2, 0x0, @remote}})
readv(0xffffffffffffffff, 0x0, 0x0)
r6 = timerfd_create(0x1, 0x0)
ioctl$AUTOFS_IOC_EXPIRE(r6, 0x810c9365, &(0x7f0000000340)={{0x9, 0x10001}, 0x100, './file0\x00'})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)

[ 2269.447785] netlink: 'syz-executor.2': attribute type 17 has an invalid length.
[ 2269.449512] netlink: 4100 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2269.770539] ISOFS: Unable to identify CD-ROM format.
[ 2269.774073] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
18:19:55 executing program 7:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000002f00)='./file0/../file0\x00', 0x0, 0x1f3000, 0x0)
r1 = dup3(r0, r0, 0x80000)
openat(r1, &(0x7f0000000040)='./file0/../file0\x00', 0x80000, 0x1)
syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x18be0ac, &(0x7f00000000c0)={[{@i_version}]})

18:19:55 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_80211_join_ibss(&(0x7f0000000080)='wlan0\x00', &(0x7f0000000340)=@default_ibss_ssid, 0x6, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

18:19:55 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
socketpair(0x11, 0x800, 0x3, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
sendmsg$nl_generic(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0xb0, 0x10, 0x800, 0x70bd28, 0x25dfdbfc, {0xc}, [@generic="63f21cc1a49acaa7fb7b222a10350554f104e689d5c61147bb6a2e62936cf5b3eca09adb0aaa334520ebfdf26e24966cc4cf96bc3f180602eb234604412cec570a4b09fd564d3c8421ae144ebfc47b22a6f98d69da82a0399e40bbe07e0b698d24faa34bfceddb14a37298f63619d00e227a07aeef500913c6993d47bc86d29899b3a3da5fa2214ed3b865d4229194798e2a82adf6cebdc7cacf82"]}, 0xb0}, 0x1, 0x0, 0x0, 0x8802}, 0x4000)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001e00852e00000000000000000000000004000000080008"], 0x20}}, 0x0)

18:19:55 executing program 0:
ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000340)={@in6={{0xa, 0x4e24, 0x0, @private0}}, 0x0, 0x0, 0x0, 0x0, "15bb6949bc674e040033723aa6453b9d292123bebbcd37c5097fd53da62c01e26630931d140a11973acb9dcc0d8da3a4f6f42444a1948f422c8d8d2d8bba069588783e32b71300"}, 0xd8)
sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c1, 0x6400c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040), 0x4}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x20000}, 0x0, 0xfffe000400000003, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e24, 0x1f, @remote, 0x7}, 0x1c)
recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x4e22, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1}}, 0x0, 0x0, 0x30, 0x0, "97d43244c84a6790069e6185540adef840ba277679a9ca64c712cb8d0997290c09052e07cddd0711a62b80de7ba0b1a5cdac8165c35e16c09dfd2056ca8497b17dcbe037d9ce09235187d9dd0952d065"}, 0xd8)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000180)={<r1=>r0, 0xffffffffffffff81, 0x4, 0xf})
recvfrom$inet6(r1, &(0x7f0000000300)=""/42, 0x2a, 0x21, &(0x7f0000000440)={0xa, 0x4e22, 0x3f, @private1, 0x800}, 0x1c)
ioctl$TIOCNOTTY(r1, 0x5422)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r2, &(0x7f0000004d00), 0x2f, 0x0)
listen(r2, 0xfffffffa)

18:19:55 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 32)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:19:55 executing program 2:
rename(&(0x7f00000006c0)='./file0\x00', 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e24, @multicast2}, 0x10)
fcntl$getflags(r1, 0x40a)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0xfffffffe}, {{@in6=@private1, 0x0, 0x6c}}}, 0xe8)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
recvfrom$inet(0xffffffffffffffff, &(0x7f0000000280)=""/157, 0x9d, 0x2000, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000080)="a8bb77a50c50feb39cfa2b2796a1e7150d911823fb47f4c65e583986b4f103cae377c6b2b3c37974a8ebc67cae319f1d13787b48650bf14a6484d876c662c8c0f98ccbaed6c1e31c2107e51a302d7746acd7", 0x52, 0x40081, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x1000003)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='cgroup\x00')
fcntl$getownex(r0, 0x10, &(0x7f0000000240)={0x0, <r3=>0x0})
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x6e, 0x0, 0x20, 0x8, 0x0, 0x9, 0xc00, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0x9}, 0x410a5, 0x2, 0x1, 0x0, 0x3, 0x989, 0x2, 0x0, 0x4, 0x0, 0x1}, r3, 0xa, r2, 0x2)
preadv2(r2, &(0x7f0000000580), 0x0, 0x0, 0x0, 0x17)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000600)={0x1})
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0)
dup2(0xffffffffffffffff, r4)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
unshare(0x48020200)

18:19:55 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x34000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:19:55 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 1)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

[ 2283.093761] FAULT_INJECTION: forcing a failure.
[ 2283.093761] name failslab, interval 1, probability 0, space 0, times 0
[ 2283.095060] CPU: 0 PID: 14095 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2283.095815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2283.096716] Call Trace:
[ 2283.097012]  dump_stack+0x107/0x167
[ 2283.097416]  should_fail.cold+0x5/0xa
[ 2283.097836]  ? create_object.isra.0+0x3a/0xa20
[ 2283.098344]  should_failslab+0x5/0x20
[ 2283.098766]  kmem_cache_alloc+0x5b/0x310
[ 2283.099218]  create_object.isra.0+0x3a/0xa20
[ 2283.099703]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2283.100267]  kmem_cache_alloc+0x159/0x310
[ 2283.100733]  ? mempool_free_pages+0x20/0x20
[ 2283.101209]  mempool_alloc+0x148/0x360
[ 2283.101664]  ? mempool_resize+0x7d0/0x7d0
[ 2283.102123]  ? mark_lock+0xf5/0x2df0
[ 2283.102529]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2283.103108]  __sg_alloc_table+0x24e/0x390
[ 2283.103565]  sg_alloc_table_chained+0x9b/0x1f0
[ 2283.104072]  ? sg_alloc_table_chained+0x1f0/0x1f0
[ 2283.104604]  scsi_alloc_sgtables+0x236/0xaf0
[ 2283.105092]  ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0
[ 2283.105659]  ? lockdep_init_map_type+0x2c7/0x780
[ 2283.106195]  sd_init_command+0x516/0x3550
[ 2283.106661]  scsi_queue_rq+0xe73/0x27d0
[ 2283.107112]  blk_mq_dispatch_rq_list+0x372/0x1c30
[ 2283.107669]  ? elv_rb_del+0x50/0xa0
[ 2283.108066]  ? elv_rqhash_del+0x119/0x160
[ 2283.108537]  ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0
[ 2283.109094]  ? dd_dispatch_request+0x1c0/0x990
[ 2283.109620]  blk_mq_do_dispatch_sched+0x7f4/0xa00
[ 2283.110163]  ? blk_mq_sched_mark_restart_hctx+0x80/0x80
[ 2283.110753]  ? lock_acquire+0x197/0x470
[ 2283.111202]  ? hctx_lock+0x7f/0x200
[ 2283.111608]  __blk_mq_sched_dispatch_requests+0x2d7/0x450
[ 2283.112223]  ? blk_mq_do_dispatch_sched+0xa00/0xa00
[ 2283.112784]  blk_mq_sched_dispatch_requests+0xfb/0x180
[ 2283.113377]  __blk_mq_run_hw_queue+0x12c/0x290
[ 2283.113897]  ? blk_mq_start_request+0x3f0/0x3f0
[ 2283.114427]  ? do_raw_spin_lock+0x121/0x260
[ 2283.114921]  __blk_mq_delay_run_hw_queue+0x4f1/0x550
[ 2283.115497]  blk_mq_run_hw_queue+0x170/0x2f0
[ 2283.115987]  ? blk_mq_delay_run_hw_queues+0x1a0/0x1a0
[ 2283.116561]  ? dd_dispatch_request+0x990/0x990
[ 2283.117060]  blk_mq_sched_insert_requests+0x247/0x720
[ 2283.117637]  blk_mq_flush_plug_list+0x415/0x6c0
[ 2283.118154]  ? blk_mq_insert_requests+0x450/0x450
[ 2283.118691]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2283.118708]  blk_flush_plug_list+0x26c/0x3c0
[ 2283.118717]  ? mark_held_locks+0x9e/0xe0
[ 2283.118732]  ? blk_insert_cloned_request+0x460/0x460
[ 2283.118750]  blk_finish_plug+0x50/0xa0
[ 2283.118760]  __iomap_dio_rw+0xca0/0x1110
[ 2283.118781]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2283.118793]  ? ext4_orphan_add+0x253/0x9e0
[ 2283.118805]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2283.118817]  ? ext4_empty_dir+0xae0/0xae0
[ 2283.118827]  ? jbd2__journal_start+0xf3/0x7e0
[ 2283.118843]  iomap_dio_rw+0x31/0x90
[ 2283.118855]  ext4_file_write_iter+0xb26/0x18e0
[ 2283.118875]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2283.118883]  ? kasan_save_stack+0x32/0x40
[ 2283.118892]  ? kasan_save_stack+0x1b/0x40
[ 2283.118902]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2283.118912]  ? iter_file_splice_write+0x16d/0xc30
[ 2283.118919]  ? direct_splice_actor+0x10f/0x170
[ 2283.118927]  ? splice_direct_to_actor+0x387/0x980
[ 2283.118935]  ? do_splice_direct+0x1c4/0x290
[ 2283.118944]  ? do_sendfile+0x553/0x1090
[ 2283.118953]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2283.118969]  do_iter_readv_writev+0x476/0x750
[ 2283.118981]  ? new_sync_write+0x660/0x660
[ 2283.118990]  ? selinux_file_permission+0x92/0x520
[ 2283.119012]  do_iter_write+0x191/0x670
[ 2283.119027]  ? trace_hardirqs_on+0x5b/0x180
[ 2283.119042]  vfs_iter_write+0x70/0xa0
[ 2283.119053]  iter_file_splice_write+0x762/0xc30
[ 2283.119073]  ? generic_splice_sendpage+0x140/0x140
[ 2283.119088]  ? avc_policy_seqno+0x9/0x70
[ 2283.119097]  ? selinux_file_permission+0x92/0x520
[ 2283.119112]  ? lockdep_init_map_type+0x2c7/0x780
[ 2283.119124]  ? generic_splice_sendpage+0x140/0x140
[ 2283.119135]  direct_splice_actor+0x10f/0x170
[ 2283.119147]  splice_direct_to_actor+0x387/0x980
[ 2283.119161]  ? pipe_to_sendpage+0x380/0x380
[ 2283.119173]  ? do_splice_to+0x160/0x160
[ 2283.119184]  ? security_file_permission+0x24e/0x570
[ 2283.119201]  do_splice_direct+0x1c4/0x290
[ 2283.119211]  ? splice_direct_to_actor+0x980/0x980
[ 2283.119219]  ? selinux_file_permission+0x92/0x520
[ 2283.119234]  ? security_file_permission+0x24e/0x570
[ 2283.119251]  do_sendfile+0x553/0x1090
[ 2283.119268]  ? do_pwritev+0x270/0x270
[ 2283.119281]  ? wait_for_completion_io+0x270/0x270
[ 2283.119293]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2283.119302]  ? vfs_write+0x354/0xa70
[ 2283.119316]  __x64_sys_sendfile64+0x1d1/0x210
[ 2283.119328]  ? __ia32_sys_sendfile+0x220/0x220
[ 2283.119341]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2283.119352]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2283.119366]  do_syscall_64+0x33/0x40
[ 2283.119376]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2283.119384] RIP: 0033:0x7fb754cd3b19
[ 2283.119396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2283.119402] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2283.119414] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2283.119420] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2283.119426] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2283.119432] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2283.119438] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2283.127197] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2283.131441] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2283.144518] udc-core: couldn't find an available UDC or it's busy
[ 2283.144547] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2283.144786] EXT4-fs (sda): re-mounted. Opts: i_version,,errors=continue
[ 2283.150896] udc-core: couldn't find an available UDC or it's busy
[ 2283.150921] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2283.152908] EXT4-fs (sda): re-mounted. Opts: i_version,,errors=continue
[ 2283.229628] FAULT_INJECTION: forcing a failure.
18:19:55 executing program 5:
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x4, 0x2, &(0x7f0000000000)=[{&(0x7f0000000240)="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", 0x10f, 0x11a}, {&(0x7f00000001c0)="3e85afcd1ebf19836434dce487cd5a923f9001f97417b0b71480ebd00cde427e49614504ef8e956a24e7e139253c706f50041aa5c5906da3d4fc0a4c9e0724c752bb0cee0d3e3895a20e6a5ebcb5ddaa70cb15be8f18036b03c82cf6d637902979a7626bb5331132148a6878f6819c49ae2de988959c6f52cebfc936222345b7", 0x80, 0x7}])

[ 2283.229628] name failslab, interval 1, probability 0, space 0, times 0
[ 2283.232375] CPU: 1 PID: 14106 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2283.233751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2283.235376] Call Trace:
[ 2283.235911]  dump_stack+0x107/0x167
[ 2283.236635]  should_fail.cold+0x5/0xa
[ 2283.237390]  ? alloc_pipe_info+0x10a/0x590
[ 2283.238235]  should_failslab+0x5/0x20
[ 2283.238989]  kmem_cache_alloc_trace+0x55/0x320
[ 2283.239889]  alloc_pipe_info+0x10a/0x590
[ 2283.240674]  splice_direct_to_actor+0x774/0x980
[ 2283.241578]  ? _cond_resched+0x12/0x80
[ 2283.242330]  ? inode_security+0x107/0x140
[ 2283.243129]  ? pipe_to_sendpage+0x380/0x380
[ 2283.243956]  ? selinux_file_permission+0x92/0x520
[ 2283.244885]  ? do_splice_to+0x160/0x160
[ 2283.245669]  ? security_file_permission+0x24e/0x570
[ 2283.246642]  do_splice_direct+0x1c4/0x290
[ 2283.247439]  ? splice_direct_to_actor+0x980/0x980
[ 2283.248363]  ? selinux_file_permission+0x92/0x520
[ 2283.249292]  ? security_file_permission+0x24e/0x570
[ 2283.250277]  do_sendfile+0x553/0x1090
[ 2283.251021]  ? do_pwritev+0x270/0x270
[ 2283.251757]  ? wait_for_completion_io+0x270/0x270
[ 2283.252686]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2283.253585]  ? vfs_write+0x354/0xa70
[ 2283.254308]  __x64_sys_sendfile64+0x1d1/0x210
[ 2283.255169]  ? __ia32_sys_sendfile+0x220/0x220
[ 2283.256054]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2283.257072]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2283.258086]  do_syscall_64+0x33/0x40
[ 2283.258803]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
18:19:55 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_80211_join_ibss(&(0x7f0000000080)='wlan0\x00', &(0x7f0000000340)=@default_ibss_ssid, 0x6, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))

[ 2283.259793] RIP: 0033:0x7f0f9f161b19
[ 2283.260587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2283.264180] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2283.265672] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2283.267067] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2283.268464] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2283.269870] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2283.271237] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:19:55 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x40000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:19:55 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 33)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:19:56 executing program 5:
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x4, 0x2, &(0x7f0000000000)=[{&(0x7f0000000240)="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", 0x10f, 0x11a}, {&(0x7f00000001c0)="3e85afcd1ebf19836434dce487cd5a923f9001f97417b0b71480ebd00cde427e49614504ef8e956a24e7e139253c706f50041aa5c5906da3d4fc0a4c9e0724c752bb0cee0d3e3895a20e6a5ebcb5ddaa70cb15be8f18036b03c82cf6d637902979a7626bb5331132148a6878f6819c49ae2de988959c6f52cebfc936222345b7", 0x80, 0x7}])

[ 2283.493366] FAULT_INJECTION: forcing a failure.
[ 2283.493366] name failslab, interval 1, probability 0, space 0, times 0
[ 2283.495560] CPU: 1 PID: 14133 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2283.496747] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2283.498180] Call Trace:
[ 2283.498205]  dump_stack+0x107/0x167
[ 2283.498225]  should_fail.cold+0x5/0xa
18:19:56 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))

[ 2283.498245]  ? mempool_alloc+0x148/0x360
[ 2283.498257]  ? mempool_free_pages+0x20/0x20
[ 2283.498279]  should_failslab+0x5/0x20
[ 2283.498295]  kmem_cache_alloc+0x5b/0x310
[ 2283.498314]  ? mempool_free_pages+0x20/0x20
[ 2283.498328]  mempool_alloc+0x148/0x360
[ 2283.498351]  ? mempool_resize+0x7d0/0x7d0
[ 2283.498372]  ? mark_lock+0xf5/0x2df0
[ 2283.498392]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2283.498419]  __sg_alloc_table+0x24e/0x390
[ 2283.498444]  sg_alloc_table_chained+0x9b/0x1f0
[ 2283.498459]  ? sg_alloc_table_chained+0x1f0/0x1f0
[ 2283.498477]  scsi_alloc_sgtables+0x236/0xaf0
[ 2283.498499]  ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0
[ 2283.498516]  ? lockdep_init_map_type+0x2c7/0x780
[ 2283.498543]  sd_init_command+0x516/0x3550
[ 2283.498573]  scsi_queue_rq+0xe73/0x27d0
[ 2283.498608]  blk_mq_dispatch_rq_list+0x372/0x1c30
[ 2283.498638]  ? elv_rb_del+0x50/0xa0
[ 2283.498651]  ? elv_rqhash_del+0x119/0x160
[ 2283.498669]  ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0
[ 2283.498693]  ? dd_dispatch_request+0x1c0/0x990
[ 2283.498716]  blk_mq_do_dispatch_sched+0x7f4/0xa00
18:19:56 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 34)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2283.498745]  ? blk_mq_sched_mark_restart_hctx+0x80/0x80
[ 2283.498765]  ? lock_acquire+0x197/0x470
[ 2283.498779]  ? hctx_lock+0x7f/0x200
[ 2283.498803]  __blk_mq_sched_dispatch_requests+0x2d7/0x450
[ 2283.498820]  ? blk_mq_do_dispatch_sched+0xa00/0xa00
[ 2283.498849]  blk_mq_sched_dispatch_requests+0xfb/0x180
18:19:56 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = dup(0xffffffffffffffff)
ioctl$EVIOCSMASK(r2, 0x40104593, &(0x7f0000001280)={0x17, 0x1000, &(0x7f0000000280)="b5c3b93a15da3652d71aa844cf9ba35c2a795d2e2c2f9d0d96742d50148d017e681e92e78d932097a7580855737f35c3d4f4d6d5cfcd24ab0b51f07ec71b56dfa59124fdbfea2a973bd859be2bb44432da0f929262d261c98d57ef4632886e5f87a2529b1d6530c29eb83254590c3df418bc637d7d218642a61b95008a8b21b67b547d862ffb0d9b91b2228a77626c206a563612c05e40f98b796357f3c1a92edea6dc8c469b59ef8619955d285aa1bf7f92054941be79ddd8f357e453cdd9baf87854538d6169bf92c8df3a6995155ccfd54b85173dbda4e60e0127d8b70e8f896ed5e3357c6a94354941a8f12ea23b86489d621c0a6d094861fa70c791b6fb0358d02378d3f35677d97f76c88a40c737a7be44b9e2ca1f74ce8e8d9c3608b07d4b27c9df4619ad1792cfcfb9d0653e60e2285844cca1e28a764a2c0f677db1c8e44da3b87a9fbb38704ad237dc0ce2c7a1541df886b09a25975ce5209731f15ed51f9ee4780fd1e16b585a71eaeb134dd30694a0ecf110e33d11045436f1c30468ec0c9c1885795e68bf2fcb31879dd9a665b28c83ec11821b87e89cbf1dd74ecdeaa307744ae09466840e8a38e2952bd0150022b26029854359ad632a46c40684d4313698c9c5e6d649a521d8ee87ce463719cfb008634dfba262daa2345517af5456eea562b848310aee03ec5a802780a5efb3439ee59be43991b205f43c78ce052435b4a420ad23c09d9216646e61d87a61b7f1621ed924d04d348f540f4a255e9c3e3563f5459e50839c94c4385ba24ec4dc5cdb0e2a3690952221a32713f4f4955f26cd29fc6120ae12fb3fc367b5553eadef1afa3516bfb2eb2a4fc1a580db6af72fd888b5cedb2b81c4f35c6bbb034bcd8185a6450ebc6ce773685331dfba9327c1849969ec93848489f9c5b7da3ebcdac1c490ca4fe6864a22112d2efda3259cb71a27eadcd9b29de1f2f8e6e05f4c75693ed73883adb797f8986a387e6c33665375ffe1b898b3baa11e5e8169025153bcda70e07bd6d330428f69dc4ccd6714dc4b991570861ac447c29fab4dc115b42f9eed32ab88feb0ad1a3927040ceb8b0c3225ff314161ec54c474cf7e1846e3af927c130408146b6bd15ce6b62c07c321b1f5e6b95e39e34aeb24e595aa76dafcda490447c6283aaa234da73185834047f011586bdf81c3c55c2a6fb15710a0cc2f168af7d2e73fc8f7431b37d8ce12a04691d4b48d873d2bf1876963c5954cc24f4d57445b7761897471a79384e292e72f9d3815de763d4cb1c9355938ff5fc9a40e0fb318a2eb023ac1a9057ef636797cfd0014211e635704d9ce831a9cac4d5240be46c2f94acfd350cd057f43c4843b204390dd1ea1820be63e3e120d205864583cf2bcece9ab6422c66d769e6ad83639d89faba205b8df680f42fe5aeb01eeceb49d5823d9e21f116c95f0c989ff103354b6ba1337934246093d052e9eec35b76858dfa58b3218cbf9a4af4edfac7478525caa29ed59f3a0a31ecffbb7cb84fff1891b39dc189f03d339ec991b3cb5227b0f35c914952b4bcd4c2038c7df2d8cf591fd9186b802d5f975d68cc545ecdd394b9464fea337581b959990c075be1fb5a401c217923b3bacc70004caafb795eca7c8f70b26c2cf13f657613f6df559d4c8aa0197e173c5be2aef97252cf2a07030612b9e2ac5a276ff442be55074b114c0c70c48b219a959aaee12cb84d6070e9a7143bd3e2b3e0bd1514dc54a2b802f00fdc5920ad63dc5f8d13acea4f1cd44cf774175e2711cfd042950602e690088be26f6c417e50e65b2679b110628d9aa8e50f605ccda05f2cbe26632c8d748b6016d510bd0fd7bc476706b8213eb176f000b9947aa919934fbf5030bb91d54f42930db6b7cc3cfec7185e4d803659a6f78a3df809fb74b51954ea0c9ba2ae7ce040de6762fce534fda37ac45f9052cbd37f2e9e54b2dd15311bbb93c57c100e24160ffd0d0001d0f489c5db1726aa5d813dee50c02b621d1573eda01a4f9bbdcb3cf02a22f736900997a98a92f7e4ec5b34a6ec6f40be377153b906455427d974318a0f4956ee0da4fcd56cc2be24866a24804383a39830c1f3f3bd41ad22d4c6912d3cd32afd2d190b4e334f4e863950d763a1143d30b97fdf8310372b301815d726343b0a41a217cfb60cadc2b6a15aadd894ec8f0b392804e13e96346e7206d879ac5d91ca80a710fa6eb6ee81bd994200fd417b63bb9d78390c3e66c27092cecf545abcd5807ab9a5fdc41f3f5f4a0cb35934be4d312eacb70e5c7d11a37c89c7dc29fb024e0425ed8a0d9ed7e9e88174579b975d8905408d6987bb16e859cdd7e1cfe162675035f9a66b0d0145d8c6b4d59c370a43bde44542836715c2ef44dbbfdac068a5bbdf05917b6c775ca127de498cd7a41b621d24178d6bb74dfc244d127c9c904584da200d551327cc92ca816442bee897674df8ecc8b4a97ed68645f977476e54b0c2409eb8cb0bfd414601df99001c2c829f2f3512a4ebc2c400f0e1b8408923686951e5ef6132431e288108e09531b1a65a7e0b13e8e3f2bdcb7253b67724a5d80931a98bf6b548192b045d8f11828795bbed4f116ee171bd659b219aa547b348b115235b5b4b1f7806e62d7b6c7cb5d30fbfa8e45427cb41a968f4c78594a867a86dc760ea07ca887bea1499ca5a2efc2a891a17721a4800bda221577343a4e00c08be98392216f91362429ad984b216b066a548305c53d8d67d7c91c935c15c0c21c578ed0e1d4d2d4ce5ab5f7571fa95eb914429e9579d8f8f4146620ca1bedcd183a7d0379acd2ac2a1d549a1c161307de58975115be292b78e64448fed213d19100363023abcb4d71624d96473c89e725aee4478c73a417024d6df9015c42c19b23cf78146f77afd60227687fa87117f974a173aa6749837ca6fcea2d6ae8bc730b9387f4e173e1f05f74eb7f699dbb68356becb7bd93657e7788c3eab92e3ff2c9da7a842591116bf6edb5eb792dbc15c4e9b6350e69e3b1137bd1e9475891c6d6bab0572691a4e4583c2ceccbd48d6f40bcf5c0e93022847a6645b013ff6993ff8992fa39a11bae39cbb2ee11d291837156aa9c4d5c867bd0f7069ff6bbcbe2ab4779fa6508c2fb22aeefa547e031a8e329a808a97050966d0bd9d8997e82ff9202c13c1d901d72ae8a3fb11f24c46593ebec89168951c829347a101f75ae6d8f29abaea12977853c56e883dc1667fac772925f17f8874a1e68d8f1052de3ffdb7559129ff089afd0c8afaf232e833972df4458d7b449d69fcc2cc0cd4a71ec4aa71d3dd70f60c7a8958560a14a7688ff562b745c46d37965d55a368c8da7a7f4e52ac1cb1eb15f0e794b8c13ab21901c1896a7c5349f2deffe80eb720f4b1a0bd80de818977a71ba6697eb4fef38430465f9db34deb6df4cca868a6d5eef262eab1177529a76fb75938fbf0cd2d35ba9eea1aed1935435588e47e7792324c7392507a21cbbbe5e3197c263d0f2b55928edc42d14fc980e737cf9751fcdbda7b684a5519068129a3313aec99a410f2376b4a64148f7b233e9e3c48db1dfb0ade8260c5b1b4cae7b75c17f9c7c26df02f195efe83c090041a1cfb3fd449f33bf8898536731ebc6e2ff15bff79a64e7f741790bd3ea98e59d16f192cb9df046beb77658f02b83df662a3ae942d4d429ca839cbcdb670388470bf093587473dc76bf2f79d740a9b835c6fb1d96bf73b3558b3b729e66e321ffcc087ba7cfd5474460952c061e740ba254587e285c8908bfbb7f8274329b13216da59301d30b6343d68c59db4f16ce16543749f02729c625911b62cf0bb819ed83397d48ed4bc49d352373c640e2fe4a230e7ac1143538e8b0f05a150b006dd2da03800abb62b88c13d845ebbeb9e1f04ba068c44aad3dfd64ac458f81b2ec8d0078c3c2c804d50fad09afe0e263a6ecfe9cd1d65f4363210393c35ab7a2c77e727c61765747098b4a6a8f55f1fe0423f09175fade754717e830a0fdd7818134edd9ed59751d637af902b62863080a932855a2b1f06155daa9a3006e7a7d4b099ba54a09b78242b9f42e4a5d05de88c49ef474706edb6da3e9528e90d0c7f4d69e9fec22c4a3728ecbe54e118eef92f1c77cb79ed6530eba23a4ed03bb674baa6e81184c73ce765367d9bc5a849263bbb6f305354c4a94629a0200b622228f34ebaf6dd57eced0ba0abcdd2eedbd182767cec590f40fdbe1b5ccca38fbe00fee49a3faecd0605044c1bdd873ad8672283871efcff9f4a5bdf20db47ac975982dbad22bd5223ad36ca97524982af7ae61209038cf949c607efe4eb780733799fe7b45834afa830a9c470b35e0167601f91535df32680da131790e97a451890d789fe90794c89b1dfe9b8e823066e91cb4489ca2889b8540da2ea043fe20163bf376ece35491a00f3e01b6ff1bba28f8c1cb1b41c62f9785334ee317866606202a9351f2b90fa19bf53b3db9c07c96a9f4ec5d968786ab9bb308d7b839a9738da9e25947558e1c11c6307c9519869bce76e557c3ec209c99faef23b5235d0cda6fac4a4b79a828c1539113da4160db57562f09452d4931245bf67d5a43110fbce52fe27695653b543c76e2d3e9ac06826446c8cb5676d8200bc343320b0ec0a7dfcdcc73c3db5c387c494be90390988bed6504c253fee95f65870c452f5043e5319a9dd8251a593996a27115f7637181bc0cf5069880326cba8ca22141e08449dbfc96409a94219ab50abffa565d3279581808ad5142059982aae01e03e352771c2d0b5f6b8d7095ede4de802661c6033a9048c34397f5c213d1c410b7be82a66b3d2c91990e3823d09ede3808856a2910bb094cd02f57b88326db3b9142fdcb97ced9b70ca4ea2595b6beff1c41b407b5fe850b37b7e4f7bb6a30ea0f96d2a4691b2f607b6f62568d293a80ba02e5d1786321bab95516ccaaa520a4aa0955b2f5f51b2b0ad1bbbff041448fe932a4018461e7804ce874f577e064e68f51f8b1f1e55e143e25ec2b87e47f9eb69d717c5dd2d302bf0d6fbed27e4a020c2520cc779cd3d94022cea36a22653a33ed686b4c00602ecc35f63aee626da911d7735fca5f06e2d6f8d0762e786515cec752ac814deb66398f39de8cc3be39c3ccf660342a44ded08b167142f8ce7849fb91b497ac65daf307edef933c9b5ef45dfbc57e801392bdc7a192091e07a5272dbf7bbca11c5efaa6af699ddf3682899192e3c9f9c29d146c4c555412a80ca17b5eb2133470625292e5c45435f9bd20327da87ea2e2d99dd7c622f872694ca5378f936f845df69013f495a47040c0e7c1220f65c955daca5bf00b07e75fe12041b34a9e538ca2b2b56c6fc8c7fa7d395dc04ee4dea93d0f68fa3b26f4757d6c2a206e9649a94b34dbbee61baa99a3fbc377e029a81e4cabe8cec250e5598b62e77d76fb80e2002271472a9ae77da84c42aa4d9b2f76f593088932b1d1365656185ad7a5922b5d58af18dc3a71aa70248f6e32794ec0ae4196c7b527d8adc1c95c57e4c538ed97dcb9ea7bf94e3dfec98ce0c34f34858bf54d408391055293c265dfb7d17486ab13f0335c1fac404885ab779b7853e1b7f31b4165735cd98cdfbc0bebfcd1a714e01a05cf003431acf0f3f27be01f93dcefc227d3a832b6201fe735b738c66525709399daf3bd82200a27defbd19b16f605c937c43483a9494652ea33cb6e16250921147432e322f0231e0c4b18780a98479dda012587c716bfed64754d69eae0f4f360b5a557de85143fce8989c6aa25ba"})
r3 = getpid()
r4 = getpid()
getpriority(0x0, r4)
getpriority(0x0, r4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b10, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1000000000000}}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
openat(r5, &(0x7f00000012c0)='./file0\x00', 0x10000, 0x17c)
sendfile(r1, r0, 0x0, 0x4000007ffffffc)
r7 = getpgid(r3)
ptrace(0xffffffffffffffff, r7)
ioctl$VFAT_IOCTL_READDIR_SHORT(r2, 0x82307202, &(0x7f0000000040)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

[ 2283.498868]  __blk_mq_run_hw_queue+0x12c/0x290
[ 2283.498885]  ? blk_mq_start_request+0x3f0/0x3f0
[ 2283.498906]  ? do_raw_spin_lock+0x121/0x260
[ 2283.498929]  __blk_mq_delay_run_hw_queue+0x4f1/0x550
18:19:56 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x0, 0x9}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000040))
timer_delete(0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
openat(r1, &(0x7f0000000080)='./file0\x00', 0x509202, 0x0)

[ 2283.498951]  blk_mq_run_hw_queue+0x170/0x2f0
[ 2283.498969]  ? blk_mq_delay_run_hw_queues+0x1a0/0x1a0
[ 2283.498997]  ? dd_dispatch_request+0x990/0x990
18:19:56 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x5, 0x7ff}}, './file0\x00'})
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0xc, &(0x7f0000000080)=0x40000ba, 0x4)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4003000014000100000002000400840a0a", @ANYBLOB="1d"], 0x340}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="2000000012000101"], 0x20}}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0)
r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x507a00, 0x0)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f00000003c0), r4)
sendmsg$DEVLINK_CMD_RATE_DEL(r5, &(0x7f0000000540)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x70, r6, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@pci={{0x8}, {0x11}}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x70}, 0x1, 0x0, 0x0, 0x80c0}, 0x24000800)
sendmsg$DEVLINK_CMD_TRAP_SET(r2, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x120, r6, 0x400, 0x70bd26, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0xffffffffffffff78, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}]}, 0x120}, 0x1, 0x0, 0x0, 0x8840}, 0x4)

[ 2283.499012]  blk_mq_sched_insert_requests+0x247/0x720
[ 2283.499037]  blk_mq_flush_plug_list+0x415/0x6c0
[ 2283.499061]  ? blk_mq_insert_requests+0x450/0x450
[ 2283.499085]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2283.499111]  blk_flush_plug_list+0x26c/0x3c0
[ 2283.499126]  ? mark_held_locks+0x9e/0xe0
[ 2283.499149]  ? blk_insert_cloned_request+0x460/0x460
[ 2283.499177]  blk_finish_plug+0x50/0xa0
[ 2283.499193]  __iomap_dio_rw+0xca0/0x1110
[ 2283.499226]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2283.499243]  ? ext4_orphan_add+0x253/0x9e0
[ 2283.499264]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2283.499282]  ? ext4_empty_dir+0xae0/0xae0
[ 2283.499297]  ? jbd2__journal_start+0xf3/0x7e0
[ 2283.499322]  iomap_dio_rw+0x31/0x90
[ 2283.499341]  ext4_file_write_iter+0xb26/0x18e0
[ 2283.499371]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2283.499386]  ? kasan_save_stack+0x32/0x40
[ 2283.499400]  ? kasan_save_stack+0x1b/0x40
[ 2283.499416]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
18:19:56 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x2000)
openat(r2, 0x0, 0x2e0400, 0x100)
copy_file_range(r1, 0x0, r0, 0x0, 0x10001, 0x0)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(0xffffffffffffffff, 0x8010671f, &(0x7f0000000180)={0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
vmsplice(r1, &(0x7f00000004c0)=[{&(0x7f00000001c0)="52e65fc1627a9f714f1a82405afc20b331f780f4b16da70ec60453ef0d3bb46322222abd35847027ac30928d3ce712948c2e4fd3a4f0b0297d59110ed3bc662fe9d06198e0aae3431ade59e40ecf9a24c89eeede6c8211bcd13dbd7e61d6c686ab162bfaefbe53e22f743b33d198b6fc85e1367d5a40551d11f614f54cf8d8f3e7cb02cc6c3877be5fcf456dacdd598f93ad7fa8ba5b5690e5977f838e744d60b9dbc968e5642678bb3c478c65580267e7ae3e5a3f8ddae4563b515437a20023c73698fe983fe6109aaf6dbe1b684e1b955fd7189ff4", 0xd6}, {&(0x7f00000002c0)="d22eee2de93c0964c56834c2e6f9d32bea336766faadc59605584ae73e5ebfea49aee5c207fc571d3f85a7d751b9a27a2ff043d9259a29d0f8c003fbaf6730d66365df866a24c02012e1f09ed7ef665eccf747f44a84fbd28264cd1a", 0x5c}, {&(0x7f0000000340)="44e45d45bd398f5b101431a2c9569589b5334a1f20092ec3ae9767a726aed16ee22769759318865240355470f95177e1937b0673203afc873fb8cafbe8f57b58729f86610b2a2b4838166e983bd9466ff99127e6ab408ab029707bc42e3585df1c8d5d95164182d6fd939048eff13399dbf530329549b3fedf53386e37c0b9214b6d523c04b93f260586f6760a16a427779c24b7ea22e4d2085af6ec1f528dd1e17b431367e5c38abc4ec2dbd7269a231a25625cfd7d", 0xb6}, {&(0x7f0000000400)="bfd7ef23b350c1f1220f9ba3140803d6ef77cbe3658fca7382d635bb8691cde9c760582ba3a5b6f3bb54207db6363d58e6981494028fd7424a7fbf8b4e21be7644508494cdd90d900ee82bc68768ba017be3eeb84bf0e6bbbfa185f145f31a202a081d75c405ee78a02866d6c9df80a90e58c922c52021886567c472b3ccb74ac12a06dda05f3ee5e66b14aed49e1fa96a76ff80591c2889042cc2491dbfb77788ea1288eb03c3c80a9ffba2127073", 0xaf}, {&(0x7f00000000c0)="5c6e11799fbd7671", 0x8}], 0x5, 0x4)
sendfile(r0, r3, 0x0, 0x20d315)

[ 2283.499430]  ? iter_file_splice_write+0x16d/0xc30
[ 2283.499443]  ? direct_splice_actor+0x10f/0x170
[ 2283.499456]  ? splice_direct_to_actor+0x387/0x980
[ 2283.499468]  ? do_splice_direct+0x1c4/0x290
[ 2283.499482]  ? do_sendfile+0x553/0x1090
[ 2283.499497]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2283.499522]  do_iter_readv_writev+0x476/0x750
[ 2283.499541]  ? new_sync_write+0x660/0x660
[ 2283.499555]  ? selinux_file_permission+0x92/0x520
[ 2283.499590]  do_iter_write+0x191/0x670
[ 2283.499613]  ? trace_hardirqs_on+0x5b/0x180
[ 2283.499636]  vfs_iter_write+0x70/0xa0
[ 2283.499655]  iter_file_splice_write+0x762/0xc30
[ 2283.499686]  ? generic_splice_sendpage+0x140/0x140
[ 2283.499710]  ? avc_policy_seqno+0x9/0x70
[ 2283.499724]  ? selinux_file_permission+0x92/0x520
[ 2283.499747]  ? lockdep_init_map_type+0x2c7/0x780
[ 2283.499767]  ? generic_splice_sendpage+0x140/0x140
[ 2283.499784]  direct_splice_actor+0x10f/0x170
[ 2283.499803]  splice_direct_to_actor+0x387/0x980
[ 2283.499825]  ? pipe_to_sendpage+0x380/0x380
[ 2283.499845]  ? do_splice_to+0x160/0x160
[ 2283.499861]  ? security_file_permission+0x24e/0x570
[ 2283.499887]  do_splice_direct+0x1c4/0x290
[ 2283.499904]  ? splice_direct_to_actor+0x980/0x980
[ 2283.499917]  ? selinux_file_permission+0x92/0x520
[ 2283.499939]  ? security_file_permission+0x24e/0x570
[ 2283.499967]  do_sendfile+0x553/0x1090
[ 2283.499994]  ? do_pwritev+0x270/0x270
[ 2283.500013]  ? wait_for_completion_io+0x270/0x270
[ 2283.500032]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2283.500046]  ? vfs_write+0x354/0xa70
[ 2283.500069]  __x64_sys_sendfile64+0x1d1/0x210
[ 2283.500087]  ? __ia32_sys_sendfile+0x220/0x220
[ 2283.500108]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2283.500126]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2283.500147]  do_syscall_64+0x33/0x40
[ 2283.500165]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2283.500176] RIP: 0033:0x7fb754cd3b19
[ 2283.500195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2283.500206] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2283.500227] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2283.500236] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2283.500246] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2283.500256] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2283.500266] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2283.707935] FAULT_INJECTION: forcing a failure.
[ 2283.707935] name failslab, interval 1, probability 0, space 0, times 0
[ 2283.707991] CPU: 1 PID: 14144 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2283.708000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2283.708006] Call Trace:
[ 2283.708031]  dump_stack+0x107/0x167
[ 2283.708051]  should_fail.cold+0x5/0xa
[ 2283.708069]  ? create_object.isra.0+0x3a/0xa20
[ 2283.708086]  should_failslab+0x5/0x20
[ 2283.708103]  kmem_cache_alloc+0x5b/0x310
18:19:56 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r0 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x900020, &(0x7f0000000900)=ANY=[])
mkdirat(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000500)=ANY=[@ANYBLOB="02000000000000000000000000000000000000000000000000000000000000000000000000000000400000", @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000061616161616161616161616161616161616161616161616161616161616161613131313131313131313131313131313131313131313131313131313131313131421531e83ca5a081d332b7db89cd0c3987c204758ae4531d61f4793eecd34ea89131251b657b654ec5e4f051b6c8e343278b71db367bd68e3621833141150c40bab4e5ba5f6dff4473a3624bd59db88628557fca8460fc8add21c5c9fa14f39ebfe632e592c6be09882549d0bf8103fd36b71bde3678e1d98db52eec1b2a05cd99a266a8a03c2edd79"])
unlinkat(r0, &(0x7f00000004c0)='./file0\x00', 0x200)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x80049367, &(0x7f0000000040))
ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000280))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r5 = perf_event_open$cgroup(&(0x7f00000002c0)={0x3, 0x80, 0x6, 0x1, 0x20, 0x9, 0x0, 0x6, 0x84000, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x2, @perf_bp={&(0x7f00000000c0), 0xa}, 0x0, 0x6, 0x2, 0x1, 0x1, 0x3ff, 0x8001, 0x0, 0x0, 0x0, 0x401}, r4, 0xd, r3, 0x4)
fallocate(r5, 0x1, 0x3, 0xfb)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r3, 0x8983, &(0x7f00000001c0)={0x6, 'ip6gretap0\x00', {0xe6}, 0x200})
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0)
dup2(r6, r0)
epoll_create1(0x80000)
mkdirat(r7, &(0x7f0000000200)='./file0\x00', 0x86)

[ 2283.708130]  create_object.isra.0+0x3a/0xa20
[ 2283.708150]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2283.708176]  kmem_cache_alloc+0x159/0x310
[ 2283.708214]  jbd2__journal_start+0x190/0x7e0
[ 2283.708247]  __ext4_journal_start_sb+0x214/0x390
18:19:56 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 35)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:19:56 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 2)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:19:56 executing program 0:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x40000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000002240)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r3 = open_tree(0xffffffffffffffff, 0x0, 0x100)
sendmsg$nl_xfrm(r3, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000001640)=@getae={0x4c, 0x1f, 0x20, 0x70bd2c, 0x25dfdbff, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4d4, 0xa, 0x85214112f556ed61}, @in=@empty, 0xc0d, 0x3500}, [@offload={0xc, 0x1c, {0x0, 0x2}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x4000040)
sendmsg$nl_xfrm(r1, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f00000002c0)=@updsa={0x148, 0x10, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in6=@private0, {}, {0x80000001}, {}, 0x0, 0x0, 0xa, 0x4}, [@algo_crypt={0x58, 0x2, {{'cbc(aes)\x00'}, 0x80, "0f24aa6b13c2e62f3556b1cbcfeac2a0"}}]}, 0x148}}, 0x0)
r4 = dup2(r1, 0xffffffffffffffff)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x4010}, 0x41)
bind$packet(0xffffffffffffffff, &(0x7f00000017c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r4, 0x89f5, &(0x7f0000001bc0)={'ip6gre0\x00', &(0x7f0000001b40)={'ip6_vti0\x00', 0x0, 0x4, 0x9, 0x8, 0x1, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, 0x8, 0x8000, 0x9, 0x1}})
r6 = socket$packet(0x11, 0x0, 0x300)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
eventfd2(0x2, 0x80800)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x0, 0x1f, 0xc2, 0x6, 0x0, 0x3, 0x9, 0x97, 0x40, 0x2ce, 0x80000001, 0x7, 0x38, 0x1, 0x0, 0x40, 0x9}, [{0x6474e551, 0x7ff, 0xfffffffffffffff9, 0x0, 0x3ff, 0x3f, 0x3, 0x800}], "a19123428c75b63274d9cb227ec632cb98bfe37746a51076ba1a46a1076aedce27abb4d9ea25d6c1cc28834c47555db3f10c0b909ee89faa4ac68e3da752c8193fa9501370ea0993b8063cd1919e38b4edda8ca0c3fa0e5794fba774a88e3cf706f4d1290722257fde0d3df23f710acd3ed373c45e8505c01fb8e1fe66acd3d3f7faa446a0282273011b61a868c9d5", ['\x00', '\x00', '\x00']}, 0x407)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', <r8=>0x0})
bind$packet(r6, &(0x7f00000017c0)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @remote}, 0x14)

[ 2283.708276]  ext4_file_write_iter+0x114b/0x18e0
[ 2283.708302]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2283.708320]  ? kasan_save_stack+0x32/0x40
[ 2283.708337]  ? kasan_save_stack+0x1b/0x40
[ 2283.708356]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2283.708375]  ? iter_file_splice_write+0x16d/0xc30
[ 2283.708391]  ? direct_splice_actor+0x10f/0x170
[ 2283.708403]  ? splice_direct_to_actor+0x387/0x980
[ 2283.708414]  ? do_splice_direct+0x1c4/0x290
[ 2283.708426]  ? do_sendfile+0x553/0x1090
[ 2283.708440]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2283.708461]  do_iter_readv_writev+0x476/0x750
[ 2283.708479]  ? new_sync_write+0x660/0x660
[ 2283.708493]  ? selinux_file_permission+0x92/0x520
[ 2283.708523]  do_iter_write+0x191/0x670
[ 2283.708543]  ? trace_hardirqs_on+0x5b/0x180
[ 2283.708564]  vfs_iter_write+0x70/0xa0
[ 2283.708580]  iter_file_splice_write+0x762/0xc30
[ 2283.708610]  ? generic_splice_sendpage+0x140/0x140
[ 2283.708631]  ? avc_policy_seqno+0x9/0x70
[ 2283.708643]  ? selinux_file_permission+0x92/0x520
[ 2283.708665]  ? lockdep_init_map_type+0x2c7/0x780
[ 2283.708682]  ? generic_splice_sendpage+0x140/0x140
[ 2283.708697]  direct_splice_actor+0x10f/0x170
[ 2283.708714]  splice_direct_to_actor+0x387/0x980
[ 2283.708732]  ? pipe_to_sendpage+0x380/0x380
[ 2283.708749]  ? do_splice_to+0x160/0x160
[ 2283.708764]  ? security_file_permission+0x24e/0x570
[ 2283.708786]  do_splice_direct+0x1c4/0x290
[ 2283.708800]  ? splice_direct_to_actor+0x980/0x980
[ 2283.708811]  ? selinux_file_permission+0x92/0x520
[ 2283.708830]  ? security_file_permission+0x24e/0x570
[ 2283.708854]  do_sendfile+0x553/0x1090
[ 2283.708877]  ? do_pwritev+0x270/0x270
[ 2283.708895]  ? wait_for_completion_io+0x270/0x270
[ 2283.708912]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2283.708925]  ? vfs_write+0x354/0xa70
[ 2283.708945]  __x64_sys_sendfile64+0x1d1/0x210
[ 2283.708960]  ? __ia32_sys_sendfile+0x220/0x220
[ 2283.708979]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2283.708995]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2283.709013]  do_syscall_64+0x33/0x40
[ 2283.709028]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2283.709038] RIP: 0033:0x7fb754cd3b19
[ 2283.709054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2283.709062] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2283.709079] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2283.709088] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2283.709096] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2283.709105] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2283.709113] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2283.736613] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=35144 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.808476] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=34247 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.809114] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=53893 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.813247] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=53481 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.893557] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=35656 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.904312] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.920300] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=33608 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.923341] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=35140 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.988251] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2283.988270] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=26 sclass=netlink_tcpdiag_socket pid=14139 comm=syz-executor.5
[ 2284.116708] FAULT_INJECTION: forcing a failure.
[ 2284.116708] name failslab, interval 1, probability 0, space 0, times 0
[ 2284.116820] CPU: 0 PID: 14161 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2284.116837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2284.116846] Call Trace:
[ 2284.116879]  dump_stack+0x107/0x167
[ 2284.116911]  should_fail.cold+0x5/0xa
[ 2284.116950]  ? jbd2__journal_start+0x190/0x7e0
[ 2284.116979]  should_failslab+0x5/0x20
[ 2284.117005]  kmem_cache_alloc+0x5b/0x310
[ 2284.117045]  jbd2__journal_start+0x190/0x7e0
[ 2284.117084]  __ext4_journal_start_sb+0x214/0x390
[ 2284.117118]  ext4_file_write_iter+0x114b/0x18e0
[ 2284.117168]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2284.117193]  ? kasan_save_stack+0x32/0x40
[ 2284.117218]  ? kasan_save_stack+0x1b/0x40
[ 2284.117244]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2284.117268]  ? iter_file_splice_write+0x16d/0xc30
[ 2284.117291]  ? direct_splice_actor+0x10f/0x170
[ 2284.117314]  ? splice_direct_to_actor+0x387/0x980
[ 2284.117335]  ? do_splice_direct+0x1c4/0x290
[ 2284.117359]  ? do_sendfile+0x553/0x1090
[ 2284.117384]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2284.117433]  do_iter_readv_writev+0x476/0x750
[ 2284.117465]  ? new_sync_write+0x660/0x660
[ 2284.117490]  ? selinux_file_permission+0x92/0x520
18:19:56 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 36)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2284.117546]  do_iter_write+0x191/0x670
[ 2284.117581]  ? trace_hardirqs_on+0x5b/0x180
[ 2284.117620]  vfs_iter_write+0x70/0xa0
[ 2284.117649]  iter_file_splice_write+0x762/0xc30
[ 2284.117702]  ? generic_splice_sendpage+0x140/0x140
[ 2284.117738]  ? avc_policy_seqno+0x9/0x70
[ 2284.117762]  ? selinux_file_permission+0x92/0x520
[ 2284.117801]  ? lockdep_init_map_type+0x2c7/0x780
[ 2284.117835]  ? generic_splice_sendpage+0x140/0x140
[ 2284.117865]  direct_splice_actor+0x10f/0x170
[ 2284.117896]  splice_direct_to_actor+0x387/0x980
[ 2284.117930]  ? pipe_to_sendpage+0x380/0x380
[ 2284.117963]  ? do_splice_to+0x160/0x160
[ 2284.117985]  ? security_file_permission+0x24e/0x570
[ 2284.118019]  do_splice_direct+0x1c4/0x290
[ 2284.118046]  ? splice_direct_to_actor+0x980/0x980
[ 2284.118066]  ? selinux_file_permission+0x92/0x520
[ 2284.118102]  ? security_file_permission+0x24e/0x570
[ 2284.118143]  do_sendfile+0x553/0x1090
[ 2284.118185]  ? do_pwritev+0x270/0x270
[ 2284.118212]  ? wait_for_completion_io+0x270/0x270
[ 2284.118243]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2284.118263]  ? vfs_write+0x354/0xa70
[ 2284.118300]  __x64_sys_sendfile64+0x1d1/0x210
[ 2284.118330]  ? __ia32_sys_sendfile+0x220/0x220
[ 2284.118362]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2284.118391]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2284.118423]  do_syscall_64+0x33/0x40
[ 2284.118450]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2284.118468] RIP: 0033:0x7fb754cd3b19
[ 2284.118500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2284.118517] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2284.118549] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2284.118567] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2284.118586] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2284.118604] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2284.118622] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2284.143515] udc-core: couldn't find an available UDC or it's busy
[ 2284.256280] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2284.275923] udc-core: couldn't find an available UDC or it's busy
[ 2284.276988] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2284.294628] FAULT_INJECTION: forcing a failure.
[ 2284.294628] name failslab, interval 1, probability 0, space 0, times 0
[ 2284.296637] CPU: 1 PID: 14162 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2284.297702] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2284.298972] Call Trace:
[ 2284.299393]  dump_stack+0x107/0x167
[ 2284.299951]  should_fail.cold+0x5/0xa
[ 2284.300546]  ? create_object.isra.0+0x3a/0xa20
[ 2284.301248]  should_failslab+0x5/0x20
[ 2284.301842]  kmem_cache_alloc+0x5b/0x310
[ 2284.302470]  create_object.isra.0+0x3a/0xa20
[ 2284.303143]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2284.303948]  kmem_cache_alloc_trace+0x151/0x320
[ 2284.304690]  alloc_pipe_info+0x10a/0x590
[ 2284.305396]  splice_direct_to_actor+0x774/0x980
[ 2284.306214]  ? _cond_resched+0x12/0x80
[ 2284.306847]  ? inode_security+0x107/0x140
[ 2284.307523]  ? pipe_to_sendpage+0x380/0x380
[ 2284.308214]  ? selinux_file_permission+0x92/0x520
[ 2284.308997]  ? do_splice_to+0x160/0x160
[ 2284.309667]  ? security_file_permission+0x24e/0x570
[ 2284.310441]  do_splice_direct+0x1c4/0x290
[ 2284.311092]  ? splice_direct_to_actor+0x980/0x980
[ 2284.311827]  ? selinux_file_permission+0x92/0x520
[ 2284.312597]  ? security_file_permission+0x24e/0x570
[ 2284.313385]  do_sendfile+0x553/0x1090
[ 2284.313983]  ? do_pwritev+0x270/0x270
[ 2284.314569]  ? wait_for_completion_io+0x270/0x270
[ 2284.315298]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2284.315995]  ? vfs_write+0x354/0xa70
[ 2284.316555]  __x64_sys_sendfile64+0x1d1/0x210
[ 2284.317231]  ? __ia32_sys_sendfile+0x220/0x220
[ 2284.317938]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2284.318741]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2284.319515]  do_syscall_64+0x33/0x40
[ 2284.320084]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2284.320871] RIP: 0033:0x7f0f9f161b19
[ 2284.321470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2284.324290] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2284.325475] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2284.326585] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2284.327687] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2284.328789] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2284.330291] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:19:56 executing program 2:
r0 = accept4(0xffffffffffffffff, 0x0, &(0x7f0000001880), 0x0)
r1 = socket(0x1a, 0x3, 0xcb7b)
r2 = syz_open_dev$vcsu(&(0x7f00000018c0), 0x54dbf134, 0xc00c2)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000001900)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x40}}, './file0\x00'})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, r4, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000001a80)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001a40)={&(0x7f0000001940)={0xc4, 0x0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x101}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x5fc}, @NBD_ATTR_SOCKETS={0x44, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8, 0x1, r0}, {0x8, 0x1, r1}, {0x8}, {0x8, 0x1, r2}]}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x8}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SOCKETS={0xc, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x100}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SOCKETS={0xc, 0x7, 0x0, 0x1, [{0x8, 0x1, r4}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4040040}, 0x80)
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
fcntl$notify(r6, 0x402, 0x2)
sendmsg$AUDIT_MAKE_EQUIV(r6, 0x0, 0x450745c438580058)
signalfd(r6, &(0x7f00000000c0), 0x8)
openat$cgroup_ro(r6, &(0x7f0000000380)='cgroup.stat\x00', 0x0, 0x0)
r7 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000040)='devices.allow\x00', 0x2, 0x0)
fsetxattr$security_capability(r7, &(0x7f0000000300), &(0x7f0000000340)=@v2={0x2000000, [{0x1, 0x5}, {0x6e1, 0x1}]}, 0x14, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xd124a25)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
vmsplice(r8, &(0x7f00000003c0)=[{&(0x7f00000004c0)="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", 0x1000}, {&(0x7f0000000240)="db33b7917804066a1812b904a11c0f12c2c48fc9fae90d6876f9f90d5c7e248fd45a3083cf0e5005e96b645331bd8e7e05069c65df32cf5f601abbe4167653d40616bd20d2f16d7dc03b15be55a3005df3d4a372b6548f771d454057c0c66dc9370fc9bfe62903b48e5b2d063f80f188d326d6de0e96b9687feedbe65ff4f2804c633ff82b0edbebf075c9a6792ddbb5ac506e21", 0x94}, {&(0x7f00000014c0)="41c863d48cb6e377c4dc32ebd4b65dae798eff5f24387ee8b8096e5549ccc38c1b7b97690ce1386b4fa05338c16ba60f36d18fed21c407a3c93d08ef65f24027adf513516b820987d94370368046b7cf1232e84bb82d160bd0f5435866d3a5756e0e6e8cd8111d0eeef3a789b283d73e682ba88ba8fec488cac72e20d93bca916c15dfc830a8d2ff5eae0d0c2f7a6a0b4f66bd7ffeebc225baa9392f091ff981e67906b488693441a0b278fabd46fffc94068d272e1c9e975aa58178eca8de2eb8201ceff717a66493a945bbb1fd", 0xce}, {&(0x7f00000015c0)="c6b05054f2c9eb1d69153c98e1f65976e88b3218fec8583f2a935148d1f2e9d59ee3c3be9e62abad2fc0e27d64263c484337559d4ab650f4e5bcab891f2c2f27e6913c9077a368a15047565b5f273fe1755b5d11b22065d7edfb425918261db680a9f43f709ecec489208149d78df2b4f0d95b24466dfad60f9b839d41a3b92588538449bc42c01f04b6751acb850fb2a9186d02712094926d7dca8df71717f654eb5b2e0a00343b92f71e50def10b5fb6a7b33e50ccb06467e2b87d5525c9f8f5e5917f81f4", 0xc6}, {&(0x7f0000000080)="3309351133f5372fb728f293a3473cab05c40d76ce8b06a09f2ef99679171481c0496dc64f3d82a80f00cdd9", 0x2c}, {&(0x7f0000000100)="8e5d13f1f1ae4847cada20911326b92657380fb59b0aab46bfbfbdadd21758c07799980ba632fb42e14cde63d68d465e45c6f8307ba15249ef59c8da34f236b1c4ece0b46ed2a3fc8459f6ab404a1443c8892f61ddaea34c6c26e8fd57e46c9fb01a063c8463dbcd3da3629c92a4a838fec4da", 0x73}, {&(0x7f00000016c0)="8f9da45c8f5433631f1a28c919ac57b278e22aba80d5522122a7277dbcf1520fe582895ddf3b2c34079d52f08b2c7779ff9eb1083da6815ad99e00c2c696518432928ebef83d667550d48ecab989f6ee28ddeea3c97745f396ed6c5748abbd7dd3be0b4751148808ceef3262b44fede14527207b6f56099f743d7f036b98b2eb3c9a752d773f16a4670abb0a73cc4404b8692b33b7fe926116faa1ae364fbc821a5e26920bc9631385673464678920a65a11033ebea96ff7d102faa7a3b8052718754896d54898182df8d740843f30783559", 0xd2}], 0x7, 0x0)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)=ANY=[@ANYBLOB="9c0000001d00210c0000000000000000040014000100010000000000fb0010a239b5d1d96addaaade17280337baec6a998aa42496dc15f0a77c5080167d94193906dd2c1fc2f342d2df8c92768eb8e7d8ac9fa81e4862d34fa57a73c5b959c20772180b1ae436f1b720c64797e24dfea8e9409f63ae3c531fceffbab4c85acbe26db351ff20fef4b5846"], 0x9c}}, 0x0)

[ 2284.371711] FAULT_INJECTION: forcing a failure.
[ 2284.371711] name failslab, interval 1, probability 0, space 0, times 0
[ 2284.374363] CPU: 0 PID: 14170 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2284.375862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2284.377601] Call Trace:
[ 2284.378162]  dump_stack+0x107/0x167
[ 2284.378925]  should_fail.cold+0x5/0xa
[ 2284.379721]  ? create_object.isra.0+0x3a/0xa20
[ 2284.380682]  should_failslab+0x5/0x20
[ 2284.381492]  kmem_cache_alloc+0x5b/0x310
[ 2284.382346]  create_object.isra.0+0x3a/0xa20
[ 2284.383281]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2284.384349]  kmem_cache_alloc+0x159/0x310
[ 2284.385227]  jbd2__journal_start+0x190/0x7e0
[ 2284.386171]  __ext4_journal_start_sb+0x214/0x390
[ 2284.387172]  ext4_file_write_iter+0x114b/0x18e0
[ 2284.388167]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2284.389147]  ? kasan_save_stack+0x32/0x40
[ 2284.390026]  ? kasan_save_stack+0x1b/0x40
[ 2284.390886]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2284.391932]  ? iter_file_splice_write+0x16d/0xc30
[ 2284.392924]  ? direct_splice_actor+0x10f/0x170
[ 2284.393875]  ? splice_direct_to_actor+0x387/0x980
[ 2284.394870]  ? do_splice_direct+0x1c4/0x290
[ 2284.395765]  ? do_sendfile+0x553/0x1090
[ 2284.396589]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2284.397586]  do_iter_readv_writev+0x476/0x750
[ 2284.398530]  ? new_sync_write+0x660/0x660
[ 2284.399388]  ? selinux_file_permission+0x92/0x520
[ 2284.400411]  do_iter_write+0x191/0x670
[ 2284.401233]  ? trace_hardirqs_on+0x5b/0x180
[ 2284.402153]  vfs_iter_write+0x70/0xa0
[ 2284.402953]  iter_file_splice_write+0x762/0xc30
[ 2284.403938]  ? generic_splice_sendpage+0x140/0x140
[ 2284.404964]  ? avc_policy_seqno+0x9/0x70
[ 2284.405832]  ? selinux_file_permission+0x92/0x520
[ 2284.406878]  ? lockdep_init_map_type+0x2c7/0x780
[ 2284.407881]  ? generic_splice_sendpage+0x140/0x140
[ 2284.408912]  direct_splice_actor+0x10f/0x170
[ 2284.409858]  splice_direct_to_actor+0x387/0x980
[ 2284.410845]  ? pipe_to_sendpage+0x380/0x380
[ 2284.411761]  ? do_splice_to+0x160/0x160
[ 2284.412600]  ? security_file_permission+0x24e/0x570
[ 2284.413672]  do_splice_direct+0x1c4/0x290
[ 2284.414551]  ? splice_direct_to_actor+0x980/0x980
[ 2284.415566]  ? selinux_file_permission+0x92/0x520
[ 2284.416590]  ? security_file_permission+0x24e/0x570
[ 2284.417667]  do_sendfile+0x553/0x1090
[ 2284.418490]  ? do_pwritev+0x270/0x270
[ 2284.419301]  ? wait_for_completion_io+0x270/0x270
[ 2284.420322]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2284.421295]  ? vfs_write+0x354/0xa70
[ 2284.422116]  __x64_sys_sendfile64+0x1d1/0x210
[ 2284.423061]  ? __ia32_sys_sendfile+0x220/0x220
[ 2284.424024]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2284.425122]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2284.426224]  do_syscall_64+0x33/0x40
[ 2284.427016]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2284.428089] RIP: 0033:0x7fb754cd3b19
[ 2284.428881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2284.432734] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2284.434374] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2284.435870] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2284.437384] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2284.438888] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2284.440404] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:19:56 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))

[ 2284.543300] netlink: 136 bytes leftover after parsing attributes in process `syz-executor.2'.
18:20:11 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 3)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:20:11 executing program 2:
r0 = openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r1 = openat(r0, 0x0, 0x20000, 0x0)
write$cgroup_pid(r1, &(0x7f0000000080)=0xffffffffffffffff, 0x12)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000040)={0x4668, 0x1, 0xff, 0x5, 0x15, "9209db3a0c9ef873eb8d91b3b21a6257ecba72"})
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r3 = dup3(r0, r1, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, r4, &(0x7f0000000040)=0xb, 0x80000001)
r6 = creat(&(0x7f00000000c0)='./file0\x00', 0x1)
dup2(r4, r6)
r7 = socket$unix(0x1, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7, {0x4}}, './file0\x00'})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r2, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1}}], 0x7ffff000, 0x0)

18:20:11 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x80000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:20:11 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 37)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:20:11 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xecb02, 0x0)
ioctl$DVD_READ_STRUCT(r0, 0x2284, &(0x7f0000000440)=@manufact={0x4, 0x0, 0x800, "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"})

18:20:11 executing program 5:
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(0xffffffffffffffff, 0xf504, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x1, @perf_bp={&(0x7f00000005c0), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
write$rfkill(r0, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udp\x00')
r3 = geteuid()
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)=""/226, 0xe2}, {&(0x7f0000000200)=""/200, 0xc8}, {&(0x7f0000000300)=""/224, 0xe0}], 0x3, &(0x7f0000000400)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r4=>0x0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x138}, 0x12060)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000580)={{0x1, 0x1, 0x18, r1, {r3, r4}}, './file0\x00'})

18:20:11 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f00000000c0))

18:20:11 executing program 7:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000400))
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/disk', 0x0, 0x0)
readv(r2, &(0x7f00000003c0)=[{&(0x7f0000000200)=""/62, 0x3e}], 0x1)

[ 2298.823733] FAULT_INJECTION: forcing a failure.
[ 2298.823733] name failslab, interval 1, probability 0, space 0, times 0
[ 2298.826094] CPU: 0 PID: 14197 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2298.827625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2298.829378] Call Trace:
[ 2298.829958]  dump_stack+0x107/0x167
[ 2298.830717]  should_fail.cold+0x5/0xa
[ 2298.831521]  ? jbd2__journal_start+0x190/0x7e0
[ 2298.832455]  should_failslab+0x5/0x20
[ 2298.833248]  kmem_cache_alloc+0x5b/0x310
[ 2298.834091]  jbd2__journal_start+0x190/0x7e0
[ 2298.835032]  __ext4_journal_start_sb+0x214/0x390
[ 2298.835992]  ext4_dirty_inode+0xbc/0x130
[ 2298.836844]  ? ext4_setattr+0x2210/0x2210
[ 2298.837715]  __mark_inode_dirty+0x492/0xd40
[ 2298.838627]  generic_update_time+0x21c/0x370
[ 2298.838651]  file_update_time+0x43a/0x520
[ 2298.840404]  ? evict_inodes+0x420/0x420
[ 2298.841241]  ? down_write_killable+0x180/0x180
[ 2298.842221]  file_modified+0x7d/0xa0
[ 2298.842240]  ext4_file_write_iter+0x906/0x18e0
[ 2298.842275]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2298.842293]  ? kasan_save_stack+0x32/0x40
[ 2298.842310]  ? kasan_save_stack+0x1b/0x40
[ 2298.842328]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2298.842343]  ? iter_file_splice_write+0x16d/0xc30
[ 2298.842358]  ? direct_splice_actor+0x10f/0x170
[ 2298.842374]  ? splice_direct_to_actor+0x387/0x980
[ 2298.842388]  ? do_splice_direct+0x1c4/0x290
[ 2298.842405]  ? do_sendfile+0x553/0x1090
[ 2298.842422]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2298.842451]  do_iter_readv_writev+0x476/0x750
[ 2298.842474]  ? new_sync_write+0x660/0x660
[ 2298.842491]  ? selinux_file_permission+0x92/0x520
[ 2298.842531]  do_iter_write+0x191/0x670
[ 2298.842557]  ? trace_hardirqs_on+0x5b/0x180
[ 2298.842584]  vfs_iter_write+0x70/0xa0
[ 2298.842605]  iter_file_splice_write+0x762/0xc30
[ 2298.842642]  ? generic_splice_sendpage+0x140/0x140
[ 2298.842669]  ? avc_policy_seqno+0x9/0x70
[ 2298.842685]  ? selinux_file_permission+0x92/0x520
[ 2298.842712]  ? lockdep_init_map_type+0x2c7/0x780
[ 2298.842736]  ? generic_splice_sendpage+0x140/0x140
[ 2298.842756]  direct_splice_actor+0x10f/0x170
[ 2298.842778]  splice_direct_to_actor+0x387/0x980
[ 2298.842802]  ? pipe_to_sendpage+0x380/0x380
[ 2298.842825]  ? do_splice_to+0x160/0x160
[ 2298.842844]  ? security_file_permission+0x24e/0x570
[ 2298.842874]  do_splice_direct+0x1c4/0x290
[ 2298.842893]  ? splice_direct_to_actor+0x980/0x980
[ 2298.842908]  ? selinux_file_permission+0x92/0x520
[ 2298.842934]  ? security_file_permission+0x24e/0x570
[ 2298.842966]  do_sendfile+0x553/0x1090
[ 2298.842998]  ? do_pwritev+0x270/0x270
[ 2298.843018]  ? wait_for_completion_io+0x270/0x270
[ 2298.843040]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2298.843056]  ? vfs_write+0x354/0xa70
[ 2298.843083]  __x64_sys_sendfile64+0x1d1/0x210
[ 2298.843104]  ? __ia32_sys_sendfile+0x220/0x220
[ 2298.843136]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2298.880396]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2298.881447]  do_syscall_64+0x33/0x40
[ 2298.882249]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2298.883292] RIP: 0033:0x7fb754cd3b19
[ 2298.884078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2298.887792] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2298.889379] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2298.890876] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2298.892366] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
18:20:11 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x200000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2298.893883] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2298.895500] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:20:11 executing program 7:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x1a1001, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001000010000000000000000000000000005000000000000000c00008008001000", @ANYRES32, @ANYBLOB="568c62c257508b58f0261b7fe1f15a421555389e6c9eb95914d7427d1ad31235364a6b1fe00e7ea3ac65d4d2e924b3aab3fd8ebc31d3c77d4915b24812f3f136f1b8ec8326d072332d34e7ec2a6eb329ce656f0318cdb6e246308ce880e6371e79a2253a48a37011fea8f01e8258743e64e6d7aa3d73dba710abf84b6f0a0bbe92506321b0f9ca4a4f2c49cf7aeac7fe834abc35b346ea4b224fc3a7f88a8e02ac351e9bedb3b0aa0e2999"], 0x28}}, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00', <r3=>0x0})
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r4, 0x89f4, &(0x7f0000000040)={'ip6_vti0\x00', &(0x7f0000000180)={'ip6gre0\x00', r3, 0x2f, 0x81, 0x60, 0x10000, 0x79, @ipv4={'\x00', '\xff\xff', @empty}, @mcast2, 0x7800, 0x7800, 0x10001, 0x5}})
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000080)={'sit0\x00', r3, 0x4, 0x85, 0x52, 0x0, 0x24, @empty, @mcast2, 0x1, 0x80, 0x402, 0xa273}})
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00'})
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sync_file_range(0xffffffffffffffff, 0x0, 0xffffffffffff0700, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffb, 0xfffffffffffffffc}, 0x2, 0x0, 0x1004, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8914, &(0x7f0000000140)={'lo\x00'})
getsockopt$IP6T_SO_GET_INFO(r6, 0x29, 0x40, &(0x7f0000000300)={'filter\x00', 0x0, [0x3, 0xd2, 0x7ff, 0x9, 0x3]}, &(0x7f0000000380)=0x54)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffffff9)

[ 2298.974640] udc-core: couldn't find an available UDC or it's busy
[ 2298.976358] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:20:11 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f00000000c0))

[ 2299.000293] udc-core: couldn't find an available UDC or it's busy
[ 2299.002268] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:20:11 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xffdffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f00000000c0)='\x00~(\x87P\x16}\x0e\x80\x1c\xadP:\x116\a\f\x16\xc7\r9cs\'C\x02\xd4\x16\b\xb5\xc6\xaaF\xedQ\b\x82\x82\xf1\xec\x96n0\a\x9c\x97\xdd\xd2\x95v\xe5\xcf\xa5\x87\xed\x9e\xc1\xaa[N\xc9[\xe3\x05R\x9ds`\xc0\xbbd\xc4_t;\xa1\xfb\xe3\x9a03\xe7<\xe4\x93{@\xa9\x06\x00\x94A\xe70gO\xae\n\xac\xc3\xebz\xb5\"\xb7\x18\x01\xf5\xd0\xf9\xa4z/\x90\x14\xcfv\x1f\xe0\x82Z\xa9\xf2\xf8\xa3\x00\x00\x00\x00\xfc`\xd0\x86R\xb9\x03\xd8\x8c\x92\xb6\xd7E!P\xb8\xb1\xa6\x9c\x02.\x03Ls\r\xb6\xd8f\xa7\x0f\x9b\x87e\x15.\xbe\xacb\b\x00\x00\x00\x82|\x94\x10\xdaU', 0x0)
r1 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @loopback}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='coredump_filter\x00')
pwritev2(r2, &(0x7f0000000000)=[{&(0x7f0000000200)="530c924924ad56c6e020aab83c13d048f27c54317873e064eda6844fac00dfa181949078aa856a3fe476c22e235611d58651adef3615e96575d804574d90f24e276fdae8b76e740d21de7b77499820c6736ced8d50a9cfdd514a3f23", 0x5c}, {&(0x7f0000000280)="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", 0x1000}, {&(0x7f0000001280)="ced8a64187bf3e1e94cacecaef2dc5e9b1c72c23d3ddf52d0a0d46782687157c6a475aa8759f086702cd60d86cd9297f493331406eab22baba7392bf81a66b20a53fe23d40126772959923ef5ad9d66d7bb7942cb55fafc1958676110156ab55bdcc0cd6b83f8a43dd267acf5092fe5e7f4dede49e19b1c1fc32b98071e9c668350addb71b1b14eda84ee0736e4589170b35acd8d613e11b25879acd9762bfa36ae5c86f91d188a6c441425545b3ef7d", 0xb0}, {&(0x7f0000001340)="6fb94fa1e32b55d2addcb7f92079eb70a4ffe477195a13e68e23d1403d9705a4b7d9d80e6bf672d8020b6d16793fb1f85b5f1aa9a0110aaa5c9b2e0a3917bcff56f95a85f6fbe0063c35e8369c36dea8de8708da4f9cf3c9b03e6a76d797019f5cc7c850938d530ccda25a50986617", 0x6f}], 0x4, 0x2, 0xe965, 0x12)
preadv(r2, 0x0, 0x0, 0x0, 0x0)
fallocate(r0, 0x0, 0x0, 0x400004)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000001440)='./file1\x00', 0x4082, 0x8)
writev(r4, &(0x7f00000014c0)=[{&(0x7f0000001480)="a6686955133c4d2202b2730bbd9ae7aec8ce02da2cce56ae3659a8d8df0c9ea52e58005626a3150844b44d2893a7f09a874fa4f97eeafc651f6f7eaae6", 0x3d}], 0x1)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000001540)={{{@in6=@loopback, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@private2}}, &(0x7f0000001640)=0xe8)
sendmsg$nl_generic(r3, &(0x7f00000017c0)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001780)={&(0x7f0000001680)={0xf4, 0x2c, 0x20, 0x70bd26, 0x25dfdbfd, {0x19}, [@typed={0xb5, 0x7a, 0x0, 0x0, @str='\x00~(\x87P\x16}\x0e\x80\x1c\xadP:\x116\a\f\x16\xc7\r9cs\'C\x02\xd4\x16\b\xb5\xc6\xaaF\xedQ\b\x82\x82\xf1\xec\x96n0\a\x9c\x97\xdd\xd2\x95v\xe5\xcf\xa5\x87\xed\x9e\xc1\xaa[N\xc9[\xe3\x05R\x9ds`\xc0\xbbd\xc4_t;\xa1\xfb\xe3\x9a03\xe7<\xe4\x93{@\xa9\x06\x00\x94A\xe70gO\xae\n\xac\xc3\xebz\xb5\"\xb7\x18\x01\xf5\xd0\xf9\xa4z/\x90\x14\xcfv\x1f\xe0\x82Z\xa9\xf2\xf8\xa3\x00\x00\x00\x00\xfc`\xd0\x86R\xb9\x03\xd8\x8c\x92\xb6\xd7E!P\xb8\xb1\xa6\x9c\x02.\x03Ls\r\xb6\xd8f\xa7\x0f\x9b\x87e\x15.\xbe\xacb\b\x00\x00\x00\x82|\x94\x10\xdaU'}, @nested={0x28, 0x59, 0x0, 0x1, [@typed={0x8, 0x42, 0x0, 0x0, @u32=0x1}, @typed={0x8, 0x3a, 0x0, 0x0, @uid=r5}, @typed={0x14, 0x8a, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x40010)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r3, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$sock_SIOCGIFCONF(r3, 0x8912, &(0x7f0000000180)=@buf={0x73, &(0x7f00000013c0)="7493cf063667c87f05cfc3a61bad39e61487c8bb00eaa5106bc7167be05557357a902ce25c26388cc473f9123cb52f62c8a06d67fde41044527fa3be4edfa25307df864a5b0b0cbc83338f67a9132a06251a22153b1118c87b0a154a05f9fd28e677d5d0167e28a65b8737ffc72ff284b240f8"})

[ 2299.018269] netlink: 'syz-executor.7': attribute type 16 has an invalid length.
18:20:11 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x400300}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2299.068334] FAULT_INJECTION: forcing a failure.
[ 2299.068334] name failslab, interval 1, probability 0, space 0, times 0
[ 2299.071672] CPU: 0 PID: 14211 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2299.073313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2299.075418] Call Trace:
[ 2299.076039]  dump_stack+0x107/0x167
[ 2299.076871]  should_fail.cold+0x5/0xa
[ 2299.077739]  ? alloc_pipe_info+0x1e5/0x590
[ 2299.078687]  should_failslab+0x5/0x20
[ 2299.079562]  __kmalloc+0x72/0x390
[ 2299.080389]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2299.081456]  alloc_pipe_info+0x1e5/0x590
[ 2299.082314]  splice_direct_to_actor+0x774/0x980
[ 2299.083289]  ? _cond_resched+0x12/0x80
[ 2299.084102]  ? inode_security+0x107/0x140
[ 2299.084942]  ? pipe_to_sendpage+0x380/0x380
[ 2299.085863]  ? selinux_file_permission+0x92/0x520
[ 2299.086865]  ? do_splice_to+0x160/0x160
[ 2299.087676]  ? security_file_permission+0x24e/0x570
[ 2299.088653]  do_splice_direct+0x1c4/0x290
[ 2299.089428]  ? splice_direct_to_actor+0x980/0x980
[ 2299.090358]  ? selinux_file_permission+0x92/0x520
[ 2299.091402]  ? security_file_permission+0x24e/0x570
[ 2299.092445]  do_sendfile+0x553/0x1090
[ 2299.093243]  ? do_pwritev+0x270/0x270
[ 2299.094015]  ? wait_for_completion_io+0x270/0x270
[ 2299.095015]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2299.095956]  ? vfs_write+0x354/0xa70
[ 2299.096730]  __x64_sys_sendfile64+0x1d1/0x210
[ 2299.097663]  ? __ia32_sys_sendfile+0x220/0x220
[ 2299.098606]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2299.099666]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2299.100705]  do_syscall_64+0x33/0x40
[ 2299.101458]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2299.102512] RIP: 0033:0x7f0f9f161b19
[ 2299.103267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2299.106991] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2299.108503] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2299.109940] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2299.111376] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2299.112821] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2299.114268] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2299.134296] netlink: 'syz-executor.7': attribute type 16 has an invalid length.
18:20:11 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
close(r0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r0, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0x38, 0x81, 0x2, 0x80, 0x0, 0x2, 0x3, 0x2, 0x3d5, 0x40, 0x1ac, 0x400, 0x6, 0x38, 0x1, 0x5, 0x100, 0x4}, [{0x6, 0xffffffe1, 0x0, 0x6, 0x8, 0x200, 0x9, 0x8}], "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", ['\x00', '\x00']}, 0x1278)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

18:20:11 executing program 6:
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x1)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f00000000c0))

18:20:11 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xe0ffff}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:20:27 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x1000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:20:27 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 4)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:20:27 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00')
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x4d8002, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000100)={'syztnl2\x00', <r1=>0x0, 0x4, 0x3f, 0x7f, 0x6, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2, 0x7, 0x80, 0x6, 0x9}})
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f00000005c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000580)={&(0x7f00000001c0)={0x38c, 0x12, 0x800, 0x70bd2d, 0x25dfdbfe, {0x2, 0x40, 0x8, 0x9, {0x4e23, 0x4e24, [0xfffffff9, 0x0, 0x0, 0x3ba8c], [0x1, 0x2a, 0x2, 0x200], r1, [0x2]}, 0x2, 0x1}, [@INET_DIAG_REQ_BYTECODE={0xea, 0x1, "b099949782d5c8f2dec1cbb20ddbbbe5cdd87f6a684439a4a1d852c8de4ba133680f9561b524250cbf1928a55d6f932297b40c484de1a24c2169f9d4c8d2298dcef2c61a7683ca2bd0613a4f3da9c1d98dac3c21e12281ab9f78cb7eb52e680b75b361cb627d242ec6869fbd4078d890d29e27230a05cd2f6148cb24da73674c466246fc530b3214c2eb8f39d22c5ae4eb796cd569d0168ee43dfb65f3ea5423ad59d05ae0547dea6aa1272e48c2ccb021dd7f871b85406432d2d4e8ae2f74f99e99a99c9ff8bb8dfb92787425ce8c70c2b2ee2ef3e66581c1b4a72861eec21d82369007a959"}, @INET_DIAG_REQ_BYTECODE={0xdf, 0x1, "319d4b41a11cc48ea3e003f0c127c7863ca1ef4fb0263f630bfd651e4072719aea1dcc8d3b75f989102d941ec7366bd8c1973f5f60f8ba1e2ca3a3406697ace6a857c1652d0e95c6fd51da5c22c9e38da160b00e87b59a7e82edd0bf29f20bc1555fc0a105f0ca073ef71d0207478bc1641a025430d2cfc0a1b9c970af62a74f6a2876f5f235d0bd0f5bf3ba48eb8edae554ee8d83c30c51c259907701c362a5dad18d356b8b254fc26372138ab1e49fadc44f54e1f9cc8f51041ad18dcfcd52dfda9ad7c4cd5c237ce91400588e93e8337be53bf56afb5fa6792d"}, @INET_DIAG_REQ_BYTECODE={0xb9, 0x1, "77e19b69311111e4bfe49e69dbf9a003f8989d9ebb37d91211f6cd01802b63579832e48726374711df4244b2d493ece3ce6f4e8a662d50280b623d7a7e198578cf9d9f753b1df1004b068ce353e317e21acf47951263f47b480b0279a4bc562f4e365e8fa61584cc1f00cab2d5b7f31795e6096a27ae819425382130e9e62aafd217fb9b4a223e624ed44436eafd4739cf46713b9a874ddc06e9fbc4d3fa989d1f00d02caf3c3704da5e6a49012b859a0c5cde0488"}, @INET_DIAG_REQ_BYTECODE={0xb7, 0x1, "d37191ec49797685418f0b593265a6b1e1fb972b77035f5b2732a69bd38c8e4374c40121486f9ddd001e1aadb1d2b0b949594d828147e50f8a2698bfa0a017da86f74cd3610c0bb7d91d8d056573a88fc5fc77303d1cc428feaf2d641c16d4a789f815cccc5edc83160a90a1a929a0da0bfce51e4dabbcdf3e5880189b8fc9ace6d902dcaeb07f912c0aee48d6686f940f4e67c8b5edc83b381ed7bce9bcd9011e5bc709e56f8a91f9834157dae1c9ccb721cc"}]}, 0x38c}, 0x1, 0x0, 0x0, 0x40004}, 0xc005)

18:20:27 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))

18:20:27 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 38)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:20:27 executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[])
sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000}, 0x50, &(0x7f0000000440)={&(0x7f00000005c0)={0x24, 0x0, 0x100, 0x2070bd2a, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x2091)
openat(r0, &(0x7f0000000580)='./file2\x00', 0x80002, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x1c, 0x18, 0xc21, 0x0, 0x0, {0x0, 0x8e}, [@typed={0x8, 0x4, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000810}, 0x0)
r3 = openat2(r0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x107800, 0x110, 0x4}, 0x18)
r4 = openat(r3, 0x0, 0xdaa00, 0x0)
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r5 = dup(r0)
sendmsg$IPSET_CMD_PROTOCOL(r5, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)={0x44, 0x1, 0x6, 0x301, 0x0, 0x0, {0xc, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x20000804)
openat(r5, &(0x7f00000001c0)='./file1\x00', 0x682200, 0x100)
inotify_init1(0x0)
r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r6}, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000300)=[0x0])
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x200, 0x0, 0x1, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
inotify_add_watch(r4, &(0x7f0000000400)='./file3\x00', 0x5000202)
umount2(&(0x7f00000000c0)='./file0\x00', 0x0)

18:20:27 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r0)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0x470, r4, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_BEARER={0x144, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x1ff, @dev={0xfe, 0x80, '\x00', 0x11}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x80000001, @private0, 0xfffffffd}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x3f, @mcast2, 0x9}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x8, @loopback, 0x6}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8fe}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'ib', 0x3a, 'hsr0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x9}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x14, 0x2, @in={0x2, 0x4e21, @empty}}}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0xffffff94, @private1={0xfc, 0x1, '\x00', 0x1}, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, 0x8000}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7ff}]}, @TIPC_NLA_BEARER={0xc4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @broadcast}}, {0x14, 0x2, @in={0x2, 0x4e20, @private=0xa010101}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0x401}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x1, @mcast1, 0x4}}}}, @TIPC_NLA_BEARER_NAME={0x12, 0x1, @l2={'ib', 0x3a, 'veth0_vlan\x00'}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}]}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'bridge0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x80}]}, @TIPC_NLA_LINK={0x3c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MEDIA={0xf0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe455}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff8001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffe0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MEDIA={0x28, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x800}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_LINK={0x34, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x81, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4000}}, {0x14, 0x2, @in={0x2, 0x4e24, @remote}}}}]}, @TIPC_NLA_NODE={0x78, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xd2d}, @TIPC_NLA_NODE_ID={0x24, 0x3, "f939a1c11c5dd28fbea73f1b70c9e05b7d5cd91793adddca364c1e484083b6a4"}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "8ae28ba6dc8e667eba56f2c57037d7c713999e75fe"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}]}]}, 0x470}, 0x1, 0x0, 0x0, 0x800}, 0x0)
lseek(r0, 0x5, 0x4)
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r5)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB, @ANYRES16=r6, @ANYBLOB], 0xdc}, 0x1, 0x0, 0x0, 0x687c3735d45af432}, 0x40)
sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r6, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0xc0}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x200}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24004041}, 0x800)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000007000000080001003a00000008000300", @ANYRES32=r1, @ANYBLOB="0c0099000000000000000000080005000aec0eac1f38040076657468315f746f5f7465616d000000"], 0x4c}}, 0x0)

18:20:27 executing program 2:
r0 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x64, r0, 0x1, 0x70bd27, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x9a}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}]}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xcc}]}, 0x64}}, 0x4000000)
sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f0000002d40)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0xa504000}, 0xc, &(0x7f0000001240)={&(0x7f0000002c80)={0xa0, r0, 0x4, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1000}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@empty}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1f}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x5}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x8}]}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x6}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0xfff}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x80}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x80}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x80}, 0x4c844)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/hci_vhci', 0x801, 0x4)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000003e00)={<r2=>0x0, <r3=>0x0})
sendmsg$nl_netfilter(r1, &(0x7f0000004000)={&(0x7f0000002d80)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000003fc0)={&(0x7f0000003e80)={0x11c, 0x40, 0x3, 0x201, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x5}, [@typed={0x8, 0x58, 0x0, 0x0, @pid=r3}, @typed={0x8, 0x2f, 0x0, 0x0, @fd=r1}, @generic="23a335c5d759a4d6073cb88409c42bd9b1aa77deb73c47a09b95b930ced58799854bbe0cf95044f666b87582af5e327762cf6ca9d21d00a0d66aeb266e7b4ba37c9cdc98129915a696edb3bbd88384a3821beef61dd798d6404a3ed5b1b5139c31b70bd2a82ee4e7c34e3f78972d64c94929ca227f2e14576a470a0a3990c717e2e1b197399e5bb01a11b1177636a9fe49d4cd2651998f793fc02804221b2af934f1397a045caec5e93f0f8cd7a297b508ed8af6ffce212e5e9df15c0d59f23dba6b3801841a292b9d652470787cf62175803f230e1fe5266306296c44c949fa5edab3dd6328518599da574fface58c3f08281f875"]}, 0x11c}, 0x1, 0x0, 0x0, 0x20044084}, 0xc0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c)
recvmmsg$unix(r1, &(0x7f0000002a00)=[{{&(0x7f0000000040), 0x6e, &(0x7f0000000480)=[{&(0x7f00000000c0)=""/49, 0x31}, {&(0x7f0000000100)=""/239, 0xef}, {&(0x7f0000000200)=""/224, 0xe0}, {0xffffffffffffffff}, {&(0x7f0000001a00)=""/4096, 0x1000}, {&(0x7f0000000300)=""/189, 0xbd}, {&(0x7f00000003c0)=""/122, 0x7a}, {&(0x7f0000000440)}], 0x8, &(0x7f0000000500)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xc0}}, {{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f0000000980)=[{&(0x7f0000000640)=""/28, 0x1c}, {&(0x7f0000000680)=""/151, 0x97}, {&(0x7f0000000740)=""/53, 0x35}, {&(0x7f0000000780)=""/129, 0x81}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000000840)=""/224, 0xe0}, {&(0x7f0000000940)=""/53, 0x35}], 0x7, &(0x7f0000000a00)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f0000000ac0), 0x6e, &(0x7f0000000ec0)=[{&(0x7f0000000b40)=""/19, 0x13}, {&(0x7f0000000b80)=""/92, 0x5c}, {&(0x7f0000000c00)=""/61, 0x3d}, {&(0x7f0000000dc0)=""/208, 0xd0}], 0x4, &(0x7f0000000f00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x120}}, {{&(0x7f0000001040)=@abs, 0x6e, &(0x7f0000001140)=[{&(0x7f00000010c0)=""/123, 0x7b}], 0x1, &(0x7f0000001180)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}, {{&(0x7f00000011c0), 0x6e, &(0x7f0000001240), 0x0, &(0x7f0000001280)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0}}, {{&(0x7f0000001380)=@abs, 0x6e, &(0x7f0000001800)=[{&(0x7f0000001400)=""/89, 0x59}, {&(0x7f0000001480)=""/161, 0xa1}, {&(0x7f0000001540)=""/104, 0x68}, {&(0x7f00000015c0)=""/31, 0x1f}, {&(0x7f0000001600)=""/14, 0xe}, {&(0x7f0000001640)=""/102, 0x66}, {&(0x7f00000016c0)=""/54, 0x36}, {&(0x7f0000001700)=""/199, 0xc7}], 0x8, &(0x7f0000001880)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [<r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}}], 0x6, 0x40000000, &(0x7f0000002b80)={0x77359400})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r4, 0xc08c5334, &(0x7f0000002bc0)={0x5ac, 0x80000000, 0x0, 'queue1\x00', 0x3426})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
r9 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r9)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB, @ANYRES16=r10, @ANYBLOB], 0xdc}, 0x1, 0x0, 0x0, 0x687c3735d45af432}, 0x40)
sendmsg$TIPC_NL_SOCK_GET(r7, &(0x7f0000004280)={&(0x7f0000004080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000004240)={&(0x7f00000040c0)={0x144, r10, 0x20, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x200}]}, @TIPC_NLA_NODE={0x18, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7ff}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_LINK={0xf8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}]}, @TIPC_NLA_BEARER={0xc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}]}]}, 0x144}, 0x1, 0x0, 0x0, 0x20000004}, 0x40001)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000004040)={r2, 0x1, r6, 0x3})
sendmsg$nl_xfrm(r11, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000c40)=@updsa={0x164, 0x10, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in6=@private0, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x58, 0x2, {{'cbc(aes)\x00'}, 0x80, "0f24aa6b13c2e62f3556b1cbcfeac2a0"}}, @encap={0x1c, 0x4, {0x2, 0x0, 0x0, @in=@multicast1}}]}, 0x164}}, 0x0)

18:20:27 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000005d00210c0000000000000000040002000800170000000000"], 0x1c}}, 0x40000)
pread64(r0, &(0x7f0000000340)=""/181, 0xb5, 0x8)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
r1 = syz_open_dev$mouse(&(0x7f00000000c0), 0x7, 0x4002)
r2 = dup2(r0, r1)
r3 = openat2(0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x2b0100, 0x1c}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0xfffffc71}}, './file0\x00'})
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x404700, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(0xffffffffffffffff, 0xc0a85320, &(0x7f00000004c0)={{0xff, 0x6f}, 'port1\x00', 0x80, 0x91000, 0x2, 0x2, 0x1, 0x100, 0x5, 0x0, 0x4, 0x38})
pidfd_getfd(r4, r2, 0x0)
fsmount(r3, 0x1, 0xf9)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000004200210e0000000000000000000000001ec1510446ad9e06b57f9c686fa912ba3b2328a522ec336899b707fdfa07e4b086424a077c8b1bf0464349f5bab057d519066ed1d98d6e5fd1c5fa0cf73e0c2d"], 0x14}}, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000001740)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef)
unshare(0x48020200)

[ 2315.069274] FAULT_INJECTION: forcing a failure.
[ 2315.069274] name failslab, interval 1, probability 0, space 0, times 0
[ 2315.070635] CPU: 1 PID: 14265 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2315.071463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2315.072460] Call Trace:
[ 2315.072478]  dump_stack+0x107/0x167
[ 2315.072491]  should_fail.cold+0x5/0xa
[ 2315.072504]  ? create_object.isra.0+0x3a/0xa20
[ 2315.072516]  should_failslab+0x5/0x20
[ 2315.072526]  kmem_cache_alloc+0x5b/0x310
[ 2315.072537]  ? ext4_dirty_inode+0x107/0x130
[ 2315.072550]  create_object.isra.0+0x3a/0xa20
[ 2315.072560]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2315.072573]  kmem_cache_alloc+0x159/0x310
[ 2315.072591]  jbd2__journal_start+0x190/0x7e0
[ 2315.072606]  __ext4_journal_start_sb+0x214/0x390
[ 2315.072620]  ext4_file_write_iter+0xdbf/0x18e0
[ 2315.072639]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2315.072648]  ? kasan_save_stack+0x32/0x40
[ 2315.072657]  ? kasan_save_stack+0x1b/0x40
[ 2315.072668]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
18:20:27 executing program 6:
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f00000000c0))

[ 2315.072677]  ? iter_file_splice_write+0x16d/0xc30
[ 2315.072685]  ? direct_splice_actor+0x10f/0x170
18:20:27 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newpolicy={0xb8, 0x13, 0x1, 0x0, 0x0, {{@in=@broadcast, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x3c}}}, 0xb8}}, 0x0)
stat(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0xffffffffffffffff, r3, 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
quotactl(0x7, &(0x7f0000000100)='./file0\x00', r3, &(0x7f0000000200)="b1ae3e5e234a6c6a848714a96f6727cbe75d7dbb14f62c01fe5dbb6df83d4bd7cbc1b2e2483f259e0ed8f5adbdd1a6c0bf2a452659d6623207c6afd6c563e7e6d69ec1c8")
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)=ANY=[@ANYBLOB="015e0000017d8502250a0100", @ANYRES32=r0, @ANYBLOB='?\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000500)={{{@in=@dev, @in6=@ipv4={""/10, ""/2, @private}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@dev}, 0x0, @in6=@ipv4={""/10, ""/2, @remote}}}, &(0x7f00000002c0)=0xe8)
setresuid(r3, r3, r6)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x80010, r2, 0x10000000)
syz_io_uring_submit(0x0, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd_index=0x8, 0x5, 0x0, 0x101, 0x1}, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r4, 0x0, 0x483, &(0x7f0000000340), &(0x7f0000000140)=0x68)

[ 2315.072693]  ? splice_direct_to_actor+0x387/0x980
[ 2315.072701]  ? do_splice_direct+0x1c4/0x290
[ 2315.072710]  ? do_sendfile+0x553/0x1090
[ 2315.072719]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2315.072734]  do_iter_readv_writev+0x476/0x750
[ 2315.072747]  ? new_sync_write+0x660/0x660
18:20:27 executing program 0:
pwritev2(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="85ac7b310e63365ee9c41960ed6f1b84e9ade9f4ce8fde4398c8406249ff029336eb7e4b2ff729cf641b11877afc564e2d69732388f53a8b67d3e0fbff8d630b73f98a92b00e59515a35f7a69b2faef4661afa4e7b5b90b8c013300b242bd4879317db63084ba69c1e0494e8fa1bacb39f2a3da28c672573e856fe9e4ff3fbffd9cee987c269bf579d4e4c0d56578f3bb2", 0x91}], 0x1, 0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x8401, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80000)
ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00'})
fcntl$getownex(r0, 0x10, &(0x7f0000000340))
writev(r0, &(0x7f00000004c0)=[{&(0x7f0000000200)="69b8579718e0ed0064854e9df17f2e825d82", 0x12}], 0x1)
ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000000300)={0x2, &(0x7f00000002c0)=[{0x101, 0x91, &(0x7f0000000140)="e5ee8ae02576c94bbc211fca5a637c7000f12d0e0a829d4718b1aa0675a6160b23818088399ce56bedc0de24d6ffe863e479e7c82d88a794fe9af2793dde4e9389e55874bd13d5431c6456738bb29176912054fe8ef406fc4e2e9503984313623450b0b79c43ca78e32031f61f7840e3f9d8ea9980f3fcde9490b6ad3f1f43dbb09fe48f2d7a8f56b2bd12f65f2f3c4a94", 0x1}, {0xfffffffb, 0x64, &(0x7f0000000240)="a2ae41840affe44fb437d73cabd9ed3a32b949fe2772030c88bdcf3a78e19dca88890b4199ab4b6ce48aed9d8a4e57887ae036085e610addff6561397b3f3169b81c53ace725e07fba40237a52c4db8244021a7553369d6b8d72988e5483127c8895a6bd", 0x1}]})

[ 2315.072757]  ? selinux_file_permission+0x92/0x520
[ 2315.072778]  do_iter_write+0x191/0x670
[ 2315.072793]  ? trace_hardirqs_on+0x5b/0x180
[ 2315.072808]  vfs_iter_write+0x70/0xa0
[ 2315.072819]  iter_file_splice_write+0x762/0xc30
[ 2315.072839]  ? generic_splice_sendpage+0x140/0x140
[ 2315.072853]  ? avc_policy_seqno+0x9/0x70
[ 2315.072862]  ? selinux_file_permission+0x92/0x520
[ 2315.072878]  ? lockdep_init_map_type+0x2c7/0x780
[ 2315.072890]  ? generic_splice_sendpage+0x140/0x140
[ 2315.072901]  direct_splice_actor+0x10f/0x170
[ 2315.072913]  splice_direct_to_actor+0x387/0x980
[ 2315.072927]  ? pipe_to_sendpage+0x380/0x380
[ 2315.072939]  ? do_splice_to+0x160/0x160
18:20:27 executing program 7:
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f00000001c0)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000280)=0xb, 0x80000001)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0xc040, 0x0)
openat(r0, &(0x7f0000000200)='./file0\x00', 0x100, 0x1c7)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x100, 0x4f)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x42, 0x7c)
mkdirat(r2, &(0x7f0000000240)='./file0\x00', 0x8)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f00000000c0))

[ 2315.072949]  ? security_file_permission+0x24e/0x570
[ 2315.072966]  do_splice_direct+0x1c4/0x290
[ 2315.072980]  ? splice_direct_to_actor+0x980/0x980
[ 2315.072989]  ? selinux_file_permission+0x92/0x520
[ 2315.073004]  ? security_file_permission+0x24e/0x570
[ 2315.073021]  do_sendfile+0x553/0x1090
[ 2315.073038]  ? do_pwritev+0x270/0x270
[ 2315.073051]  ? wait_for_completion_io+0x270/0x270
18:20:27 executing program 0:
set_mempolicy(0x4003, &(0x7f00000000c0)=0x6c0e, 0x7fff)
syz_80211_join_ibss(&(0x7f0000000340)='wlan0\x00', &(0x7f0000000000)=@default_ap_ssid, 0x17, 0x0)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x200f5ef, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
set_mempolicy(0x4003, &(0x7f0000000040)=0x2, 0x1f)
getpgid(0xffffffffffffffff)
r0 = fork()
tkill(r0, 0x0)
r1 = fork()
getpid()
r2 = fork()
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000440)=<r3=>0x0)
fork()
tkill(r3, 0x31)
r4 = fork()
tkill(r4, 0x14)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={&(0x7f0000000080)}, 0x1000, 0xff, 0x0, 0x6, 0x9, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
clone3(&(0x7f0000000140)={0x204100800, 0x0, 0x0, 0x0, {0x20000}, 0x0, 0x0, 0x0, 0x0}, 0x58)
clone3(&(0x7f00000003c0)={0x10a0900, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200), {0xa}, &(0x7f0000000240)=""/79, 0x4f, &(0x7f00000002c0)=""/55, &(0x7f0000000300)=[0x0, r0, 0x0, r1, r2, r4, 0x0, r2], 0x8}, 0x58)

18:20:27 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 39)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2315.073063]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2315.073071]  ? vfs_write+0x354/0xa70
[ 2315.073085]  __x64_sys_sendfile64+0x1d1/0x210
18:20:27 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$AUDIT_MAKE_EQUIV(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0x3f7, 0x1, 0x70bd2c, 0x25dfdbff, {0x7, 0x7, './file0', './file0'}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x800)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="141e00001508000000000000f60001000000482de9cf346cda9836759590737510e04b7e047fefa6bbddb686f1124ca10000"], 0x14}}, 0x0)

[ 2315.073097]  ? __ia32_sys_sendfile+0x220/0x220
[ 2315.073110]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2315.073121]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2315.073134]  do_syscall_64+0x33/0x40
[ 2315.073145]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2315.073152] RIP: 0033:0x7fb754cd3b19
[ 2315.073164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2315.073169] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2315.073181] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2315.073187] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2315.073193] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2315.073200] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2315.073206] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2315.085326] udc-core: couldn't find an available UDC or it's busy
[ 2315.085340] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2315.095275] udc-core: couldn't find an available UDC or it's busy
[ 2315.095287] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2315.096719] FAULT_INJECTION: forcing a failure.
[ 2315.096719] name failslab, interval 1, probability 0, space 0, times 0
[ 2315.096731] CPU: 1 PID: 14275 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2315.096737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2315.096740] Call Trace:
[ 2315.096756]  dump_stack+0x107/0x167
[ 2315.096769]  should_fail.cold+0x5/0xa
[ 2315.096781]  ? create_object.isra.0+0x3a/0xa20
[ 2315.096793]  should_failslab+0x5/0x20
[ 2315.096803]  kmem_cache_alloc+0x5b/0x310
[ 2315.096816]  create_object.isra.0+0x3a/0xa20
[ 2315.096826]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2315.096839]  __kmalloc+0x16e/0x390
[ 2315.096854]  alloc_pipe_info+0x1e5/0x590
[ 2315.096867]  splice_direct_to_actor+0x774/0x980
[ 2315.096882]  ? inode_security+0x107/0x140
[ 2315.096891]  ? pipe_to_sendpage+0x380/0x380
[ 2315.096900]  ? selinux_file_permission+0x92/0x520
[ 2315.096911]  ? do_splice_to+0x160/0x160
[ 2315.096920]  ? security_file_permission+0x24e/0x570
[ 2315.096936]  do_splice_direct+0x1c4/0x290
[ 2315.096949]  ? splice_direct_to_actor+0x980/0x980
[ 2315.096957]  ? selinux_file_permission+0x92/0x520
[ 2315.096971]  ? security_file_permission+0x24e/0x570
[ 2315.096989]  do_sendfile+0x553/0x1090
[ 2315.097006]  ? do_pwritev+0x270/0x270
[ 2315.097018]  ? wait_for_completion_io+0x270/0x270
[ 2315.097030]  ? ksys_write+0x13a/0x260
[ 2315.097044]  __x64_sys_sendfile64+0x1d1/0x210
[ 2315.097055]  ? __ia32_sys_sendfile+0x220/0x220
[ 2315.097068]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2315.097079]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2315.097092]  do_syscall_64+0x33/0x40
[ 2315.097103]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2315.097110] RIP: 0033:0x7f0f9f161b19
[ 2315.097121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2315.097127] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2315.097138] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2315.097144] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2315.097150] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2315.097156] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2315.097163] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2315.388802] FAULT_INJECTION: forcing a failure.
[ 2315.388802] name failslab, interval 1, probability 0, space 0, times 0
[ 2315.388827] CPU: 1 PID: 14300 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2315.388840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2315.388847] Call Trace:
[ 2315.388876]  dump_stack+0x107/0x167
[ 2315.388902]  should_fail.cold+0x5/0xa
[ 2315.388929]  ? jbd2__journal_start+0x190/0x7e0
[ 2315.388961]  should_failslab+0x5/0x20
[ 2315.388980]  kmem_cache_alloc+0x5b/0x310
[ 2315.389012]  jbd2__journal_start+0x190/0x7e0
[ 2315.389043]  __ext4_journal_start_sb+0x214/0x390
[ 2315.389074]  ext4_dirty_inode+0xbc/0x130
[ 2315.389096]  ? ext4_setattr+0x2210/0x2210
[ 2315.389117]  __mark_inode_dirty+0x492/0xd40
[ 2315.389150]  generic_update_time+0x21c/0x370
[ 2315.389175]  file_update_time+0x43a/0x520
[ 2315.389195]  ? evict_inodes+0x420/0x420
[ 2315.389220]  ? down_write_killable+0x180/0x180
[ 2315.389248]  file_modified+0x7d/0xa0
[ 2315.389269]  ext4_file_write_iter+0x906/0x18e0
[ 2315.389309]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2315.389328]  ? kasan_save_stack+0x32/0x40
[ 2315.389347]  ? kasan_save_stack+0x1b/0x40
[ 2315.389368]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2315.389385]  ? iter_file_splice_write+0x16d/0xc30
[ 2315.389402]  ? direct_splice_actor+0x10f/0x170
[ 2315.389419]  ? splice_direct_to_actor+0x387/0x980
[ 2315.389435]  ? do_splice_direct+0x1c4/0x290
[ 2315.389454]  ? do_sendfile+0x553/0x1090
[ 2315.389474]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2315.389506]  do_iter_readv_writev+0x476/0x750
[ 2315.389532]  ? new_sync_write+0x660/0x660
[ 2315.389550]  ? selinux_file_permission+0x92/0x520
[ 2315.389596]  do_iter_write+0x191/0x670
[ 2315.389625]  ? trace_hardirqs_on+0x5b/0x180
[ 2315.389656]  vfs_iter_write+0x70/0xa0
[ 2315.389680]  iter_file_splice_write+0x762/0xc30
[ 2315.389721]  ? generic_splice_sendpage+0x140/0x140
[ 2315.389751]  ? avc_policy_seqno+0x9/0x70
[ 2315.389770]  ? selinux_file_permission+0x92/0x520
[ 2315.389800]  ? lockdep_init_map_type+0x2c7/0x780
[ 2315.389827]  ? generic_splice_sendpage+0x140/0x140
[ 2315.389869]  direct_splice_actor+0x10f/0x170
[ 2315.389900]  splice_direct_to_actor+0x387/0x980
[ 2315.389928]  ? pipe_to_sendpage+0x380/0x380
[ 2315.389954]  ? do_splice_to+0x160/0x160
[ 2315.389975]  ? security_file_permission+0x24e/0x570
[ 2315.390009]  do_splice_direct+0x1c4/0x290
[ 2315.390030]  ? splice_direct_to_actor+0x980/0x980
[ 2315.390047]  ? selinux_file_permission+0x92/0x520
[ 2315.390076]  ? security_file_permission+0x24e/0x570
[ 2315.390111]  do_sendfile+0x553/0x1090
[ 2315.390147]  ? do_pwritev+0x270/0x270
[ 2315.390170]  ? wait_for_completion_io+0x270/0x270
[ 2315.390194]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2315.390212]  ? vfs_write+0x354/0xa70
[ 2315.390241]  __x64_sys_sendfile64+0x1d1/0x210
[ 2315.390265]  ? __ia32_sys_sendfile+0x220/0x220
[ 2315.390292]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2315.390315]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2315.390342]  do_syscall_64+0x33/0x40
[ 2315.390364]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2315.390379] RIP: 0033:0x7fb754cd3b19
[ 2315.390402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2315.390413] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2315.390437] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2315.390449] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2315.390462] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2315.390474] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2315.390487] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:20:43 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 40)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:20:43 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x2000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:20:43 executing program 6:
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f00000000c0))

18:20:43 executing program 5:
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000040)={{{@in=@rand_addr=0x64010101, @in6=@local, 0x4e21, 0x5, 0x4e24, 0x9, 0x2, 0x80, 0x20, 0x2, 0x0, r0}, {0x4, 0x1, 0x1a0fa7b6, 0x0, 0x2, 0x9, 0x9, 0x6c80000000}, {0x6, 0x8, 0x6, 0x4}, 0x8b, 0x6e6bc0, 0x0, 0x1, 0x1, 0x1}, {{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4d3, 0x33}, 0xa, @in6=@mcast2, 0x3506, 0x0, 0x1, 0x7, 0x1, 0x1f, 0x31}}, 0xe8)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8800000)
lseek(r1, 0x0, 0x4)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000140)=@updsa={0xf0, 0x1a, 0x9, 0x0, 0x0, {{@in=@remote, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1b0, 0x0, 0x0, 0x0, 0xee00}, {@in=@local}, @in6=@private1, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)={'#! ', './file0', [{0x20, '\x00'}, {}, {0x20, '}{!'}], 0xa, "49c52e67deb02e5c0530c1f405c87a17e60b42c91e87b2561f55fb45d3356b811bb38a84bd7e869066eee37726a84e0c96359862d769f903a209225181ed1aeaaf5b393223a8f4537a18119a9629c783d17d0b5d7463a26e27ef761d30319f7dbd70c5b4bd101311a75be4362ed647ae12d1983845a40af52905cbed502f49e27385e09f2189a145f89f84be72aed119f91c8f361b965e8577e23e4cc7a282ef58f2a1d914b2933d39a3dacfd7a65c73a20a106b22bf657efe5d8c3a8ec2cda734ab084c41b6b2f9a5bfdce3"}, 0xde)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
fcntl$getflags(r4, 0x40a)

18:20:43 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="6e66733d6e6f7374616c655f726fb6575a5ae1354a0b6400e47b735ebb14d07fa192cb55bb4ff0db9ce2f66b05b1e4e5f9251f16baa5b097b80bb63a8e93dbaa43797a923f59a825033253537d37468f0c827a08632de7666ae6e53bcf59d84e61108b35ecd18b0625223666e0dac5c5fdfa0effd0b19c11a64dfbfd3e715411f88eb4cef34b0900000000000000233ed20af24f1354d2e3c11a629f897359de000000"])
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040), 0x0)

18:20:43 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 5)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:20:43 executing program 2:
r0 = syz_io_uring_setup(0x7563, &(0x7f0000000000)={0x0, 0x0, 0x10}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
syz_io_uring_setup(0x4c4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r7, 0x0, &(0x7f0000000200), 0x0, 0x40000, 0x1}, 0x0)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = accept4$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @remote}, &(0x7f0000000140)=0x10, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000180)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd_index=0x1, 0x3, {0x0, r8}, 0x9, 0x4, 0x1, {0x0, 0x0, r9}}, 0x0)
syz_io_uring_setup(0x1f9d, &(0x7f00000001c0)={0x0, 0xedcf, 0x1, 0x0, 0x3b0, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r10=>0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x0)
syz_io_uring_submit(r5, r10, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x3, 0x0, &(0x7f0000000980)="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", 0x81, 0x0, 0x0, {0x3}}, 0x6)
setns(0xffffffffffffffff, 0x20000)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$SOCK_DESTROY(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000400), 0xc, &(0x7f0000000900)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

18:20:43 executing program 7:
r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x60002)
ioctl$LOOP_SET_FD(r0, 0x4c00, 0xffffffffffffffff)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
r4 = openat$cgroup_freezer_state(r2, &(0x7f0000000080), 0x2, 0x0)
ioctl$AUTOFS_IOC_FAIL(r4, 0x9361, 0x6)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000040)={'sit0\x00', &(0x7f0000000000)=@ethtool_ts_info={0x37}})
dup2(r1, r0)

18:20:43 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x3000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2331.277794] FAULT_INJECTION: forcing a failure.
[ 2331.277794] name failslab, interval 1, probability 0, space 0, times 0
[ 2331.280556] CPU: 1 PID: 14330 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2331.282021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2331.283866] Call Trace:
[ 2331.284432]  dump_stack+0x107/0x167
[ 2331.285359]  should_fail.cold+0x5/0xa
18:20:43 executing program 6:
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f00000000c0))

[ 2331.286231]  ? create_object.isra.0+0x3a/0xa20
[ 2331.287304]  should_failslab+0x5/0x20
[ 2331.288177]  kmem_cache_alloc+0x5b/0x310
[ 2331.289045]  create_object.isra.0+0x3a/0xa20
[ 2331.289978]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2331.291203]  kmem_cache_alloc+0x159/0x310
[ 2331.292155]  jbd2__journal_start+0x190/0x7e0
[ 2331.293102]  __ext4_journal_start_sb+0x214/0x390
[ 2331.294281]  ext4_file_write_iter+0x114b/0x18e0
[ 2331.295338]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2331.296444]  ? kasan_save_stack+0x32/0x40
[ 2331.297361]  ? kasan_save_stack+0x1b/0x40
[ 2331.298393]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2331.299678]  ? iter_file_splice_write+0x16d/0xc30
[ 2331.300811]  ? direct_splice_actor+0x10f/0x170
[ 2331.301880]  ? splice_direct_to_actor+0x387/0x980
[ 2331.303175]  ? do_splice_direct+0x1c4/0x290
[ 2331.304316]  ? do_sendfile+0x553/0x1090
[ 2331.305289]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2331.306600]  do_iter_readv_writev+0x476/0x750
[ 2331.307721]  ? new_sync_write+0x660/0x660
[ 2331.308697]  ? selinux_file_permission+0x92/0x520
[ 2331.309922]  do_iter_write+0x191/0x670
[ 2331.310954]  ? trace_hardirqs_on+0x5b/0x180
[ 2331.311935]  vfs_iter_write+0x70/0xa0
[ 2331.312748]  iter_file_splice_write+0x762/0xc30
[ 2331.313898]  ? generic_splice_sendpage+0x140/0x140
[ 2331.315054]  ? avc_policy_seqno+0x9/0x70
[ 2331.316064]  ? selinux_file_permission+0x92/0x520
[ 2331.317195]  ? lockdep_init_map_type+0x2c7/0x780
[ 2331.318226]  ? generic_splice_sendpage+0x140/0x140
[ 2331.319464]  direct_splice_actor+0x10f/0x170
[ 2331.320454]  splice_direct_to_actor+0x387/0x980
[ 2331.321648]  ? pipe_to_sendpage+0x380/0x380
[ 2331.322637]  ? do_splice_to+0x160/0x160
[ 2331.323478]  ? security_file_permission+0x24e/0x570
[ 2331.324604]  do_splice_direct+0x1c4/0x290
[ 2331.325593]  ? splice_direct_to_actor+0x980/0x980
[ 2331.326618]  ? selinux_file_permission+0x92/0x520
[ 2331.327641]  ? security_file_permission+0x24e/0x570
18:20:43 executing program 0:
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4000)
openat$bsg(0xffffffffffffff9c, &(0x7f00000001c0), 0x6202c0, 0x0)
pipe2(&(0x7f0000000200), 0x80000)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r0)
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000080)={{0x6, 0x3}, 0x100, './file0\x00'})

[ 2331.328716]  do_sendfile+0x553/0x1090
[ 2331.329724]  ? do_pwritev+0x270/0x270
[ 2331.330565]  ? wait_for_completion_io+0x270/0x270
[ 2331.331589]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2331.332570]  ? vfs_write+0x354/0xa70
[ 2331.333368]  __x64_sys_sendfile64+0x1d1/0x210
[ 2331.334398]  ? __ia32_sys_sendfile+0x220/0x220
[ 2331.335454]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2331.336712]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2331.337887]  do_syscall_64+0x33/0x40
[ 2331.338778]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2331.339993] RIP: 0033:0x7fb754cd3b19
[ 2331.340869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2331.345024] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2331.346663] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2331.346675] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2331.346688] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2331.346700] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2331.346713] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2331.376799] udc-core: couldn't find an available UDC or it's busy
[ 2331.376825] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:20:44 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
flock(r0, 0xe752764077ea61f1)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='fdinfo/3\x00')
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pread64(r1, &(0x7f0000000040)=""/39, 0x35, 0x0)
ioctl$PTP_ENABLE_PPS(r1, 0x40043d04, 0x1)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1040c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, r4, &(0x7f0000000040)=0xb, 0x80000001)
r6 = syz_mount_image$iso9660(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xca, 0x5, &(0x7f0000000600)=[{&(0x7f0000000180)="e80be83837be5f2e8bf97e7c97cbceac96ae8a71253a583a6dccf3fb4a1445ceb64f93d7cfccd697ee3e4b55019d497ae6bc6140c5d46ae6483285ba2421bcdfe677", 0x42, 0x4}, {&(0x7f0000000200)="3c27452cf994de04bd0af883cfec9e466f67a1e0fde6ce3453e8cd89ead4481200a7019dad015a5617f0fe7231695eaf220d723bd75b27fb420036bceb7161eaf59733f5968d20b0bc223beced7ecf40d0deaf6be99ec3bf19c39b4d90661e747b2f92", 0x63}, {&(0x7f0000000280)="02371da3814ada5d16f2ee48d7d522fbfed43a6c9ba1a8aef93fa3cf7dfd26b7e92b8a6a7ddbb82fb617750d88deec4a25c6e84227496d97589a9e5c390eefd5e4247a2ae402a178fd2a1bd83d7eaa00c32901fbe2b9e8bbe4fd12d47c5abf8e380ce57374cf93ce476daf5f49916e087237d84713d29ed35afd414b4933e250e3e46ee77f2c5f93081c4935e6ea7d08bda9ade26ba4e919da0f0b9b20b8b493c496bc52da453846bbd10b4f7af27af0fe586e4f0438cd876e45f60c", 0xbc, 0x1e7}, {&(0x7f0000000340)="3da29ea42494701c55a20eb182f85b372e20578b6883e443340d8dae5887319f361db6ba2e4ec9edf4104beeb303392191c25535adb3aaf70cc0cb6b7601d23bf128c673ccc006ba2dae594c055c79ac8abfc047266a86727bbef9f17073cb65fbae49d129d79dc3fb124f67eac7beade0d1d9de74024567cb4645eef162b57476d2e2cde79c88a12bae0e363a8ac93eb628d36fe83fc0be5fd4d164ca4b6f5d3ecc4bd41f947a89a1790520a65560d40fc51c92566c14f1a32baa917f8db64af433cc1ffe2c8b03d1176a648e5c68ed5f16a47dc8510ae62243f1ba94348e14b7b545", 0xe3, 0xb48}, {&(0x7f00000004c0)="eaded3c4b5de869fb8e5297ceb1639b0a9bdd12cc9d2828ac5c34aa3429f7b8b38be252f93a43ced9e7b2d7e9668e31c69418dbde9457948486a5b3d8c70890c0cea6ec67c49b04e0c5386f8ec931bdb524aa88933a2521b7be7fde0d94ab53fbe14d2e2f2c5747527171eaa2c218bb5630c9bbafcfb98a24d65c973b27ae463d15dc0fc2fa3e05f49885ae536ff3de5ba088e8b903dc27d37c25e2b6793d6550fd631a408d6be112c95675d2de52cd9bbd4a39bcd1ac2b7c015e3b95da90bd165ed170c370befa39d92a1418aa5908a24311903c5dc919fdf4b003bc9f193d4a6d723e14cce6b7b373a7ad8b53be48e735f0a665c", 0xf5, 0x20}], 0x28041, &(0x7f0000000680)={[{@map_acorn}, {@mode={'mode', 0x3d, 0x1}}, {@session={'session', 0x3d, 0x60}}, {@map_off}], [{@obj_role={'obj_role', 0x3d, '@#!'}}, {@smackfsdef={'smackfsdef', 0x3d, 'fdinfo/3\x00'}}]})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000440)={{0x1, 0x1, 0x18, r6, {0x1}}, './file0/../file0\x00'})
r7 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(r7, 0xffffffffffffffff, &(0x7f00000000c0)=0x2, 0x3)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0x17, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x406, r2)

[ 2331.423795] udc-core: couldn't find an available UDC or it's busy
[ 2331.425604] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:20:44 executing program 2:
mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
r2 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x2080, 0xc)
readlinkat(r2, &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)=""/206, 0xce)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$BLKSECDISCARD(r3, 0x1277, &(0x7f00000001c0)=0x8000)

[ 2331.477043] FAULT_INJECTION: forcing a failure.
[ 2331.477043] name failslab, interval 1, probability 0, space 0, times 0
[ 2331.479850] CPU: 1 PID: 14342 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2331.481322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2331.483105] Call Trace:
[ 2331.483673]  dump_stack+0x107/0x167
[ 2331.484460]  should_fail.cold+0x5/0xa
[ 2331.485278]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2331.486192]  should_failslab+0x5/0x20
[ 2331.487004]  kmem_cache_alloc_trace+0x55/0x320
[ 2331.487985]  __iomap_dio_rw+0x1ee/0x1110
18:20:44 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x2001)
ioctl$SG_IO(r0, 0x2285, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = fcntl$dupfd(r0, 0x0, r1)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec025f2400113680b0eb4d4627baf31afc6413da00240bc010c515c4", 0x48}], 0x2)

[ 2331.488860]  ? lock_release+0x680/0x680
[ 2331.489846]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2331.490851]  ? down_read+0x284/0x430
[ 2331.491645]  ? lock_chain_count+0x20/0x20
[ 2331.492528]  ? down_write+0x160/0x160
[ 2331.493355]  iomap_dio_rw+0x31/0x90
[ 2331.494142]  ext4_file_read_iter+0x2c7/0x4c0
[ 2331.495087]  generic_file_splice_read+0x455/0x6d0
[ 2331.496118]  ? pipe_to_user+0x170/0x170
[ 2331.496965]  ? _cond_resched+0x12/0x80
[ 2331.497824]  ? avc_policy_seqno+0x9/0x70
[ 2331.498695]  ? selinux_file_permission+0x92/0x520
[ 2331.499735]  ? lockdep_init_map_type+0x2c7/0x780
[ 2331.500747]  ? pipe_to_user+0x170/0x170
[ 2331.501596]  do_splice_to+0x10e/0x160
[ 2331.502432]  splice_direct_to_actor+0x2fe/0x980
[ 2331.503435]  ? pipe_to_sendpage+0x380/0x380
[ 2331.504362]  ? do_splice_to+0x160/0x160
[ 2331.505210]  ? security_file_permission+0x24e/0x570
[ 2331.506295]  do_splice_direct+0x1c4/0x290
[ 2331.507186]  ? splice_direct_to_actor+0x980/0x980
[ 2331.508213]  ? selinux_file_permission+0x92/0x520
[ 2331.509250]  ? security_file_permission+0x24e/0x570
[ 2331.510340]  do_sendfile+0x553/0x1090
[ 2331.511172]  ? do_pwritev+0x270/0x270
[ 2331.511990]  ? wait_for_completion_io+0x270/0x270
[ 2331.513023]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2331.514015]  ? vfs_write+0x354/0xa70
[ 2331.514854]  __x64_sys_sendfile64+0x1d1/0x210
[ 2331.515823]  ? __ia32_sys_sendfile+0x220/0x220
[ 2331.516812]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2331.517940]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2331.519064]  do_syscall_64+0x33/0x40
[ 2331.519868]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2331.520979] RIP: 0033:0x7f0f9f161b19
[ 2331.521783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2331.525689] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2331.527338] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2331.528872] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2331.530392] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2331.531900] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2331.533401] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2331.583231] sg_write: data in/out 33555249/24 bytes for SCSI command 0xfd-- guessing data in;
[ 2331.583231]    program syz-executor.5 not setting count and/or reply_len properly
[ 2331.601923] sg_write: data in/out 33555249/24 bytes for SCSI command 0xfd-- guessing data in;
[ 2331.601923]    program syz-executor.5 not setting count and/or reply_len properly
18:20:57 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 41)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:20:57 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 6)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:20:57 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
getpeername$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000180)=0x14)
setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000001c0)={@private0={0xfc, 0x0, '\x00', 0x1}, r4}, 0x14)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r6, 0x80089419, &(0x7f0000000200))
sendmmsg$inet6(r1, &(0x7f0000000040)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x80, 0x0}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)="10", 0xffd0}], 0x1}}, {{0x0, 0xffffffbb, &(0x7f0000000900)=[{&(0x7f00000008c0)="7f", 0x1}], 0x1}}], 0x28, 0x8080)
fsync(r3)

18:20:57 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmmsg(0xffffffffffffffff, &(0x7f0000003bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="836acc9659000000100000f8755c2d16b8d1b2a113f86dc76fc7062b2d130afb2c4f576048b47c7a9d7f6bf9c6f01323aa8451763956c9f20a127a34abccedf4dee5250b7c045581c53ab5a8a96fb80400eaf60000000000000000000000000000ce3e701e8d9a74b0a00da193b57f36aad016f7dc4b1d29e118062e", @ANYRES32=r4], 0x10}}], 0x2, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x162b1cca7a2c81d1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x8, 0x2d}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x200008c5}, 0x8004)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0)

18:20:57 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r1, 0x10, 0x0, 0x1000002)
setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file1\x00', &(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0x8, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040))
utimensat(r1, 0x0, &(0x7f0000000200), 0x0)
perf_event_open$cgroup(&(0x7f0000000240)={0x3, 0x80, 0x4, 0x2c, 0x2, 0x9, 0x0, 0x3, 0x20, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x896, 0x4, @perf_config_ext={0x961, 0x5}, 0x400c4, 0x7, 0x6, 0x7, 0x1, 0x7, 0x9, 0x0, 0x4, 0x0, 0xffffffffffffffd2}, r1, 0x7, r1, 0x8)
syz_open_dev$vcsn(0x0, 0xef03, 0x240000)
sendfile(r0, r0, &(0x7f0000000140)=0x2, 0x4)
bind$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x6, 0x0, 0x1, 0x83, 0x6, @random="a2c525e3523a"}, 0x14)
openat(0xffffffffffffffff, &(0x7f00000000c0)='\x00', 0x80000, 0x11b)

18:20:57 executing program 7:
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x24, 0x0, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @empty}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}]}, 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x4000811)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x0, 0x0)
r2 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[])
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r3, 0x40047211, &(0x7f0000000240)=0x8)
symlinkat(&(0x7f0000000000)='./file0/file1\x00', r2, &(0x7f0000000680)='./file0\x00')
renameat(r2, &(0x7f00000001c0)='./file2\x00', r2, &(0x7f0000000200)='./file0/file1\x00')
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
fstatfs(0xffffffffffffffff, &(0x7f0000000100)=""/197)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r3, {<r4=>r1}}, './file0/file1\x00'})
dup2(r0, r4)
r5 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
shmat(r5, &(0x7f0000ffe000/0x2000)=nil, 0x4000)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)=ANY=[], 0x10b, 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$full(0xffffffffffffff9c, 0x0, 0x1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

18:20:57 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x4000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:20:57 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, 0x0)

[ 2345.353277] debugfs: Directory '€˜
§°ÇÛ ”uòQÇC	!' with parent 'ieee80211' already present!
[ 2345.378857] FAULT_INJECTION: forcing a failure.
[ 2345.378857] name failslab, interval 1, probability 0, space 0, times 0
[ 2345.381206] CPU: 1 PID: 14393 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2345.382685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2345.384420] Call Trace:
[ 2345.384961]  dump_stack+0x107/0x167
[ 2345.385693]  should_fail.cold+0x5/0xa
[ 2345.386495]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2345.387352]  should_failslab+0x5/0x20
[ 2345.388122]  kmem_cache_alloc_trace+0x55/0x320
[ 2345.389048]  __iomap_dio_rw+0x1ee/0x1110
[ 2345.389882]  ? jbd2_journal_stop+0x188/0xdc0
[ 2345.390786]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2345.391708]  ? ext4_orphan_add+0x253/0x9e0
18:20:58 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, 0x0)

[ 2345.392560]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2345.393703]  ? ext4_empty_dir+0xae0/0xae0
[ 2345.394552]  ? jbd2__journal_start+0xf3/0x7e0
[ 2345.395462]  iomap_dio_rw+0x31/0x90
[ 2345.396210]  ext4_file_write_iter+0xb26/0x18e0
[ 2345.397156]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2345.398075]  ? kasan_save_stack+0x32/0x40
[ 2345.398938]  ? kasan_save_stack+0x1b/0x40
[ 2345.399787]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2345.400804]  ? iter_file_splice_write+0x16d/0xc30
[ 2345.401771]  ? direct_splice_actor+0x10f/0x170
[ 2345.402698]  ? splice_direct_to_actor+0x387/0x980
[ 2345.403675]  ? do_splice_direct+0x1c4/0x290
[ 2345.404537]  ? do_sendfile+0x553/0x1090
[ 2345.405334]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2345.406293]  do_iter_readv_writev+0x476/0x750
[ 2345.407225]  ? new_sync_write+0x660/0x660
[ 2345.408057]  ? selinux_file_permission+0x92/0x520
[ 2345.409054]  do_iter_write+0x191/0x670
[ 2345.409857]  ? trace_hardirqs_on+0x5b/0x180
[ 2345.410759]  vfs_iter_write+0x70/0xa0
[ 2345.411534]  iter_file_splice_write+0x762/0xc30
[ 2345.412485]  ? generic_splice_sendpage+0x140/0x140
[ 2345.413472]  ? avc_policy_seqno+0x9/0x70
[ 2345.414325]  ? selinux_file_permission+0x92/0x520
[ 2345.415299]  ? lockdep_init_map_type+0x2c7/0x780
[ 2345.416270]  ? generic_splice_sendpage+0x140/0x140
[ 2345.417277]  direct_splice_actor+0x10f/0x170
[ 2345.418166]  splice_direct_to_actor+0x387/0x980
[ 2345.419114]  ? pipe_to_sendpage+0x380/0x380
[ 2345.419975]  ? do_splice_to+0x160/0x160
[ 2345.420770]  ? security_file_permission+0x24e/0x570
[ 2345.421780]  do_splice_direct+0x1c4/0x290
[ 2345.422645]  ? splice_direct_to_actor+0x980/0x980
[ 2345.423608]  ? selinux_file_permission+0x92/0x520
[ 2345.424585]  ? security_file_permission+0x24e/0x570
[ 2345.425594]  do_sendfile+0x553/0x1090
[ 2345.426384]  ? do_pwritev+0x270/0x270
[ 2345.427145]  ? wait_for_completion_io+0x270/0x270
[ 2345.428124]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2345.429048]  ? vfs_write+0x354/0xa70
[ 2345.429802]  __x64_sys_sendfile64+0x1d1/0x210
[ 2345.430707]  ? __ia32_sys_sendfile+0x220/0x220
[ 2345.431632]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2345.432676]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2345.433584] udc-core: couldn't find an available UDC or it's busy
[ 2345.433730]  do_syscall_64+0x33/0x40
[ 2345.435112] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2345.435764]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2345.438128] RIP: 0033:0x7fb754cd3b19
[ 2345.438892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2345.442578] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2345.444121] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2345.445540] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2345.446987] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2345.448412] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2345.449827] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2345.451321] udc-core: couldn't find an available UDC or it's busy
[ 2345.453265] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2345.506163] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2345.508096] CPU: 0 PID: 14405 Comm: syz-executor.0 Not tainted 5.10.178 #1
[ 2345.509536] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2345.511241] Call Trace:
[ 2345.511799]  dump_stack+0x107/0x167
[ 2345.512566]  sysfs_warn_dup.cold+0x1c/0x29
[ 2345.513437]  sysfs_do_create_link_sd+0x122/0x140
[ 2345.514465]  sysfs_create_link+0x5f/0xc0
[ 2345.515311]  device_add+0x703/0x1bc0
[ 2345.516099]  ? devlink_add_symlinks+0x970/0x970
[ 2345.517063]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2345.518157]  wiphy_register+0x1da6/0x2850
[ 2345.519035]  ? wiphy_unregister+0xb90/0xb90
[ 2345.519950]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2345.521059]  ieee80211_register_hw+0x23c5/0x38b0
[ 2345.522051]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2345.523057]  ? net_generic+0xdb/0x2b0
[ 2345.523849]  ? lockdep_init_map_type+0x2c7/0x780
[ 2345.524834]  ? memset+0x20/0x50
[ 2345.525520]  ? __hrtimer_init+0x12c/0x270
[ 2345.526395]  mac80211_hwsim_new_radio+0x1ce0/0x4250
[ 2345.527445]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2345.528399]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2345.529345]  ? memcpy+0x39/0x60
[ 2345.530040]  hwsim_new_radio_nl+0x991/0x1080
[ 2345.530971]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2345.532057]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2345.533417]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2345.534776]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2345.535773]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2345.537135]  ? cap_capable+0x1d6/0x240
[ 2345.537953]  ? ns_capable+0xe2/0x110
[ 2345.538743]  genl_rcv_msg+0x33c/0x5a0
[ 2345.539538]  ? genl_get_cmd+0x480/0x480
[ 2345.540357]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2345.541420]  ? lock_release+0x680/0x680
[ 2345.542255]  ? netlink_deliver_tap+0xf4/0xcd0
[ 2345.543199]  netlink_rcv_skb+0x14b/0x430
[ 2345.544046]  ? genl_get_cmd+0x480/0x480
[ 2345.544863]  ? netlink_ack+0xab0/0xab0
[ 2345.545692]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2345.546636]  ? is_vmalloc_addr+0x7b/0xb0
[ 2345.547490]  genl_rcv+0x24/0x40
[ 2345.548175]  netlink_unicast+0x549/0x7f0
[ 2345.549016]  ? netlink_attachskb+0x870/0x870
[ 2345.549915]  ? __virt_addr_valid+0x128/0x350
[ 2345.550852]  netlink_sendmsg+0x90f/0xdf0
[ 2345.551695]  ? netlink_unicast+0x7f0/0x7f0
[ 2345.552583]  ? netlink_unicast+0x7f0/0x7f0
[ 2345.553460]  sock_sendmsg+0x154/0x190
[ 2345.554248]  ____sys_sendmsg+0x70d/0x870
[ 2345.555086]  ? kernel_sendmsg+0x50/0x50
[ 2345.555899]  ? do_recvmmsg+0x6d0/0x6d0
[ 2345.556711]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2345.557828]  ___sys_sendmsg+0xf3/0x170
[ 2345.558645]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2345.559599]  ? lock_downgrade+0x6d0/0x6d0
[ 2345.560455]  ? finish_task_switch+0x126/0x5d0
[ 2345.561376]  ? lock_downgrade+0x6d0/0x6d0
[ 2345.562254]  ? __fget_files+0x296/0x4c0
[ 2345.563092]  ? __fget_light+0xea/0x290
[ 2345.563899]  __sys_sendmsg+0xe5/0x1b0
[ 2345.564686]  ? __sys_sendmsg_sock+0x40/0x40
[ 2345.565570]  ? io_schedule_timeout+0x140/0x140
[ 2345.566541]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2345.567618]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2345.568680]  ? trace_hardirqs_on+0x5b/0x180
[ 2345.569568]  do_syscall_64+0x33/0x40
[ 2345.570346]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2345.571402] RIP: 0033:0x7fba7e6d7b19
[ 2345.572164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2345.575937] RSP: 002b:00007fba7bc2c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2345.577513] RAX: ffffffffffffffda RBX: 00007fba7e7eb020 RCX: 00007fba7e6d7b19
[ 2345.578977] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2345.580447] RBP: 00007fba7e731f6d R08: 0000000000000000 R09: 0000000000000000
[ 2345.581908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2345.583402] R13: 00007ffecd180e5f R14: 00007fba7bc2c300 R15: 0000000000022000
[ 2345.598024] tmpfs: Unknown parameter './file0'
18:20:58 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @private=0xa010102}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@private2, @in=@empty, 0x4e22, 0x8, 0x4e23, 0x40, 0xa, 0x0, 0x0, 0x3b, 0x0, 0xffffffffffffffff}, {0xff, 0x8, 0x94, 0x7, 0x6, 0x7, 0x1ff, 0x2}, {0xfffffffffffff001, 0x3, 0x80000001, 0x4}, 0x6, 0x6e6bbb, 0x0, 0x1, 0x0, 0x1}, {{@in=@multicast1, 0x4d3, 0x3c}, 0xa, @in6=@mcast1, 0x3504, 0x6, 0x0, 0x8, 0x6, 0x7fffffff, 0x5}}, 0xe8)
syz_mount_image$iso9660(&(0x7f0000000800), &(0x7f0000000840)='./file0\x00', 0x0, 0x1, &(0x7f0000000940)=[{&(0x7f0000000880)="579f", 0x2, 0x7fffffff}], 0x21810ac, &(0x7f0000000180)=ANY=[@ANYBLOB="c08c8ed6366cc0d7e0398cd1f2de8fca00"])

18:20:58 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x5000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2345.617439] FAULT_INJECTION: forcing a failure.
[ 2345.617439] name failslab, interval 1, probability 0, space 0, times 0
[ 2345.619784] CPU: 0 PID: 14395 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2345.621203] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2345.622930] Call Trace:
[ 2345.623487]  dump_stack+0x107/0x167
[ 2345.624245]  should_fail.cold+0x5/0xa
[ 2345.625034]  ? create_object.isra.0+0x3a/0xa20
[ 2345.625976]  should_failslab+0x5/0x20
[ 2345.626768]  kmem_cache_alloc+0x5b/0x310
[ 2345.627605]  ? io_schedule_timeout+0x140/0x140
[ 2345.628563]  create_object.isra.0+0x3a/0xa20
[ 2345.629487]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2345.630573]  kmem_cache_alloc_trace+0x151/0x320
[ 2345.631553]  __iomap_dio_rw+0x1ee/0x1110
[ 2345.632409]  ? lock_release+0x680/0x680
[ 2345.633251]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2345.634217]  ? down_read+0x284/0x430
[ 2345.635012]  ? lock_chain_count+0x20/0x20
[ 2345.635886]  ? down_write+0x160/0x160
[ 2345.636698]  iomap_dio_rw+0x31/0x90
[ 2345.637460]  ext4_file_read_iter+0x2c7/0x4c0
[ 2345.638403]  generic_file_splice_read+0x455/0x6d0
[ 2345.639412]  ? pipe_to_user+0x170/0x170
[ 2345.640242]  ? _cond_resched+0x12/0x80
[ 2345.641064]  ? avc_policy_seqno+0x9/0x70
[ 2345.641908]  ? selinux_file_permission+0x92/0x520
[ 2345.642944]  ? lockdep_init_map_type+0x2c7/0x780
[ 2345.643933]  ? pipe_to_user+0x170/0x170
[ 2345.644767]  do_splice_to+0x10e/0x160
[ 2345.645558]  splice_direct_to_actor+0x2fe/0x980
[ 2345.646540]  ? pipe_to_sendpage+0x380/0x380
[ 2345.647438]  ? do_splice_to+0x160/0x160
[ 2345.648263]  ? security_file_permission+0x24e/0x570
[ 2345.649304]  do_splice_direct+0x1c4/0x290
[ 2345.650163]  ? splice_direct_to_actor+0x980/0x980
[ 2345.651171]  ? selinux_file_permission+0x92/0x520
[ 2345.652182]  ? security_file_permission+0x24e/0x570
[ 2345.653243]  do_sendfile+0x553/0x1090
[ 2345.654051]  ? do_pwritev+0x270/0x270
[ 2345.654869]  ? wait_for_completion_io+0x270/0x270
[ 2345.655880]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2345.656856]  ? vfs_write+0x354/0xa70
[ 2345.657647]  __x64_sys_sendfile64+0x1d1/0x210
[ 2345.658591]  ? __ia32_sys_sendfile+0x220/0x220
[ 2345.659541]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2345.660622]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2345.661688]  do_syscall_64+0x33/0x40
[ 2345.662479]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2345.663532] RIP: 0033:0x7f0f9f161b19
[ 2345.664302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2345.668081] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2345.669648] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2345.671128] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2345.672593] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2345.674054] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2345.675525] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:20:58 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, 0x0)

18:20:58 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 42)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2345.834277] FAULT_INJECTION: forcing a failure.
[ 2345.834277] name failslab, interval 1, probability 0, space 0, times 0
[ 2345.836659] CPU: 1 PID: 14420 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2345.838058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2345.839744] Call Trace:
[ 2345.840293]  dump_stack+0x107/0x167
[ 2345.841190]  should_fail.cold+0x5/0xa
[ 2345.841959]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2345.842820]  should_failslab+0x5/0x20
18:20:58 executing program 5:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
inotify_init1(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x80, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000001480)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="00000000000000002e2f66696c653100690c232d3a623bdddd34052113aec54a1c044bc6b0516e96af298f748943ef1a5c60e315090b88f07d183c7b43bec1c1ae66f04e58bb13222a08c031637eaebc4cabccc2e97ac39ef82a22fdde98e400a950e0be0ce2d112cd1fad5f20faf94202b29b251d17410589f54fd6f195c4646bebfbd13237d7641a7766f4f3da00"/154])
ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x80000000)
creat(&(0x7f00000000c0)='./file0\x00', 0x3c0)
ioctl$FS_IOC_ENABLE_VERITY(r1, 0x40806685, &(0x7f00000011c0)={0x1, 0x2, 0x1000, 0x63, &(0x7f0000000140)="f71d528633914aad3b153b26453f9611b7258cd3cb4a33925d010de48d66f42c5f5e62624250fdf02ac7ab5e6a4acda2c2ff9da86a67310d7ac5e8a809ad36ec384bb1e97e9ee9d3b0014366290ad18cda8b42380f20c991f578ea0bcea00c2d20c0df", 0x1000, 0x0, &(0x7f00000001c0)="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"})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x8000000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f0000001240)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/diskstats\x00', 0x0, 0x0)
sendfile(r2, r5, &(0x7f0000000000)=0x9, 0x200)

[ 2345.843692]  kmem_cache_alloc_trace+0x55/0x320
[ 2345.844768]  __iomap_dio_rw+0x1ee/0x1110
[ 2345.845599]  ? jbd2_journal_stop+0x188/0xdc0
[ 2345.846518]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2345.847433]  ? ext4_orphan_add+0x253/0x9e0
[ 2345.848316]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2345.849304]  ? ext4_empty_dir+0xae0/0xae0
[ 2345.850155]  ? jbd2__journal_start+0xf3/0x7e0
[ 2345.851070]  iomap_dio_rw+0x31/0x90
[ 2345.851794]  ext4_file_write_iter+0xb26/0x18e0
[ 2345.852722]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2345.853631]  ? kasan_save_stack+0x32/0x40
[ 2345.854463]  ? kasan_save_stack+0x1b/0x40
[ 2345.855287]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2345.856300]  ? iter_file_splice_write+0x16d/0xc30
[ 2345.857255]  ? direct_splice_actor+0x10f/0x170
[ 2345.858162]  ? splice_direct_to_actor+0x387/0x980
[ 2345.859129]  ? do_splice_direct+0x1c4/0x290
[ 2345.859987]  ? do_sendfile+0x553/0x1090
[ 2345.860777]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2345.861714]  do_iter_readv_writev+0x476/0x750
[ 2345.862625]  ? new_sync_write+0x660/0x660
[ 2345.863455]  ? selinux_file_permission+0x92/0x520
[ 2345.864438]  do_iter_write+0x191/0x670
[ 2345.865227]  ? trace_hardirqs_on+0x5b/0x180
[ 2345.866097]  vfs_iter_write+0x70/0xa0
[ 2345.866872]  iter_file_splice_write+0x762/0xc30
[ 2345.867820]  ? generic_splice_sendpage+0x140/0x140
[ 2345.868811]  ? avc_policy_seqno+0x9/0x70
[ 2345.869621]  ? selinux_file_permission+0x92/0x520
[ 2345.870601]  ? lockdep_init_map_type+0x2c7/0x780
[ 2345.871559]  ? generic_splice_sendpage+0x140/0x140
[ 2345.872538]  direct_splice_actor+0x10f/0x170
[ 2345.873429]  splice_direct_to_actor+0x387/0x980
[ 2345.874384]  ? pipe_to_sendpage+0x380/0x380
[ 2345.875249]  ? do_splice_to+0x160/0x160
[ 2345.876048]  ? security_file_permission+0x24e/0x570
18:20:58 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x6000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2345.877068]  do_splice_direct+0x1c4/0x290
[ 2345.878049]  ? splice_direct_to_actor+0x980/0x980
[ 2345.879044]  ? selinux_file_permission+0x92/0x520
[ 2345.880014]  ? security_file_permission+0x24e/0x570
[ 2345.881041]  do_sendfile+0x553/0x1090
[ 2345.881807]  ? do_pwritev+0x270/0x270
[ 2345.882602]  ? wait_for_completion_io+0x270/0x270
[ 2345.883567]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2345.884508]  ? vfs_write+0x354/0xa70
[ 2345.885269]  __x64_sys_sendfile64+0x1d1/0x210
[ 2345.886177]  ? __ia32_sys_sendfile+0x220/0x220
[ 2345.887113]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2345.888180]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2345.889226]  do_syscall_64+0x33/0x40
[ 2345.889986]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2345.891052] RIP: 0033:0x7fb754cd3b19
[ 2345.891806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2345.895537] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2345.897083] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2345.898560] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2345.900018] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2345.901468] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2345.902925] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:20:58 executing program 7:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x5, "77004a6efdff00"})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$KDGKBENT(0xffffffffffffffff, 0x4b46, &(0x7f0000000040)={0x38, 0x3f, 0x2})
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1cf})
r2 = socket$inet(0x2, 0xa, 0x0)
move_pages(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, @out_args}, './file0\x00'})
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, 0x0)
syz_open_dev$hiddev(&(0x7f0000000140), 0xb5, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r2, r0, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$INCFS_IOC_PERMIT_FILL(0xffffffffffffffff, 0x40046721, &(0x7f0000000100)={r6})

18:20:58 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x5, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x7, 0x2, 0x0, 0x9, 0x0, 0x361, 0x155e67d4db9b8c0, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xfff, 0x0, @perf_config_ext={0x1, 0x4}, 0x2000, 0x7, 0x2, 0x0, 0x5, 0x401, 0x6a1, 0x0, 0x7, 0x0, 0x2}, 0x0, 0xc, r0, 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x14900, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
r3 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)="ff4344303031", 0x6, 0x8800}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000", 0x41, 0xb800}], 0x0, &(0x7f0000011700)=ANY=[])
close(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x2)
r4 = syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000280)='./file1\x00', 0x3, 0x6, &(0x7f0000000680)=[{&(0x7f00000002c0)="d58a5683fc4b973c73fa00d34e558245b3e9b6657961cfd86474b5a6fe49e1ee4210d3f77ebbd93b630ec88c1364d71f94c4b7b7682d5655b70575d88c9e99e006cd29b0aacf61440df6cc48e3d74ea53e2c95842b6916a21608b9d5fee139954200eea32398e8a744b7edaec095874dd19586f7c4f31fdc11", 0x79, 0x7fff}, {&(0x7f0000000340)="26290cca340b4f82a297211ee3e65db75ab941af0cb53f4e673ec199af395530cc4bcb94d2b0a4870318044ff4ecc7edbe986a7a7c153f4c4da650f81eae73e1dbfd49a6105a4310b82e675e031d369771865eafde569d5e11", 0x59, 0x3f}, {&(0x7f00000003c0)="ce156e70c00f764167b9317aef7a34e67d981b694df0ac0bfd774b046f8023b03da76d25a225daf7ba2eec8cf7cbd19b996adfb75c0390be8feefbc62f47594382d56a764d4578bbad7c8d90a625e9166b78a2e075618594b5e9db84de6efdcfad0be8948750b0f6", 0x68, 0x1}, {&(0x7f0000000440)="9dce18eb87f51889496f0fdd6069e23aa45c4970e7bad1aec08379a2f73baef9dc8cc27f1e129b6d133aefcbc883d34ac3045f98abcae1ce3d355bb5144a19e4614d7d92840e14fe99b554f34829f6d21086ec881f78dec5fcd85f8cb7867b915fbdae9c8b637b827528c94cfa21f20b7e1a566b9ae7dc5f30bf00837ab82d70722e25e41a015ead0051a2f00d622486f1d529bcb8e1163f502386b11ef67683c57850248273ba146ad84211b25ef7e19e2730b5bccf3c4ca82195df4bed8ed66218b05c4a4efd111985334e771c07", 0xcf, 0x9}, {&(0x7f0000000540)="78786c20fe0e8876f9cc1e07f90d0d35c9e6f552e21a9fc7799db10215b41c7a5cf2152e0179e748476054b2ff315533bdc1f150920f762a75adcbe965545e81f5ebd79ef15591492048b3062c21d55b7078ad0a6567e4070fa6779866fee22cda278077120e5f8d3b8ab3f05ab54fb13fb95adccf3bbbe273ca8f31afc29f7b", 0x80, 0x81}, {&(0x7f00000005c0)="7bfe7a9c8f9f2832b3c4dd12f5ceb8751fb4f8a556e1425129430bb0171e8fa8e9cf723a337c375ab0b2fd1e5710d3de577c3d6230349ca4f5cf1f35894ec4bcddc7a1e1defc06485401ead2bf064fc3c24e594a00c90976d218bacc2fd8a01d904b19a446f5091ce39ca14043532cc98c2009280b9f5b062b78788850850e8d8dd8dd0a523df091cde04e4dbc80e848619b337569ce1dab0a4eae845c0919fb601b4a1d7f020d2767ef8d7905e8676bf89efc1f24d47b0eb47c203c1e0742", 0xbf, 0x8001}], 0x40000, &(0x7f0000000740)={[{@sb={'sb', 0x3d, 0x7fff}}, {@orlov}, {@stripe={'stripe', 0x3d, 0x7}}, {@data_journal}, {@max_batch_time={'max_batch_time', 0x3d, 0xeb6e}}, {@data_journal}, {@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@quota}], [{@context={'context', 0x3d, 'unconfined_u'}}]})
r5 = openat(r4, &(0x7f0000000800)='./file0\x00', 0x400, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
r8 = getegid()
setresgid(r8, r8, 0x0)
fchown(r3, r7, r8)
r9 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
sendfile(r9, r6, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r5, 0xc018937a, &(0x7f0000000840)={{0x1, 0x1, 0x18, r6, {0x10000}}, './file1\x00'})
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r3, 0xc0406619, &(0x7f0000000140)={@desc={0x1, 0x0, @desc4}})
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f00000000c0)={0x1, 0xf30b, 0x3})

18:20:58 executing program 0:
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x408c5333, &(0x7f00000002c0)={0x8, 0x2, 0x1, 'queue1\x00', 0x3})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
bind$bt_sco(r0, &(0x7f0000000280)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00'})
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c0000001a00210c00000000000000000a0000973722883b28f3bf00060000000000000008000300", @ANYRES64], 0x2c}}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000380)={0x0, r1, 0xfffffffffffff801, 0xc227, 0x7, 0x2})
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r5 = socket$netlink(0x10, 0x3, 0x7)
copy_file_range(0xffffffffffffffff, &(0x7f0000000180)=0x1000, r5, &(0x7f00000003c0)=0x8001, 0x101, 0x0)
fallocate(r4, 0x0, 0x0, 0x8000)
pipe(&(0x7f0000000240))
copy_file_range(0xffffffffffffffff, &(0x7f0000000080), 0xffffffffffffffff, &(0x7f00000001c0)=0x10000, 0x9, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})

[ 2346.234402] device veth0_vlan entered promiscuous mode
[ 2360.969545] FAULT_INJECTION: forcing a failure.
[ 2360.969545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2360.971278] CPU: 1 PID: 14447 Comm: syz-executor.6 Not tainted 5.10.178 #1
[ 2360.972027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2360.972913] Call Trace:
[ 2360.973209]  dump_stack+0x107/0x167
[ 2360.973629]  should_fail.cold+0x5/0xa
[ 2360.974056]  _copy_to_user+0x2e/0x180
[ 2360.974487]  simple_read_from_buffer+0xcc/0x160
[ 2360.975010]  proc_fail_nth_read+0x198/0x230
[ 2360.975488]  ? proc_sessionid_read+0x230/0x230
[ 2360.976015]  ? security_file_permission+0x24e/0x570
[ 2360.976554]  ? perf_trace_initcall_start+0x101/0x380
[ 2360.977119]  ? proc_sessionid_read+0x230/0x230
[ 2360.977662]  vfs_read+0x228/0x580
[ 2360.978041]  ksys_read+0x12d/0x260
[ 2360.978436]  ? vfs_write+0xa70/0xa70
[ 2360.978875]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2360.979461]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2360.980029]  do_syscall_64+0x33/0x40
[ 2360.980450]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2360.981030] RIP: 0033:0x7f3fc0cca69c
[ 2360.981443] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2360.983464] RSP: 002b:00007f3fbe28d170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2360.984295] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3fc0cca69c
[ 2360.985076] RDX: 000000000000000f RSI: 00007f3fbe28d1e0 RDI: 0000000000000004
[ 2360.985855] RBP: 00007f3fbe28d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2360.986647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
18:21:13 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 7)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:21:13 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = getpgid(0x0)
move_pages(r5, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = getpid()
getpriority(0x0, r6)
r7 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x7, 0x8, 0x3, 0x1, 0x0, 0x40, 0x22000, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x122, 0x0, @perf_bp={&(0x7f00000000c0), 0xd}, 0x8004, 0x1f, 0x7, 0x6, 0x3, 0x1, 0x6, 0x0, 0x5, 0x0, 0x54}, r6, 0xe, r4, 0x8)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fcntl$lock(r7, 0x25, &(0x7f0000000340)={0x1, 0x4, 0x26, 0x2, r6})
r8 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000240))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000280)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x5, 0x6000, @fd=r8, 0x0, 0x0, 0x0, 0xc, 0x1, {0x0, r9}}, 0x81)

18:21:13 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x7000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:21:13 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0)) (fail_nth: 1)

18:21:13 executing program 2:
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
r2 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='tasks\x00', 0x2, 0x0)
sendfile(r0, r2, &(0x7f00000000c0)=0xe5a7, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r0, 0x5386, &(0x7f0000000100))

[ 2360.987426] R13: 00007ffd0c9a578f R14: 00007f3fbe28d300 R15: 0000000000022000
18:21:13 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 43)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:21:13 executing program 0:
r0 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000340)="a407c3efc1edfab7037255db440500824001767ee5522ccc6b4a4c358e2f414cae835269010f99ea715085731fa8ad0600", 0xfffff, r0)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01, <r2=>0xee00}}, './file1\x00'})
keyctl$chown(0x4, r0, r1, r2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r4, 0x0, r3, 0x0, 0x10001, 0x0)
lseek(r3, 0x0, 0x4)

18:21:13 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="800100001a0001000000000000000000ac1e000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e113a", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="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"], 0x180}}, 0x0)

[ 2361.031835] netlink: 144 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2361.047909] FAULT_INJECTION: forcing a failure.
[ 2361.047909] name failslab, interval 1, probability 0, space 0, times 0
[ 2361.050500] CPU: 0 PID: 14459 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2361.051973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2361.053707] Call Trace:
[ 2361.054270]  dump_stack+0x107/0x167
[ 2361.055058]  should_fail.cold+0x5/0xa
[ 2361.055867]  ? create_object.isra.0+0x3a/0xa20
[ 2361.056832]  should_failslab+0x5/0x20
[ 2361.057638]  kmem_cache_alloc+0x5b/0x310
[ 2361.058505]  ? ext4_dirty_inode+0x107/0x130
[ 2361.059432]  create_object.isra.0+0x3a/0xa20
[ 2361.059452]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2361.059478]  kmem_cache_alloc+0x159/0x310
[ 2361.059510]  jbd2__journal_start+0x190/0x7e0
[ 2361.059541]  __ext4_journal_start_sb+0x214/0x390
[ 2361.063861]  ext4_file_write_iter+0xdbf/0x18e0
[ 2361.064837]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2361.065782]  ? kasan_save_stack+0x32/0x40
[ 2361.066658]  ? kasan_save_stack+0x1b/0x40
[ 2361.067533]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2361.068551]  ? iter_file_splice_write+0x16d/0xc30
[ 2361.069589]  ? direct_splice_actor+0x10f/0x170
[ 2361.070510]  ? splice_direct_to_actor+0x387/0x980
[ 2361.071525]  ? do_splice_direct+0x1c4/0x290
[ 2361.072429]  ? do_sendfile+0x553/0x1090
[ 2361.073263]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2361.074264]  do_iter_readv_writev+0x476/0x750
[ 2361.075225]  ? new_sync_write+0x660/0x660
[ 2361.076087]  ? selinux_file_permission+0x92/0x520
[ 2361.077126]  do_iter_write+0x191/0x670
[ 2361.077956]  ? trace_hardirqs_on+0x5b/0x180
[ 2361.078879]  vfs_iter_write+0x70/0xa0
[ 2361.079681]  iter_file_splice_write+0x762/0xc30
[ 2361.080682]  ? generic_splice_sendpage+0x140/0x140
[ 2361.081719]  ? avc_policy_seqno+0x9/0x70
[ 2361.082585]  ? selinux_file_permission+0x92/0x520
[ 2361.083606]  ? lockdep_init_map_type+0x2c7/0x780
[ 2361.084603]  ? generic_splice_sendpage+0x140/0x140
[ 2361.085634]  direct_splice_actor+0x10f/0x170
[ 2361.086572]  splice_direct_to_actor+0x387/0x980
[ 2361.087555]  ? pipe_to_sendpage+0x380/0x380
[ 2361.088474]  ? do_splice_to+0x160/0x160
[ 2361.089309]  ? security_file_permission+0x24e/0x570
[ 2361.090373]  do_splice_direct+0x1c4/0x290
[ 2361.091269]  ? splice_direct_to_actor+0x980/0x980
[ 2361.092284]  ? selinux_file_permission+0x92/0x520
[ 2361.093303]  ? security_file_permission+0x24e/0x570
[ 2361.094369]  do_sendfile+0x553/0x1090
[ 2361.095197]  ? do_pwritev+0x270/0x270
[ 2361.096000]  ? wait_for_completion_io+0x270/0x270
[ 2361.097012]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2361.097981]  ? vfs_write+0x354/0xa70
[ 2361.098779]  __x64_sys_sendfile64+0x1d1/0x210
[ 2361.099719]  ? __ia32_sys_sendfile+0x220/0x220
[ 2361.100678]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2361.101774]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2361.102870]  do_syscall_64+0x33/0x40
[ 2361.103655]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2361.104723] RIP: 0033:0x7fb754cd3b19
[ 2361.105503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2361.109329] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2361.110929] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2361.112421] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2361.113909] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2361.115403] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2361.116888] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:21:13 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))

18:21:13 executing program 7:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}, {&(0x7f0000011500)='\x00\x00\x00\x00\x00\b\x00'/29, 0x1d, 0x400}], 0x0, &(0x7f0000013c00)=ANY=[@ANYBLOB='\x00'])

18:21:13 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x7ffd)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x8}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f00000000c0)={0x6000200c})
r3 = syz_io_uring_setup(0x4c4f, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r6, 0x0, &(0x7f0000000200), 0x0, 0x40000, 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r7, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r7, 0x0, &(0x7f0000000100)=@IORING_OP_TIMEOUT_REMOVE, 0x8)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f00000001c0))
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup3(r8, r0, 0x0)

[ 2361.184370] udc-core: couldn't find an available UDC or it's busy
[ 2361.185172] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2361.192214] udc-core: couldn't find an available UDC or it's busy
[ 2361.192955] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2361.218671] EXT4-fs (loop7): #blocks per group too big: 16384
[ 2361.219767] FAULT_INJECTION: forcing a failure.
[ 2361.219767] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2361.221356] CPU: 1 PID: 14467 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2361.222128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2361.223079] Call Trace:
[ 2361.223391]  dump_stack+0x107/0x167
[ 2361.223811]  should_fail.cold+0x5/0xa
[ 2361.224269]  __alloc_pages_nodemask+0x182/0x600
[ 2361.224798]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2361.225459]  ? mark_held_locks+0x9e/0xe0
[ 2361.225905]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2361.226490]  alloc_pages_current+0x187/0x280
[ 2361.226982]  push_pipe+0x2b5/0x6d0
[ 2361.227381]  iov_iter_zero+0x418/0xef0
[ 2361.227834]  ? ext4_iomap_begin+0x1a0/0x700
[ 2361.228324]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2361.228925]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2361.229459]  ? lock_chain_count+0x20/0x20
[ 2361.229910]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2361.230373]  ? iomap_dio_rw+0x31/0x90
[ 2361.230790]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2361.231297]  iomap_dio_actor+0x40f/0x560
[ 2361.231741]  iomap_apply+0x289/0x810
[ 2361.232149]  ? iomap_dio_rw+0x90/0x90
[ 2361.232572]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2361.233219]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2361.233800]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2361.234401]  ? trace_hardirqs_on+0x5b/0x180
[ 2361.234887]  ? __iomap_dio_rw+0x5c1/0x1110
[ 2361.235353]  __iomap_dio_rw+0x6cd/0x1110
[ 2361.235785]  ? iomap_dio_rw+0x90/0x90
[ 2361.236215]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2361.236716]  ? down_read+0x284/0x430
[ 2361.237131]  ? down_write+0x160/0x160
[ 2361.237541]  iomap_dio_rw+0x31/0x90
[ 2361.237936]  ext4_file_read_iter+0x2c7/0x4c0
[ 2361.238414]  generic_file_splice_read+0x455/0x6d0
[ 2361.238957]  ? pipe_to_user+0x170/0x170
[ 2361.239400]  ? _cond_resched+0x12/0x80
[ 2361.239825]  ? avc_policy_seqno+0x9/0x70
[ 2361.240262]  ? selinux_file_permission+0x92/0x520
[ 2361.240793]  ? lockdep_init_map_type+0x2c7/0x780
[ 2361.241315]  ? pipe_to_user+0x170/0x170
[ 2361.241745]  do_splice_to+0x10e/0x160
[ 2361.242164]  splice_direct_to_actor+0x2fe/0x980
[ 2361.242685]  ? pipe_to_sendpage+0x380/0x380
[ 2361.243157]  ? do_splice_to+0x160/0x160
[ 2361.243595]  ? security_file_permission+0x24e/0x570
[ 2361.244156]  do_splice_direct+0x1c4/0x290
[ 2361.244607]  ? splice_direct_to_actor+0x980/0x980
[ 2361.245121]  ? selinux_file_permission+0x92/0x520
[ 2361.245653]  ? security_file_permission+0x24e/0x570
[ 2361.246213]  do_sendfile+0x553/0x1090
[ 2361.246639]  ? do_pwritev+0x270/0x270
[ 2361.247062]  ? wait_for_completion_io+0x270/0x270
[ 2361.247586]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2361.248107]  ? vfs_write+0x354/0xa70
[ 2361.248516]  __x64_sys_sendfile64+0x1d1/0x210
[ 2361.249007]  ? __ia32_sys_sendfile+0x220/0x220
[ 2361.249505]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2361.250073]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2361.250663]  do_syscall_64+0x33/0x40
[ 2361.251072]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2361.251646] RIP: 0033:0x7f0f9f161b19
[ 2361.252055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2361.254082] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2361.254935] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2361.255728] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2361.256534] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2361.257338] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2361.258144] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:21:13 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x2, &(0x7f00000000c0))

18:21:13 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6, 0x3, {0x0, 0xaa}}]}, 0x1c}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000001fc0)={'syztnl1\x00', &(0x7f0000001f40)={'ip6_vti0\x00', <r1=>0x0, 0x2f, 0xe2, 0x1, 0x3, 0x1, @private0, @local, 0x700, 0x1, 0x8, 0xffff}})
recvmsg$unix(0xffffffffffffffff, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002180)=[{&(0x7f0000000700)=""/185, 0xb9}, {&(0x7f0000000640)=""/158, 0x9e}], 0x2, &(0x7f00000021c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r2=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {<r3=>0x0, 0x0, <r4=>0x0}}}, @cred={{0x1c, 0x1, 0x2, {<r5=>0x0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r6=>0x0}}}], 0xfffffffffffffd7f}, 0x0)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r10 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f0000000040)=0xb, 0x80000001)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r11=>0x0})
setresuid(0x0, r11, 0x0)
r12 = socket$inet6_tcp(0xa, 0x1, 0x0)
r13 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r14 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r14, r13, &(0x7f0000000040)=0xb, 0x80000001)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r15=>0xffffffffffffffff})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000180)="d916b51493c9415d8aa81d9d122253866147bbb3650f9d6bab2605651927889878888661c5b5d30d2413b168a1ff4875890b8526c9e443c1c670f2933993c2885f3303c39f23fa89b363d2f88e58c21de612eac31853639db5777f1081f0eaaf680d0c7eb3537e211632", 0x6a}, {&(0x7f0000000200)="42a0fafe6d4592c073f8663077cef26e2aec34eea6dcc4a65ae8adcbe5dd4cd57b6b1141c0c719a9d316b6c0020a0e303fb82f9c5a906368049128aa9190a53c196ff384c072a83092d024aef6bb9f5572749c638db12c1edab879bb3a612038c72254341efdf269387542b27f0a75145f2077289ff7260bd320641b03801006202465ec4c6aed9bf053d27e67691f", 0x8f}, {&(0x7f00000002c0)="b487af52434db71c2383181c7d8a67d7f1f7ae431dfc6f2db5978c4f1983c59557d230a48f2ff9f52dc187a4416376b826bb54e5741cb63a7d249cf46445603baa9330b8705b9d4d29435a870e", 0x4d}, {&(0x7f0000000340)="dd7a5e630db97f86d3326f372842bfa1955f5b8eb6286b64e9de004859b8b67b60ad69a55ead781baf759d58f40467d49b17a851433b053b72c03e2429c30c4c181c5a7f369d9afd82326a139c83091d12f1b8854aee30e87f53a9595c76922c8e1dfca4899f8751ef8aa773fbfb98cfe832c91da6ba585c09c829812b383e2c51700e13b27088f8c18cbde07f5d9c5ca034e0b8c9330969905f8509cf9eec8537310e41ea641aa0c9632845c5bbe5c9cb96048506a69926734bb7d044382966f95114d7c72f5b262b198654", 0xcc}], 0x4, &(0x7f0000000500)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r8, r0, r10, r0]}}, @cred={{0x1c, 0x1, 0x2, {r5, r2, r4}}}, @cred={{0x1c, 0x1, 0x2, {r3, r11, r6}}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}, @rights={{0x38, 0x1, 0x1, [r0, r0, r12, r0, r0, r13, r0, 0xffffffffffffffff, r15, r0]}}], 0xc8, 0x4044000}, 0x4048090)
sendmsg$nl_xfrm(r0, &(0x7f0000002500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000024c0)={&(0x7f00000022c0)=@delpolicy={0x1d0, 0x14, 0x300, 0x70bd26, 0x25dfdbfb, {{@in=@empty, @in=@broadcast, 0x4e21, 0x394, 0x4e21, 0x0, 0x2, 0x80, 0xa0, 0xff, r1, r2}, 0x6e6bb4, 0x2}, [@etimer_thresh={0x8, 0xc, 0x2}, @lifetime_val={0x24, 0x9, {0x5, 0x8000, 0x6c, 0x400}}, @algo_auth_trunc={0x5c, 0x14, {{'rmd256\x00'}, 0x80, 0x100, "651a11b569a16a482f122cf3e3f9eadf"}}, @coaddr={0x14, 0xe, @in6=@private2}, @sa={0xe4, 0x6, {{@in=@broadcast, @in=@multicast2, 0x4e21, 0x1, 0x4e23, 0x0, 0x2, 0x0, 0x0, 0x2b, 0x0, r7}, {@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4d4}, @in=@private=0xa010101, {0x8, 0x80000001, 0x1ff, 0x100008001, 0xfff, 0x10000, 0x80000000, 0x6}, {0x2, 0x10000, 0x4, 0x80}, {0x9, 0x32}, 0x70bd28, 0x3503, 0x2, 0x4, 0x1, 0x58}}]}, 0x1d0}, 0x1, 0x0, 0x0, 0x20004890}, 0x76c377527841c401)

18:21:13 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 44)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:21:13 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xe000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2361.318278] FAULT_INJECTION: forcing a failure.
[ 2361.318278] name failslab, interval 1, probability 0, space 0, times 0
[ 2361.319702] CPU: 1 PID: 14486 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2361.320446] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2361.321115] EXT4-fs (loop7): #blocks per group too big: 16384
[ 2361.321362] Call Trace:
[ 2361.321387]  dump_stack+0x107/0x167
[ 2361.323249]  should_fail.cold+0x5/0xa
[ 2361.323685]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2361.324148]  should_failslab+0x5/0x20
[ 2361.324575]  kmem_cache_alloc_trace+0x55/0x320
[ 2361.325072]  __iomap_dio_rw+0x1ee/0x1110
[ 2361.325522]  ? jbd2_journal_stop+0x188/0xdc0
[ 2361.326003]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2361.326511]  ? ext4_orphan_add+0x253/0x9e0
[ 2361.326969]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2361.327513]  ? ext4_empty_dir+0xae0/0xae0
[ 2361.327957]  ? jbd2__journal_start+0xf3/0x7e0
[ 2361.328461]  iomap_dio_rw+0x31/0x90
[ 2361.328855]  ext4_file_write_iter+0xb26/0x18e0
[ 2361.329456]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2361.329953]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2361.330566]  do_iter_readv_writev+0x476/0x750
[ 2361.331051]  ? new_sync_write+0x660/0x660
[ 2361.331507]  ? selinux_file_permission+0x92/0x520
[ 2361.332139]  do_iter_write+0x191/0x670
[ 2361.332573]  ? trace_hardirqs_on+0x5b/0x180
[ 2361.333048]  vfs_iter_write+0x70/0xa0
[ 2361.333464]  iter_file_splice_write+0x762/0xc30
[ 2361.333990]  ? generic_splice_sendpage+0x140/0x140
[ 2361.334526]  ? avc_policy_seqno+0x9/0x70
[ 2361.334976]  ? selinux_file_permission+0x92/0x520
[ 2361.335500]  ? lockdep_init_map_type+0x2c7/0x780
[ 2361.336010]  ? generic_splice_sendpage+0x140/0x140
[ 2361.336539]  direct_splice_actor+0x10f/0x170
[ 2361.337046]  splice_direct_to_actor+0x387/0x980
[ 2361.337659]  ? pipe_to_sendpage+0x380/0x380
[ 2361.338199]  ? do_splice_to+0x160/0x160
[ 2361.338724]  ? security_file_permission+0x24e/0x570
[ 2361.339322]  do_splice_direct+0x1c4/0x290
[ 2361.339769]  ? splice_direct_to_actor+0x980/0x980
[ 2361.340387]  ? selinux_file_permission+0x92/0x520
[ 2361.340913]  ? security_file_permission+0x24e/0x570
[ 2361.340931]  do_sendfile+0x553/0x1090
[ 2361.340950]  ? do_pwritev+0x270/0x270
[ 2361.340963]  ? wait_for_completion_io+0x270/0x270
[ 2361.340976]  ? rcu_read_lock_any_held+0x75/0xa0
18:21:13 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 45)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2361.340985]  ? vfs_write+0x354/0xa70
[ 2361.341000]  __x64_sys_sendfile64+0x1d1/0x210
[ 2361.341012]  ? __ia32_sys_sendfile+0x220/0x220
[ 2361.341026]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2361.341038]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2361.341052]  do_syscall_64+0x33/0x40
[ 2361.341063]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2361.341071] RIP: 0033:0x7fb754cd3b19
[ 2361.341083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2361.341089] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2361.341101] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2361.341107] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2361.341114] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2361.341121] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2361.341127] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2361.416271] FAULT_INJECTION: forcing a failure.
[ 2361.416271] name failslab, interval 1, probability 0, space 0, times 0
[ 2361.416284] CPU: 1 PID: 14496 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2361.416291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2361.416295] Call Trace:
[ 2361.416309]  dump_stack+0x107/0x167
[ 2361.416323]  should_fail.cold+0x5/0xa
[ 2361.416337]  ? ext4_find_extent+0xa3d/0xd30
[ 2361.416349]  should_failslab+0x5/0x20
[ 2361.416359]  __kmalloc+0x72/0x390
[ 2361.416375]  ext4_find_extent+0xa3d/0xd30
[ 2361.416394]  ext4_ext_map_blocks+0x1c8/0x5850
[ 2361.416415]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2361.416425]  ? SOFTIRQ_verbose+0x10/0x10
[ 2361.416435]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2361.416444]  ? SOFTIRQ_verbose+0x10/0x10
[ 2361.416460]  ? ext4_ext_release+0x10/0x10
[ 2361.416473]  ? ext4_map_blocks+0x5e0/0x1970
[ 2361.416486]  ? lock_release+0x680/0x680
[ 2361.416497]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2361.416507]  ? lock_downgrade+0x6d0/0x6d0
[ 2361.416526]  ? down_write+0xe0/0x160
[ 2361.416536]  ? down_write_killable+0x180/0x180
[ 2361.416554]  ext4_map_blocks+0x652/0x1970
[ 2361.416567]  ? kmem_cache_alloc+0x2a6/0x310
[ 2361.416578]  ? __kernel_text_address+0x9/0x40
[ 2361.416589]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2361.416603]  ? jbd2__journal_start+0xf3/0x7e0
[ 2361.416618]  ? __ext4_journal_start_sb+0x214/0x390
[ 2361.416628]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2361.416642]  ext4_iomap_begin+0x3ad/0x700
[ 2361.416660]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2361.416669]  ? kasan_save_stack+0x1b/0x40
[ 2361.416680]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2361.416695]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2361.416704]  ? splice_direct_to_actor+0x387/0x980
[ 2361.416712]  ? do_splice_direct+0x1c4/0x290
[ 2361.416722]  ? do_sendfile+0x553/0x1090
[ 2361.416732]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2361.416741]  ? do_syscall_64+0x33/0x40
[ 2361.416751]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2361.416765]  iomap_apply+0x164/0x810
[ 2361.416776]  ? iomap_dio_rw+0x90/0x90
[ 2361.416788]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2361.416806]  ? mark_held_locks+0x9e/0xe0
[ 2361.416827]  ? filemap_check_errors+0xa5/0x150
[ 2361.416845]  __iomap_dio_rw+0x6cd/0x1110
[ 2361.416854]  ? iomap_dio_rw+0x90/0x90
[ 2361.416875]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2361.416886]  ? ext4_orphan_add+0x253/0x9e0
[ 2361.416898]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2361.416910]  ? ext4_empty_dir+0xae0/0xae0
[ 2361.416919]  ? jbd2__journal_start+0xf3/0x7e0
[ 2361.416936]  iomap_dio_rw+0x31/0x90
[ 2361.416947]  ext4_file_write_iter+0xb26/0x18e0
[ 2361.416967]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2361.416976]  ? kasan_save_stack+0x32/0x40
[ 2361.416988]  ? kasan_save_stack+0x1b/0x40
[ 2361.416998]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2361.417006]  ? iter_file_splice_write+0x16d/0xc30
[ 2361.417015]  ? direct_splice_actor+0x10f/0x170
[ 2361.417023]  ? splice_direct_to_actor+0x387/0x980
[ 2361.417031]  ? do_splice_direct+0x1c4/0x290
[ 2361.417039]  ? do_sendfile+0x553/0x1090
[ 2361.417049]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2361.417064]  do_iter_readv_writev+0x476/0x750
[ 2361.417077]  ? new_sync_write+0x660/0x660
[ 2361.417086]  ? selinux_file_permission+0x92/0x520
[ 2361.417109]  do_iter_write+0x191/0x670
[ 2361.417124]  ? trace_hardirqs_on+0x5b/0x180
[ 2361.417139]  vfs_iter_write+0x70/0xa0
[ 2361.417151]  iter_file_splice_write+0x762/0xc30
[ 2361.417172]  ? generic_splice_sendpage+0x140/0x140
[ 2361.417187]  ? avc_policy_seqno+0x9/0x70
[ 2361.417197]  ? selinux_file_permission+0x92/0x520
[ 2361.417211]  ? lockdep_init_map_type+0x2c7/0x780
[ 2361.417224]  ? generic_splice_sendpage+0x140/0x140
[ 2361.417235]  direct_splice_actor+0x10f/0x170
[ 2361.417248]  splice_direct_to_actor+0x387/0x980
[ 2361.417262]  ? pipe_to_sendpage+0x380/0x380
[ 2361.417274]  ? do_splice_to+0x160/0x160
[ 2361.417285]  ? security_file_permission+0x24e/0x570
[ 2361.417302]  do_splice_direct+0x1c4/0x290
[ 2361.417312]  ? splice_direct_to_actor+0x980/0x980
[ 2361.417320]  ? selinux_file_permission+0x92/0x520
[ 2361.417335]  ? security_file_permission+0x24e/0x570
[ 2361.417353]  do_sendfile+0x553/0x1090
[ 2361.417371]  ? do_pwritev+0x270/0x270
[ 2361.417382]  ? wait_for_completion_io+0x270/0x270
[ 2361.417395]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2361.417403]  ? vfs_write+0x354/0xa70
[ 2361.417418]  __x64_sys_sendfile64+0x1d1/0x210
[ 2361.417430]  ? __ia32_sys_sendfile+0x220/0x220
[ 2361.417443]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2361.417454]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2361.417467]  do_syscall_64+0x33/0x40
[ 2361.417478]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2361.417486] RIP: 0033:0x7fb754cd3b19
[ 2361.417498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2361.417504] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2361.417516] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2361.417522] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2361.417528] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2361.417534] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2361.417541] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:21:28 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 8)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:21:28 executing program 2:
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0x0, 0xfffffffc, 0x0, 0x8, 0x95})
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x50)
recvmsg$unix(r0, &(0x7f0000001600)={&(0x7f00000011c0), 0x6e, &(0x7f00000014c0)=[{&(0x7f0000001240)=""/218, 0xda}, {&(0x7f0000001340)=""/213, 0xd5}, {&(0x7f0000001440)=""/17, 0x11}, {&(0x7f0000001480)=""/64, 0x40}], 0x4, &(0x7f0000001500)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r1=>0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [<r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r10=>0xffffffffffffffff]}}], 0xf8}, 0x10000)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001640)={{{@in=@local, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in6=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000001740)=0xe8)
r12 = syz_open_dev$hidraw(&(0x7f0000001780), 0x1, 0x8200)
sendmmsg$unix(r0, &(0x7f0000001840)=[{{&(0x7f0000000080)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000001180)=[{&(0x7f0000000100)="2adb77c8506ae9972afffd214dfeffa3f34d9725e01d1337525f2fed0fcb550d176cadd3fda53edef15ba40123a200ed5d429826f6778b72c386b56107d70019979dbe3b98", 0x45}, {&(0x7f0000000180)="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", 0x1000}], 0x2, &(0x7f00000017c0)=[@cred={{0x1c, 0x1, 0x2, {r2, r11}}}, @rights={{0x24, 0x1, 0x1, [r12, r0, r0, r0, r0]}}], 0x48, 0x400d4}}], 0x1, 0x20040810)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000001880)={0x0, 0x0, {}, {0x0, @usage, <r13=>0x0}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_BALANCE_V2(r9, 0xc4009420, &(0x7f0000001c80)={0x10, 0x3, {0x0, @struct={0xd585, 0x2}, r13, 0xffff, 0x8, 0x2000000000, 0x1, 0x7fffffff, 0x20, @usage=0x5, 0x30, 0x2, [0x80000001, 0x2, 0x20, 0x8, 0xffffffffffffff4d, 0x1a5]}, {0xffffffffffffff01, @usage=0x1, 0x0, 0x7, 0x8, 0x0, 0x76201cb, 0x6, 0x91, @usage=0xffffffffffffff4b, 0x8, 0x2, [0x4, 0x6, 0xfffffffffffffffb, 0x5, 0x1, 0x81]}, {0x6, @usage=0x80000000, 0x0, 0x111, 0x3, 0x5, 0x5, 0x4c, 0x70, @struct={0x57b, 0x1}, 0xfffffff8, 0x6, [0x2, 0x4, 0x0, 0x401, 0x1]}, {0x156, 0xd0eb, 0x7}})
fsetxattr$trusted_overlay_redirect(r7, &(0x7f0000002080), &(0x7f00000020c0)='./file0\x00', 0x8, 0x1)
r14 = perf_event_open$cgroup(&(0x7f0000002100)={0x0, 0x80, 0xde, 0x8, 0x79, 0xe5, 0x0, 0xffff, 0x10000, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x1f, 0x46}, 0x12930, 0x35e, 0x9, 0x7, 0x10000, 0x10001, 0x1f, 0x0, 0x2, 0x0, 0x401}, 0xffffffffffffffff, 0xa, r5, 0xd)
readv(r14, &(0x7f0000002200)=[{&(0x7f0000002180)=""/109, 0x6d}], 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000002240))
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r10, 0xc0189379, &(0x7f0000002440)={{0x1, 0x1, 0x18, <r15=>r1}, './file0\x00'})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000002480)={<r16=>0x0})
r17 = socket$inet(0x2, 0x4, 0x80000001)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r15, 0x40182103, &(0x7f0000002500)={r16, 0x3, r17, 0x3, 0x80000})
r18 = dup(r3)
fsync(r18)
dup2(r6, r8)
fchdir(r4)

18:21:28 executing program 0:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'})
signalfd4(r0, &(0x7f0000000000)={[0x1]}, 0x8, 0x0)
clone3(&(0x7f0000000200)={0x44004100, 0x0, &(0x7f00000000c0), &(0x7f0000000100), {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

18:21:28 executing program 7:
pipe2(&(0x7f0000000480), 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x9e66e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='net/netfilter\x00')
r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001b40))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc11d, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendmsg$inet6(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000240)=0x9, 0x4)
r3 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r3, 0x0, 0x24000084)
recvmmsg(r2, &(0x7f0000000000), 0x5ac, 0x0, 0x0)
ppoll(&(0x7f0000001740)=[{r0}], 0x1, &(0x7f0000001780)={0x0, 0x989680}, 0x0, 0x0)

18:21:28 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x11000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:21:28 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 46)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:21:28 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r4, 0x0, r3, 0x0, 0x10001, 0x0)
r5 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000400)={{0x1, 0x1, 0x18, r5, {0x6, 0xd2}}, './file1\x00'})
fallocate(r2, 0x0, 0x2000000, 0x8000)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x81a4, 0x4, &(0x7f00000002c0)=[{&(0x7f0000000140)="a483add7f23429a4dad6651ac23914190490e386d4d06e9980c97c01abd52c1c812cf6d81b0a534bedf8549ac26bbd6fc311a8d4c62bca3f3a5c92d91ea44759872c19a4bfa6d9d5d6e260576b6528ae8b911c3d03348fefbaf105686f62801e7845d07a90fc91bbc2a50263a8e969768dcf4d5b9479972b565173e0de96", 0x7e}, {&(0x7f00000001c0)="1351932516ca5dcf76b79a", 0xb, 0x4}, {&(0x7f0000000200)="2750ff84c4a71cd6f5b80c895d005c8bc8b4f05ab79c7559dfd25684b9b992ba8f", 0x21, 0x4}, {&(0x7f0000000240)="40dafbde7733cc2c110b840ffcafb1691e4c5b605462fa4a6c7d480e957a1b7d4e8cd1deea4d9457dc84aafdefd30eff9848d60c9a3c8432c32b42bfe003107b5c0b5fb576189bd806936f9f2809f2", 0x4f, 0xfffffffffffffc00}], 0xa90010, &(0x7f0000000340)=ANY=[@ANYBLOB='rgdir,nnonumtail=1,uni_xlate=1,shortname=lower,utf8=1,context=staff_u,smackfstransmute=%^\'#,fowner<', @ANYRESDEC=0x0, @ANYBLOB=',measure,fscontext=root,\x00'])
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x5})
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r6})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r8, 0x942e, 0x0)

18:21:28 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b2f, &(0x7f00000000c0))

[ 2375.639961] FAULT_INJECTION: forcing a failure.
[ 2375.639961] name failslab, interval 1, probability 0, space 0, times 0
[ 2375.642428] CPU: 0 PID: 14517 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2375.643876] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2375.645572] Call Trace:
[ 2375.646120]  dump_stack+0x107/0x167
[ 2375.646880]  should_fail.cold+0x5/0xa
[ 2375.647662]  ? create_object.isra.0+0x3a/0xa20
[ 2375.648595]  should_failslab+0x5/0x20
[ 2375.649373]  kmem_cache_alloc+0x5b/0x310
[ 2375.650204]  ? lock_chain_count+0x20/0x20
[ 2375.651067]  create_object.isra.0+0x3a/0xa20
[ 2375.651967]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2375.653008]  __kmalloc+0x16e/0x390
[ 2375.653745]  ext4_find_extent+0xa3d/0xd30
[ 2375.654611]  ext4_ext_map_blocks+0x1c8/0x5850
[ 2375.655568]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2375.656644]  ? SOFTIRQ_verbose+0x10/0x10
[ 2375.657529]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2375.658731]  ? SOFTIRQ_verbose+0x10/0x10
[ 2375.659671]  ? ext4_ext_release+0x10/0x10
[ 2375.660639]  ? ext4_map_blocks+0x5e0/0x1970
[ 2375.661636]  ? lock_release+0x680/0x680
[ 2375.662553]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2375.663640]  ? lock_downgrade+0x6d0/0x6d0
[ 2375.664603]  ? down_write+0xe0/0x160
[ 2375.665453]  ? down_write_killable+0x180/0x180
[ 2375.666528]  ext4_map_blocks+0x652/0x1970
[ 2375.667507]  ? kmem_cache_alloc+0x2a6/0x310
[ 2375.668491]  ? __kernel_text_address+0x9/0x40
[ 2375.669517]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2375.670546]  ? jbd2__journal_start+0xf3/0x7e0
[ 2375.671586]  ? __ext4_journal_start_sb+0x214/0x390
[ 2375.672711]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2375.673864]  ext4_iomap_begin+0x3ad/0x700
[ 2375.674844]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2375.675974]  ? kasan_save_stack+0x1b/0x40
[ 2375.676924]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2375.678023]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2375.679491]  ? splice_direct_to_actor+0x387/0x980
[ 2375.680601]  ? do_splice_direct+0x1c4/0x290
[ 2375.681596]  ? do_sendfile+0x553/0x1090
[ 2375.681617]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2375.681635]  ? do_syscall_64+0x33/0x40
[ 2375.681656]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2375.681684]  iomap_apply+0x164/0x810
[ 2375.681706]  ? iomap_dio_rw+0x90/0x90
[ 2375.681732]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2375.681768]  ? mark_held_locks+0x9e/0xe0
[ 2375.681810]  ? filemap_check_errors+0xa5/0x150
[ 2375.681839]  __iomap_dio_rw+0x6cd/0x1110
[ 2375.681858]  ? iomap_dio_rw+0x90/0x90
[ 2375.681902]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2375.681924]  ? ext4_orphan_add+0x253/0x9e0
[ 2375.681948]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2375.681973]  ? ext4_empty_dir+0xae0/0xae0
[ 2375.681993]  ? jbd2__journal_start+0xf3/0x7e0
[ 2375.682027]  iomap_dio_rw+0x31/0x90
[ 2375.682052]  ext4_file_write_iter+0xb26/0x18e0
[ 2375.682093]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2375.682112]  ? kasan_save_stack+0x32/0x40
[ 2375.682131]  ? kasan_save_stack+0x1b/0x40
[ 2375.682151]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2375.682169]  ? iter_file_splice_write+0x16d/0xc30
[ 2375.682186]  ? direct_splice_actor+0x10f/0x170
[ 2375.682203]  ? splice_direct_to_actor+0x387/0x980
[ 2375.682219]  ? do_splice_direct+0x1c4/0x290
[ 2375.682237]  ? do_sendfile+0x553/0x1090
[ 2375.682257]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2375.682290]  do_iter_readv_writev+0x476/0x750
[ 2375.682316]  ? new_sync_write+0x660/0x660
[ 2375.682335]  ? selinux_file_permission+0x92/0x520
[ 2375.682383]  do_iter_write+0x191/0x670
[ 2375.682412]  ? trace_hardirqs_on+0x5b/0x180
[ 2375.682444]  vfs_iter_write+0x70/0xa0
[ 2375.682468]  iter_file_splice_write+0x762/0xc30
[ 2375.682512]  ? generic_splice_sendpage+0x140/0x140
[ 2375.682543]  ? avc_policy_seqno+0x9/0x70
[ 2375.682561]  ? selinux_file_permission+0x92/0x520
[ 2375.682591]  ? lockdep_init_map_type+0x2c7/0x780
[ 2375.682619]  ? generic_splice_sendpage+0x140/0x140
[ 2375.682651]  direct_splice_actor+0x10f/0x170
[ 2375.682677]  splice_direct_to_actor+0x387/0x980
[ 2375.682706]  ? pipe_to_sendpage+0x380/0x380
[ 2375.682732]  ? do_splice_to+0x160/0x160
[ 2375.682753]  ? security_file_permission+0x24e/0x570
[ 2375.682789]  do_splice_direct+0x1c4/0x290
[ 2375.682811]  ? splice_direct_to_actor+0x980/0x980
[ 2375.682828]  ? selinux_file_permission+0x92/0x520
[ 2375.682857]  ? security_file_permission+0x24e/0x570
[ 2375.682894]  do_sendfile+0x553/0x1090
[ 2375.682932]  ? do_pwritev+0x270/0x270
[ 2375.682955]  ? wait_for_completion_io+0x270/0x270
[ 2375.682980]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2375.682998]  ? vfs_write+0x354/0xa70
[ 2375.683029]  __x64_sys_sendfile64+0x1d1/0x210
[ 2375.683056]  ? __ia32_sys_sendfile+0x220/0x220
[ 2375.683084]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2375.683108]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2375.683135]  do_syscall_64+0x33/0x40
[ 2375.683158]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2375.683172] RIP: 0033:0x7fb754cd3b19
[ 2375.683196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2375.683208] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2375.683232] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2375.683245] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2375.683258] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2375.683271] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2375.683284] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2375.747618] udc-core: couldn't find an available UDC or it's busy
[ 2375.747641] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2375.764567] udc-core: couldn't find an available UDC or it's busy
[ 2375.764591] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2375.777598] FAULT_INJECTION: forcing a failure.
[ 2375.777598] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2375.777673] CPU: 0 PID: 14526 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2375.777686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2375.777693] Call Trace:
[ 2375.777720]  dump_stack+0x107/0x167
[ 2375.777748]  should_fail.cold+0x5/0xa
[ 2375.777782]  __alloc_pages_nodemask+0x182/0x600
[ 2375.777815]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2375.777835]  ? lock_acquire+0x197/0x470
[ 2375.777855]  ? find_held_lock+0x2c/0x110
[ 2375.777886]  ? jbd2_transaction_committed+0x111/0x150
[ 2375.777908]  ? lock_downgrade+0x6d0/0x6d0
[ 2375.777927]  ? ext4_map_blocks+0x967/0x1970
[ 2375.777963]  alloc_pages_current+0x187/0x280
[ 2375.777984]  ? __kernel_text_address+0x9/0x40
[ 2375.778013]  push_pipe+0x2b5/0x6d0
[ 2375.778052]  iov_iter_zero+0x418/0xef0
[ 2375.778082]  ? ext4_iomap_begin+0x1a0/0x700
[ 2375.778113]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2375.778142]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2375.778162]  ? kasan_save_stack+0x1b/0x40
[ 2375.778184]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2375.778203]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2375.778224]  ? iomap_dio_rw+0x31/0x90
[ 2375.778243]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2375.778272]  iomap_dio_actor+0x40f/0x560
[ 2375.778304]  iomap_apply+0x289/0x810
[ 2375.778328]  ? iomap_dio_rw+0x90/0x90
[ 2375.778354]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2375.778392]  ? mark_held_locks+0x9e/0xe0
[ 2375.778436]  ? filemap_check_errors+0xa5/0x150
[ 2375.778465]  __iomap_dio_rw+0x6cd/0x1110
[ 2375.778484]  ? iomap_dio_rw+0x90/0x90
[ 2375.778530]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2375.778565]  ? down_read+0x284/0x430
[ 2375.778584]  ? lock_chain_count+0x20/0x20
[ 2375.778605]  ? down_write+0x160/0x160
[ 2375.778635]  iomap_dio_rw+0x31/0x90
[ 2375.778692]  ext4_file_read_iter+0x2c7/0x4c0
[ 2375.778719]  generic_file_splice_read+0x455/0x6d0
[ 2375.778743]  ? pipe_to_user+0x170/0x170
[ 2375.778760]  ? _cond_resched+0x12/0x80
[ 2375.778785]  ? avc_policy_seqno+0x9/0x70
[ 2375.778805]  ? selinux_file_permission+0x92/0x520
[ 2375.778837]  ? lockdep_init_map_type+0x2c7/0x780
[ 2375.778863]  ? pipe_to_user+0x170/0x170
[ 2375.778886]  do_splice_to+0x10e/0x160
[ 2375.778913]  splice_direct_to_actor+0x2fe/0x980
[ 2375.778942]  ? pipe_to_sendpage+0x380/0x380
[ 2375.778969]  ? do_splice_to+0x160/0x160
[ 2375.778991]  ? security_file_permission+0x24e/0x570
[ 2375.779027]  do_splice_direct+0x1c4/0x290
[ 2375.779049]  ? splice_direct_to_actor+0x980/0x980
[ 2375.779067]  ? selinux_file_permission+0x92/0x520
[ 2375.779099]  ? security_file_permission+0x24e/0x570
[ 2375.779136]  do_sendfile+0x553/0x1090
[ 2375.779175]  ? do_pwritev+0x270/0x270
[ 2375.779199]  ? wait_for_completion_io+0x270/0x270
[ 2375.779224]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2375.779238]  ? vfs_write+0x354/0xa70
[ 2375.779259]  __x64_sys_sendfile64+0x1d1/0x210
[ 2375.779275]  ? __ia32_sys_sendfile+0x220/0x220
[ 2375.779292]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2375.779308]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2375.779325]  do_syscall_64+0x33/0x40
[ 2375.779340]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2375.779350] RIP: 0033:0x7f0f9f161b19
[ 2375.779365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2375.779373] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2375.779389] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2375.779398] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2375.779406] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2375.779415] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2375.779424] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:21:43 executing program 0:
ftruncate(0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000001c0)={0xcf, 0x3, 0x3, 0x1, 0x80000000})
syz_open_procfs(0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, @perf_config_ext, 0x4000, 0x9, 0x400, 0x1}, 0x0, 0x8, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800, 0x100}, 0x0, 0x8, 0x3, 0x0, 0x7, 0x4}, 0x0, 0xefffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xfffff000)
syz_open_dev$hiddev(0x0, 0x3, 0x200200)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00'})
dup2(0xffffffffffffffff, 0xffffffffffffffff)
preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f00000011c0)=""/121, 0x79}], 0x1, 0x0, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0)
dup2(0xffffffffffffffff, r1)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f00000000c0), &(0x7f0000000300)=@v3={0x3000000, [{0x800, 0x1}, {0x800004, 0xd96c}]}, 0x18, 0x0)

18:21:43 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 9)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:21:43 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x5, &(0x7f0000000700))
io_submit(0x0, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
r0 = openat$vcsu(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = syz_mount_image$nfs4(&(0x7f0000000240), &(0x7f0000000280)='./cgroup.cpu/cpuset.cpus\x00', 0x1, 0x4, &(0x7f0000000480)=[{&(0x7f00000002c0)="83c9ec50", 0x4, 0x8}, {&(0x7f0000000300)="c521ea4abfd232d6a067cd182ad052f392fce523d3554e0fb4e8f34bc9febe93446438e55ff8d2afd7cc44a56ace92e732161bc88976ee0d49f8a6fb2448a6868711c20f3fd268e4224d9fbe00fa9f4fa48b1e8cb01bf4e3a9f1b3c011e3eca9d5ad00dc723b07faa0fd6a024714b75a0e647c636fdafbdf6be82d07da92a6da68c04b18", 0x84, 0x2}, {&(0x7f0000000900)="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", 0x1000, 0x100000000}, {&(0x7f00000003c0)="39835815ddbc54abfa547a1b55c92365f10c70034e93017e5048", 0x1a, 0x1}], 0x800000, &(0x7f0000000400)={[{'/proc/sys/net/ipv4/tcp_wmem\x00'}], [{@uid_lt}]})
execveat(r1, &(0x7f0000000500)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f0000000780)=[&(0x7f0000000540)='/proc/sys/net/ipv4/tcp_wmem\x00', &(0x7f0000000580)='}%\x00', &(0x7f00000005c0)='{{(/,^)-,/$s\xcb*\x00', &(0x7f0000000600)='/proc/sys/net/ipv4/tcp_wmem\x00', &(0x7f0000000640)='&),\x00', &(0x7f0000000680)='nl80211\x00', &(0x7f00000006c0)='-\':\x96\x83*\x00', &(0x7f0000000740)='nl80211\x00'], &(0x7f0000000840)=[&(0x7f00000007c0)='/proc/sys/net/ipv4/tcp_wmem\x00', &(0x7f0000000800)='/proc/sys/net/ipv4/tcp_wmem\x00'], 0x800)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r2, &(0x7f0000000040)='\x00', 0x1}])
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000880)={{0x1, 0x1, 0x18, <r8=>r5, {0x1}}, './cgroup.cpu/cpuset.cpus\x00'})
ioctl$FS_IOC_SETVERSION(r8, 0x40087602, &(0x7f0000001900)=0x7)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
io_submit(r3, 0x2, &(0x7f0000000200)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x6, r4, &(0x7f0000000080)="c2400a5f4fe76c53e635c1efd691afb5c8fc03747b5fb8ea", 0x18, 0x3, 0x0, 0x0, r0}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x3, 0x38c, r6, &(0x7f0000000100)="fa3828a2c8e5ef4649e43a3a319555b3953ae0ff3f396e4075f832ce65f4f6d892b84d2fdcc2868ad03bda550abae587dfd7dc41fcc4863ddf2e278d4675657f6d5cdc381772ca85f43892aec421669fd36dbfa599d70151ed52fb5bc53e2d23c49a2a7a72201d4626b8895e475518da0337407730eab7d8b2f667b657a4c8349aaa58048b34c5fa1236ca23f34797650447ca6d7e0834f945bf3f90ac58957f7e856a1b694ecc2b1915e6924d4995bdabe62b12fce4fc7f6174", 0xba, 0x1000, 0x0, 0x1}])

18:21:43 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 47)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:21:43 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001e00210e000000000000a48263649f20"], 0x14}}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x4, &(0x7f0000000080), 0x4)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000180)={0x0, 0x0, 0xffffffffffffffff, 0x81})
getsockname$netlink(r2, &(0x7f0000000100), &(0x7f0000000180)=0xc)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$setstatus(r3, 0x4, 0x2000)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2})
bind$inet6(r3, &(0x7f0000000200)={0xa, 0x4e21, 0x6, @mcast2, 0xdc6}, 0x1c)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendmsg$inet6(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001)
r4 = fork()
setsockopt$inet6_tcp_int(r3, 0x6, 0x19, &(0x7f0000000140)=0x400, 0x4)
ptrace$setopts(0x4200, r4, 0x9, 0x0)
ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f0000000040)=r4)
accept$packet(r2, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000500)=0x14)

18:21:43 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b30, &(0x7f00000000c0))

18:21:43 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x40000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:21:43 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
sendmmsg$inet(r2, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r4], 0x38}}], 0x1, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x58, 0x0, 0x321, 0x70bd26, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x2b}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0xc881}, 0x40081)
openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000000fffffdfd020100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000040800"/256])
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="309cb3a5340000001c00b16300000000000000000a000000050000009e00000014000100fc0200000000000000000000000000002ec8b1a814d17ddb9e93c94156cf041d6524d57302ff33564ab3ef4c7238dbefc86a506a1aa666bddad0df98ee6b277a6bed44c1a73f9d2a29fb160c5d61bfa2bea6450e991b9c55c78482aef3aaf0c5a90500000027a9599cf579e684ea5c9fd83805e21e45642ef5ff320907535f6c5a41a3039915e45f4ce28cf795221a77323ada3ee7b9684c4c35095409acf7086ec3fca5d6de14f2de49141e602d60350c347e90de3dc3d88c1919cf87e4fc4bb0df0e"], 0x30}}, 0x0)
fcntl$dupfd(r6, 0x406, 0xffffffffffffffff)
unshare(0x48020200)

[ 2390.990392] FAULT_INJECTION: forcing a failure.
[ 2390.990392] name failslab, interval 1, probability 0, space 0, times 0
[ 2390.991717] CPU: 1 PID: 14539 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2390.992465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2390.993288] Call Trace:
[ 2390.993561]  dump_stack+0x107/0x167
[ 2390.993927]  should_fail.cold+0x5/0xa
[ 2390.994311]  ? ext4_mb_new_blocks+0x64d/0x4570
[ 2390.994796]  should_failslab+0x5/0x20
[ 2390.995192]  kmem_cache_alloc+0x5b/0x310
[ 2390.995631]  ext4_mb_new_blocks+0x64d/0x4570
[ 2390.996085]  ? trace_hardirqs_on+0x5b/0x180
[ 2390.996550]  ? ext4_cache_extents+0x148/0x2d0
[ 2390.997000]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2390.997568]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2390.998058]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2390.998552]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2390.999091]  ? SOFTIRQ_verbose+0x10/0x10
[ 2390.999521]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2391.000079]  ? SOFTIRQ_verbose+0x10/0x10
[ 2391.000518]  ? ext4_ext_release+0x10/0x10
[ 2391.000961]  ? ext4_map_blocks+0x5e0/0x1970
[ 2391.001437]  ? lock_release+0x680/0x680
[ 2391.001862]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2391.002376]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.002829]  ? down_write_killable+0x180/0x180
[ 2391.003366]  ext4_map_blocks+0x652/0x1970
[ 2391.003813]  ? kmem_cache_alloc+0x2a6/0x310
[ 2391.004285]  ? __kernel_text_address+0x9/0x40
[ 2391.004769]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2391.005261]  ? jbd2__journal_start+0xf3/0x7e0
[ 2391.005747]  ? __ext4_journal_start_sb+0x214/0x390
[ 2391.006278]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2391.006812]  ext4_iomap_begin+0x3ad/0x700
[ 2391.007282]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2391.007809]  ? kasan_save_stack+0x1b/0x40
[ 2391.008255]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2391.008772]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2391.009456]  ? splice_direct_to_actor+0x387/0x980
[ 2391.009970]  ? do_splice_direct+0x1c4/0x290
[ 2391.010438]  ? do_sendfile+0x553/0x1090
[ 2391.010871]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2391.011384]  ? do_syscall_64+0x33/0x40
[ 2391.011805]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2391.012389]  iomap_apply+0x164/0x810
[ 2391.012797]  ? iomap_dio_rw+0x90/0x90
[ 2391.013207]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2391.013846]  ? mark_held_locks+0x9e/0xe0
[ 2391.014295]  ? filemap_check_errors+0xa5/0x150
[ 2391.014791]  __iomap_dio_rw+0x6cd/0x1110
[ 2391.015230]  ? iomap_dio_rw+0x90/0x90
[ 2391.015643]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2391.016160]  ? ext4_orphan_add+0x253/0x9e0
[ 2391.016611]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2391.017147]  ? ext4_empty_dir+0xae0/0xae0
[ 2391.017592]  ? jbd2__journal_start+0xf3/0x7e0
[ 2391.018089]  iomap_dio_rw+0x31/0x90
[ 2391.018479]  ext4_file_write_iter+0xb26/0x18e0
[ 2391.018992]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2391.019490]  ? kasan_save_stack+0x32/0x40
[ 2391.019932]  ? kasan_save_stack+0x1b/0x40
[ 2391.020378]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2391.020925]  ? iter_file_splice_write+0x16d/0xc30
[ 2391.021441]  ? direct_splice_actor+0x10f/0x170
[ 2391.021931]  ? splice_direct_to_actor+0x387/0x980
[ 2391.022452]  ? do_splice_direct+0x1c4/0x290
[ 2391.022925]  ? do_sendfile+0x553/0x1090
[ 2391.023359]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2391.023865]  do_iter_readv_writev+0x476/0x750
[ 2391.024348]  ? new_sync_write+0x660/0x660
[ 2391.024794]  ? selinux_file_permission+0x92/0x520
[ 2391.025326]  do_iter_write+0x191/0x670
[ 2391.025752]  ? trace_hardirqs_on+0x5b/0x180
[ 2391.026219]  vfs_iter_write+0x70/0xa0
[ 2391.026633]  iter_file_splice_write+0x762/0xc30
[ 2391.027144]  ? generic_splice_sendpage+0x140/0x140
[ 2391.027703]  ? avc_policy_seqno+0x9/0x70
[ 2391.028141]  ? selinux_file_permission+0x92/0x520
[ 2391.028664]  ? lockdep_init_map_type+0x2c7/0x780
[ 2391.029194]  ? generic_splice_sendpage+0x140/0x140
[ 2391.029715]  direct_splice_actor+0x10f/0x170
[ 2391.030195]  splice_direct_to_actor+0x387/0x980
[ 2391.030706]  ? pipe_to_sendpage+0x380/0x380
[ 2391.031202]  ? do_splice_to+0x160/0x160
[ 2391.031646]  ? security_file_permission+0x24e/0x570
[ 2391.032192]  do_splice_direct+0x1c4/0x290
[ 2391.032640]  ? splice_direct_to_actor+0x980/0x980
[ 2391.033161]  ? selinux_file_permission+0x92/0x520
[ 2391.033685]  ? security_file_permission+0x24e/0x570
[ 2391.034227]  do_sendfile+0x553/0x1090
[ 2391.034651]  ? do_pwritev+0x270/0x270
[ 2391.035072]  ? wait_for_completion_io+0x270/0x270
[ 2391.035597]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2391.036099]  ? vfs_write+0x354/0xa70
[ 2391.036509]  __x64_sys_sendfile64+0x1d1/0x210
[ 2391.036996]  ? __ia32_sys_sendfile+0x220/0x220
[ 2391.037490]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2391.038053]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.038612]  do_syscall_64+0x33/0x40
[ 2391.039031]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2391.039584] RIP: 0033:0x7fb754cd3b19
[ 2391.039984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.041976] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.042806] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2391.043587] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2391.044356] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.045126] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2391.045896] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2391.080550] udc-core: couldn't find an available UDC or it's busy
[ 2391.081688] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:21:43 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b31, &(0x7f00000000c0))

18:21:43 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x44000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2391.095417] udc-core: couldn't find an available UDC or it's busy
[ 2391.096757] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2391.129594] FAULT_INJECTION: forcing a failure.
[ 2391.129594] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2391.131840] CPU: 1 PID: 14556 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2391.133091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2391.134597] Call Trace:
[ 2391.135089]  dump_stack+0x107/0x167
[ 2391.135749]  should_fail.cold+0x5/0xa
[ 2391.136449]  __alloc_pages_nodemask+0x182/0x600
[ 2391.137291]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2391.138367]  ? lock_acquire+0x197/0x470
[ 2391.139100]  ? find_held_lock+0x2c/0x110
[ 2391.139767]  ? jbd2_transaction_committed+0x111/0x150
[ 2391.140582]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.141221]  ? ext4_map_blocks+0x967/0x1970
[ 2391.141890]  alloc_pages_current+0x187/0x280
[ 2391.142562]  ? __kernel_text_address+0x9/0x40
[ 2391.143274]  push_pipe+0x2b5/0x6d0
[ 2391.143824]  iov_iter_zero+0x418/0xef0
[ 2391.144411]  ? ext4_iomap_begin+0x1a0/0x700
[ 2391.145059]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2391.145883]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2391.146620]  ? kasan_save_stack+0x1b/0x40
[ 2391.147246]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2391.147997]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2391.148621]  ? iomap_dio_rw+0x31/0x90
[ 2391.149194]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2391.149879]  iomap_dio_actor+0x40f/0x560
[ 2391.150501]  iomap_apply+0x289/0x810
[ 2391.151077]  ? iomap_dio_rw+0x90/0x90
[ 2391.151653]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2391.152521]  ? mark_held_locks+0x9e/0xe0
[ 2391.153147]  ? filemap_check_errors+0xa5/0x150
[ 2391.153847]  __iomap_dio_rw+0x6cd/0x1110
[ 2391.154459]  ? iomap_dio_rw+0x90/0x90
[ 2391.155070]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2391.155758]  ? down_read+0x284/0x430
[ 2391.156315]  ? lock_chain_count+0x20/0x20
[ 2391.156934]  ? down_write+0x160/0x160
[ 2391.157508]  iomap_dio_rw+0x31/0x90
[ 2391.158068]  ext4_file_read_iter+0x2c7/0x4c0
[ 2391.158729]  generic_file_splice_read+0x455/0x6d0
[ 2391.159471]  ? pipe_to_user+0x170/0x170
[ 2391.160064]  ? _cond_resched+0x12/0x80
[ 2391.160649]  ? avc_policy_seqno+0x9/0x70
[ 2391.161264]  ? selinux_file_permission+0x92/0x520
[ 2391.161999]  ? lockdep_init_map_type+0x2c7/0x780
[ 2391.162709]  ? pipe_to_user+0x170/0x170
[ 2391.163317]  do_splice_to+0x10e/0x160
[ 2391.163888]  splice_direct_to_actor+0x2fe/0x980
[ 2391.164584]  ? pipe_to_sendpage+0x380/0x380
[ 2391.165237]  ? do_splice_to+0x160/0x160
[ 2391.165832]  ? security_file_permission+0x24e/0x570
[ 2391.166586]  do_splice_direct+0x1c4/0x290
[ 2391.167219]  ? splice_direct_to_actor+0x980/0x980
[ 2391.167944]  ? selinux_file_permission+0x92/0x520
[ 2391.168673]  ? security_file_permission+0x24e/0x570
[ 2391.169427]  do_sendfile+0x553/0x1090
[ 2391.170006]  ? do_pwritev+0x270/0x270
[ 2391.170575]  ? wait_for_completion_io+0x270/0x270
[ 2391.171309]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2391.172005]  ? vfs_write+0x354/0xa70
[ 2391.172576]  __x64_sys_sendfile64+0x1d1/0x210
[ 2391.173277]  ? __ia32_sys_sendfile+0x220/0x220
[ 2391.173968]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2391.174748]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.175537]  do_syscall_64+0x33/0x40
[ 2391.176114]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2391.176880] RIP: 0033:0x7f0f9f161b19
[ 2391.177443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.180189] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.181333] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2391.182410] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2391.183484] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.184552] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2391.185617] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2391.201689] nfs4: Unknown parameter '/proc/sys/net/ipv4/tcp_wmem'
18:21:43 executing program 0:
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r2, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, 0x0)
r3 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r3, 0x5609, 0x0)
r4 = creat(0x0, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$BTRFS_IOC_LOGICAL_INO(r4, 0xc0389424, &(0x7f0000000140)={0x3ff, 0x8, '\x00', 0x0, &(0x7f0000000040)=[0x0]})

18:21:43 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 48)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2391.423772] FAULT_INJECTION: forcing a failure.
[ 2391.423772] name failslab, interval 1, probability 0, space 0, times 0
[ 2391.426154] CPU: 0 PID: 14581 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2391.427641] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2391.429304] Call Trace:
[ 2391.429836]  dump_stack+0x107/0x167
[ 2391.430567]  should_fail.cold+0x5/0xa
[ 2391.431337]  ? create_object.isra.0+0x3a/0xa20
[ 2391.432262]  should_failslab+0x5/0x20
[ 2391.433014]  kmem_cache_alloc+0x5b/0x310
[ 2391.433840]  create_object.isra.0+0x3a/0xa20
[ 2391.434694]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2391.435673]  __kmalloc+0x16e/0x390
[ 2391.436362]  ext4_find_extent+0xa3d/0xd30
[ 2391.437163]  ext4_ext_map_blocks+0x1c8/0x5850
[ 2391.438027]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2391.439039]  ? SOFTIRQ_verbose+0x10/0x10
[ 2391.439803]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2391.440788]  ? SOFTIRQ_verbose+0x10/0x10
[ 2391.441563]  ? ext4_ext_release+0x10/0x10
[ 2391.442353]  ? ext4_map_blocks+0x5e0/0x1970
[ 2391.443179]  ? lock_release+0x680/0x680
[ 2391.443927]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2391.444821]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.445620]  ? down_write+0xe0/0x160
[ 2391.446326]  ? down_write_killable+0x180/0x180
[ 2391.447212]  ext4_map_blocks+0x652/0x1970
[ 2391.448001]  ? kmem_cache_alloc+0x2a6/0x310
[ 2391.448813]  ? __kernel_text_address+0x9/0x40
[ 2391.449660]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2391.450510]  ? jbd2__journal_start+0xf3/0x7e0
[ 2391.451384]  ? __ext4_journal_start_sb+0x214/0x390
[ 2391.452311]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2391.453249]  ext4_iomap_begin+0x3ad/0x700
[ 2391.454048]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2391.454985]  ? kasan_save_stack+0x1b/0x40
[ 2391.455761]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2391.456654]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2391.457841]  ? splice_direct_to_actor+0x387/0x980
[ 2391.458743]  ? do_splice_direct+0x1c4/0x290
[ 2391.459560]  ? do_sendfile+0x553/0x1090
[ 2391.460302]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2391.461173]  ? do_syscall_64+0x33/0x40
[ 2391.461898]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2391.462910]  iomap_apply+0x164/0x810
[ 2391.463608]  ? iomap_dio_rw+0x90/0x90
[ 2391.464328]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2391.465409]  ? mark_held_locks+0x9e/0xe0
[ 2391.466185]  ? filemap_check_errors+0xa5/0x150
[ 2391.467070]  __iomap_dio_rw+0x6cd/0x1110
[ 2391.467826]  ? iomap_dio_rw+0x90/0x90
[ 2391.468557]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2391.469447]  ? ext4_orphan_add+0x253/0x9e0
[ 2391.470239]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2391.471162]  ? ext4_empty_dir+0xae0/0xae0
[ 2391.471937]  ? jbd2__journal_start+0xf3/0x7e0
[ 2391.472780]  iomap_dio_rw+0x31/0x90
[ 2391.473461]  ext4_file_write_iter+0xb26/0x18e0
[ 2391.474332]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2391.475187]  ? kasan_save_stack+0x32/0x40
[ 2391.475956]  ? kasan_save_stack+0x1b/0x40
[ 2391.476729]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2391.477668]  ? iter_file_splice_write+0x16d/0xc30
[ 2391.478555]  ? direct_splice_actor+0x10f/0x170
[ 2391.479413]  ? splice_direct_to_actor+0x387/0x980
[ 2391.480301]  ? do_splice_direct+0x1c4/0x290
[ 2391.481093]  ? do_sendfile+0x553/0x1090
[ 2391.481824]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2391.482688]  do_iter_readv_writev+0x476/0x750
[ 2391.483631]  ? new_sync_write+0x660/0x660
[ 2391.484371]  ? selinux_file_permission+0x92/0x520
[ 2391.485255]  do_iter_write+0x191/0x670
[ 2391.485964]  ? trace_hardirqs_on+0x5b/0x180
[ 2391.486744]  vfs_iter_write+0x70/0xa0
[ 2391.487437]  iter_file_splice_write+0x762/0xc30
[ 2391.488292]  ? generic_splice_sendpage+0x140/0x140
[ 2391.489178]  ? avc_policy_seqno+0x9/0x70
[ 2391.489903]  ? selinux_file_permission+0x92/0x520
[ 2391.490798]  ? lockdep_init_map_type+0x2c7/0x780
[ 2391.491670]  ? generic_splice_sendpage+0x140/0x140
[ 2391.492573]  direct_splice_actor+0x10f/0x170
[ 2391.493365]  splice_direct_to_actor+0x387/0x980
[ 2391.494218]  ? pipe_to_sendpage+0x380/0x380
[ 2391.495002]  ? do_splice_to+0x160/0x160
[ 2391.495714]  ? security_file_permission+0x24e/0x570
[ 2391.496622]  do_splice_direct+0x1c4/0x290
[ 2391.497365]  ? splice_direct_to_actor+0x980/0x980
[ 2391.498228]  ? selinux_file_permission+0x92/0x520
[ 2391.499110]  ? security_file_permission+0x24e/0x570
[ 2391.500013]  do_sendfile+0x553/0x1090
[ 2391.500701]  ? do_pwritev+0x270/0x270
[ 2391.501401]  ? wait_for_completion_io+0x270/0x270
[ 2391.502261]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2391.503086]  ? vfs_write+0x354/0xa70
[ 2391.503751]  __x64_sys_sendfile64+0x1d1/0x210
[ 2391.504544]  ? __ia32_sys_sendfile+0x220/0x220
[ 2391.505358]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2391.506281]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.507215]  do_syscall_64+0x33/0x40
[ 2391.507874]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2391.508778] RIP: 0033:0x7fb754cd3b19
[ 2391.509439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.512684] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.514026] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2391.515299] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2391.516556] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.517814] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2391.519084] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2391.842876] cgroup: fork rejected by pids controller in /syz5
[ 2408.184940] selinux_netlink_send: 38 callbacks suppressed
[ 2408.185878] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14589 comm=syz-executor.5
18:22:00 executing program 7:
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x8010, &(0x7f0000000280)=ANY=[])
chdir(0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000640))
mount(&(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='udf\x00', 0x300041, &(0x7f00000001c0)='/dev/input/mouse#\x00')
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = open$dir(&(0x7f0000000280)='./file0\x00', 0x103080, 0x193)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
renameat2(r1, &(0x7f00000002c0)='./file0\x00', r2, &(0x7f0000000300)='./file0\x00', 0x1)
r4 = syz_open_dev$mouse(&(0x7f0000000040), 0x7fffffff, 0x4000)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x200, 0x0)
ioctl$BTRFS_IOC_FS_INFO(r5, 0x8400941f, &(0x7f0000000680))
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r4, 0x40189429, &(0x7f0000000080)={0x0, 0xf08f, 0xc0b4})

18:22:00 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 10)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:22:00 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0xd, 0x0, 0x0, @ipv4=@dev}]}]}, 0x28}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d)
sendmsg$nl_generic(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000280)=ANY=[@ANYBLOB="20008000e90001000930000000000000000000"], 0x20}}, 0x0)
sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x0, 0x400, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x20004004)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, 0x0, 0x0)
unshare(0x48020200)

18:22:00 executing program 2:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000340), 0x2, 0x0)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f0000000540)=ANY=[@ANYBLOB="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"])
perf_event_open(&(0x7f0000000140)={0x7, 0x80, 0x3, 0x0, 0x81, 0xee, 0x0, 0x8, 0x8c010, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_config_ext={0x9, 0x8}, 0x8008, 0x1b858, 0x6, 0x3, 0xe1, 0x32, 0x6, 0x0, 0x200, 0x0, 0xd9}, 0x0, 0x6, r0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000040)=[r4], 0x1)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f00000029c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002900)=""/158, 0x9e}, 0x0, 0x2203, 0x0, {0x1}}, 0x0)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/kexec_crash_size', 0x22902, 0x0)
copy_file_range(r6, 0x0, r6, &(0x7f00000000c0)=0x6, 0x6, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/kexec_crash_size', 0x22902, 0x0)
r8 = syz_io_uring_complete(r2)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r8, 0xc008240a, &(0x7f00000001c0)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0]})
copy_file_range(r7, 0x0, r7, &(0x7f00000000c0)=0x6, 0x6, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r9 = syz_io_uring_setup(0xcd4, &(0x7f0000000240)={0x0, 0x1eff, 0x10, 0x0, 0x4e}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000002c0), &(0x7f0000000300))
lseek(r9, 0x80000001, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, r1, 0x0)

18:22:00 executing program 0:
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r2, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, 0x0)
r3 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r3, 0x5609, 0x0)
r4 = creat(0x0, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$BTRFS_IOC_LOGICAL_INO(r4, 0xc0389424, &(0x7f0000000140)={0x3ff, 0x8, '\x00', 0x0, &(0x7f0000000040)=[0x0]})

18:22:00 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 49)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:22:00 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b32, &(0x7f00000000c0))

18:22:00 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x48000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2408.222868] FAULT_INJECTION: forcing a failure.
[ 2408.222868] name failslab, interval 1, probability 0, space 0, times 0
[ 2408.222893] CPU: 1 PID: 14599 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2408.226265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2408.226270] Call Trace:
[ 2408.226287]  dump_stack+0x107/0x167
[ 2408.226301]  should_fail.cold+0x5/0xa
[ 2408.226316]  ? ext4_mb_new_blocks+0x20a3/0x4570
[ 2408.226328]  should_failslab+0x5/0x20
[ 2408.226339]  kmem_cache_alloc+0x5b/0x310
[ 2408.226355]  ext4_mb_new_blocks+0x20a3/0x4570
[ 2408.226377]  ? trace_hardirqs_on+0x5b/0x180
18:22:00 executing program 0:
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r2, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, 0x0)
r3 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r3, 0x5609, 0x0)
r4 = creat(0x0, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$BTRFS_IOC_LOGICAL_INO(r4, 0xc0389424, &(0x7f0000000140)={0x3ff, 0x8, '\x00', 0x0, &(0x7f0000000040)=[0x0]})

[ 2408.226392]  ? ext4_cache_extents+0x148/0x2d0
[ 2408.226404]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2408.226417]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2408.226436]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2408.226457]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2408.226466]  ? SOFTIRQ_verbose+0x10/0x10
[ 2408.226476]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2408.226485]  ? SOFTIRQ_verbose+0x10/0x10
18:22:00 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2408.226501]  ? ext4_ext_release+0x10/0x10
[ 2408.226513]  ? ext4_map_blocks+0x5e0/0x1970
[ 2408.226526]  ? lock_release+0x680/0x680
[ 2408.226537]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2408.226547]  ? lock_downgrade+0x6d0/0x6d0
[ 2408.226570]  ? down_write_killable+0x180/0x180
[ 2408.226588]  ext4_map_blocks+0x652/0x1970
[ 2408.226602]  ? kmem_cache_alloc+0x2a6/0x310
[ 2408.226612]  ? __kernel_text_address+0x9/0x40
[ 2408.226623]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2408.226637]  ? jbd2__journal_start+0xf3/0x7e0
[ 2408.226651]  ? __ext4_journal_start_sb+0x214/0x390
[ 2408.226661]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2408.226675]  ext4_iomap_begin+0x3ad/0x700
[ 2408.226693]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2408.226702]  ? kasan_save_stack+0x1b/0x40
[ 2408.226713]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2408.226727]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2408.226737]  ? splice_direct_to_actor+0x387/0x980
[ 2408.226745]  ? do_splice_direct+0x1c4/0x290
[ 2408.226754]  ? do_sendfile+0x553/0x1090
[ 2408.226764]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2408.226773]  ? do_syscall_64+0x33/0x40
[ 2408.226783]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.226798]  iomap_apply+0x164/0x810
[ 2408.226808]  ? iomap_dio_rw+0x90/0x90
[ 2408.226820]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2408.226838]  ? mark_held_locks+0x9e/0xe0
[ 2408.226858]  ? filemap_check_errors+0xa5/0x150
[ 2408.226872]  __iomap_dio_rw+0x6cd/0x1110
[ 2408.226881]  ? iomap_dio_rw+0x90/0x90
[ 2408.226902]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2408.226912]  ? ext4_orphan_add+0x253/0x9e0
[ 2408.226924]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2408.226938]  ? ext4_empty_dir+0xae0/0xae0
[ 2408.226949]  ? jbd2__journal_start+0xf3/0x7e0
[ 2408.226967]  iomap_dio_rw+0x31/0x90
[ 2408.226978]  ext4_file_write_iter+0xb26/0x18e0
[ 2408.226998]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2408.227007]  ? kasan_save_stack+0x32/0x40
[ 2408.227016]  ? kasan_save_stack+0x1b/0x40
[ 2408.227026]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2408.227034]  ? iter_file_splice_write+0x16d/0xc30
[ 2408.227042]  ? direct_splice_actor+0x10f/0x170
[ 2408.227051]  ? splice_direct_to_actor+0x387/0x980
[ 2408.227058]  ? do_splice_direct+0x1c4/0x290
[ 2408.227074]  ? do_sendfile+0x553/0x1090
[ 2408.227083]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2408.227099]  do_iter_readv_writev+0x476/0x750
[ 2408.227112]  ? new_sync_write+0x660/0x660
[ 2408.227122]  ? selinux_file_permission+0x92/0x520
[ 2408.227145]  do_iter_write+0x191/0x670
[ 2408.227158]  ? trace_hardirqs_on+0x5b/0x180
[ 2408.227173]  vfs_iter_write+0x70/0xa0
[ 2408.227185]  iter_file_splice_write+0x762/0xc30
[ 2408.227206]  ? generic_splice_sendpage+0x140/0x140
[ 2408.227221]  ? avc_policy_seqno+0x9/0x70
[ 2408.227230]  ? selinux_file_permission+0x92/0x520
[ 2408.227244]  ? lockdep_init_map_type+0x2c7/0x780
[ 2408.227257]  ? generic_splice_sendpage+0x140/0x140
[ 2408.227268]  direct_splice_actor+0x10f/0x170
[ 2408.227280]  splice_direct_to_actor+0x387/0x980
[ 2408.227294]  ? pipe_to_sendpage+0x380/0x380
[ 2408.227307]  ? do_splice_to+0x160/0x160
[ 2408.227317]  ? security_file_permission+0x24e/0x570
[ 2408.227334]  do_splice_direct+0x1c4/0x290
[ 2408.227344]  ? splice_direct_to_actor+0x980/0x980
[ 2408.227352]  ? selinux_file_permission+0x92/0x520
[ 2408.227367]  ? security_file_permission+0x24e/0x570
[ 2408.227384]  do_sendfile+0x553/0x1090
[ 2408.227402]  ? do_pwritev+0x270/0x270
[ 2408.227415]  ? wait_for_completion_io+0x270/0x270
[ 2408.227429]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2408.227439]  ? vfs_write+0x354/0xa70
[ 2408.227454]  __x64_sys_sendfile64+0x1d1/0x210
[ 2408.227466]  ? __ia32_sys_sendfile+0x220/0x220
[ 2408.227479]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2408.227490]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2408.227503]  do_syscall_64+0x33/0x40
[ 2408.227514]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.227521] RIP: 0033:0x7fb754cd3b19
[ 2408.227533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2408.227539] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2408.227551] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2408.227557] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2408.227563] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2408.227569] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2408.227575] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2408.258670] udc-core: couldn't find an available UDC or it's busy
[ 2408.258685] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2408.259276] udc-core: couldn't find an available UDC or it's busy
[ 2408.259286] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2408.269237] FAULT_INJECTION: forcing a failure.
[ 2408.269237] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2408.269275] CPU: 1 PID: 14606 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2408.269281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2408.269285] Call Trace:
[ 2408.269302]  dump_stack+0x107/0x167
[ 2408.269314]  should_fail.cold+0x5/0xa
[ 2408.269331]  __alloc_pages_nodemask+0x182/0x600
[ 2408.269346]  ? mark_held_locks+0x9e/0xe0
[ 2408.269359]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2408.269369]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2408.269384]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2408.269401]  alloc_pages_current+0x187/0x280
[ 2408.269416]  push_pipe+0x2b5/0x6d0
[ 2408.269434]  iov_iter_zero+0x418/0xef0
[ 2408.269449]  ? ext4_iomap_begin+0x1a0/0x700
[ 2408.269460]  ? lock_chain_count+0x20/0x20
[ 2408.269471]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2408.269484]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2408.269493]  ? kasan_save_stack+0x1b/0x40
[ 2408.269503]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2408.269512]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2408.269520]  ? iomap_dio_rw+0x31/0x90
[ 2408.269529]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2408.269542]  iomap_dio_actor+0x40f/0x560
[ 2408.269556]  iomap_apply+0x289/0x810
[ 2408.269566]  ? iomap_dio_rw+0x90/0x90
[ 2408.269578]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2408.269606]  ? filemap_check_errors+0xa5/0x150
[ 2408.269620]  __iomap_dio_rw+0x6cd/0x1110
[ 2408.269628]  ? iomap_dio_rw+0x90/0x90
[ 2408.269649]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2408.269664]  ? down_read+0x284/0x430
[ 2408.269673]  ? lock_chain_count+0x20/0x20
[ 2408.269682]  ? down_write+0x160/0x160
[ 2408.269696]  iomap_dio_rw+0x31/0x90
[ 2408.269707]  ext4_file_read_iter+0x2c7/0x4c0
[ 2408.269721]  generic_file_splice_read+0x455/0x6d0
[ 2408.269731]  ? pipe_to_user+0x170/0x170
[ 2408.269739]  ? _cond_resched+0x12/0x80
[ 2408.269751]  ? avc_policy_seqno+0x9/0x70
[ 2408.269760]  ? selinux_file_permission+0x92/0x520
[ 2408.269774]  ? lockdep_init_map_type+0x2c7/0x780
[ 2408.269786]  ? pipe_to_user+0x170/0x170
[ 2408.269797]  do_splice_to+0x10e/0x160
[ 2408.269808]  splice_direct_to_actor+0x2fe/0x980
[ 2408.269821]  ? pipe_to_sendpage+0x380/0x380
[ 2408.269834]  ? do_splice_to+0x160/0x160
[ 2408.269844]  ? security_file_permission+0x24e/0x570
[ 2408.269860]  do_splice_direct+0x1c4/0x290
[ 2408.269870]  ? splice_direct_to_actor+0x980/0x980
[ 2408.269878]  ? selinux_file_permission+0x92/0x520
[ 2408.269892]  ? security_file_permission+0x24e/0x570
[ 2408.269909]  do_sendfile+0x553/0x1090
[ 2408.269926]  ? do_pwritev+0x270/0x270
[ 2408.269937]  ? wait_for_completion_io+0x270/0x270
[ 2408.269949]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2408.269958]  ? vfs_write+0x354/0xa70
[ 2408.269972]  __x64_sys_sendfile64+0x1d1/0x210
[ 2408.269983]  ? __ia32_sys_sendfile+0x220/0x220
[ 2408.269996]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2408.270007]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2408.270020]  do_syscall_64+0x33/0x40
[ 2408.270030]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.270038] RIP: 0033:0x7f0f9f161b19
[ 2408.270049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2408.270054] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2408.270067] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2408.270073] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2408.270079] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2408.270085] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2408.270091] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2408.276126] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue
[ 2408.446297] FAULT_INJECTION: forcing a failure.
[ 2408.446297] name failslab, interval 1, probability 0, space 0, times 0
[ 2408.446311] CPU: 1 PID: 14620 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2408.446318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2408.446322] Call Trace:
[ 2408.446340]  dump_stack+0x107/0x167
[ 2408.446353]  should_fail.cold+0x5/0xa
[ 2408.446368]  ? ext4_mb_new_blocks+0x64d/0x4570
[ 2408.446380]  should_failslab+0x5/0x20
[ 2408.446391]  kmem_cache_alloc+0x5b/0x310
[ 2408.446406]  ext4_mb_new_blocks+0x64d/0x4570
[ 2408.446428]  ? trace_hardirqs_on+0x5b/0x180
[ 2408.446442]  ? ext4_cache_extents+0x148/0x2d0
[ 2408.446455]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2408.446467]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2408.446486]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2408.446511]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2408.446520]  ? SOFTIRQ_verbose+0x10/0x10
[ 2408.446530]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2408.446540]  ? SOFTIRQ_verbose+0x10/0x10
[ 2408.446555]  ? ext4_ext_release+0x10/0x10
[ 2408.446567]  ? ext4_map_blocks+0x5e0/0x1970
[ 2408.446580]  ? lock_release+0x680/0x680
[ 2408.446591]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2408.446601]  ? lock_downgrade+0x6d0/0x6d0
[ 2408.446623]  ? down_write_killable+0x180/0x180
[ 2408.446641]  ext4_map_blocks+0x652/0x1970
[ 2408.446655]  ? kmem_cache_alloc+0x2a6/0x310
[ 2408.446665]  ? __kernel_text_address+0x9/0x40
[ 2408.446676]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2408.446689]  ? jbd2__journal_start+0xf3/0x7e0
[ 2408.446704]  ? __ext4_journal_start_sb+0x214/0x390
[ 2408.446713]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2408.446727]  ext4_iomap_begin+0x3ad/0x700
[ 2408.446745]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2408.446754]  ? kasan_save_stack+0x1b/0x40
[ 2408.446764]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2408.446779]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2408.446788]  ? splice_direct_to_actor+0x387/0x980
[ 2408.446796]  ? do_splice_direct+0x1c4/0x290
[ 2408.446806]  ? do_sendfile+0x553/0x1090
[ 2408.446815]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2408.446825]  ? do_syscall_64+0x33/0x40
[ 2408.446835]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.446849]  iomap_apply+0x164/0x810
[ 2408.446860]  ? iomap_dio_rw+0x90/0x90
[ 2408.446871]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2408.446889]  ? mark_held_locks+0x9e/0xe0
[ 2408.446909]  ? filemap_check_errors+0xa5/0x150
[ 2408.446923]  __iomap_dio_rw+0x6cd/0x1110
[ 2408.446932]  ? iomap_dio_rw+0x90/0x90
[ 2408.446953]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2408.446963]  ? ext4_orphan_add+0x253/0x9e0
[ 2408.446975]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2408.446987]  ? ext4_empty_dir+0xae0/0xae0
[ 2408.446996]  ? jbd2__journal_start+0xf3/0x7e0
[ 2408.447013]  iomap_dio_rw+0x31/0x90
[ 2408.447024]  ext4_file_write_iter+0xb26/0x18e0
[ 2408.447044]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2408.447053]  ? kasan_save_stack+0x32/0x40
[ 2408.447062]  ? kasan_save_stack+0x1b/0x40
[ 2408.447079]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2408.447087]  ? iter_file_splice_write+0x16d/0xc30
[ 2408.447095]  ? direct_splice_actor+0x10f/0x170
[ 2408.447103]  ? splice_direct_to_actor+0x387/0x980
[ 2408.447111]  ? do_splice_direct+0x1c4/0x290
[ 2408.447119]  ? do_sendfile+0x553/0x1090
[ 2408.447129]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2408.447145]  do_iter_readv_writev+0x476/0x750
[ 2408.447157]  ? new_sync_write+0x660/0x660
[ 2408.447167]  ? selinux_file_permission+0x92/0x520
[ 2408.447190]  do_iter_write+0x191/0x670
[ 2408.447204]  ? trace_hardirqs_on+0x5b/0x180
[ 2408.447219]  vfs_iter_write+0x70/0xa0
[ 2408.447231]  iter_file_splice_write+0x762/0xc30
[ 2408.447251]  ? generic_splice_sendpage+0x140/0x140
[ 2408.447266]  ? avc_policy_seqno+0x9/0x70
[ 2408.447275]  ? selinux_file_permission+0x92/0x520
[ 2408.447289]  ? lockdep_init_map_type+0x2c7/0x780
[ 2408.447302]  ? generic_splice_sendpage+0x140/0x140
[ 2408.447323]  direct_splice_actor+0x10f/0x170
[ 2408.563326]  splice_direct_to_actor+0x387/0x980
[ 2408.563340]  ? pipe_to_sendpage+0x380/0x380
[ 2408.563353]  ? do_splice_to+0x160/0x160
[ 2408.563375]  ? security_file_permission+0x24e/0x570
[ 2408.565724]  do_splice_direct+0x1c4/0x290
[ 2408.566158]  ? splice_direct_to_actor+0x980/0x980
[ 2408.566657]  ? selinux_file_permission+0x92/0x520
[ 2408.567175]  ? security_file_permission+0x24e/0x570
[ 2408.567704]  do_sendfile+0x553/0x1090
[ 2408.568110]  ? do_pwritev+0x270/0x270
[ 2408.568506]  ? wait_for_completion_io+0x270/0x270
[ 2408.569016]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2408.569501]  ? vfs_write+0x354/0xa70
[ 2408.569899]  __x64_sys_sendfile64+0x1d1/0x210
[ 2408.570374]  ? __ia32_sys_sendfile+0x220/0x220
[ 2408.570857]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2408.571414]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2408.571952]  do_syscall_64+0x33/0x40
[ 2408.572342]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.572881] RIP: 0033:0x7fb754cd3b19
[ 2408.573276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2408.575208] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2408.576003] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2408.576740] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2408.577482] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2408.578236] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2408.578984] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2408.589210] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14624 comm=syz-executor.5
18:22:01 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b33, &(0x7f00000000c0))

18:22:01 executing program 0:
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r2, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, 0x0)
r3 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r3, 0x5609, 0x0)
r4 = creat(0x0, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$BTRFS_IOC_LOGICAL_INO(r4, 0xc0389424, &(0x7f0000000140)={0x3ff, 0x8, '\x00', 0x0, &(0x7f0000000040)=[0x0]})

18:22:01 executing program 2:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000340), 0x2, 0x0)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f0000000540)=ANY=[@ANYBLOB="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"])
perf_event_open(&(0x7f0000000140)={0x7, 0x80, 0x3, 0x0, 0x81, 0xee, 0x0, 0x8, 0x8c010, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_config_ext={0x9, 0x8}, 0x8008, 0x1b858, 0x6, 0x3, 0xe1, 0x32, 0x6, 0x0, 0x200, 0x0, 0xd9}, 0x0, 0x6, r0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000040)=[r4], 0x1)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f00000029c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002900)=""/158, 0x9e}, 0x0, 0x2203, 0x0, {0x1}}, 0x0)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/kexec_crash_size', 0x22902, 0x0)
copy_file_range(r6, 0x0, r6, &(0x7f00000000c0)=0x6, 0x6, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/kexec_crash_size', 0x22902, 0x0)
r8 = syz_io_uring_complete(r2)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r8, 0xc008240a, &(0x7f00000001c0)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0]})
copy_file_range(r7, 0x0, r7, &(0x7f00000000c0)=0x6, 0x6, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r9 = syz_io_uring_setup(0xcd4, &(0x7f0000000240)={0x0, 0x1eff, 0x10, 0x0, 0x4e}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000002c0), &(0x7f0000000300))
lseek(r9, 0x80000001, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, r1, 0x0)

18:22:01 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b34, &(0x7f00000000c0))

18:22:01 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b35, &(0x7f00000000c0))

18:22:01 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 51)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:22:01 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x4c000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:22:01 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000700)=[{{0x0, 0x0, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000240)=""/191, 0xbf}], 0x2}}], 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{&(0x7f0000000000)={0x2, 0x4e23, 0x0, @empty}, 0x80, 0x0}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)="10", 0xffd0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000008c0)="7f", 0x1}], 0x1}}], 0x28, 0x8080)

[ 2408.829480] FAULT_INJECTION: forcing a failure.
[ 2408.829480] name failslab, interval 1, probability 0, space 0, times 0
[ 2408.830783] CPU: 1 PID: 14645 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2408.831511] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2408.832363] Call Trace:
[ 2408.832646]  dump_stack+0x107/0x167
[ 2408.833023]  should_fail.cold+0x5/0xa
[ 2408.833420]  ? ext4_mb_new_blocks+0x20a3/0x4570
[ 2408.833900]  should_failslab+0x5/0x20
[ 2408.834291]  kmem_cache_alloc+0x5b/0x310
[ 2408.834851]  ext4_mb_new_blocks+0x20a3/0x4570
[ 2408.835352]  ? _raw_spin_unlock_irqrestore+0x25/0x40
[ 2408.835898]  ? ext4_cache_extents+0x148/0x2d0
[ 2408.836376]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2408.836938]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2408.837456]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2408.837958]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2408.838518]  ? SOFTIRQ_verbose+0x10/0x10
[ 2408.838949]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2408.839514]  ? SOFTIRQ_verbose+0x10/0x10
[ 2408.839953]  ? ext4_ext_release+0x10/0x10
[ 2408.840397]  ? ext4_map_blocks+0x5e0/0x1970
[ 2408.840869]  ? lock_release+0x680/0x680
[ 2408.841292]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2408.841800]  ? lock_downgrade+0x6d0/0x6d0
[ 2408.842253]  ? down_write_killable+0x180/0x180
[ 2408.842755]  ext4_map_blocks+0x652/0x1970
[ 2408.843212]  ? kmem_cache_alloc+0x2a6/0x310
[ 2408.843667]  ? __kernel_text_address+0x9/0x40
[ 2408.844142]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2408.844618]  ? jbd2__journal_start+0xf3/0x7e0
[ 2408.845102]  ? __ext4_journal_start_sb+0x214/0x390
[ 2408.845631]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2408.846161]  ext4_iomap_begin+0x3ad/0x700
[ 2408.846616]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2408.847138]  ? kasan_save_stack+0x1b/0x40
[ 2408.847580]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2408.848093]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2408.848769]  ? splice_direct_to_actor+0x387/0x980
[ 2408.849277]  ? do_splice_direct+0x1c4/0x290
[ 2408.849741]  ? do_sendfile+0x553/0x1090
[ 2408.850166]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2408.850663]  ? do_syscall_64+0x33/0x40
[ 2408.851085]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.851657]  iomap_apply+0x164/0x810
[ 2408.852059]  ? iomap_dio_rw+0x90/0x90
[ 2408.852471]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2408.853092]  ? mark_held_locks+0x9e/0xe0
[ 2408.853535]  ? filemap_check_errors+0xa5/0x150
[ 2408.854025]  __iomap_dio_rw+0x6cd/0x1110
[ 2408.854460]  ? iomap_dio_rw+0x90/0x90
[ 2408.854876]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2408.855374]  ? ext4_orphan_add+0x253/0x9e0
[ 2408.855824]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2408.856361]  ? ext4_empty_dir+0xae0/0xae0
[ 2408.856800]  ? jbd2__journal_start+0xf3/0x7e0
[ 2408.857278]  iomap_dio_rw+0x31/0x90
[ 2408.857676]  ext4_file_write_iter+0xb26/0x18e0
[ 2408.858168]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2408.858658]  ? kasan_save_stack+0x32/0x40
[ 2408.859106]  ? kasan_save_stack+0x1b/0x40
[ 2408.859549]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2408.860092]  ? iter_file_splice_write+0x16d/0xc30
[ 2408.860607]  ? direct_splice_actor+0x10f/0x170
[ 2408.861091]  ? splice_direct_to_actor+0x387/0x980
[ 2408.861599]  ? do_splice_direct+0x1c4/0x290
[ 2408.862050]  ? do_sendfile+0x553/0x1090
[ 2408.862470]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2408.862964]  do_iter_readv_writev+0x476/0x750
[ 2408.863457]  ? new_sync_write+0x660/0x660
[ 2408.863899]  ? selinux_file_permission+0x92/0x520
[ 2408.864421]  do_iter_write+0x191/0x670
[ 2408.864841]  ? trace_hardirqs_on+0x5b/0x180
[ 2408.865305]  vfs_iter_write+0x70/0xa0
[ 2408.865709]  iter_file_splice_write+0x762/0xc30
[ 2408.866213]  ? generic_splice_sendpage+0x140/0x140
[ 2408.866746]  ? avc_policy_seqno+0x9/0x70
[ 2408.867191]  ? selinux_file_permission+0x92/0x520
[ 2408.867710]  ? lockdep_init_map_type+0x2c7/0x780
[ 2408.868215]  ? generic_splice_sendpage+0x140/0x140
[ 2408.868740]  direct_splice_actor+0x10f/0x170
[ 2408.869216]  splice_direct_to_actor+0x387/0x980
[ 2408.869713]  ? pipe_to_sendpage+0x380/0x380
[ 2408.870180]  ? do_splice_to+0x160/0x160
[ 2408.870609]  ? security_file_permission+0x24e/0x570
[ 2408.871155]  do_splice_direct+0x1c4/0x290
[ 2408.871592]  ? splice_direct_to_actor+0x980/0x980
[ 2408.872099]  ? selinux_file_permission+0x92/0x520
[ 2408.872618]  ? security_file_permission+0x24e/0x570
[ 2408.873156]  do_sendfile+0x553/0x1090
[ 2408.873567]  ? do_pwritev+0x270/0x270
[ 2408.873974]  ? wait_for_completion_io+0x270/0x270
[ 2408.874491]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2408.874985]  ? vfs_write+0x354/0xa70
[ 2408.875396]  __x64_sys_sendfile64+0x1d1/0x210
[ 2408.875872]  ? __ia32_sys_sendfile+0x220/0x220
[ 2408.876364]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2408.876916]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2408.877461]  do_syscall_64+0x33/0x40
[ 2408.877857]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.878395] RIP: 0033:0x7fb754cd3b19
[ 2408.878794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2408.880732] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2408.881535] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2408.882281] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2408.883032] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2408.883779] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2408.884532] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:22:16 executing program 0:
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r2, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, 0x0)
r3 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r3, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r5=>r0}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r5}, './file0\x00'})

18:22:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b36, &(0x7f00000000c0))

18:22:16 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 11)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:22:16 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 52)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:22:16 executing program 7:
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@link_local, @random="aeb481414a86", @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@canfd={0xd, {{0x2, 0x0, 0x0, 0x1}, 0x1d, 0x2, 0x0, 0x0, "aa908e5648461f46166e22091fdc2eed6c300a24988f5f974e55f9a66fc591230e073f001932c8e7c1b5bdd3f958fe0c051b9aeef110cdb9649ff5f1ec3b1d04"}}}}, 0x0)

18:22:16 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x60000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:22:16 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/meminfo\x00', 0x0, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x600, 0x0)
sendfile(r0, r2, 0x0, 0x82)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/mdstat\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000580)=0x401, 0x4)
close(r0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
perf_event_open(&(0x7f0000000600)={0x0, 0x80, 0x0, 0x4, 0x1, 0x1f, 0x0, 0x10001, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x8, 0x200}, 0x3000, 0x6, 0x4, 0x1, 0x6, 0xffff7f92, 0x3ff, 0x0, 0xfffffff4, 0x0, 0x5c35}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x2)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_SWAP_BOOT(r5, 0x6611)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
readv(r7, &(0x7f0000000500)=[{&(0x7f0000000100)=""/95, 0x5f}, {&(0x7f00000006c0)=""/158, 0x9e}, {&(0x7f0000000240)=""/107, 0x6b}, {&(0x7f0000000000)=""/21, 0x15}, {&(0x7f00000002c0)=""/13, 0xd}, {&(0x7f0000000300)=""/159, 0x9f}, {&(0x7f00000003c0)=""/158, 0x9e}, {&(0x7f0000000480)=""/86, 0x56}], 0x8)
setsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000040)=0x6, 0x1)

18:22:16 executing program 2:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r1 = dup2(r0, r0)
write$vga_arbiter(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="6465636f646573206d656de8"], 0xc)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$CDROMEJECT_SW(r2, 0x530f, 0x1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, r4, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r5, 0x8008f511, &(0x7f0000000000))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
rseq(&(0x7f0000000080), 0x20, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)

18:22:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b37, &(0x7f00000000c0))

[ 2423.987858] FAULT_INJECTION: forcing a failure.
[ 2423.987858] name failslab, interval 1, probability 0, space 0, times 0
[ 2423.990317] CPU: 1 PID: 14662 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2423.991751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2423.993458] Call Trace:
[ 2423.994005]  dump_stack+0x107/0x167
[ 2423.994762]  should_fail.cold+0x5/0xa
[ 2423.995555]  ? ext4_mb_new_blocks+0x20a3/0x4570
[ 2423.996520]  should_failslab+0x5/0x20
[ 2423.997301]  kmem_cache_alloc+0x5b/0x310
[ 2423.998137]  ext4_mb_new_blocks+0x20a3/0x4570
[ 2423.999075]  ? trace_hardirqs_on+0x5b/0x180
[ 2423.999970]  ? ext4_cache_extents+0x148/0x2d0
[ 2424.000888]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2424.001961]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2424.002943]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2424.003912]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2424.004984]  ? SOFTIRQ_verbose+0x10/0x10
[ 2424.005819]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2424.006888]  ? SOFTIRQ_verbose+0x10/0x10
[ 2424.007735]  ? ext4_ext_release+0x10/0x10
[ 2424.008588]  ? ext4_map_blocks+0x5e0/0x1970
[ 2424.009480]  ? lock_release+0x680/0x680
[ 2424.010300]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2424.011295]  ? lock_downgrade+0x6d0/0x6d0
[ 2424.012173]  ? down_write_killable+0x180/0x180
[ 2424.013120]  ext4_map_blocks+0x652/0x1970
[ 2424.013967]  ? kmem_cache_alloc+0x2a6/0x310
[ 2424.014843]  ? __kernel_text_address+0x9/0x40
[ 2424.015766]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2424.016683]  ? jbd2__journal_start+0xf3/0x7e0
[ 2424.017606]  ? __ext4_journal_start_sb+0x214/0x390
[ 2424.018602]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2424.019621]  ext4_iomap_begin+0x3ad/0x700
[ 2424.020479]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2424.021476]  ? kasan_save_stack+0x1b/0x40
[ 2424.022329]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2424.022341] udc-core: couldn't find an available UDC or it's busy
[ 2424.022374] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2424.023323]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2424.027248]  ? splice_direct_to_actor+0x387/0x980
[ 2424.028256]  ? do_splice_direct+0x1c4/0x290
[ 2424.028273]  ? do_sendfile+0x553/0x1090
[ 2424.028292]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2424.028309]  ? do_syscall_64+0x33/0x40
[ 2424.028328]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2424.028353]  iomap_apply+0x164/0x810
[ 2424.028374]  ? iomap_dio_rw+0x90/0x90
[ 2424.028397]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2424.028429]  ? mark_held_locks+0x9e/0xe0
[ 2424.028468]  ? filemap_check_errors+0xa5/0x150
[ 2424.028494]  __iomap_dio_rw+0x6cd/0x1110
[ 2424.028510]  ? iomap_dio_rw+0x90/0x90
[ 2424.028551]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2424.039886]  ? ext4_orphan_add+0x253/0x9e0
[ 2424.040747]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2424.041742]  ? ext4_empty_dir+0xae0/0xae0
[ 2424.042581]  ? jbd2__journal_start+0xf3/0x7e0
[ 2424.043510]  iomap_dio_rw+0x31/0x90
[ 2424.044251]  ext4_file_write_iter+0xb26/0x18e0
[ 2424.045193]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2424.046127]  ? kasan_save_stack+0x32/0x40
[ 2424.046958]  ? kasan_save_stack+0x1b/0x40
[ 2424.047799]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.048821]  ? iter_file_splice_write+0x16d/0xc30
[ 2424.049798]  ? direct_splice_actor+0x10f/0x170
[ 2424.050708]  ? splice_direct_to_actor+0x387/0x980
[ 2424.051694]  ? do_splice_direct+0x1c4/0x290
[ 2424.052574]  ? do_sendfile+0x553/0x1090
[ 2424.053379]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2424.054339]  do_iter_readv_writev+0x476/0x750
[ 2424.055253]  ? new_sync_write+0x660/0x660
[ 2424.056107]  ? selinux_file_permission+0x92/0x520
[ 2424.057118]  do_iter_write+0x191/0x670
[ 2424.057921]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.058813]  vfs_iter_write+0x70/0xa0
[ 2424.059596]  iter_file_splice_write+0x762/0xc30
[ 2424.060552]  ? generic_splice_sendpage+0x140/0x140
[ 2424.061555]  ? avc_policy_seqno+0x9/0x70
[ 2424.062365]  ? selinux_file_permission+0x92/0x520
[ 2424.063367]  ? lockdep_init_map_type+0x2c7/0x780
[ 2424.064334]  ? generic_splice_sendpage+0x140/0x140
[ 2424.065347]  direct_splice_actor+0x10f/0x170
[ 2424.066263]  splice_direct_to_actor+0x387/0x980
[ 2424.067226]  ? pipe_to_sendpage+0x380/0x380
[ 2424.068123]  ? do_splice_to+0x160/0x160
[ 2424.068941]  ? security_file_permission+0x24e/0x570
[ 2424.069972]  do_splice_direct+0x1c4/0x290
[ 2424.070830]  ? splice_direct_to_actor+0x980/0x980
[ 2424.071796]  ? selinux_file_permission+0x92/0x520
[ 2424.072784]  ? security_file_permission+0x24e/0x570
[ 2424.073813]  do_sendfile+0x553/0x1090
[ 2424.074604]  ? do_pwritev+0x270/0x270
[ 2424.075393]  ? wait_for_completion_io+0x270/0x270
[ 2424.076375]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2424.077318]  ? vfs_write+0x354/0xa70
[ 2424.078085]  __x64_sys_sendfile64+0x1d1/0x210
[ 2424.078999]  ? __ia32_sys_sendfile+0x220/0x220
[ 2424.079939]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2424.081003]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2424.082059]  do_syscall_64+0x33/0x40
[ 2424.082819]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2424.083864] RIP: 0033:0x7fb754cd3b19
[ 2424.084625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2424.088368] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2424.089911] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2424.091362] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2424.092805] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2424.094248] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2424.095698] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2424.175805] udc-core: couldn't find an available UDC or it's busy
[ 2424.177427] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:22:16 executing program 0:
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r2, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, 0x0)
r3 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r3, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})
openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})

18:22:16 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)=ANY=[@ANYBLOB="200000001000010000000000000000000b0000e9040000000000000004000080"], 0x20}}, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000980)=0x100)
getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f00000008c0), &(0x7f0000000900)=0x40)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x8, &(0x7f00000000c0)={&(0x7f0000000140)={0x54, 0x2c, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @pid}, @nested={0x38, 0x0, 0x0, 0x1, [@typed={0x32, 0x0, 0x0, 0x0, @fd}]}]}, 0x54}}, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000000dc0)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
sendmsg$AUDIT_GET(r0, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x3e8, 0x1, 0x70bd2b, 0x25dfdbfb, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x48894}, 0x50)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'wpan4\x00', <r5=>0x0})
sendmsg$IEEE802154_LLSEC_GETPARAMS(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000640)={&(0x7f0000000780)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="080025bd7000fbdbdf252400000008000200", @ANYRES32=0x0, @ANYBLOB="aeebb1f096e9779b01ff01000062810000007e57", @ANYRES32=r5, @ANYBLOB="7ea80578dedb898a4702ee0aa2d1b7884137cce6abc3e9990c"], 0x24}, 0x1, 0x0, 0x0, 0x200000c2}, 0xa000)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000006c0)=0x18, 0x4)
unshare(0x48020200)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r6, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000700)={&(0x7f0000000800)={0x90, 0x0, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'ip6tnl0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_SECCTX={0x25, 0x7, 'system_u:object_r:udev_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @multicast1}}]}, 0x90}, 0x1, 0x0, 0x0, 0x8804}, 0x40011)

[ 2424.212279] FAULT_INJECTION: forcing a failure.
[ 2424.212279] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2424.214925] CPU: 1 PID: 14666 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2424.216341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2424.218033] Call Trace:
[ 2424.218574]  dump_stack+0x107/0x167
[ 2424.219331]  should_fail.cold+0x5/0xa
[ 2424.220109]  __alloc_pages_nodemask+0x182/0x600
[ 2424.221054]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2424.222287]  ? lock_acquire+0x197/0x470
[ 2424.223086]  ? find_held_lock+0x2c/0x110
[ 2424.223932]  ? jbd2_transaction_committed+0x111/0x150
[ 2424.224969]  ? lock_downgrade+0x6d0/0x6d0
[ 2424.225813]  ? ext4_map_blocks+0x967/0x1970
[ 2424.226695]  alloc_pages_current+0x187/0x280
[ 2424.227595]  ? __kernel_text_address+0x9/0x40
[ 2424.228490]  push_pipe+0x2b5/0x6d0
[ 2424.229222]  iov_iter_zero+0x418/0xef0
[ 2424.230012]  ? ext4_iomap_begin+0x1a0/0x700
[ 2424.230888]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2424.232015]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2424.232999]  ? kasan_save_stack+0x1b/0x40
[ 2424.233832]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.234858]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2424.235712]  ? iomap_dio_rw+0x31/0x90
[ 2424.236473]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2424.237395]  iomap_dio_actor+0x40f/0x560
[ 2424.238218]  iomap_apply+0x289/0x810
[ 2424.238968]  ? iomap_dio_rw+0x90/0x90
[ 2424.239757]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2424.240919]  ? mark_held_locks+0x9e/0xe0
[ 2424.241752]  ? filemap_check_errors+0xa5/0x150
[ 2424.242673]  __iomap_dio_rw+0x6cd/0x1110
[ 2424.243492]  ? iomap_dio_rw+0x90/0x90
[ 2424.244521]  ? iomap_dio_bio_actor+0xef0/0xef0
18:22:16 executing program 5:
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)={0x28, 0x0, 0x0, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0xd, 0x0, 0x0, @ipv4=@dev}]}]}, 0x28}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000080)={0x17e})
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17a})
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000000)=0x3, 0x4)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r2, 0x4018f50b, &(0x7f0000000580)={0x1, 0x2, 0x6})
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x8, &(0x7f00000000c0)={&(0x7f0000000140)={0x54, 0x2c, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @pid}, @nested={0x38, 0x0, 0x0, 0x1, [@typed={0x32, 0x0, 0x0, 0x0, @fd}]}]}, 0x54}}, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x3e8, 0x1, 0x70bd2b, 0x25dfdbfb, "", ["", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x48894}, 0x50)

18:22:16 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 53)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:22:16 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000080)={0x0, r2, 0x9286, 0x0, 0xc39, 0xa6219d3})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001280)=@updsa={0x160, 0x10, 0x1, 0x0, 0x0, {{@in6=@mcast2, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {@in, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {0x0, 0x0, 0x0, 0x5}, {}, {}, 0x0, 0x0, 0xa}, [@algo_aead={0x70, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x120, 0x40, "976ae46d07d1812fd0664e95dee18314b91df2e10ff98153074f6a02e3550c030000001b"}}]}, 0x160}}, 0x0)
sendfile(r3, r0, &(0x7f0000000140)=0x7, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f00000011c0)=ANY=[@ANYBLOB="01000000010d6782b06100000018000000a2d5b347181050c9a13ebd1e37d385361120f7c151b25d78e32a5f8314ffff193db0747fa1c8d8b066ce448a48661b9daffbd62d3460bc80fb4497353d4644a5cff929466a0dadc7b5c33ca4a042f43b1a8a180d1b1c6cac644522ffcfc50cff6f308a", @ANYRES32=<r5=>r2, @ANYBLOB="00000000000000002e2f66696c6530004f3373c2f9c62dd629892577ceb0da43aa021b9f067f2c0d1cf013c370092fc4b673b3f47e686d7095f4f90732ad48aa233aaf89ea32"])
fsetxattr$trusted_overlay_redirect(r5, &(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x8, 0x1)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$nl_xfrm(r4, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001540)=ANY=[@ANYRES64=r6, @ANYRESDEC=r0, @ANYRESHEX, @ANYBLOB="000000000000000000000000000000000000000032000000e000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000070001200726663343130362867636d28616573292900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002001000040000000976ae46d07d1812fd0664e95dee18314b91df2e10ff98153074f6a02e3550c030000001b"], 0x160}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f00000000c0)={0x0, r1, 0x7fff, 0x6, 0x2, 0x2})
perf_event_open(&(0x7f0000000000)={0x6, 0x80, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fsetxattr(0xffffffffffffffff, &(0x7f0000000100)=@known='user.incfs.size\x00', &(0x7f0000001180)='),,\x00', 0x4, 0x1)
r8 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDGKBDIACR(r8, 0x4b4c, &(0x7f0000000180)=""/4096)

18:22:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b3a, &(0x7f00000000c0))

[ 2424.244552]  ? down_read+0x284/0x430
[ 2424.244568]  ? lock_chain_count+0x20/0x20
[ 2424.244585]  ? down_write+0x160/0x160
[ 2424.244610]  iomap_dio_rw+0x31/0x90
[ 2424.244631]  ext4_file_read_iter+0x2c7/0x4c0
[ 2424.244654]  generic_file_splice_read+0x455/0x6d0
[ 2424.244674]  ? pipe_to_user+0x170/0x170
[ 2424.244688]  ? _cond_resched+0x12/0x80
[ 2424.244709]  ? avc_policy_seqno+0x9/0x70
[ 2424.244726]  ? selinux_file_permission+0x92/0x520
[ 2424.244752]  ? lockdep_init_map_type+0x2c7/0x780
[ 2424.244774]  ? pipe_to_user+0x170/0x170
[ 2424.244793]  do_splice_to+0x10e/0x160
[ 2424.244815]  splice_direct_to_actor+0x2fe/0x980
[ 2424.244839]  ? pipe_to_sendpage+0x380/0x380
[ 2424.244862]  ? do_splice_to+0x160/0x160
[ 2424.244881]  ? security_file_permission+0x24e/0x570
[ 2424.244911]  do_splice_direct+0x1c4/0x290
[ 2424.244930]  ? splice_direct_to_actor+0x980/0x980
[ 2424.244945]  ? selinux_file_permission+0x92/0x520
[ 2424.244971]  ? security_file_permission+0x24e/0x570
[ 2424.245003]  do_sendfile+0x553/0x1090
[ 2424.245034]  ? do_pwritev+0x270/0x270
[ 2424.245054]  ? wait_for_completion_io+0x270/0x270
[ 2424.245076]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2424.245092]  ? vfs_write+0x354/0xa70
[ 2424.245119]  __x64_sys_sendfile64+0x1d1/0x210
[ 2424.245139]  ? __ia32_sys_sendfile+0x220/0x220
[ 2424.245163]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2424.245184]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2424.245208]  do_syscall_64+0x33/0x40
[ 2424.245228]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2424.245241] RIP: 0033:0x7f0f9f161b19
[ 2424.245262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2424.245272] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2424.245294] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2424.245305] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2424.245317] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2424.245328] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2424.245340] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2424.269518] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.7'.
18:22:17 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000239}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000007940)=[{{0x0, 0x0, 0x0}}], 0x500, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001100)={0x0}}, 0x41)

[ 2424.273370] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1000 sclass=netlink_route_socket pid=14679 comm=syz-executor.7
[ 2424.330099] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2424.336564] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2424.357024] FAULT_INJECTION: forcing a failure.
[ 2424.357024] name failslab, interval 1, probability 0, space 0, times 0
[ 2424.357049] CPU: 0 PID: 14688 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2424.357061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2424.357069] Call Trace:
[ 2424.357095]  dump_stack+0x107/0x167
[ 2424.357120]  should_fail.cold+0x5/0xa
[ 2424.357142]  ? create_object.isra.0+0x3a/0xa20
[ 2424.357165]  should_failslab+0x5/0x20
[ 2424.357183]  kmem_cache_alloc+0x5b/0x310
[ 2424.357217]  create_object.isra.0+0x3a/0xa20
[ 2424.357237]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.357263]  kmem_cache_alloc+0x159/0x310
[ 2424.357296]  __es_insert_extent+0x3a9/0x12f0
[ 2424.357343]  ext4_es_insert_extent+0x2dc/0xb10
[ 2424.357379]  ? ext4_es_scan_clu+0x2e0/0x2e0
[ 2424.357419]  ? down_write_killable+0x180/0x180
[ 2424.357456]  ext4_map_blocks+0x8e1/0x1970
18:22:17 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f0000000080)={&(0x7f0000000040)=""/41, 0x29, 0x4, 0x3ff})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r1, 0x1, 0x43, &(0x7f0000000100)={0x0, 0xea60}, 0x10)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
sendfile(r1, r0, 0x0, 0x2)

[ 2424.357486]  ? __kernel_text_address+0x9/0x40
[ 2424.357508]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2424.357533]  ? jbd2__journal_start+0xf3/0x7e0
[ 2424.357562]  ? __ext4_journal_start_sb+0x214/0x390
[ 2424.357581]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2424.357608]  ext4_iomap_begin+0x3ad/0x700
[ 2424.357645]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2424.357662]  ? kasan_save_stack+0x1b/0x40
[ 2424.357682]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2424.357711]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2424.357729]  ? splice_direct_to_actor+0x387/0x980
[ 2424.357744]  ? do_splice_direct+0x1c4/0x290
[ 2424.357777]  ? do_sendfile+0x553/0x1090
[ 2424.357795]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2424.357813]  ? do_syscall_64+0x33/0x40
[ 2424.357832]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2424.357859]  iomap_apply+0x164/0x810
[ 2424.357880]  ? iomap_dio_rw+0x90/0x90
[ 2424.357904]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2424.357941]  ? mark_held_locks+0x9e/0xe0
[ 2424.357983]  ? filemap_check_errors+0xa5/0x150
[ 2424.358010]  __iomap_dio_rw+0x6cd/0x1110
[ 2424.358027]  ? iomap_dio_rw+0x90/0x90
[ 2424.358071]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2424.358091]  ? ext4_orphan_add+0x253/0x9e0
[ 2424.358114]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2424.358138]  ? ext4_empty_dir+0xae0/0xae0
[ 2424.358156]  ? jbd2__journal_start+0xf3/0x7e0
[ 2424.358189]  iomap_dio_rw+0x31/0x90
[ 2424.358212]  ext4_file_write_iter+0xb26/0x18e0
[ 2424.358253]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2424.358270]  ? kasan_save_stack+0x32/0x40
18:22:17 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 54)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2424.358288]  ? kasan_save_stack+0x1b/0x40
[ 2424.358307]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.358323]  ? iter_file_splice_write+0x16d/0xc30
[ 2424.358339]  ? direct_splice_actor+0x10f/0x170
[ 2424.358355]  ? splice_direct_to_actor+0x387/0x980
[ 2424.358370]  ? do_splice_direct+0x1c4/0x290
[ 2424.358387]  ? do_sendfile+0x553/0x1090
[ 2424.358405]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2424.358437]  do_iter_readv_writev+0x476/0x750
[ 2424.358461]  ? new_sync_write+0x660/0x660
[ 2424.358480]  ? selinux_file_permission+0x92/0x520
[ 2424.358527]  do_iter_write+0x191/0x670
[ 2424.358554]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.358584]  vfs_iter_write+0x70/0xa0
[ 2424.358607]  iter_file_splice_write+0x762/0xc30
[ 2424.358650]  ? generic_splice_sendpage+0x140/0x140
[ 2424.358679]  ? avc_policy_seqno+0x9/0x70
[ 2424.358696]  ? selinux_file_permission+0x92/0x520
[ 2424.358725]  ? lockdep_init_map_type+0x2c7/0x780
[ 2424.358751]  ? generic_splice_sendpage+0x140/0x140
[ 2424.358773]  direct_splice_actor+0x10f/0x170
[ 2424.358797]  splice_direct_to_actor+0x387/0x980
[ 2424.358825]  ? pipe_to_sendpage+0x380/0x380
[ 2424.358850]  ? do_splice_to+0x160/0x160
[ 2424.358870]  ? security_file_permission+0x24e/0x570
[ 2424.358904]  do_splice_direct+0x1c4/0x290
[ 2424.358925]  ? splice_direct_to_actor+0x980/0x980
[ 2424.358941]  ? selinux_file_permission+0x92/0x520
[ 2424.358969]  ? security_file_permission+0x24e/0x570
[ 2424.359005]  do_sendfile+0x553/0x1090
[ 2424.359040]  ? do_pwritev+0x270/0x270
[ 2424.359062]  ? wait_for_completion_io+0x270/0x270
[ 2424.359086]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2424.359102]  ? vfs_write+0x354/0xa70
[ 2424.359132]  __x64_sys_sendfile64+0x1d1/0x210
[ 2424.359154]  ? __ia32_sys_sendfile+0x220/0x220
[ 2424.359180]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2424.359201]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2424.359227]  do_syscall_64+0x33/0x40
[ 2424.359248]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2424.359261] RIP: 0033:0x7fb754cd3b19
[ 2424.359314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2424.359326] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2424.359348] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2424.359360] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2424.359372] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2424.359384] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2424.359396] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2424.549785] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1000 sclass=netlink_route_socket pid=14692 comm=syz-executor.7
[ 2424.553353] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2424.725604] FAULT_INJECTION: forcing a failure.
[ 2424.725604] name failslab, interval 1, probability 0, space 0, times 0
[ 2424.727897] CPU: 1 PID: 14705 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2424.729279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2424.730960] Call Trace:
[ 2424.731514]  dump_stack+0x107/0x167
[ 2424.732258]  should_fail.cold+0x5/0xa
[ 2424.733039]  ? create_object.isra.0+0x3a/0xa20
[ 2424.733959]  should_failslab+0x5/0x20
[ 2424.734722]  kmem_cache_alloc+0x5b/0x310
[ 2424.735562]  ? quarantine_put+0x8b/0x1a0
[ 2424.736386]  create_object.isra.0+0x3a/0xa20
[ 2424.737271]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.738299]  kmem_cache_alloc+0x159/0x310
[ 2424.739137]  ? mempool_free_pages+0x20/0x20
[ 2424.740009]  mempool_alloc+0x148/0x360
[ 2424.740795]  ? mempool_resize+0x7d0/0x7d0
[ 2424.741628]  ? lock_downgrade+0x6d0/0x6d0
[ 2424.742473]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2424.743479]  bio_alloc_bioset+0x36e/0x600
[ 2424.744316]  ? bvec_alloc+0x2f0/0x2f0
[ 2424.745096]  ? iov_iter_npages+0x1fd/0xa70
[ 2424.745952]  iomap_dio_bio_actor+0x518/0xef0
[ 2424.746851]  iomap_dio_actor+0x36f/0x560
[ 2424.747687]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2424.748618]  ? do_syscall_64+0x33/0x40
[ 2424.749402]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2424.750477]  iomap_apply+0x289/0x810
[ 2424.751235]  ? iomap_dio_rw+0x90/0x90
[ 2424.752017]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2424.753182]  ? mark_held_locks+0x9e/0xe0
[ 2424.754028]  ? filemap_check_errors+0xa5/0x150
[ 2424.754951]  __iomap_dio_rw+0x6cd/0x1110
[ 2424.755787]  ? iomap_dio_rw+0x90/0x90
[ 2424.756574]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2424.757501]  ? ext4_orphan_add+0x253/0x9e0
[ 2424.758352]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2424.759356]  ? ext4_empty_dir+0xae0/0xae0
[ 2424.760187]  ? jbd2__journal_start+0xf3/0x7e0
[ 2424.761102]  iomap_dio_rw+0x31/0x90
[ 2424.761836]  ext4_file_write_iter+0xb26/0x18e0
[ 2424.762768]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2424.763696]  ? kasan_save_stack+0x32/0x40
[ 2424.764529]  ? kasan_save_stack+0x1b/0x40
[ 2424.765361]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.766378]  ? iter_file_splice_write+0x16d/0xc30
[ 2424.767344]  ? direct_splice_actor+0x10f/0x170
[ 2424.768263]  ? splice_direct_to_actor+0x387/0x980
[ 2424.769226]  ? do_splice_direct+0x1c4/0x290
[ 2424.770090]  ? do_sendfile+0x553/0x1090
[ 2424.770889]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2424.771856]  do_iter_readv_writev+0x476/0x750
[ 2424.772771]  ? new_sync_write+0x660/0x660
[ 2424.773605]  ? selinux_file_permission+0x92/0x520
[ 2424.774595]  do_iter_write+0x191/0x670
[ 2424.775396]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.776279]  vfs_iter_write+0x70/0xa0
[ 2424.777049]  iter_file_splice_write+0x762/0xc30
[ 2424.777999]  ? generic_splice_sendpage+0x140/0x140
[ 2424.778994]  ? avc_policy_seqno+0x9/0x70
[ 2424.779819]  ? selinux_file_permission+0x92/0x520
[ 2424.780800]  ? lockdep_init_map_type+0x2c7/0x780
[ 2424.781758]  ? generic_splice_sendpage+0x140/0x140
[ 2424.782745]  direct_splice_actor+0x10f/0x170
[ 2424.783646]  splice_direct_to_actor+0x387/0x980
[ 2424.784590]  ? pipe_to_sendpage+0x380/0x380
[ 2424.785460]  ? do_splice_to+0x160/0x160
[ 2424.786259]  ? security_file_permission+0x24e/0x570
[ 2424.787269]  do_splice_direct+0x1c4/0x290
[ 2424.788112]  ? splice_direct_to_actor+0x980/0x980
[ 2424.789075]  ? selinux_file_permission+0x92/0x520
[ 2424.790048]  ? security_file_permission+0x24e/0x570
[ 2424.791057]  do_sendfile+0x553/0x1090
[ 2424.791851]  ? do_pwritev+0x270/0x270
[ 2424.792617]  ? wait_for_completion_io+0x270/0x270
[ 2424.793583]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2424.794513]  ? vfs_write+0x354/0xa70
[ 2424.795270]  __x64_sys_sendfile64+0x1d1/0x210
[ 2424.796186]  ? __ia32_sys_sendfile+0x220/0x220
[ 2424.797109]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2424.798158]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2424.799202]  do_syscall_64+0x33/0x40
[ 2424.799956]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2424.800987] RIP: 0033:0x7fb754cd3b19
[ 2424.801739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2424.805435] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2424.806956] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2424.808403] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2424.809835] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2424.811264] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2424.812709] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:22:32 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 12)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:22:32 executing program 7:
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f0000000280)=ANY=[@ANYRESHEX])
r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x10000, 0x179)
r2 = inotify_init1(0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
io_setup(0x5, &(0x7f0000000080)=<r5=>0x0)
openat(0xffffffffffffffff, &(0x7f0000000140)='./file2\x00', 0x0, 0xa0)
io_submit(r5, 0x1, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x6, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x400000002, 0x0, 0x0, r4}])
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
umount2(&(0x7f00000000c0)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x5, 0x80, 0x2, 0xa, 0x1f, 0x4, 0x0, 0x1, 0x8840, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8000, 0x2, @perf_config_ext={0x7, 0x5}, 0x101, 0xfffffffffffffff8, 0x0, 0x2, 0x1f, 0x3, 0xb3c6, 0x0, 0x8}, 0x0, 0x0, r1, 0x9)
fcntl$dupfd(r3, 0x0, r0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
write(r6, &(0x7f00000003c0)="4d9c566ac34ee67db1b06c89dc565cca0ffa71af9b0368331ed50cdc8656830297d09b7fbe9772d21f86bfc6da3c562057ff523a14cb66b4ddf7422f82a9eb20e921a2c04227b2d567d85c20cecbbbd4de0c95af6065c3ce9f7723ce7ba1c9534dea28c98888eadbb4a48f00bbfe16cef66db4acfcdb206a3d24a36276de7ad5d77f779563591e2969d3be05da60cee70ce8610a05c5db084e162ac2b3ee31990b1aa514c09e85c21537c118c4938e094da1548f73d2c53d40e117b71cf7e3a0277c3f8b308afe2605ea1d01323f2628825a784c57d6cb418427cc4f9ef9301f603cc98fd7527376660a6076c5c70fcf71553437a44da40ed0c1767c41b52f56d8c0a65b5828672d23de9e5750b1159b112c3ebeadba7f2f7d75cad3de8059fbb5297de7f84c463bcb0065b48fbf828eb4f4a289bd213a0fe0eafb5fd7bf9438a1fa3298949803d269080f13c3d6363858793fd6f470ecc7095ee7c70a59c2504e59e451d4cd879492fae10b6715d1738819e9767c70700b5cf71135cf18269c98b022e0557fdfafbd2063c4024856d6a642921107acdb61fdd1def3bc4f132dff5dfb1cf1f6902a3f4b8de567eeaeda6b568b01e07e0cd069cfa49527b916b36c9608115fc71d1d7bf3aed4ef8847a298fc2768236b013a5c4342fcf303b051b49abe32fb65a12c603fe9a4b0f29f752b01a278ddc438d5064094ddbf66c183bfc762ee1c33427507f1a627ff05502f8dabaf175d0ce4c71add0bcc65d2fa4eda8aaa5eee173e56b416fe26b3ba64650f46ca4edeb223e50ee22beb2701f4dca2b61014ac3c65cbb75d021d7877769a938d34d19573605e76a4ffcb8de73884d5afe40325dbed9d7775e7c41d6623d24bc0097f543c00a66a9ed66762eb1768442398a70def438f911cbdeb7225397d9ceaea36acbc34bda6004fe66eed6940f74903d538ba82433a59f1acbf7724f239940c5c81b5c530a1621a08863142fbc49320138aca59c075f9cf60933e880c21214304ed7f315b411f5525b3695d1f220f928bc141946a0e1a481c5cc2ebbd3916a5c3f8d76def428b029d92e18caa8fd115621662874d0cc85859714d700f241456d5c1e17182571fa8c21ee2a577abcd37dfa15c32e9b137de3e0c8cfa7ca952d70235ba59c37e80669c20e3dac4a1d9d5a1a152298af06f59f0b237d16632d7edb462514b358c2dd943d2a7ce4e5b39e98dfafda0833d14fb4f7ca28249b0146d92bea50a6a134249c5457762d9fbc8a702cc9b78cba6cf526627e479cc5de7ad56c848fe237a8c7b94ab065dda78cf837ecfaf8e9dc5b61412bca426c1b93720f74525818ba12120fb0582c8734c1de5e029094a572a836e811d57a5ca14ae0a9c84fad6b6b7872f9e78b9db20bd44019984cd2fef7ba4e3576d09400361b4219a379da3913ced0d056c70efea1a353296ba8801ad3bcf71698b40bbf7001ad3f6e12333f01cb15d80138701dda62c26b69cdefeed7606f4984a66843e74d3355a4aa3978e2df433d241bcdeaf176885d267d6e6b9026824168fbf5906c54452b365d9272fcb844c185773ba912e94c509e8a4c653273354d84923d65bfa0a504799dec4ba6148e1612276f15cd45a725ba9fcfcbf811168fd80a9dc721fc61686b5ef8087aed1ba7a681cc11c826efc5a922e13b5807ca9f40c21a1f068ada018f22f0e0442c581a1f9f528fb709e3b46d233c2f80188e63e6229541333569c3a1d29afb4f601ebd06c34c0e9eead55178bc78a67d27573a1c3b137780ba77aae55b88ad5efca8a5145d749384d648a5a54bae0ddeb2e99cc7d9063297f2691b44c7fb9a31056d7f79bcd3b808b202e5dc03be4a9e9ec11f0bf9b9423fee9311336ce3a3f0ccb2ba702a885a74e075ef69bdf0ea5a8751190952c7917c6bc2b7daad5c629450505b7f71b69e8d7dba76815ed2734f824debd66c882dea6856987eb59271e73d0f673bbef9a822831e9f2a3cbc875f24086edee1cf39bafab5da81602c07a3fe7ae88e15a6e7e4bf567b8d9de7970f608c16db13a82f3f36f225eabde63a0e35abf7c9bda70fc2a523a9a1592b34b193e14fe447c3ed80fde30f9ebdd9ed63b4a4e2bb5c40250dcdb5868d695f55584486712b5e6001dd09b031e5f8aea04f44d0a1ea8218caf478e264a5de356508b04dd47f66c9803706d5cd07fd64681ff0b2a9f4e4504af466507babd96d7e3277ed7f54f4098502e95bdb25797f19c30198b8aaa9abc51670082b6e165bdb5e4ef2399b143ace65c6fa196943e704b92b67b7d018517934cf853e606ab8202f8b66f90f8b3136903aad1888c49dd44e655a4f14568a5290bcc3b0665e9469d24676841d9402d0f555e8b34963a5af56a2613c8a9cccc0a03347ec47ffdbcc2e264fd3d473a6033c39da8cd92010e44f5422119e16ccbb087b9790b0272318bd33833089f72366a077b99d378d94d1494fa9f367535d91333823adaf6e79c20e7a347cfd592362216f3620d58561da4273fc2d02e7602838bccf5964c73406b809e4116404912f45de7a6187a6ce798150da5d73c1f6709a2abb32f0342cf470ae54a8cc8a2593705e39f24e36d4bcde4124f44290f2986fd84ad497ae1fec311a4ba4f3ce212c7f8e2aed86f6b3bad806e416970fb7bf94be6caf650741c5b792c82f80e64ae97baddac9f66bf4f9358d0ae0a5e34349f8a310792c370f2c730f846638dd98ca3123ce072d4a02952684f0f6be95ee77b16b3552613a5e0036a7bb7a8f523e492c72fb2289a452602c8e71cf559b122370e6a06bebab9360668d40087e1644a7235f14064642990a45bcaabeef73af45e9bf16e3d9f404f40541ae88e5369d188bf902a50ddb661dc07962c2929431082177eab3becd1c713ace8ad740ab169f5f3ae2aa174b01423c6401addf0b1463c479782bbab2eb701d6290be9537bf877e8d2a49e0ca2180a9259110050cbf335135e4c75bad9c2cf164c25042a2a2dfa2101a20dd365e6f2111bc36270c89259551f2d0cbbc5bbc7b15db538d508ffec66a8b64acc96f61b67a3ccd13e1214f5fcc1986a353da3761230c5fd4af684633548e45e29b40c23e0bb83f0fe492af3a495f2c1d791550d428ce8c1ae954543ebb849e96584f073b9e6f8b82d0db7318b1a15b9d41d481eb8377814a96d1a26e1e0f2920798fe1c5c0dc546f0868d563f71f7a64dabc6b40cc40b852e244949bd27250477fa35b96667e3925a2074d4bd3e55aa4d9979444105d474638a77d320bf4c3e3dfa16bd56ce028ee0d662f1af6cb92d13a63be85bf948ba4f261c4db7e06bfb95f9434bfb7660811f2d8e2bf922ad9a86a9c200aeda28e69287ed0929756ca4ccd77de90fd91c537b2caeb9c71797ee8014d06691533104ac83bdef41fb38a878a35ed0d45734f1573c12a1971ad7ba8c9cde0001b22f9474984a1ad89ce67cd7810b88886174ef0d747c81e7e2925e4027781dc89b0abfd3111023d6526e612d123ed67c83f558bc2a8e9129b5ae9a5e81e069a03cdf071ddba4710e38ba7b7823b0a0ef6641d748dd0ca557e872b503fa602e15a271531f7c2aa0921fe3cb4677fe2f041b30f5e415a060fd124e39a958fda0351d10d8b53fb33b036f66efef739b412c5dfb2e2586c2863e267e07f773017e915755e3f22b4897e3f0d01e56a34b97b206e740f54385b83e251d0a3ce4399766e305b4eaf0b54ebc24728a51e886ca96da03522aa3090488d4b1587694eb2ad2bc4d2605e522a167f2b80c9f943797a7ac3122b5f2bf0586c4b7e4d630a535fae040886c4fb3fa733bb9e45ca5a6715a12b2806067ce5d782512a1559a5121d4ad669f1a3b6f9e8289ef66c3261a89398bfd7b88656b6643035e2927e8d9f03432bbca61bb16f539e0007b31549d470c6c0d1e1a32d0a033a7a2f0b91c9ac2d0b5648ccdcc4042ee3c479b6a0f1e41ea98936f9c4970ce3585e1bb5d9c8540bbecddde8a2a588b1846fbb3bd99cbb7872ed63de56c703e5619283b0c37925479a472a49b40aca46630b9859ff5905d8b579d46697f818709da971eca1c58575cbd8c16653f8d42df632a9505719ea0ff4a7560d55ec5738c11cec024ca2cc7d06b4e66dca17729c4d412ef538c5241f8d44a2efd67d7d20d211fccb3da7c9290ef668048d13f77e5f1bf4ddd197ca1ac5b6160b5fb7bad1c21d63f8e1fa6544b82f844074d71f7d3e4c9df78d38460fbf101e2ccc8f437b61a78707a948dacdd6b8faafe4654ad627babd7cd86b9ae4769241307745cad0f119a8d170f559ef93c0182b6644ca93c19237a71c5a4222445a472014a4e2824809a87c3e22de6dcf4576681ad6d4621a3e70ecd9c7302c3b045990919bb8241c7e159359d026bf36635f41989de7f761094a15ebcd882bbbb7bba81a8e5048dd9e6bc800024a5fffcaabcc2941f14a7eca6de95c84b5d738cb3702b059f8a542d9dd3ed0212d3be0f222b9f889ac9e2f301be33c00c5924cb9973ec9f27b55042db0a62540ae3984eb83d5945ffbac3dd407670fe722f9978305cc4ce897e9d03fcfb3117b1e285b1104b516b4937d18fab282814e93c2f4ed523e81052f9cc853d407363fe571d481807c7ee695c2a6f261704b12b34580e8d459cbe4bda711a60820773bbb38e88f19163ba6fd0e9c9f6f732be80afb1acbc61e985c2c5cf4fba7915c2e779d08ae4bead71e9d1b113e65daede6c6672da70e0cbec14b04a7fcd0ff7a78ca7347f7ba7551f0ef562414212aed3e50fd801844f26ea2a112619014ebef87ea8371f474987c2ead440d47550cc9f410e3e936c47063263559a89a7037a1b080749516a3d9a8491b7d150e15a6db9b99902944d08980fc7f0e20b2e0df6c61485fe976f34b398438de509c87b00f2b1963b359522bddbcd08945afb0a92c956ceed258e959b511169e2c798016dd0b7b02dfa11e5aa16ded6499f4fcff254dbb9a77db5b2c45f3917cddf7490ccc6a5f72c6877156f9ec1767d493bd9f28143bc24bf8ed617dc3530cc30673e9b8314680eefe8a78dde678cf2c0088416d813cc32aaf1c3af5a7c95a9982e334c9923e26ad26db087a2a89feb2a8360f23b8a49d102846e261f99762bf6579b95b055d4105993821bb2cd1e06fcce5a220371df4bd9833ab47394672b49947213621ba2eedc924994d6ea0e54da5c3833f9851e0395f9edf5737984f98298759fee1dccb78fea74565606d37eb2aa16f77025ad0037896792768e3d0177ad8dcace48d0407a51f0dd999dd067ccc6497b2598b193e5f258b6ddf074f53b3891d2de26ca5aa096ba9b3adb65967f9b860480a475c05026b06d44dfc1c94a5d8390ffae008441f1a251eb148a59a9e9d6e4d6aa3d46e4a5d15a6e588453bec0abd864b1dc35541b53a4a15ad233c82b99554d6699191e3b3a13d716391b9de830980015431b07cdd9d30254491ae7d8a2974bf1402b82da349ff0fed20e124288111e6fe3575f47212c72fa0a908c785e0e5164e45c02eaf63d8a83b7e7fcf30119a3b3228b083b6cbf763863b6e6c2a935fadbec2dd29b40ba7da79c223b380a179f60f8f97376c5d90923c304c7918f1d2c95524c33374094654b6915c1c558eadc7ffdae8487af51bc88b45702c56b85497780f088c3d9b3c86ddda5dc1c93e8bd33d645ff2df88b19338afe9c3eb3acdae5701bc5dd313f2df2acb677d9083fbe19a60a0e58bec03534c2cdf758534aa484ac97f475a43b9479fa942224eac9966de573db0663ac2877ed", 0x1000)
inotify_add_watch(r4, &(0x7f0000000180)='./file0\x00', 0x4000200)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f00000001c0)={0x800, 0x8a, 0x5, 0xffffffff, 0x0, "0d59f7931e3e6f37c24f3bbbd45a37aa1c8712", 0xb02, 0x5})

18:22:32 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x68000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:22:32 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 55)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:22:32 executing program 5:
syz_io_uring_setup(0x787d, &(0x7f0000000cc0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000d80))

18:22:32 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})
openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)

18:22:32 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b3b, &(0x7f00000000c0))

18:22:32 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x76, &(0x7f0000000240)=ANY=[@ANYBLOB="0180c200000000000000000086dd6096153f00403a00fc020000000000000000000000000000ff0200000000000900000000000000010200907800000000600009e60000000000000000000000000000ffff00000000fe8000000000000000000000000000bb3a00000000000000f63406a527f784d8"], 0x0)
ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000000000))

[ 2439.509511] FAULT_INJECTION: forcing a failure.
[ 2439.509511] name failslab, interval 1, probability 0, space 0, times 0
[ 2439.510829] CPU: 1 PID: 14718 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2439.511524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2439.512355] Call Trace:
[ 2439.512638]  dump_stack+0x107/0x167
[ 2439.513004]  should_fail.cold+0x5/0xa
[ 2439.513395]  ? mempool_alloc+0x148/0x360
[ 2439.513404]  ? mempool_free_pages+0x20/0x20
[ 2439.513419]  should_failslab+0x5/0x20
[ 2439.513430]  kmem_cache_alloc+0x5b/0x310
[ 2439.513442]  ? mempool_free_pages+0x20/0x20
[ 2439.513451]  mempool_alloc+0x148/0x360
[ 2439.513466]  ? mempool_resize+0x7d0/0x7d0
[ 2439.513480]  ? mark_lock+0xf5/0x2df0
[ 2439.513493]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2439.513511]  __sg_alloc_table+0x24e/0x390
[ 2439.513529]  sg_alloc_table_chained+0x9b/0x1f0
[ 2439.513538]  ? sg_alloc_table_chained+0x1f0/0x1f0
[ 2439.513551]  scsi_alloc_sgtables+0x236/0xaf0
[ 2439.513565]  ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0
[ 2439.513576]  ? lockdep_init_map_type+0x2c7/0x780
[ 2439.513593]  sd_init_command+0x516/0x3550
[ 2439.513612]  scsi_queue_rq+0xe73/0x27d0
[ 2439.513635]  blk_mq_dispatch_rq_list+0x372/0x1c30
[ 2439.513655]  ? elv_rb_del+0x50/0xa0
[ 2439.513664]  ? elv_rqhash_del+0x119/0x160
[ 2439.513675]  ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0
[ 2439.513691]  ? dd_dispatch_request+0x1c0/0x990
[ 2439.513706]  blk_mq_do_dispatch_sched+0x7f4/0xa00
[ 2439.513725]  ? blk_mq_sched_mark_restart_hctx+0x80/0x80
[ 2439.513737]  ? lock_acquire+0x197/0x470
[ 2439.513747]  ? hctx_lock+0x7f/0x200
[ 2439.513762]  __blk_mq_sched_dispatch_requests+0x2d7/0x450
[ 2439.513773]  ? blk_mq_do_dispatch_sched+0xa00/0xa00
[ 2439.513792]  blk_mq_sched_dispatch_requests+0xfb/0x180
[ 2439.513804]  __blk_mq_run_hw_queue+0x12c/0x290
[ 2439.513814]  ? blk_mq_start_request+0x3f0/0x3f0
[ 2439.513828]  ? do_raw_spin_lock+0x121/0x260
[ 2439.513843]  __blk_mq_delay_run_hw_queue+0x4f1/0x550
[ 2439.513857]  blk_mq_run_hw_queue+0x170/0x2f0
[ 2439.513869]  ? blk_mq_delay_run_hw_queues+0x1a0/0x1a0
[ 2439.513886]  ? dd_dispatch_request+0x990/0x990
[ 2439.513896]  blk_mq_sched_insert_requests+0x247/0x720
[ 2439.513912]  blk_mq_flush_plug_list+0x415/0x6c0
[ 2439.513927]  ? blk_mq_insert_requests+0x450/0x450
[ 2439.513943]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2439.513960]  blk_flush_plug_list+0x26c/0x3c0
[ 2439.513970]  ? mark_held_locks+0x9e/0xe0
[ 2439.513985]  ? blk_insert_cloned_request+0x460/0x460
[ 2439.514004]  blk_finish_plug+0x50/0xa0
[ 2439.514014]  __iomap_dio_rw+0xca0/0x1110
[ 2439.514035]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2439.514047]  ? ext4_orphan_add+0x253/0x9e0
[ 2439.514060]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2439.514072]  ? ext4_empty_dir+0xae0/0xae0
[ 2439.514082]  ? jbd2__journal_start+0xf3/0x7e0
[ 2439.514098]  iomap_dio_rw+0x31/0x90
[ 2439.514110]  ext4_file_write_iter+0xb26/0x18e0
[ 2439.514130]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2439.514139]  ? kasan_save_stack+0x32/0x40
[ 2439.514148]  ? kasan_save_stack+0x1b/0x40
[ 2439.514159]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2439.514169]  ? iter_file_splice_write+0x16d/0xc30
[ 2439.514177]  ? direct_splice_actor+0x10f/0x170
[ 2439.514185]  ? splice_direct_to_actor+0x387/0x980
[ 2439.514192]  ? do_splice_direct+0x1c4/0x290
[ 2439.514202]  ? do_sendfile+0x553/0x1090
[ 2439.514212]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2439.514228]  do_iter_readv_writev+0x476/0x750
[ 2439.514240]  ? new_sync_write+0x660/0x660
[ 2439.514250]  ? selinux_file_permission+0x92/0x520
[ 2439.514272]  do_iter_write+0x191/0x670
[ 2439.514287]  ? trace_hardirqs_on+0x5b/0x180
[ 2439.514302]  vfs_iter_write+0x70/0xa0
[ 2439.514314]  iter_file_splice_write+0x762/0xc30
[ 2439.514334]  ? generic_splice_sendpage+0x140/0x140
[ 2439.514349]  ? avc_policy_seqno+0x9/0x70
[ 2439.514358]  ? selinux_file_permission+0x92/0x520
[ 2439.514373]  ? lockdep_init_map_type+0x2c7/0x780
[ 2439.514385]  ? generic_splice_sendpage+0x140/0x140
18:22:32 executing program 2:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000080)=0x5, 0x4)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000001c0)='\x00\x00\x00\x00\x00\x00', 0x6}, {&(0x7f0000000340)="17148c73933e8b57e1d697ff7ec9c9ab79434f08b5a1c41d96ad12b474b046e07c02283705fb06d5411f46a6bde5b5eab7f0b1776096c2eb1f2de69016b1b9bbae31fc1d9cd194479486d0f3be3178", 0x4f}], 0x2}, 0x81)
r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000002c0), 0x2, 0x0)
sendfile(0xffffffffffffffff, r1, &(0x7f0000000300)=0x9, 0xfffffffffffffff9)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000005140)=ANY=[@ANYBLOB="240000002a00274e0000000000000000000000000440000009000080999e00009c000000848f0600fb61f1f07c07c9620d93535d11e3ea9932118f96ca7d07e5b4d698a49d3f44cecc4b4a23fb0b20d8619c8d4d73d6cfc929afab1520531f0424aaafc8e876160b24780cd9ac52c91a1f6591489cba2e5b49e31de6af7b66f3dd9367797ec89c41f782d9ffffa176ab63f6a69924fd21ce4a831eda02a856955aa2d9aaa56ea1dbed22ebff0000000000000059ff15ab2a8160f6a75391b4d9006f27311e174c64b5ad6427c679738f08ba23bb63368da0ac9535d263abc1d3fa23e7b9bfbbbfcc0bb6a3a4e66aa2a8"], 0x24}}, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)=""/170, 0xaa}], 0x1)
readv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000000)=""/29, 0x1d}, {&(0x7f0000000040)=""/193, 0xc1}], 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
dup2(r3, r2)
ftruncate(0xffffffffffffffff, 0x1000003)
ftruncate(r2, 0x3)
acct(0x0)
unshare(0x48020200)
recvmmsg(0xffffffffffffffff, &(0x7f0000005040)=[{{&(0x7f0000000500)=@qipcrtr, 0x80, &(0x7f0000000940)=[{&(0x7f0000000580)=""/65, 0x41}, {&(0x7f0000000280)=""/64, 0x40}, {&(0x7f0000000600)=""/165, 0xa5}, {&(0x7f00000006c0)=""/62, 0x3e}, {&(0x7f0000000700)=""/111, 0x6f}, {&(0x7f0000000780)=""/43, 0x2b}, {&(0x7f00000007c0)=""/189, 0xbd}, {&(0x7f0000000880)=""/145, 0x91}], 0x8, &(0x7f00000009c0)=""/4096, 0x1000}, 0x9}, {{&(0x7f00000019c0)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f0000001d00)=[{&(0x7f0000001a40)=""/219, 0xdb}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000001b40)=""/167, 0xa7}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000001c00)=""/206, 0xce}], 0x5, &(0x7f0000003e00)=""/4096, 0x1000}, 0x1}, {{&(0x7f0000004e00)=@pptp={0x18, 0x2, {0x0, @dev}}, 0x80, &(0x7f0000004f00)=[{&(0x7f0000004e80)=""/74, 0x4a}], 0x1, &(0x7f0000004f40)=""/209, 0xd1}, 0x20}], 0x3, 0x0, &(0x7f0000005100)={0x0, 0x989680})
fsync(r0)

[ 2439.514397]  direct_splice_actor+0x10f/0x170
[ 2439.514409]  splice_direct_to_actor+0x387/0x980
[ 2439.514422]  ? pipe_to_sendpage+0x380/0x380
[ 2439.514435]  ? do_splice_to+0x160/0x160
[ 2439.514447]  ? security_file_permission+0x24e/0x570
[ 2439.514463]  do_splice_direct+0x1c4/0x290
[ 2439.514474]  ? splice_direct_to_actor+0x980/0x980
[ 2439.514482]  ? selinux_file_permission+0x92/0x520
[ 2439.514496]  ? security_file_permission+0x24e/0x570
[ 2439.514514]  do_sendfile+0x553/0x1090
[ 2439.514531]  ? do_pwritev+0x270/0x270
[ 2439.514544]  ? wait_for_completion_io+0x270/0x270
[ 2439.514557]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2439.514566]  ? vfs_write+0x354/0xa70
[ 2439.514580]  __x64_sys_sendfile64+0x1d1/0x210
[ 2439.514592]  ? __ia32_sys_sendfile+0x220/0x220
[ 2439.514605]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2439.514617]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2439.514631]  do_syscall_64+0x33/0x40
[ 2439.514642]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2439.514650] RIP: 0033:0x7fb754cd3b19
[ 2439.514662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2439.514669] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2439.514681] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2439.514687] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2439.514694] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2439.514700] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2439.514707] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2439.538434] EXT4-fs (loop7): Unrecognized mount option "0xffffffffffffffff" or missing value
[ 2439.566660] udc-core: couldn't find an available UDC or it's busy
[ 2439.566691] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2439.573442] udc-core: couldn't find an available UDC or it's busy
[ 2439.672920] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:22:32 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(0x0, r0)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x30200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000140), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0xfffffffd}, 0x0, 0x9, 0xffffffffffffffff, 0x8)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000)
lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)=ANY=[], 0x10b, 0x1)

[ 2439.699419] FAULT_INJECTION: forcing a failure.
[ 2439.699419] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2439.702242] CPU: 1 PID: 14727 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2439.703913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2439.703921] Call Trace:
[ 2439.703961]  dump_stack+0x107/0x167
[ 2439.707044]  should_fail.cold+0x5/0xa
[ 2439.707991]  __alloc_pages_nodemask+0x182/0x600
[ 2439.708950]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2439.710380]  ? lock_acquire+0x197/0x470
[ 2439.711195]  ? find_held_lock+0x2c/0x110
[ 2439.712184]  ? jbd2_transaction_committed+0x111/0x150
[ 2439.713242]  ? lock_downgrade+0x6d0/0x6d0
[ 2439.714084]  ? ext4_map_blocks+0x967/0x1970
[ 2439.715120]  alloc_pages_current+0x187/0x280
[ 2439.716049]  ? __kernel_text_address+0x9/0x40
[ 2439.717136]  push_pipe+0x2b5/0x6d0
[ 2439.717876]  iov_iter_zero+0x418/0xef0
[ 2439.718810]  ? ext4_iomap_begin+0x1a0/0x700
[ 2439.719716]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2439.721041]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2439.722038]  ? kasan_save_stack+0x1b/0x40
[ 2439.722884]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2439.724105]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2439.724967]  ? iomap_dio_rw+0x31/0x90
[ 2439.725874]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2439.726813]  iomap_dio_actor+0x40f/0x560
[ 2439.727813]  iomap_apply+0x289/0x810
[ 2439.728577]  ? iomap_dio_rw+0x90/0x90
[ 2439.729491]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2439.730670]  ? mark_held_locks+0x9e/0xe0
[ 2439.731527]  ? filemap_check_errors+0xa5/0x150
[ 2439.732642]  __iomap_dio_rw+0x6cd/0x1110
[ 2439.733478]  ? iomap_dio_rw+0x90/0x90
[ 2439.734407]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2439.735338]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2439.736612]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2439.737718]  ? trace_hardirqs_on+0x5b/0x180
[ 2439.738771]  ? ext4_inode_journal_mode+0xfd/0x4f0
[ 2439.739773]  iomap_dio_rw+0x31/0x90
[ 2439.740651]  ext4_file_read_iter+0x2c7/0x4c0
[ 2439.741554]  generic_file_splice_read+0x455/0x6d0
[ 2439.742707]  ? pipe_to_user+0x170/0x170
[ 2439.743526]  ? _cond_resched+0x5d/0x80
[ 2439.744468]  ? avc_policy_seqno+0x9/0x70
[ 2439.745297]  ? selinux_file_permission+0x92/0x520
[ 2439.746457]  ? lockdep_init_map_type+0x2c7/0x780
[ 2439.747427]  ? pipe_to_user+0x170/0x170
[ 2439.748404]  do_splice_to+0x10e/0x160
[ 2439.749192]  splice_direct_to_actor+0x2fe/0x980
[ 2439.750308]  ? pipe_to_sendpage+0x380/0x380
[ 2439.751196]  ? do_splice_to+0x160/0x160
[ 2439.752083]  ? security_file_permission+0x24e/0x570
[ 2439.753286]  do_splice_direct+0x1c4/0x290
[ 2439.754132]  ? splice_direct_to_actor+0x980/0x980
[ 2439.755280]  ? selinux_file_permission+0x92/0x520
[ 2439.756280]  ? security_file_permission+0x24e/0x570
[ 2439.757313]  do_sendfile+0x553/0x1090
[ 2439.758110]  ? do_pwritev+0x270/0x270
[ 2439.758888]  ? wait_for_completion_io+0x270/0x270
[ 2439.759888]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2439.760825]  ? vfs_write+0x354/0xa70
[ 2439.761600]  __x64_sys_sendfile64+0x1d1/0x210
[ 2439.762509]  ? __ia32_sys_sendfile+0x220/0x220
[ 2439.763438]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2439.764506]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2439.765553]  do_syscall_64+0x33/0x40
[ 2439.766312]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2439.767350] RIP: 0033:0x7f0f9f161b19
[ 2439.768116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2439.771829] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2439.773369] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2439.774802] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2439.776247] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2439.777687] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2439.779114] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:22:32 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b3c, &(0x7f00000000c0))

18:22:32 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 56)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:22:32 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x279b3dfe, 0x0, 0x0, 0x0, 0xfffffffa, 0xfff})

18:22:32 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[])
setxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), &(0x7f0000000240)={0x0, 0xfb, 0x7a, 0x2, 0x9, "71d92e94bd8801f3d6894508a5811aef", "58af89dc2f27d8327fd3a230392870ca176e6448b0f89dbd832efe78a26b9e7b516390d20c75ee4b6cf873adcd3e43887d579340a6b6d21d96145c5470b9526ffa4b7ea7e3a4d14919b327a8b51a7f83622a95fc16cd646dfda7221bff61dc998f8e022492"}, 0x7a, 0x3)
chdir(&(0x7f0000000040)='./file0\x00')
sync_file_range(r0, 0x401, 0x2, 0x2)
r1 = syz_mount_image$nfs4(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x6, 0x4, &(0x7f00000005c0)=[{&(0x7f0000000340)="b95b3fa418424dd5b26d157fc1cdf6e59e4359dec05b10401f4cf43366b368a6e7f94913df0f8d74e0253dc5ea625e9addd9f9634a5951bfae6a21ab9dee0e12dc558c60a7a7184f994d8a32bee991e90b6a615892febf5ca573ef0edcb53cdacc0feeb0539d8bf77258ede4ef0114520b08f93b4cbff73742", 0x79, 0x31}, {&(0x7f00000003c0)="9a0774105fde01a7bf45f032d20e80b8b4e3edbfdbd0e77e003e321f5b63291a7ab3958439f894eb84f2f40072f98c959c8c115c8ebd9c92b702e7f43bb8113bccbe2115d68dda6c6049a46110c9fdd75556e80980d9a511434452764583e70173f16615ce174c9ad0d62cc824bd933517fd03c0f5aed31c4f9e9deb1c49032607e30d2e1116e949f0d3380b1cfba7d019cb27f843abfe94e0f8baa8fa829178b66ef562957f6aac489a02d92c1c36b3e09725302d7f55731e59754f23cfaedf2a67f80ee741d62a8db46d", 0xcb, 0x40}, {&(0x7f00000004c0)="af0ee7e7e87e4a4dcfa601f4605c601b", 0x10, 0xe0d6eef}, {&(0x7f0000000500)="e12ec7912c8d3c26f5f0d54b8d7ebc3fa860c9a5d2ef084c484404f8cde91a910040f31d7a407004f6db04c6da4e468dd2a1d41194b5bf74ba1204aa867dc1019af4a848530d3aeb6a74c9fb99828ce826fbf43c9b39bde575c437d5892474e18106e42d865d87867729e377a2dab3349b52a6ba79db8d4e935db03dc52312c22a8af049fa5674cd1eb766eb881c9476e5a41248", 0x94, 0x5}], 0x20, &(0x7f0000000640)={[{'[\'&'}], [{@obj_user={'obj_user', 0x3d, '&'}}, {@fowner_lt={'fowner<', 0xee00}}, {@audit}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@smackfshat={'smackfshat', 0x3d, '[#-#'}}]})
getdents64(r1, &(0x7f00000006c0)=""/61, 0x3d)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
dup2(r0, r0)
write$P9_RREADLINK(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000017000082c8874b4861e6"], 0x10)
ftruncate(r2, 0x4)

18:22:32 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x6c000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:22:32 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='cpuset\x00')
readv(r0, &(0x7f0000001540)=[{&(0x7f0000000140)=""/44, 0x2c}], 0x1)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)="ff4344303031", 0x6, 0x8800}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000030000000000000000000000000000000054461a010e7809140b2a3a087809140b", 0x62, 0xb800}], 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="f361835165e41ce85c5bbbcbd731bf3b22e624b4feec"])
r3 = openat(r2, &(0x7f0000000140)='./file0\x00', 0xc00, 0x22)
close(0xffffffffffffffff)
signalfd(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x9c, 0x9, 0x40, 0x0, 0x0, 0x3, 0x2001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0xbc8ba210d849ce17, @perf_bp={&(0x7f0000000040), 0x9}, 0x81, 0x75f6, 0x9, 0x5, 0x4, 0x0, 0x1, 0x0, 0x4}, 0x0, 0x5, r1, 0xa)
close(r3)

[ 2439.964600] FAULT_INJECTION: forcing a failure.
[ 2439.964600] name failslab, interval 1, probability 0, space 0, times 0
[ 2439.967006] CPU: 1 PID: 14752 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2439.968526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2439.970170] Call Trace:
[ 2439.970708]  dump_stack+0x107/0x167
[ 2439.971439]  should_fail.cold+0x5/0xa
[ 2439.972212]  ? create_object.isra.0+0x3a/0xa20
[ 2439.973125]  should_failslab+0x5/0x20
[ 2439.973883]  kmem_cache_alloc+0x5b/0x310
[ 2439.974686]  ? quarantine_put+0x8b/0x1a0
[ 2439.975507]  create_object.isra.0+0x3a/0xa20
[ 2439.976402]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2439.977530]  kmem_cache_alloc+0x159/0x310
[ 2439.978454]  ? mempool_free_pages+0x20/0x20
[ 2439.979411]  mempool_alloc+0x148/0x360
[ 2439.980302]  ? mempool_resize+0x7d0/0x7d0
[ 2439.981220]  ? lock_downgrade+0x6d0/0x6d0
[ 2439.982156]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2439.983253]  bio_alloc_bioset+0x36e/0x600
[ 2439.984185]  ? bvec_alloc+0x2f0/0x2f0
[ 2439.985037]  ? iov_iter_npages+0x1fd/0xa70
[ 2439.985982]  iomap_dio_bio_actor+0x518/0xef0
[ 2439.986978]  iomap_dio_actor+0x36f/0x560
[ 2439.987901]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2439.988926]  ? do_syscall_64+0x33/0x40
[ 2439.989792]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2439.990974]  iomap_apply+0x289/0x810
[ 2439.991815]  ? iomap_dio_rw+0x90/0x90
[ 2439.992668]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2439.993952]  ? mark_held_locks+0x9e/0xe0
[ 2439.994876]  ? filemap_check_errors+0xa5/0x150
[ 2439.995904]  __iomap_dio_rw+0x6cd/0x1110
[ 2439.996799]  ? iomap_dio_rw+0x90/0x90
[ 2439.997665]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2439.998677]  ? ext4_orphan_add+0x253/0x9e0
[ 2439.999638]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2440.000726]  ? ext4_empty_dir+0xae0/0xae0
[ 2440.001640]  ? jbd2__journal_start+0xf3/0x7e0
[ 2440.002643]  iomap_dio_rw+0x31/0x90
[ 2440.003452]  ext4_file_write_iter+0xb26/0x18e0
[ 2440.004492]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2440.005498]  ? kasan_save_stack+0x32/0x40
[ 2440.006412]  ? kasan_save_stack+0x1b/0x40
[ 2440.007329]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2440.008472]  ? iter_file_splice_write+0x16d/0xc30
[ 2440.009530]  ? direct_splice_actor+0x10f/0x170
[ 2440.010534]  ? splice_direct_to_actor+0x387/0x980
[ 2440.011600]  ? do_splice_direct+0x1c4/0x290
[ 2440.012551]  ? do_sendfile+0x553/0x1090
[ 2440.013433]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2440.014470]  do_iter_readv_writev+0x476/0x750
[ 2440.015465]  ? new_sync_write+0x660/0x660
[ 2440.016420]  ? selinux_file_permission+0x92/0x520
[ 2440.017511]  do_iter_write+0x191/0x670
[ 2440.018401]  ? trace_hardirqs_on+0x5b/0x180
[ 2440.019363]  vfs_iter_write+0x70/0xa0
[ 2440.020243]  iter_file_splice_write+0x762/0xc30
[ 2440.021304]  ? generic_splice_sendpage+0x140/0x140
[ 2440.022424]  ? avc_policy_seqno+0x9/0x70
[ 2440.023324]  ? selinux_file_permission+0x92/0x520
[ 2440.024420]  ? lockdep_init_map_type+0x2c7/0x780
[ 2440.025371]  ? generic_splice_sendpage+0x140/0x140
[ 2440.026354]  direct_splice_actor+0x10f/0x170
[ 2440.027235]  splice_direct_to_actor+0x387/0x980
[ 2440.028185]  ? pipe_to_sendpage+0x380/0x380
[ 2440.029052]  ? do_splice_to+0x160/0x160
[ 2440.029851]  ? security_file_permission+0x24e/0x570
[ 2440.030856]  do_splice_direct+0x1c4/0x290
[ 2440.031704]  ? splice_direct_to_actor+0x980/0x980
[ 2440.032685]  ? selinux_file_permission+0x92/0x520
[ 2440.033650]  ? security_file_permission+0x24e/0x570
[ 2440.034665]  do_sendfile+0x553/0x1090
[ 2440.035463]  ? do_pwritev+0x270/0x270
[ 2440.036241]  ? wait_for_completion_io+0x270/0x270
[ 2440.037241]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2440.038173]  ? vfs_write+0x354/0xa70
[ 2440.038942]  __x64_sys_sendfile64+0x1d1/0x210
[ 2440.039919]  ? __ia32_sys_sendfile+0x220/0x220
[ 2440.040856]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2440.041971]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2440.043064]  do_syscall_64+0x33/0x40
[ 2440.043850]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2440.044915] RIP: 0033:0x7fb754cd3b19
[ 2440.045690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2440.049476] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2440.051067] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2440.052542] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2440.054028] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2440.055529] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2440.056964] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:22:47 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 13)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:22:47 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x74000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:22:47 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b3d, &(0x7f00000000c0))

18:22:47 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x50000, 0x131)

18:22:47 executing program 2:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x1, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
syz_open_dev$hiddev(&(0x7f0000000100), 0x3, 0x200200)
mprotect(&(0x7f0000ff9000/0x7000)=nil, 0x7000, 0x0)
preadv(r0, &(0x7f0000000080)=[{&(0x7f00000003c0)=""/125, 0x7d}], 0x1, 0x8, 0x1)
socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = fsmount(r0, 0x0, 0x88)
sendmmsg$inet6(r1, 0x0, 0x0, 0x0)
ioctl$CDROMSUBCHNL(0xffffffffffffffff, 0x530b, &(0x7f0000000240)={0x3, 0x3, 0x0, 0xd, 0x7f, 0x3f, @lba=0x7, @msf={0x9, 0x6, 0x4}})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_buf(r2, 0x0, 0x10, &(0x7f00000001c0)=""/128, &(0x7f0000000140)=0x80)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000180)={0x2, 0x2, 0x2, 0x1, 0x1, 0xd7})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x105142, 0x110)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000005)
io_submit(0x0, 0x3, &(0x7f0000019380)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f0000000300)="d2164963737e5f8a1e6cbf60", 0xc, 0x0, 0x0, 0x0, r4}, 0x0, 0x0])
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e23, @remote}, 0x10)

18:22:47 executing program 5:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1f, "77004a6efdff002200000200cdab000245b00f", 0x1})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = socket$inet(0x2, 0xa, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000003)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
write$binfmt_elf64(r4, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x2, 0x2, 0x4, 0xffffffff, 0x3, 0x6, 0x3ff, 0x2ce, 0x40, 0x132, 0x1, 0x3ff, 0x38, 0x2, 0x7f, 0xfb, 0x499}, [{0x3, 0x8001, 0xfffffffffffffff8, 0x8, 0x6, 0x7, 0x4, 0x15}, {0x1, 0x4c3a9324, 0xffffffff, 0x2, 0x29, 0x6, 0x4, 0x9}], "8fdd3d3ae2173bea23e1c5d21e00e242ddeb", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x9c2)
ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000))
lseek(r2, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:22:47 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 57)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:22:47 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
recvmmsg(r0, &(0x7f0000006480)=[{{&(0x7f0000000440)=@ax25={{0x3, @rose}, [@remote, @null, @null, @default, @remote, @default, @rose, @rose]}, 0x80, &(0x7f0000001800)=[{&(0x7f00000004c0)=""/204, 0xcc}, {&(0x7f00000005c0)=""/244, 0xf4}, {&(0x7f00000006c0)=""/182, 0xb6}, {&(0x7f0000000780)=""/71, 0x47}, {&(0x7f0000000800)=""/4096, 0x1000}], 0x5, &(0x7f0000001880)=""/77, 0x4d}, 0x5}, {{&(0x7f0000001900)=@tipc, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001980)=""/185, 0xb9}, {0xfffffffffffffffe}, {&(0x7f0000001a40)=""/200, 0xc8}, {&(0x7f0000001b40)=""/76, 0x4c}, {&(0x7f0000001bc0)=""/251, 0xfb}], 0x5, &(0x7f0000001e00)=""/134, 0x86}, 0x14}, {{&(0x7f0000001ec0)=@caif=@dbg, 0x80, &(0x7f00000020c0)=[{&(0x7f0000001d40)=""/43, 0x2b}, {&(0x7f0000001f40)=""/246, 0xf6}, {&(0x7f0000002040)=""/34, 0x22}, {&(0x7f0000002080)=""/53, 0x35}, {&(0x7f0000002f40)=""/4096, 0x1000}], 0x5, &(0x7f0000002140)=""/128, 0x80}, 0x3e5}, {{&(0x7f00000021c0)=@l2, 0x80, &(0x7f00000023c0)=[{&(0x7f0000002240)=""/116, 0x74}, {&(0x7f00000022c0)=""/170, 0xaa}, {&(0x7f0000002380)=""/18, 0x12}], 0x3, &(0x7f0000002400)=""/20, 0x14}, 0x9}, {{&(0x7f0000002440)=@alg, 0x80, &(0x7f0000002840)=[{&(0x7f00000024c0)}, {&(0x7f0000002500)=""/206, 0xce}, {&(0x7f0000002600)=""/44, 0x2c}, {&(0x7f0000002640)=""/165, 0xa5}, {&(0x7f0000002700)=""/14, 0xe}, {&(0x7f0000003f40)=""/4096, 0x1000}, {&(0x7f0000002740)=""/228, 0xe4}], 0x7, &(0x7f00000028c0)=""/142, 0x8e}, 0x6}, {{&(0x7f0000002980)=@generic, 0x80, &(0x7f0000002ac0)=[{&(0x7f0000002a00)=""/180, 0xb4}], 0x1}, 0x6}, {{0x0, 0x0, &(0x7f0000002c80)=[{&(0x7f0000002b00)=""/141, 0x8d}, {&(0x7f0000002bc0)=""/26, 0x1a}, {&(0x7f0000002c00)=""/70, 0x46}], 0x3, &(0x7f0000002cc0)=""/70, 0x46}, 0x1000}, {{0x0, 0x0, &(0x7f0000006200)=[{&(0x7f0000002d40)=""/181, 0xb5}, {&(0x7f0000002e00)=""/3, 0x3}, {&(0x7f0000002e40)=""/109, 0x6d}, {&(0x7f0000004f40)=""/132, 0x84}, {&(0x7f0000005000)=""/4096, 0x1000}, {&(0x7f0000002ec0)=""/38, 0x26}, {&(0x7f0000006000)=""/227, 0xe3}, {&(0x7f0000006100)=""/203, 0xcb}], 0x8, &(0x7f0000006280)=""/162, 0xa2}, 0x65}, {{&(0x7f0000006340)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f00000063c0), 0x0, &(0x7f0000006400)=""/83, 0x53}, 0x5}], 0x9, 0x2, &(0x7f0000006700))
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2000)
pread64(0xffffffffffffffff, &(0x7f0000000040)=""/127, 0x7f, 0x8)
r2 = signalfd4(r0, &(0x7f0000000140)={[0x4]}, 0x8, 0x80800)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
r5 = epoll_create1(0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000001c0)="00715f608ed179656b1ade9375eb354f7336397a8423229375c526e9e5533ed865e0c65a6b9f0f614800cb6533bc409c9c6c2817e09a319af98d3e997e86f1801ca1bc3652cf", 0x46}], 0x1, &(0x7f00000063c0)=ANY=[@ANYBLOB="0960d6aae344cd6da6b94bc4f96bddcb943c210700000000000000", @ANYRES32=r0, @ANYRES32=r4, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r5, @ANYRES32=r6], 0x28, 0x4040000}, 0x4000000)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0xc004)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x1001000, &(0x7f0000000380)=ANY=[@ANYBLOB="7472616e733d756e69782c63466368653d6c6fb9af652c613ab3f4b73d2b2c2c736d61636b66736465663d706970656673002c7063723d5b303030303030303030303030303030303034352c7569643e", @ANYRESDEC=0x0, @ANYBLOB=',fsname=pip'])
mount$9p_unix(0x0, &(0x7f0000002f00)='./file0/../file0\x00', 0x0, 0x1f3000, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f00000024c0)='./file0/../file0\x00', &(0x7f0000000180), 0x1002040, 0x0)

18:22:47 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x7a000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:22:47 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000340)={0x5, 0x20, '\x00', 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})

[ 2455.156546] FAULT_INJECTION: forcing a failure.
[ 2455.156546] name failslab, interval 1, probability 0, space 0, times 0
[ 2455.157781] CPU: 1 PID: 14787 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2455.158509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2455.159410] Call Trace:
[ 2455.159714]  dump_stack+0x107/0x167
[ 2455.160111]  should_fail.cold+0x5/0xa
[ 2455.160517]  ? bvec_alloc+0x148/0x2f0
[ 2455.160975]  should_failslab+0x5/0x20
[ 2455.161464]  kmem_cache_alloc+0x5b/0x310
[ 2455.161902]  bvec_alloc+0x148/0x2f0
[ 2455.162296]  bio_alloc_bioset+0x40a/0x600
[ 2455.162828]  ? bvec_alloc+0x2f0/0x2f0
[ 2455.163216]  ? iov_iter_npages+0x1fd/0xa70
[ 2455.163721]  iomap_dio_bio_actor+0x518/0xef0
[ 2455.164274]  iomap_dio_actor+0x36f/0x560
[ 2455.164745]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2455.165265]  ? do_syscall_64+0x33/0x40
[ 2455.165771]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2455.166371]  iomap_apply+0x289/0x810
[ 2455.166821]  ? iomap_dio_rw+0x90/0x90
[ 2455.167261]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2455.168062]  ? mark_held_locks+0x9e/0xe0
[ 2455.168517]  ? filemap_check_errors+0xa5/0x150
[ 2455.169019]  __iomap_dio_rw+0x6cd/0x1110
[ 2455.169532]  ? iomap_dio_rw+0x90/0x90
[ 2455.169955]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2455.170519]  ? ext4_orphan_add+0x253/0x9e0
[ 2455.171039]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2455.171665]  ? ext4_empty_dir+0xae0/0xae0
[ 2455.172136]  ? jbd2__journal_start+0xf3/0x7e0
[ 2455.172639]  iomap_dio_rw+0x31/0x90
[ 2455.173117]  ext4_file_write_iter+0xb26/0x18e0
[ 2455.173629]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2455.174183]  ? kasan_save_stack+0x32/0x40
[ 2455.174664]  ? kasan_save_stack+0x1b/0x40
[ 2455.175179]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2455.175779]  ? iter_file_splice_write+0x16d/0xc30
[ 2455.176303]  ? direct_splice_actor+0x10f/0x170
[ 2455.176878]  ? splice_direct_to_actor+0x387/0x980
[ 2455.177416]  ? do_splice_direct+0x1c4/0x290
[ 2455.177939]  ? do_sendfile+0x553/0x1090
[ 2455.178408]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2455.178994]  do_iter_readv_writev+0x476/0x750
[ 2455.179487]  ? new_sync_write+0x660/0x660
[ 2455.179961]  ? selinux_file_permission+0x92/0x520
[ 2455.180551]  do_iter_write+0x191/0x670
[ 2455.180995]  ? trace_hardirqs_on+0x5b/0x180
[ 2455.181511]  vfs_iter_write+0x70/0xa0
[ 2455.181982]  iter_file_splice_write+0x762/0xc30
[ 2455.182579]  ? generic_splice_sendpage+0x140/0x140
[ 2455.183122]  ? avc_policy_seqno+0x9/0x70
[ 2455.183560]  ? selinux_file_permission+0x92/0x520
[ 2455.184176]  ? lockdep_init_map_type+0x2c7/0x780
[ 2455.184713]  ? generic_splice_sendpage+0x140/0x140
[ 2455.185281]  direct_splice_actor+0x10f/0x170
[ 2455.185859]  splice_direct_to_actor+0x387/0x980
[ 2455.186397]  ? pipe_to_sendpage+0x380/0x380
[ 2455.186873]  ? do_splice_to+0x160/0x160
[ 2455.187609]  ? security_file_permission+0x24e/0x570
[ 2455.188202]  do_splice_direct+0x1c4/0x290
[ 2455.188697]  ? splice_direct_to_actor+0x980/0x980
[ 2455.189281]  ? selinux_file_permission+0x92/0x520
[ 2455.189904]  ? security_file_permission+0x24e/0x570
[ 2455.190453]  do_sendfile+0x553/0x1090
[ 2455.190871]  ? do_pwritev+0x270/0x270
[ 2455.191342]  ? wait_for_completion_io+0x270/0x270
[ 2455.191899]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2455.192454]  ? vfs_write+0x354/0xa70
[ 2455.192955]  __x64_sys_sendfile64+0x1d1/0x210
[ 2455.193482]  ? __ia32_sys_sendfile+0x220/0x220
[ 2455.193991]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2455.194639]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2455.195193]  do_syscall_64+0x33/0x40
[ 2455.195660]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2455.196292] RIP: 0033:0x7fb754cd3b19
[ 2455.196739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2455.198873] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2455.199790] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2455.200661] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2455.201431] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2455.202271] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2455.203105] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2455.213455] udc-core: couldn't find an available UDC or it's busy
[ 2455.214318] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2455.223232] udc-core: couldn't find an available UDC or it's busy
[ 2455.224088] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2455.262362] FAULT_INJECTION: forcing a failure.
[ 2455.262362] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2455.263904] CPU: 1 PID: 14791 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2455.264612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2455.265512] Call Trace:
[ 2455.265803]  dump_stack+0x107/0x167
[ 2455.266183]  should_fail.cold+0x5/0xa
[ 2455.266582]  __alloc_pages_nodemask+0x182/0x600
[ 2455.267058]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2455.267679]  ? lock_acquire+0x197/0x470
[ 2455.268129]  ? find_held_lock+0x2c/0x110
[ 2455.268548]  ? mark_lock+0xf5/0x2df0
[ 2455.268938]  ? jbd2_transaction_committed+0x111/0x150
[ 2455.269471]  ? lock_downgrade+0x6d0/0x6d0
[ 2455.269906]  ? ext4_map_blocks+0x967/0x1970
[ 2455.270358]  alloc_pages_current+0x187/0x280
[ 2455.270817]  ? __kernel_text_address+0x9/0x40
[ 2455.271284]  push_pipe+0x2b5/0x6d0
[ 2455.271661]  iov_iter_zero+0x418/0xef0
[ 2455.272103]  ? mark_held_locks+0x9e/0xe0
[ 2455.272526]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2455.273121]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2455.273668]  ? trace_hardirqs_on+0x5b/0x180
[ 2455.274148]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2455.274692]  iomap_dio_actor+0x40f/0x560
[ 2455.275121]  ? iomap_apply+0x18f/0x810
[ 2455.275518]  ? iomap_apply+0x19d/0x810
[ 2455.275929]  iomap_apply+0x289/0x810
[ 2455.276316]  ? iomap_dio_rw+0x90/0x90
[ 2455.276715]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2455.277349]  ? filemap_check_errors+0xa5/0x150
[ 2455.277824]  __iomap_dio_rw+0x6cd/0x1110
[ 2455.278239]  ? iomap_dio_rw+0x90/0x90
[ 2455.278626]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2455.279124]  ? down_read+0x284/0x430
[ 2455.279506]  ? lock_chain_count+0x20/0x20
[ 2455.279961]  ? down_write+0x160/0x160
[ 2455.280353]  iomap_dio_rw+0x31/0x90
[ 2455.280739]  ext4_file_read_iter+0x2c7/0x4c0
[ 2455.281206]  generic_file_splice_read+0x455/0x6d0
[ 2455.281711]  ? pipe_to_user+0x170/0x170
[ 2455.282130]  ? _cond_resched+0x12/0x80
[ 2455.282549]  ? avc_policy_seqno+0x9/0x70
[ 2455.282972]  ? selinux_file_permission+0x92/0x520
[ 2455.283486]  ? lockdep_init_map_type+0x2c7/0x780
[ 2455.283993]  ? pipe_to_user+0x170/0x170
[ 2455.284414]  do_splice_to+0x10e/0x160
[ 2455.284802]  splice_direct_to_actor+0x2fe/0x980
[ 2455.285302]  ? pipe_to_sendpage+0x380/0x380
[ 2455.285755]  ? do_splice_to+0x160/0x160
[ 2455.286177]  ? security_file_permission+0x24e/0x570
[ 2455.286684]  do_splice_direct+0x1c4/0x290
[ 2455.287121]  ? splice_direct_to_actor+0x980/0x980
[ 2455.287620]  ? selinux_file_permission+0x92/0x520
[ 2455.288149]  ? security_file_permission+0x24e/0x570
[ 2455.288662]  do_sendfile+0x553/0x1090
[ 2455.289074]  ? do_pwritev+0x270/0x270
[ 2455.289486]  ? wait_for_completion_io+0x270/0x270
[ 2455.289999]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2455.290488]  ? vfs_write+0x354/0xa70
[ 2455.290887]  __x64_sys_sendfile64+0x1d1/0x210
[ 2455.291354]  ? __ia32_sys_sendfile+0x220/0x220
[ 2455.291854]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2455.292390]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2455.292942]  do_syscall_64+0x33/0x40
[ 2455.293329]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2455.293885] RIP: 0033:0x7f0f9f161b19
[ 2455.294283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2455.296224] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2455.296984] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2455.297709] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2455.298463] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2455.299202] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2455.299961] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:22:47 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b40, &(0x7f00000000c0))

18:22:47 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)

18:22:47 executing program 2:
r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000480), 0x40001, 0x0)
readahead(r0, 0x7, 0x401)
lseek(0xffffffffffffffff, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001f40)=[{&(0x7f0000001e80)=""/181, 0xb5}], 0x1, 0x1, 0x0)
ioctl$TIOCL_SELLOADLUT(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x5, 0x4, 0xfffffffffffff877, 0xe7f3, 0x9})
r1 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x64, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x10, r2, 0x8000000)
ioctl$KDMKTONE(r2, 0x4b30, 0x3f02)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000003c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="89000000003000000000000000003f00000000000000"])
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r4, 0x40086607, &(0x7f00000004c0))

18:23:01 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 14)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:23:01 executing program 2:
r0 = getpid()
getpriority(0x0, r0)
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="1f0000003701000100000080000000000400000000000000", @ANYRES32=r0, @ANYBLOB="5fbf019c0000"], 0x1f)
r1 = syz_io_uring_setup(0x3ac4, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4}, 0x0)
close(r4)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000080)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x2000, @fd_index=0x2, 0x5, 0x1, 0x2, 0xd}, 0x9)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1, 0x4000010, r4, 0x10000000)
syz_io_uring_submit(r2, r6, &(0x7f00000000c0)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x4, 0xdf7, 0x0, 0x10000, 0x0, 0x1}, 0x1)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
io_uring_enter(r7, 0x458be, 0x8fb8, 0x1, 0x0, 0xf)

18:23:01 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 58)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:23:01 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x8000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
epoll_create(0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$TIOCL_PASTESEL(r7, 0x541c, &(0x7f0000000080))
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r5, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000100)={0x30, r4, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc}}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x30}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x100000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})

18:23:01 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
fchdir(r1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x0, 0x40000, 0x1}, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000002a40)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r5, r6, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x3, 0x0, @fd=r8, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
r9 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000000540))
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r10}}, 0x2)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x0, {0x0, r10}}, 0x400)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x7)
ioctl$AUTOFS_IOC_FAIL(r1, 0x9361, 0xfffffffffffffffc)
syz_open_dev$hidraw(&(0x7f0000000000), 0x9, 0x0)

18:23:01 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)

18:23:01 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b41, &(0x7f00000000c0))

18:23:01 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x7f000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2469.048651] FAULT_INJECTION: forcing a failure.
[ 2469.048651] name failslab, interval 1, probability 0, space 0, times 0
[ 2469.049909] CPU: 0 PID: 14821 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2469.050666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2469.051561] Call Trace:
[ 2469.051867]  dump_stack+0x107/0x167
[ 2469.052274]  should_fail.cold+0x5/0xa
[ 2469.052700]  ? bvec_alloc+0x148/0x2f0
[ 2469.053122]  should_failslab+0x5/0x20
[ 2469.053538]  kmem_cache_alloc+0x5b/0x310
[ 2469.053988]  bvec_alloc+0x148/0x2f0
[ 2469.054398]  bio_alloc_bioset+0x40a/0x600
[ 2469.054849]  ? bvec_alloc+0x2f0/0x2f0
[ 2469.055291]  ? iov_iter_npages+0x1fd/0xa70
[ 2469.055754]  iomap_dio_bio_actor+0x518/0xef0
[ 2469.056273]  iomap_dio_actor+0x36f/0x560
[ 2469.056737]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2469.057265]  ? do_syscall_64+0x33/0x40
[ 2469.057712]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2469.058323]  iomap_apply+0x289/0x810
[ 2469.058747]  ? iomap_dio_rw+0x90/0x90
[ 2469.059178]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2469.059841]  ? mark_held_locks+0x9e/0xe0
[ 2469.060335]  ? filemap_check_errors+0xa5/0x150
[ 2469.060863]  __iomap_dio_rw+0x6cd/0x1110
[ 2469.061321]  ? iomap_dio_rw+0x90/0x90
[ 2469.061771]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2469.062292]  ? ext4_orphan_add+0x253/0x9e0
[ 2469.062776]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2469.063334]  ? ext4_empty_dir+0xae0/0xae0
[ 2469.063792]  ? jbd2__journal_start+0xf3/0x7e0
[ 2469.064309]  iomap_dio_rw+0x31/0x90
[ 2469.064722]  ext4_file_write_iter+0xb26/0x18e0
[ 2469.065257]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2469.065774]  ? kasan_save_stack+0x32/0x40
[ 2469.066244]  ? kasan_save_stack+0x1b/0x40
[ 2469.066703]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2469.067280]  ? iter_file_splice_write+0x16d/0xc30
[ 2469.067833]  ? direct_splice_actor+0x10f/0x170
[ 2469.068358]  ? splice_direct_to_actor+0x387/0x980
[ 2469.068906]  ? do_splice_direct+0x1c4/0x290
[ 2469.069397]  ? do_sendfile+0x553/0x1090
[ 2469.069851]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2469.070381]  do_iter_readv_writev+0x476/0x750
[ 2469.070896]  ? new_sync_write+0x660/0x660
[ 2469.071372]  ? selinux_file_permission+0x92/0x520
[ 2469.071947]  do_iter_write+0x191/0x670
[ 2469.072399]  ? trace_hardirqs_on+0x5b/0x180
[ 2469.072894]  vfs_iter_write+0x70/0xa0
[ 2469.073335]  iter_file_splice_write+0x762/0xc30
[ 2469.073870]  ? generic_splice_sendpage+0x140/0x140
[ 2469.074423]  ? avc_policy_seqno+0x9/0x70
[ 2469.074882]  ? selinux_file_permission+0x92/0x520
[ 2469.075437]  ? lockdep_init_map_type+0x2c7/0x780
[ 2469.075989]  ? generic_splice_sendpage+0x140/0x140
[ 2469.076543]  direct_splice_actor+0x10f/0x170
[ 2469.077044]  splice_direct_to_actor+0x387/0x980
[ 2469.077575]  ? pipe_to_sendpage+0x380/0x380
[ 2469.078066]  ? do_splice_to+0x160/0x160
[ 2469.078528]  ? security_file_permission+0x24e/0x570
[ 2469.079102]  do_splice_direct+0x1c4/0x290
[ 2469.079576]  ? splice_direct_to_actor+0x980/0x980
[ 2469.080129]  ? selinux_file_permission+0x92/0x520
[ 2469.080686]  ? security_file_permission+0x24e/0x570
[ 2469.081269]  do_sendfile+0x553/0x1090
[ 2469.081713]  ? do_pwritev+0x270/0x270
[ 2469.082156]  ? wait_for_completion_io+0x270/0x270
[ 2469.082703]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2469.083236]  ? vfs_write+0x354/0xa70
[ 2469.083251]  __x64_sys_sendfile64+0x1d1/0x210
[ 2469.083263]  ? __ia32_sys_sendfile+0x220/0x220
[ 2469.083277]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2469.083288]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2469.083302]  do_syscall_64+0x33/0x40
[ 2469.083313]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2469.083321] RIP: 0033:0x7fb754cd3b19
[ 2469.083335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2469.083341] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2469.083353] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2469.083359] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2469.083366] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2469.083372] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
18:23:01 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$CDROM_TIMED_MEDIA_CHANGE(r2, 0x5396, &(0x7f00000001c0)={0x100, 0x1})
syz_emit_ethernet(0x42, &(0x7f0000000000)={@empty, @link_local, @void, {@arp={0x8906, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x0, @link_local, @mcast2, @dev, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
fstat(r4, &(0x7f0000000140))
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x321740, 0x0)
write$tun(r5, &(0x7f00000000c0)={@void, @val={0x1, 0x0, 0x9, 0xaa9e, 0x6, 0x1ff}, @arp=@ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3d}, @rand_addr=0x64010100, @random="d556011804e4", @empty}}, 0x26)

[ 2469.083379] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2469.201715] udc-core: couldn't find an available UDC or it's busy
[ 2469.201748] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2469.208662] udc-core: couldn't find an available UDC or it's busy
18:23:01 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=ANY=[@ANYBLOB="280000001d00210c00000000000000000400020014001180809801a7b0c7dba09475f251c743092f077188f8a226bfa6d6459a3a22bc4766a964f9fe19a5faf77bda50900861dab6cc5c959c20"], 0x28}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c25d825a012d558f963940000000104030000000000000000000700080003400000003f"], 0x1c}}, 0x20004000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r2, 0x1}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f00000002c0)={&(0x7f0000000100), 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, r2, 0x0, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x68a, 0xd}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x40090}, 0x20000040)

[ 2469.208734] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2469.251755] FAULT_INJECTION: forcing a failure.
[ 2469.251755] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2469.251781] CPU: 0 PID: 14841 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2469.251793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
18:23:01 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 59)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2469.251801] Call Trace:
[ 2469.251829]  dump_stack+0x107/0x167
[ 2469.251854]  should_fail.cold+0x5/0xa
[ 2469.251914]  __alloc_pages_nodemask+0x182/0x600
[ 2469.251949]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2469.251968]  ? lock_acquire+0x197/0x470
[ 2469.251986]  ? find_held_lock+0x2c/0x110
[ 2469.252014]  ? jbd2_transaction_committed+0x111/0x150
[ 2469.252035]  ? lock_downgrade+0x6d0/0x6d0
[ 2469.252053]  ? ext4_map_blocks+0x967/0x1970
[ 2469.252078]  alloc_pages_current+0x187/0x280
[ 2469.252098]  ? __kernel_text_address+0x9/0x40
[ 2469.252124]  push_pipe+0x2b5/0x6d0
[ 2469.252159]  iov_iter_zero+0x418/0xef0
[ 2469.252186]  ? ext4_iomap_begin+0x1a0/0x700
[ 2469.252214]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
18:23:01 executing program 7:
recvmmsg(0xffffffffffffffff, &(0x7f0000002280)=[{{&(0x7f0000000000), 0x80, &(0x7f0000000380)=[{&(0x7f0000000080)=""/167, 0xa7}, {&(0x7f00000023c0)=""/252, 0xfc}, {&(0x7f0000000240)}, {&(0x7f0000000280)=""/218, 0xda}], 0x4, &(0x7f00000003c0)=""/116, 0x74}, 0x80}, {{&(0x7f0000000440)=@rc={0x1f, @fixed}, 0x80, &(0x7f00000008c0)=[{&(0x7f00000004c0)=""/1, 0x1}, {&(0x7f0000000500)=""/39, 0x27}, {&(0x7f0000000540)=""/248, 0xf8}, {&(0x7f0000000640)=""/171, 0xab}, {&(0x7f0000000700)=""/225, 0xe1}, {&(0x7f0000000800)=""/5, 0x5}, {&(0x7f0000000840)=""/69, 0x45}], 0x7, &(0x7f0000000940)=""/4096, 0x1000}, 0xb5}, {{&(0x7f0000001940)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000001b00)=[{&(0x7f00000019c0)=""/28, 0x1c}, {&(0x7f0000001a00)=""/12, 0xc}, {&(0x7f0000001a40)=""/6, 0x6}, {&(0x7f0000001a80)=""/112, 0x70}], 0x4, &(0x7f0000001b40)=""/165, 0xa5}, 0x9}, {{0x0, 0x0, &(0x7f00000021c0)=[{&(0x7f0000001c00)=""/151, 0x97}, {&(0x7f0000001cc0)=""/182, 0xb6}, {&(0x7f0000001d80)=""/233, 0xe9}, {&(0x7f0000001e80)=""/235, 0xeb}, {&(0x7f0000001f80)=""/12, 0xc}, {&(0x7f0000001fc0)=""/11, 0xb}, {&(0x7f0000002000)=""/107, 0x6b}, {&(0x7f0000002080)=""/19, 0x13}, {&(0x7f00000020c0)=""/216, 0xd8}], 0x9}, 0x1}], 0x4, 0x12002, &(0x7f0000002380)={0x0, 0x989680})
socket$inet6_icmp(0xa, 0x2, 0x3a)
openat$zero(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)

[ 2469.252240]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2469.252258]  ? kasan_save_stack+0x1b/0x40
[ 2469.252278]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2469.252296]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2469.252312]  ? iomap_dio_rw+0x31/0x90
[ 2469.252328]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2469.252354]  iomap_dio_actor+0x40f/0x560
[ 2469.252383]  iomap_apply+0x289/0x810
[ 2469.252403]  ? iomap_dio_rw+0x90/0x90
[ 2469.252428]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2469.252461]  ? mark_held_locks+0x9e/0xe0
[ 2469.252503]  ? filemap_check_errors+0xa5/0x150
[ 2469.252530]  __iomap_dio_rw+0x6cd/0x1110
[ 2469.252547]  ? iomap_dio_rw+0x90/0x90
[ 2469.252588]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2469.252621]  ? down_read+0x284/0x430
[ 2469.252638]  ? lock_chain_count+0x20/0x20
[ 2469.252657]  ? down_write+0x160/0x160
[ 2469.252684]  iomap_dio_rw+0x31/0x90
[ 2469.252707]  ext4_file_read_iter+0x2c7/0x4c0
[ 2469.252732]  generic_file_splice_read+0x455/0x6d0
[ 2469.252753]  ? pipe_to_user+0x170/0x170
[ 2469.252768]  ? _cond_resched+0x12/0x80
[ 2469.252791]  ? avc_policy_seqno+0x9/0x70
[ 2469.252809]  ? selinux_file_permission+0x92/0x520
[ 2469.252838]  ? lockdep_init_map_type+0x2c7/0x780
[ 2469.252861]  ? pipe_to_user+0x170/0x170
[ 2469.252882]  do_splice_to+0x10e/0x160
[ 2469.252906]  splice_direct_to_actor+0x2fe/0x980
[ 2469.252932]  ? pipe_to_sendpage+0x380/0x380
[ 2469.252957]  ? do_splice_to+0x160/0x160
[ 2469.252977]  ? security_file_permission+0x24e/0x570
[ 2469.253010]  do_splice_direct+0x1c4/0x290
[ 2469.253030]  ? splice_direct_to_actor+0x980/0x980
[ 2469.253046]  ? selinux_file_permission+0x92/0x520
[ 2469.253074]  ? security_file_permission+0x24e/0x570
[ 2469.253108]  do_sendfile+0x553/0x1090
[ 2469.253142]  ? do_pwritev+0x270/0x270
[ 2469.253164]  ? wait_for_completion_io+0x270/0x270
[ 2469.253187]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2469.253204]  ? vfs_write+0x354/0xa70
[ 2469.253233]  __x64_sys_sendfile64+0x1d1/0x210
[ 2469.253256]  ? __ia32_sys_sendfile+0x220/0x220
[ 2469.253281]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2469.253303]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2469.253329]  do_syscall_64+0x33/0x40
[ 2469.253351]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2469.253365] RIP: 0033:0x7f0f9f161b19
[ 2469.253388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2469.253400] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2469.253423] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2469.253435] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2469.253447] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2469.253459] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2469.253472] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2469.353055] debugfs: Directory '€˜
§°ÇÛ ”uòQÇC	!' with parent 'ieee80211' already present!
[ 2469.371323] FAULT_INJECTION: forcing a failure.
[ 2469.371323] name failslab, interval 1, probability 0, space 0, times 0
[ 2469.371346] CPU: 1 PID: 14854 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2469.371357] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2469.371364] Call Trace:
[ 2469.371391]  dump_stack+0x107/0x167
[ 2469.371415]  should_fail.cold+0x5/0xa
[ 2469.371436]  ? mempool_alloc+0x148/0x360
[ 2469.371451]  ? mempool_free_pages+0x20/0x20
[ 2469.371471]  should_failslab+0x5/0x20
[ 2469.371490]  kmem_cache_alloc+0x5b/0x310
[ 2469.371512]  ? mempool_free_pages+0x20/0x20
[ 2469.371529]  mempool_alloc+0x148/0x360
[ 2469.371555]  ? mempool_resize+0x7d0/0x7d0
[ 2469.371580]  ? mark_lock+0xf5/0x2df0
[ 2469.371604]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2469.371634]  __sg_alloc_table+0x24e/0x390
[ 2469.371665]  sg_alloc_table_chained+0x9b/0x1f0
[ 2469.371682]  ? sg_alloc_table_chained+0x1f0/0x1f0
[ 2469.371704]  scsi_alloc_sgtables+0x236/0xaf0
[ 2469.371735]  ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0
[ 2469.371755]  ? lockdep_init_map_type+0x2c7/0x780
[ 2469.371787]  sd_init_command+0x516/0x3550
[ 2469.371822]  scsi_queue_rq+0xe73/0x27d0
[ 2469.371862]  blk_mq_dispatch_rq_list+0x372/0x1c30
[ 2469.371907]  ? elv_rb_del+0x50/0xa0
[ 2469.371923]  ? elv_rqhash_del+0x119/0x160
[ 2469.371943]  ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0
[ 2469.371971]  ? dd_dispatch_request+0x1c0/0x990
[ 2469.371998]  blk_mq_do_dispatch_sched+0x7f4/0xa00
[ 2469.372032]  ? blk_mq_sched_mark_restart_hctx+0x80/0x80
[ 2469.372055]  ? lock_acquire+0x197/0x470
[ 2469.372072]  ? hctx_lock+0x7f/0x200
[ 2469.372100]  __blk_mq_sched_dispatch_requests+0x2d7/0x450
[ 2469.372120]  ? blk_mq_do_dispatch_sched+0xa00/0xa00
[ 2469.372153]  blk_mq_sched_dispatch_requests+0xfb/0x180
[ 2469.372175]  __blk_mq_run_hw_queue+0x12c/0x290
[ 2469.372195]  ? blk_mq_start_request+0x3f0/0x3f0
[ 2469.372219]  ? do_raw_spin_lock+0x121/0x260
[ 2469.372246]  __blk_mq_delay_run_hw_queue+0x4f1/0x550
[ 2469.372273]  blk_mq_run_hw_queue+0x170/0x2f0
[ 2469.372293]  ? blk_mq_delay_run_hw_queues+0x1a0/0x1a0
[ 2469.372325]  ? dd_dispatch_request+0x990/0x990
[ 2469.372343]  blk_mq_sched_insert_requests+0x247/0x720
[ 2469.372372]  blk_mq_flush_plug_list+0x415/0x6c0
[ 2469.372400]  ? blk_mq_insert_requests+0x450/0x450
[ 2469.372428]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2469.372458]  blk_flush_plug_list+0x26c/0x3c0
[ 2469.372476]  ? mark_held_locks+0x9e/0xe0
[ 2469.372502]  ? blk_insert_cloned_request+0x460/0x460
[ 2469.372537]  blk_finish_plug+0x50/0xa0
[ 2469.372555]  __iomap_dio_rw+0xca0/0x1110
[ 2469.372594]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2469.372614]  ? ext4_orphan_add+0x253/0x9e0
[ 2469.372637]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2469.372659]  ? ext4_empty_dir+0xae0/0xae0
[ 2469.372677]  ? jbd2__journal_start+0xf3/0x7e0
[ 2469.372707]  iomap_dio_rw+0x31/0x90
[ 2469.372729]  ext4_file_write_iter+0xb26/0x18e0
[ 2469.372765]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2469.372782]  ? kasan_save_stack+0x32/0x40
[ 2469.372799]  ? kasan_save_stack+0x1b/0x40
[ 2469.372818]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2469.372834]  ? iter_file_splice_write+0x16d/0xc30
[ 2469.372849]  ? direct_splice_actor+0x10f/0x170
[ 2469.372864]  ? splice_direct_to_actor+0x387/0x980
[ 2469.372879]  ? do_splice_direct+0x1c4/0x290
[ 2469.372896]  ? do_sendfile+0x553/0x1090
[ 2469.372914]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2469.372943]  do_iter_readv_writev+0x476/0x750
[ 2469.372966]  ? new_sync_write+0x660/0x660
[ 2469.372983]  ? selinux_file_permission+0x92/0x520
[ 2469.373025]  do_iter_write+0x191/0x670
[ 2469.373050]  ? trace_hardirqs_on+0x5b/0x180
[ 2469.373078]  vfs_iter_write+0x70/0xa0
[ 2469.373100]  iter_file_splice_write+0x762/0xc30
[ 2469.373138]  ? generic_splice_sendpage+0x140/0x140
[ 2469.373165]  ? avc_policy_seqno+0x9/0x70
[ 2469.373181]  ? selinux_file_permission+0x92/0x520
[ 2469.373208]  ? lockdep_init_map_type+0x2c7/0x780
[ 2469.373232]  ? generic_splice_sendpage+0x140/0x140
[ 2469.373253]  direct_splice_actor+0x10f/0x170
[ 2469.373275]  splice_direct_to_actor+0x387/0x980
[ 2469.373301]  ? pipe_to_sendpage+0x380/0x380
[ 2469.373324]  ? do_splice_to+0x160/0x160
[ 2469.373342]  ? security_file_permission+0x24e/0x570
[ 2469.373373]  do_splice_direct+0x1c4/0x290
[ 2469.373392]  ? splice_direct_to_actor+0x980/0x980
[ 2469.373408]  ? selinux_file_permission+0x92/0x520
[ 2469.373434]  ? security_file_permission+0x24e/0x570
[ 2469.373466]  do_sendfile+0x553/0x1090
[ 2469.373499]  ? do_pwritev+0x270/0x270
[ 2469.373521]  ? wait_for_completion_io+0x270/0x270
[ 2469.373543]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2469.373559]  ? vfs_write+0x354/0xa70
[ 2469.373586]  __x64_sys_sendfile64+0x1d1/0x210
[ 2469.373607]  ? __ia32_sys_sendfile+0x220/0x220
[ 2469.373631]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2469.373653]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2469.373676]  do_syscall_64+0x33/0x40
[ 2469.373697]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2469.373710] RIP: 0033:0x7fb754cd3b19
[ 2469.373731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2469.373742] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2469.373764] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2469.373775] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2469.373787] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2469.373798] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2469.373810] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2469.443827] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
18:23:21 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 15)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:23:21 executing program 7:
r0 = request_key(&(0x7f0000000200)='syzkaller\x00', &(0x7f0000000240)={'syz', 0x3}, 0x0, 0xffffffffffffffff)
r1 = add_key$fscrypt_v1(&(0x7f0000000100), &(0x7f0000000140)={'fscrypt:', @desc2}, &(0x7f0000000180)={0x0, "fd0ef642ced952d4f0c86fd383ab69dbef4880b627672cbfc670203ac784f36729fe29ece4e01f7219bbc16b1c9970845da36fb920a58d266a8da6793afe320a", 0x1f}, 0x48, r0)
add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, r1)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
stat(&(0x7f0000000080)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0xffffffffffffffff, r2, 0x0)

18:23:21 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x95180000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:23:21 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d9f4655fdaf4655fdaf4655f000000000000040004", 0x1d, 0x2200}], 0x0, &(0x7f0000000280)=ANY=[])
chroot(&(0x7f0000000180)='./file0\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
umount2(&(0x7f0000000140)='./file0\x00', 0x8)
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x105142, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000000540))
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x0, {0x0, r2}}, 0x400)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_SEND={0x1a, 0x4, 0x0, r0, 0x0, &(0x7f0000000380)="5c7d80e849da09b92dd14686fabbee82f6e0367dd07e9d32f61a98af1c8733f1147a8b65cfb670bab426e28882e88a54e2bf61cf21f876792dbc655cf9413d0b8ab49492742e1d749bc96edea43ed39f016869d3782661901d363727e1a85e49f6a306c604a523d8c71a24affb2710120c2df5759f62146fe8fb241f5385af2de7f05ec340dbf383d487b050d101eac2b3feba616b82ca4a6592b5118193bfbdddb9711ce3ebe2f5d779755b3c8fe98c9b0b74ec43804d5b11a714fdf733bf1840e09cc5", 0xc4, 0x0, 0x0, {0x0, r2}}, 0x8000)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000003c40)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
write$tcp_mem(r3, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
pwrite64(r3, &(0x7f0000000200)=';', 0x1, 0x0)
ftruncate(r0, 0xffff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20d315)
epoll_create(0x7ffd)
accept4$unix(r4, &(0x7f0000000300), &(0x7f0000000040)=0x6e, 0x80000)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x1a30c1, 0x0)

18:23:21 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 60)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:23:21 executing program 5:
ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f00000001c0)={0x0, 0x8})
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xdcf}, 0x0, 0x0, 0x400, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
tee(r6, 0xffffffffffffffff, 0x4, 0x0)
signalfd4(r0, 0x0, 0x0, 0x80000)
syz_io_uring_submit(r5, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[r0], 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd=r7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0xffffffff80000000, 0x0, 0x0, 0x1d, 0x1}, 0x0)

18:23:21 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b44, &(0x7f00000000c0))

18:23:21 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})
perf_event_open(0x0, 0x0, 0x2000, 0xffffffffffffffff, 0x3)

[ 2488.681688] FAULT_INJECTION: forcing a failure.
[ 2488.681688] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.681711] CPU: 1 PID: 14876 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2488.681722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2488.681729] Call Trace:
[ 2488.681755]  dump_stack+0x107/0x167
[ 2488.681778]  should_fail.cold+0x5/0xa
[ 2488.681799]  ? create_object.isra.0+0x3a/0xa20
[ 2488.681820]  should_failslab+0x5/0x20
[ 2488.681838]  kmem_cache_alloc+0x5b/0x310
[ 2488.681863]  create_object.isra.0+0x3a/0xa20
[ 2488.681882]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2488.681907]  kmem_cache_alloc+0x159/0x310
[ 2488.681929]  ? mempool_free_pages+0x20/0x20
[ 2488.681951]  mempool_alloc+0x148/0x360
18:23:21 executing program 7:
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
ioctl$CDROMPLAYMSF(r0, 0x5303, &(0x7f0000000200)={0x3, 0x1})
syz_open_dev$tty20(0xc, 0x4, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000002c0)="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", 0x137}, {&(0x7f00000000c0)}], 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x9b8c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$CDROM_LOCKDOOR(r0, 0x5329, 0x1)
r2 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfffffffffffffff8, 0x1, &(0x7f0000000140)=[{&(0x7f00000004c0)="6913e2a7f1ccece0ed1b92dac51999dbbb2d7a10c844727ba53f2fb769cfc22ed47db4c86410aa057db16b057f8634c7c88bdda4af95186cdb5dcc129cb590d8881bf87b4dafd92d50e6f657c94d0a3f7fb67b230af42309561de091e1db54fd853831bf3df3f88b1d642b6bfdf679fd46a98e0c9e9408828595b9e94a382561d4dff64e53b79ba52a41c473cc6a70a7942e45f8b6fb0e6ae7970f771c63b4c8f70c6fb983d0c653393fc6ff4096b8b58767f7036bf3cd44fb544d153df9b8666a27a36ff9d0d0cbb2f876f347402eb9c295123e11b66f2b8bd9bc31dcb01ced9bc21700", 0xe4, 0xd2}], 0xa80000, &(0x7f00000005c0)={[{@sysvgroups}, {@acl}, {@journal_path={'journal_path', 0x3d, './file0'}}, {@nodelalloc}, {@min_batch_time={'min_batch_time', 0x3d, 0x84}}, {@minixdf}, {@grpjquota_path={'grpjquota', 0x3d, './file0'}}, {@block_validity}, {@journal_path={'journal_path', 0x3d, './file0'}}], [{@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, '@$:#*\xeb&'}}, {@dont_hash}, {@appraise}, {@obj_type}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}]})
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001d00000000070000080017009f878fc3cd12807b4c0ec8ba9103bcf945c60f797a4a40f3a6276d2444316b03a4", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0)

[ 2488.681977]  ? mempool_resize+0x7d0/0x7d0
[ 2488.681998]  ? usleep_range+0x170/0x170
[ 2488.682024]  ? lock_acquire+0x197/0x470
[ 2488.682041]  ? find_held_lock+0x2c/0x110
[ 2488.682063]  ? ext4_fc_track_range+0x280/0x280
[ 2488.682087]  bio_alloc_bioset+0x36e/0x600
18:23:21 executing program 2:
sendmsg$AUDIT_USER(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x80, 0x3ed, 0x509, 0x70bd2a, 0x25dfdbff, "ed2548e39a68516e95a09d963b60f9448aaab531c7dfdb2498fd7bc84e75a39570490c8a5d941648e550c0585382245cd6b0b9f233048f5c907e7dc260ea1225d4a7add39b59c7f7adb135b188c830dc22c478138e008325a7963811a9af1440f9934c23f98b90a09712be1a89831e1c", ["", "", "", "", ""]}, 0x80}, 0x1, 0x0, 0x0, 0x20000840}, 0x4000001)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000001ac0)=[{&(0x7f0000010000)="200000000001000016000000d40100000f0000df000000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}, {0x0, 0x0, 0x40000000001600}], 0x0, &(0x7f0000012900)=ANY=[])
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x800, 0x44)

[ 2488.682107]  ? __iomap_dio_rw+0x8ff/0x1110
[ 2488.682125]  ? bvec_alloc+0x2f0/0x2f0
[ 2488.682144]  ? errseq_check+0x4b/0x90
[ 2488.682172]  blkdev_issue_flush+0x20/0x1a0
[ 2488.682192]  ext4_sync_file+0x5f5/0xde0
18:23:21 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 61)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2488.682210]  ? ext4_getfsmap+0x990/0x990
[ 2488.682232]  vfs_fsync_range+0x13d/0x230
[ 2488.682257]  iomap_dio_complete+0x5ff/0x780
[ 2488.682284]  iomap_dio_rw+0x63/0x90
[ 2488.682305]  ext4_file_write_iter+0xb26/0x18e0
[ 2488.682340]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2488.682357]  ? kasan_save_stack+0x32/0x40
[ 2488.682374]  ? kasan_save_stack+0x1b/0x40
[ 2488.682392]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2488.682408]  ? iter_file_splice_write+0x16d/0xc30
[ 2488.682423]  ? direct_splice_actor+0x10f/0x170
[ 2488.682438]  ? splice_direct_to_actor+0x387/0x980
[ 2488.682453]  ? do_splice_direct+0x1c4/0x290
[ 2488.682469]  ? do_sendfile+0x553/0x1090
[ 2488.682487]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2488.682515]  do_iter_readv_writev+0x476/0x750
[ 2488.682538]  ? new_sync_write+0x660/0x660
[ 2488.682554]  ? selinux_file_permission+0x92/0x520
[ 2488.682595]  do_iter_write+0x191/0x670
[ 2488.682620]  ? trace_hardirqs_on+0x5b/0x180
[ 2488.682647]  vfs_iter_write+0x70/0xa0
[ 2488.682668]  iter_file_splice_write+0x762/0xc30
[ 2488.682705]  ? generic_splice_sendpage+0x140/0x140
[ 2488.682732]  ? avc_policy_seqno+0x9/0x70
[ 2488.682748]  ? selinux_file_permission+0x92/0x520
[ 2488.682775]  ? lockdep_init_map_type+0x2c7/0x780
[ 2488.682799]  ? generic_splice_sendpage+0x140/0x140
[ 2488.682819]  direct_splice_actor+0x10f/0x170
[ 2488.682842]  splice_direct_to_actor+0x387/0x980
[ 2488.682866]  ? pipe_to_sendpage+0x380/0x380
[ 2488.682889]  ? do_splice_to+0x160/0x160
[ 2488.682908]  ? security_file_permission+0x24e/0x570
[ 2488.682938]  do_splice_direct+0x1c4/0x290
[ 2488.682958]  ? splice_direct_to_actor+0x980/0x980
[ 2488.682973]  ? selinux_file_permission+0x92/0x520
[ 2488.682999]  ? security_file_permission+0x24e/0x570
[ 2488.683031]  do_sendfile+0x553/0x1090
[ 2488.683063]  ? do_pwritev+0x270/0x270
[ 2488.683083]  ? wait_for_completion_io+0x270/0x270
[ 2488.683106]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2488.683121]  ? vfs_write+0x354/0xa70
[ 2488.683148]  __x64_sys_sendfile64+0x1d1/0x210
[ 2488.683170]  ? __ia32_sys_sendfile+0x220/0x220
[ 2488.683193]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2488.683214]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2488.683238]  do_syscall_64+0x33/0x40
[ 2488.683258]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2488.683271] RIP: 0033:0x7fb754cd3b19
[ 2488.683293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2488.683304] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2488.683325] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2488.683336] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
18:23:21 executing program 2:
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x4000041)
kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000080))
r2 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$nfs4(&(0x7f0000000100), &(0x7f0000000140)='./file1\x00', 0x3, 0x1, &(0x7f0000000200)=[{&(0x7f00000002c0), 0x0, 0x7}], 0x0, 0x0)
creat(&(0x7f0000000000)='./file1\x00', 0x1c)
r3 = openat(r2, &(0x7f0000000180)='./file1\x00', 0x200, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f00000000c0), 0x17, 0x10001)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, r4, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$IPCTNL_MSG_CT_DELETE(r4, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xac, 0x2, 0x1, 0x301, 0x0, 0x0, {0xc, 0x0, 0x5}, [@CTA_TUPLE_ORIG={0x78, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @rand_addr=0x64010101}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010101}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1ff}, @CTA_LABELS_MASK={0x8, 0x17, [0x8]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x7}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x3}]}, 0xac}, 0x1, 0x0, 0x0, 0x4}, 0x20000000)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, 0x0)
r6 = pidfd_getfd(r3, r0, 0x0)
r7 = syz_open_dev$ptys(0xc, 0x3, 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file0\x00', 0x102)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r6, 0xc0189378, &(0x7f0000000240)={{0x1, 0x1, 0x18, r7, {r8}}, './file1\x00'})

[ 2488.683348] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
18:23:21 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 62)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2488.683359] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2488.683371] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2488.713761] udc-core: couldn't find an available UDC or it's busy
[ 2488.713791] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2488.717689] udc-core: couldn't find an available UDC or it's busy
[ 2488.717716] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2488.751421] FAULT_INJECTION: forcing a failure.
[ 2488.751421] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2488.751443] CPU: 1 PID: 14885 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2488.751454] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2488.751460] Call Trace:
[ 2488.751486]  dump_stack+0x107/0x167
[ 2488.751510]  should_fail.cold+0x5/0xa
[ 2488.751539]  __alloc_pages_nodemask+0x182/0x600
[ 2488.751568]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2488.751586]  ? lock_acquire+0x197/0x470
[ 2488.751603]  ? find_held_lock+0x2c/0x110
[ 2488.751630]  ? jbd2_transaction_committed+0x111/0x150
[ 2488.751650]  ? lock_downgrade+0x6d0/0x6d0
[ 2488.751668]  ? ext4_map_blocks+0x967/0x1970
[ 2488.751691]  alloc_pages_current+0x187/0x280
[ 2488.751709]  ? __kernel_text_address+0x9/0x40
[ 2488.751733]  push_pipe+0x2b5/0x6d0
[ 2488.751766]  iov_iter_zero+0x418/0xef0
[ 2488.751790]  ? ext4_iomap_begin+0x1a0/0x700
[ 2488.751817]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2488.751841]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2488.751858]  ? kasan_save_stack+0x1b/0x40
[ 2488.751876]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2488.751893]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2488.751909]  ? iomap_dio_rw+0x31/0x90
[ 2488.751923]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2488.751953]  iomap_dio_actor+0x40f/0x560
[ 2488.751980]  iomap_apply+0x289/0x810
[ 2488.751999]  ? iomap_dio_rw+0x90/0x90
[ 2488.752021]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2488.752052]  ? mark_held_locks+0x9e/0xe0
[ 2488.752089]  ? filemap_check_errors+0xa5/0x150
[ 2488.752114]  __iomap_dio_rw+0x6cd/0x1110
[ 2488.752139]  ? iomap_dio_rw+0x90/0x90
[ 2488.752177]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2488.752207]  ? down_read+0x284/0x430
[ 2488.752223]  ? lock_chain_count+0x20/0x20
[ 2488.752240]  ? down_write+0x160/0x160
[ 2488.752266]  iomap_dio_rw+0x31/0x90
[ 2488.752287]  ext4_file_read_iter+0x2c7/0x4c0
[ 2488.752310]  generic_file_splice_read+0x455/0x6d0
[ 2488.752330]  ? pipe_to_user+0x170/0x170
18:23:21 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 63)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2488.752344]  ? _cond_resched+0x12/0x80
[ 2488.752365]  ? avc_policy_seqno+0x9/0x70
[ 2488.752381]  ? selinux_file_permission+0x92/0x520
[ 2488.752407]  ? lockdep_init_map_type+0x2c7/0x780
[ 2488.752429]  ? pipe_to_user+0x170/0x170
[ 2488.752449]  do_splice_to+0x10e/0x160
18:23:22 executing program 2:
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x21)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x47e2, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
ftruncate(r0, 0x1000003)
ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, 0x0)
r2 = getpgrp(0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f00000002c0)={0x1, 0x0, 0x101, 0x0, r2})
socketpair(0x2c, 0x5, 0x6, &(0x7f0000000100)={<r3=>0xffffffffffffffff})
getpeername(r3, &(0x7f0000000340)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000140)=0x80)
dup2(r0, r1)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=ANY=[@ANYBLOB="f2959ce875a351031900003f86113962c30000008fb6"], 0x14}}, 0x0)
ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000200)={'\x00', 0x4, 0xde, 0x0, 0x0, 0x7fff, r2})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2, 0x14, 0x0)
openat(r4, &(0x7f00000001c0)='./file0\x00', 0x4c4c0, 0x101)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_script(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="232f66288e65300a0000000000020000000000000000"], 0xb)

[ 2488.752471]  splice_direct_to_actor+0x2fe/0x980
[ 2488.752495]  ? pipe_to_sendpage+0x380/0x380
[ 2488.752518]  ? do_splice_to+0x160/0x160
[ 2488.752537]  ? security_file_permission+0x24e/0x570
[ 2488.752566]  do_splice_direct+0x1c4/0x290
[ 2488.752585]  ? splice_direct_to_actor+0x980/0x980
[ 2488.752600]  ? selinux_file_permission+0x92/0x520
[ 2488.752626]  ? security_file_permission+0x24e/0x570
[ 2488.752658]  do_sendfile+0x553/0x1090
[ 2488.752689]  ? do_pwritev+0x270/0x270
[ 2488.752709]  ? wait_for_completion_io+0x270/0x270
[ 2488.752730]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2488.752746]  ? vfs_write+0x354/0xa70
[ 2488.752772]  __x64_sys_sendfile64+0x1d1/0x210
[ 2488.752793]  ? __ia32_sys_sendfile+0x220/0x220
[ 2488.752817]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2488.752837]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2488.752861]  do_syscall_64+0x33/0x40
[ 2488.752881]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2488.752893] RIP: 0033:0x7f0f9f161b19
[ 2488.752913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2488.752924] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2488.752945] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
18:23:22 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 64)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2488.752957] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2488.752968] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2488.752978] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2488.752990] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2488.986611] FAULT_INJECTION: forcing a failure.
[ 2488.986611] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.986636] CPU: 1 PID: 14901 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2488.986649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2488.986657] Call Trace:
[ 2488.986686]  dump_stack+0x107/0x167
[ 2488.986713]  should_fail.cold+0x5/0xa
[ 2488.986737]  ? create_object.isra.0+0x3a/0xa20
[ 2488.986761]  should_failslab+0x5/0x20
[ 2488.986782]  kmem_cache_alloc+0x5b/0x310
[ 2488.986812]  create_object.isra.0+0x3a/0xa20
[ 2488.986834]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2488.986862]  kmem_cache_alloc+0x159/0x310
[ 2488.986896]  start_this_handle+0x674/0x1390
[ 2488.986919]  ? kmem_cache_alloc+0x159/0x310
[ 2488.986956]  ? mark_held_locks+0x9e/0xe0
[ 2488.986981]  ? __jbd2_journal_unfile_buffer+0xb0/0xb0
[ 2488.987015]  ? trace_hardirqs_on+0x5b/0x180
[ 2488.987042]  ? kmem_cache_alloc+0x2a6/0x310
[ 2488.987075]  jbd2__journal_start+0x390/0x7e0
[ 2488.987107]  __ext4_journal_start_sb+0x214/0x390
[ 2488.987136]  ext4_file_write_iter+0x114b/0x18e0
[ 2488.987178]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2488.987197]  ? kasan_save_stack+0x32/0x40
[ 2488.987217]  ? kasan_save_stack+0x1b/0x40
[ 2488.987239]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2488.987258]  ? iter_file_splice_write+0x16d/0xc30
[ 2488.987275]  ? direct_splice_actor+0x10f/0x170
[ 2488.987293]  ? splice_direct_to_actor+0x387/0x980
[ 2488.987310]  ? do_splice_direct+0x1c4/0x290
[ 2488.987329]  ? do_sendfile+0x553/0x1090
[ 2488.987350]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2488.987382]  do_iter_readv_writev+0x476/0x750
[ 2488.987409]  ? new_sync_write+0x660/0x660
[ 2488.987428]  ? selinux_file_permission+0x92/0x520
[ 2488.987475]  do_iter_write+0x191/0x670
[ 2488.987504]  ? trace_hardirqs_on+0x5b/0x180
[ 2488.987536]  vfs_iter_write+0x70/0xa0
[ 2488.987561]  iter_file_splice_write+0x762/0xc30
[ 2488.987604]  ? generic_splice_sendpage+0x140/0x140
[ 2488.987635]  ? avc_policy_seqno+0x9/0x70
[ 2488.987654]  ? selinux_file_permission+0x92/0x520
[ 2488.987685]  ? lockdep_init_map_type+0x2c7/0x780
[ 2488.987712]  ? generic_splice_sendpage+0x140/0x140
[ 2488.987736]  direct_splice_actor+0x10f/0x170
[ 2488.987762]  splice_direct_to_actor+0x387/0x980
[ 2488.987791]  ? pipe_to_sendpage+0x380/0x380
[ 2488.987818]  ? do_splice_to+0x160/0x160
[ 2488.987840]  ? security_file_permission+0x24e/0x570
[ 2488.987875]  do_splice_direct+0x1c4/0x290
[ 2488.987897]  ? splice_direct_to_actor+0x980/0x980
[ 2488.987915]  ? selinux_file_permission+0x92/0x520
[ 2488.987945]  ? security_file_permission+0x24e/0x570
[ 2488.987982]  do_sendfile+0x553/0x1090
[ 2488.988019]  ? do_pwritev+0x270/0x270
[ 2488.988044]  ? wait_for_completion_io+0x270/0x270
[ 2488.988069]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2488.988088]  ? vfs_write+0x354/0xa70
[ 2488.988119]  __x64_sys_sendfile64+0x1d1/0x210
[ 2488.988160]  ? __ia32_sys_sendfile+0x220/0x220
[ 2488.988188]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2488.988212]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2488.988240]  do_syscall_64+0x33/0x40
[ 2488.988264]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2488.988279] RIP: 0033:0x7fb754cd3b19
[ 2488.988304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2488.988316] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2488.988341] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2488.988354] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2488.988368] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2488.988381] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2488.988394] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2489.210510] FAULT_INJECTION: forcing a failure.
[ 2489.210510] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.210535] CPU: 1 PID: 14907 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2489.210547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.210554] Call Trace:
[ 2489.210581]  dump_stack+0x107/0x167
[ 2489.210606]  should_fail.cold+0x5/0xa
[ 2489.210629]  ? create_object.isra.0+0x3a/0xa20
[ 2489.210653]  should_failslab+0x5/0x20
[ 2489.210673]  kmem_cache_alloc+0x5b/0x310
[ 2489.210700]  create_object.isra.0+0x3a/0xa20
[ 2489.210720]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2489.210747]  kmem_cache_alloc+0x159/0x310
[ 2489.210778]  start_this_handle+0x674/0x1390
[ 2489.210800]  ? kmem_cache_alloc+0x159/0x310
[ 2489.210829]  ? mark_held_locks+0x9e/0xe0
[ 2489.210852]  ? __jbd2_journal_unfile_buffer+0xb0/0xb0
[ 2489.210880]  ? trace_hardirqs_on+0x5b/0x180
[ 2489.210905]  ? kmem_cache_alloc+0x2a6/0x310
[ 2489.210936]  jbd2__journal_start+0x390/0x7e0
[ 2489.210971]  __ext4_journal_start_sb+0x214/0x390
[ 2489.210999]  ext4_file_write_iter+0x114b/0x18e0
[ 2489.211042]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2489.211060]  ? kasan_save_stack+0x32/0x40
[ 2489.211078]  ? kasan_save_stack+0x1b/0x40
[ 2489.211098]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2489.211115]  ? iter_file_splice_write+0x16d/0xc30
[ 2489.211131]  ? direct_splice_actor+0x10f/0x170
[ 2489.211147]  ? splice_direct_to_actor+0x387/0x980
[ 2489.211163]  ? do_splice_direct+0x1c4/0x290
[ 2489.211180]  ? do_sendfile+0x553/0x1090
[ 2489.211199]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2489.211230]  do_iter_readv_writev+0x476/0x750
[ 2489.211255]  ? new_sync_write+0x660/0x660
[ 2489.211272]  ? selinux_file_permission+0x92/0x520
[ 2489.211316]  do_iter_write+0x191/0x670
[ 2489.211343]  ? trace_hardirqs_on+0x5b/0x180
[ 2489.211373]  vfs_iter_write+0x70/0xa0
[ 2489.211395]  iter_file_splice_write+0x762/0xc30
[ 2489.211435]  ? generic_splice_sendpage+0x140/0x140
[ 2489.211464]  ? avc_policy_seqno+0x9/0x70
[ 2489.211482]  ? selinux_file_permission+0x92/0x520
[ 2489.211510]  ? lockdep_init_map_type+0x2c7/0x780
[ 2489.211536]  ? generic_splice_sendpage+0x140/0x140
[ 2489.211558]  direct_splice_actor+0x10f/0x170
[ 2489.211582]  splice_direct_to_actor+0x387/0x980
[ 2489.211608]  ? pipe_to_sendpage+0x380/0x380
[ 2489.211634]  ? do_splice_to+0x160/0x160
[ 2489.211654]  ? security_file_permission+0x24e/0x570
[ 2489.211687]  do_splice_direct+0x1c4/0x290
[ 2489.211707]  ? splice_direct_to_actor+0x980/0x980
[ 2489.211724]  ? selinux_file_permission+0x92/0x520
[ 2489.211752]  ? security_file_permission+0x24e/0x570
[ 2489.211787]  do_sendfile+0x553/0x1090
[ 2489.211821]  ? do_pwritev+0x270/0x270
[ 2489.211844]  ? wait_for_completion_io+0x270/0x270
[ 2489.211868]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2489.211885]  ? vfs_write+0x354/0xa70
[ 2489.211914]  __x64_sys_sendfile64+0x1d1/0x210
[ 2489.211937]  ? __ia32_sys_sendfile+0x220/0x220
[ 2489.211964]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2489.211986]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2489.212013]  do_syscall_64+0x33/0x40
[ 2489.212034]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2489.212049] RIP: 0033:0x7fb754cd3b19
[ 2489.212071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2489.212083] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2489.212106] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2489.212119] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2489.212131] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.212155] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2489.212168] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2489.404475] FAULT_INJECTION: forcing a failure.
[ 2489.404475] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.404502] CPU: 1 PID: 14914 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2489.404515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.404523] Call Trace:
[ 2489.404554]  dump_stack+0x107/0x167
[ 2489.404581]  should_fail.cold+0x5/0xa
[ 2489.404610]  ? jbd2__journal_start+0x190/0x7e0
[ 2489.404635]  should_failslab+0x5/0x20
[ 2489.404655]  kmem_cache_alloc+0x5b/0x310
[ 2489.404688]  jbd2__journal_start+0x190/0x7e0
[ 2489.404721]  __ext4_journal_start_sb+0x214/0x390
[ 2489.404753]  ext4_dirty_inode+0xbc/0x130
[ 2489.404775]  ? ext4_setattr+0x2210/0x2210
[ 2489.404797]  __mark_inode_dirty+0x492/0xd40
[ 2489.404831]  generic_update_time+0x21c/0x370
[ 2489.404857]  file_update_time+0x43a/0x520
[ 2489.404879]  ? evict_inodes+0x420/0x420
[ 2489.404904]  ? down_write_killable+0x180/0x180
[ 2489.404933]  file_modified+0x7d/0xa0
[ 2489.404962]  ext4_file_write_iter+0x906/0x18e0
[ 2489.405003]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2489.405022]  ? kasan_save_stack+0x32/0x40
[ 2489.405042]  ? kasan_save_stack+0x1b/0x40
[ 2489.405064]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2489.405082]  ? iter_file_splice_write+0x16d/0xc30
[ 2489.405099]  ? direct_splice_actor+0x10f/0x170
[ 2489.405117]  ? splice_direct_to_actor+0x387/0x980
[ 2489.405134]  ? do_splice_direct+0x1c4/0x290
[ 2489.405154]  ? do_sendfile+0x553/0x1090
[ 2489.405174]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2489.405207]  do_iter_readv_writev+0x476/0x750
[ 2489.405234]  ? new_sync_write+0x660/0x660
[ 2489.405253]  ? selinux_file_permission+0x92/0x520
[ 2489.405300]  do_iter_write+0x191/0x670
[ 2489.405330]  ? trace_hardirqs_on+0x5b/0x180
[ 2489.405362]  vfs_iter_write+0x70/0xa0
[ 2489.405387]  iter_file_splice_write+0x762/0xc30
[ 2489.405430]  ? generic_splice_sendpage+0x140/0x140
[ 2489.405461]  ? avc_policy_seqno+0x9/0x70
[ 2489.405481]  ? selinux_file_permission+0x92/0x520
[ 2489.405513]  ? lockdep_init_map_type+0x2c7/0x780
[ 2489.405540]  ? generic_splice_sendpage+0x140/0x140
[ 2489.405564]  direct_splice_actor+0x10f/0x170
[ 2489.405590]  splice_direct_to_actor+0x387/0x980
[ 2489.405618]  ? pipe_to_sendpage+0x380/0x380
[ 2489.405645]  ? do_splice_to+0x160/0x160
[ 2489.405667]  ? security_file_permission+0x24e/0x570
[ 2489.405702]  do_splice_direct+0x1c4/0x290
[ 2489.405724]  ? splice_direct_to_actor+0x980/0x980
[ 2489.405742]  ? selinux_file_permission+0x92/0x520
[ 2489.405772]  ? security_file_permission+0x24e/0x570
[ 2489.405808]  do_sendfile+0x553/0x1090
[ 2489.405845]  ? do_pwritev+0x270/0x270
[ 2489.405869]  ? wait_for_completion_io+0x270/0x270
[ 2489.405895]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2489.405913]  ? vfs_write+0x354/0xa70
[ 2489.405944]  __x64_sys_sendfile64+0x1d1/0x210
[ 2489.405969]  ? __ia32_sys_sendfile+0x220/0x220
[ 2489.405997]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2489.406021]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2489.406050]  do_syscall_64+0x33/0x40
[ 2489.406084]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2489.406099] RIP: 0033:0x7fb754cd3b19
[ 2489.406123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2489.406135] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2489.406161] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2489.406174] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2489.406187] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.406200] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2489.406213] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2489.670884] FAULT_INJECTION: forcing a failure.
[ 2489.670884] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.670909] CPU: 1 PID: 14969 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2489.670921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.670928] Call Trace:
[ 2489.670961]  dump_stack+0x107/0x167
[ 2489.670988]  should_fail.cold+0x5/0xa
[ 2489.671015]  ? jbd2__journal_start+0x190/0x7e0
[ 2489.671039]  should_failslab+0x5/0x20
[ 2489.671060]  kmem_cache_alloc+0x5b/0x310
[ 2489.671091]  jbd2__journal_start+0x190/0x7e0
[ 2489.671122]  __ext4_journal_start_sb+0x214/0x390
[ 2489.671153]  ext4_dirty_inode+0xbc/0x130
[ 2489.671174]  ? ext4_setattr+0x2210/0x2210
[ 2489.671196]  __mark_inode_dirty+0x492/0xd40
[ 2489.671228]  generic_update_time+0x21c/0x370
[ 2489.671252]  file_update_time+0x43a/0x520
[ 2489.671273]  ? evict_inodes+0x420/0x420
[ 2489.671298]  ? down_write_killable+0x180/0x180
[ 2489.671325]  file_modified+0x7d/0xa0
[ 2489.671347]  ext4_file_write_iter+0x906/0x18e0
[ 2489.671386]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2489.671404]  ? kasan_save_stack+0x32/0x40
[ 2489.671423]  ? kasan_save_stack+0x1b/0x40
[ 2489.671443]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2489.671461]  ? iter_file_splice_write+0x16d/0xc30
[ 2489.671477]  ? direct_splice_actor+0x10f/0x170
[ 2489.671494]  ? splice_direct_to_actor+0x387/0x980
[ 2489.671510]  ? do_splice_direct+0x1c4/0x290
[ 2489.671529]  ? do_sendfile+0x553/0x1090
[ 2489.671549]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2489.671580]  do_iter_readv_writev+0x476/0x750
[ 2489.671606]  ? new_sync_write+0x660/0x660
[ 2489.671624]  ? selinux_file_permission+0x92/0x520
[ 2489.671668]  do_iter_write+0x191/0x670
[ 2489.671697]  ? trace_hardirqs_on+0x5b/0x180
[ 2489.671727]  vfs_iter_write+0x70/0xa0
[ 2489.671751]  iter_file_splice_write+0x762/0xc30
[ 2489.671791]  ? generic_splice_sendpage+0x140/0x140
[ 2489.671820]  ? avc_policy_seqno+0x9/0x70
[ 2489.671839]  ? selinux_file_permission+0x92/0x520
[ 2489.671876]  ? generic_splice_sendpage+0x140/0x140
[ 2489.671899]  direct_splice_actor+0x10f/0x170
[ 2489.671924]  splice_direct_to_actor+0x387/0x980
[ 2489.671951]  ? pipe_to_sendpage+0x380/0x380
[ 2489.671976]  ? do_splice_to+0x160/0x160
[ 2489.671997]  ? security_file_permission+0x24e/0x570
[ 2489.672031]  do_splice_direct+0x1c4/0x290
[ 2489.672052]  ? splice_direct_to_actor+0x980/0x980
[ 2489.672069]  ? selinux_file_permission+0x92/0x520
[ 2489.672097]  ? security_file_permission+0x24e/0x570
[ 2489.672132]  do_sendfile+0x553/0x1090
[ 2489.672196]  ? do_pwritev+0x270/0x270
[ 2489.672219]  ? wait_for_completion_io+0x270/0x270
[ 2489.672244]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2489.672261]  ? vfs_write+0x354/0xa70
[ 2489.672291]  __x64_sys_sendfile64+0x1d1/0x210
[ 2489.672314]  ? __ia32_sys_sendfile+0x220/0x220
[ 2489.672342]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2489.672365]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2489.672392]  do_syscall_64+0x33/0x40
[ 2489.672414]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2489.672428] RIP: 0033:0x7fb754cd3b19
[ 2489.672452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2489.672464] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2489.672488] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2489.672500] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2489.672513] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.672526] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2489.672539] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:23:36 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 65)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:23:36 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 16)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:23:36 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xeffdffff}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:23:36 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0, 0x120)
openat(r0, &(0x7f0000000000)='./file1\x00', 0x8000, 0x1)
ftruncate(0xffffffffffffffff, 0xffff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x400000}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr$security_capability(r1, &(0x7f00000000c0), &(0x7f0000000300)=@v3={0x3000000, [{0x800, 0x1}, {0x0, 0xd96c}]}, 0x18, 0x1)

18:23:36 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b45, &(0x7f00000000c0))

18:23:36 executing program 7:
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xa0743, 0x0)
getdents64(r0, &(0x7f0000000140)=""/170, 0xaa)
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x103000, 0x9f)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000000c0)={0x100})

18:23:36 executing program 5:
r0 = memfd_create(&(0x7f0000000000)='\x00', 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x00', 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_setup(0x4c38, &(0x7f0000000580)={0x0, 0xb070, 0x20, 0x2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000400))
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'wlan1\x00', &(0x7f00000001c0)=@ethtool_flash={0x33, 0x100, './file0\x00'}})
fsync(0xffffffffffffffff)
pwritev2(r1, &(0x7f0000000140)=[{&(0x7f0000000040)='u', 0x1}], 0x1, 0x100009, 0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
memfd_create(&(0x7f00000002c0)='\x00', 0x6)
add_key$fscrypt_v1(&(0x7f0000000180), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
socket$inet6_udp(0xa, 0x2, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
copy_file_range(r1, 0x0, r0, 0x0, 0x100000000, 0x0)

18:23:36 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9})

[ 2503.900441] FAULT_INJECTION: forcing a failure.
[ 2503.900441] name failslab, interval 1, probability 0, space 0, times 0
[ 2503.903112] CPU: 0 PID: 15033 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2503.904785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2503.906699] Call Trace:
[ 2503.907273]  dump_stack+0x107/0x167
[ 2503.908033]  should_fail.cold+0x5/0xa
[ 2503.908842]  ? create_object.isra.0+0x3a/0xa20
[ 2503.909788]  should_failslab+0x5/0x20
[ 2503.910562]  kmem_cache_alloc+0x5b/0x310
[ 2503.911411]  create_object.isra.0+0x3a/0xa20
[ 2503.912316]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2503.913381]  kmem_cache_alloc+0x159/0x310
[ 2503.914236]  jbd2__journal_start+0x190/0x7e0
[ 2503.915154]  __ext4_journal_start_sb+0x214/0x390
[ 2503.916133]  ext4_dirty_inode+0xbc/0x130
[ 2503.916979]  ? ext4_setattr+0x2210/0x2210
[ 2503.917834]  __mark_inode_dirty+0x492/0xd40
[ 2503.918735]  generic_update_time+0x21c/0x370
[ 2503.919645]  file_update_time+0x43a/0x520
[ 2503.920524]  ? evict_inodes+0x420/0x420
[ 2503.921349]  ? down_write_killable+0x180/0x180
[ 2503.922285]  file_modified+0x7d/0xa0
[ 2503.923041]  ext4_file_write_iter+0x906/0x18e0
[ 2503.924001]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2503.924940]  ? kasan_save_stack+0x32/0x40
[ 2503.925792]  ? kasan_save_stack+0x1b/0x40
[ 2503.926641]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2503.927687]  ? iter_file_splice_write+0x16d/0xc30
[ 2503.928684]  ? direct_splice_actor+0x10f/0x170
[ 2503.929601]  ? splice_direct_to_actor+0x387/0x980
[ 2503.930597]  ? do_splice_direct+0x1c4/0x290
[ 2503.931482]  ? do_sendfile+0x553/0x1090
[ 2503.932299]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2503.933286]  do_iter_readv_writev+0x476/0x750
[ 2503.934215]  ? new_sync_write+0x660/0x660
[ 2503.935079]  ? selinux_file_permission+0x92/0x520
[ 2503.935120]  do_iter_write+0x191/0x670
[ 2503.935146]  ? trace_hardirqs_on+0x5b/0x180
[ 2503.935174]  vfs_iter_write+0x70/0xa0
[ 2503.935195]  iter_file_splice_write+0x762/0xc30
[ 2503.935232]  ? generic_splice_sendpage+0x140/0x140
[ 2503.935259]  ? avc_policy_seqno+0x9/0x70
18:23:36 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2503.935275]  ? selinux_file_permission+0x92/0x520
[ 2503.935303]  ? lockdep_init_map_type+0x2c7/0x780
[ 2503.935326]  ? generic_splice_sendpage+0x140/0x140
[ 2503.935346]  direct_splice_actor+0x10f/0x170
[ 2503.935369]  splice_direct_to_actor+0x387/0x980
[ 2503.935393]  ? pipe_to_sendpage+0x380/0x380
[ 2503.935416]  ? do_splice_to+0x160/0x160
[ 2503.935435]  ? security_file_permission+0x24e/0x570
[ 2503.935465]  do_splice_direct+0x1c4/0x290
[ 2503.935484]  ? splice_direct_to_actor+0x980/0x980
[ 2503.935499]  ? selinux_file_permission+0x92/0x520
[ 2503.935524]  ? security_file_permission+0x24e/0x570
[ 2503.935556]  do_sendfile+0x553/0x1090
[ 2503.935588]  ? do_pwritev+0x270/0x270
[ 2503.935608]  ? wait_for_completion_io+0x270/0x270
[ 2503.935630]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2503.935646]  ? vfs_write+0x354/0xa70
[ 2503.935673]  __x64_sys_sendfile64+0x1d1/0x210
[ 2503.935699]  ? __ia32_sys_sendfile+0x220/0x220
[ 2503.935723]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2503.935743]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2503.935767]  do_syscall_64+0x33/0x40
[ 2503.935787]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2503.935800] RIP: 0033:0x7fb754cd3b19
[ 2503.935822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2503.935833] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2503.935854] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2503.935865] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2503.935877] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2503.935888] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2503.935899] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2503.939766] EXT4-fs warning (device sda): verify_group_input:146: Cannot add at group 256 (only 16 groups)
18:23:36 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x543, 0x0)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000040), &(0x7f00000000c0), 0x2, 0x1)
getsockname$unix(r0, &(0x7f00000001c0)=@abs, &(0x7f0000000280)=0x6e)
clone3(&(0x7f0000000140)={0x11060900, 0x0, 0x0, 0x0, {0x23}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = epoll_create1(0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
fstatfs(r3, &(0x7f0000000340)=""/161)
mount$9p_fd(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='transdno=\x00\x00\x00\x00\x00\x00', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

[ 2504.034880] udc-core: couldn't find an available UDC or it's busy
[ 2504.036768] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:23:36 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 66)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2504.086537] udc-core: couldn't find an available UDC or it's busy
[ 2504.088277] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2504.116913] FAULT_INJECTION: forcing a failure.
[ 2504.116913] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2504.119735] CPU: 1 PID: 15045 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2504.121205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2504.122933] Call Trace:
[ 2504.123501]  dump_stack+0x107/0x167
[ 2504.124263]  should_fail.cold+0x5/0xa
[ 2504.125101]  __alloc_pages_nodemask+0x182/0x600
[ 2504.126079]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2504.127345]  ? lock_acquire+0x197/0x470
[ 2504.128159]  ? find_held_lock+0x2c/0x110
[ 2504.129035]  ? jbd2_transaction_committed+0x111/0x150
[ 2504.130088]  ? lock_downgrade+0x6d0/0x6d0
[ 2504.130967]  ? ext4_map_blocks+0x967/0x1970
[ 2504.131859]  alloc_pages_current+0x187/0x280
[ 2504.132789]  ? __kernel_text_address+0x9/0x40
[ 2504.133713]  push_pipe+0x2b5/0x6d0
[ 2504.134457]  iov_iter_zero+0x418/0xef0
[ 2504.135257]  ? ext4_iomap_begin+0x1a0/0x700
[ 2504.136189]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2504.137359]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2504.138395]  ? kasan_save_stack+0x1b/0x40
[ 2504.139235]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2504.140289]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2504.141150]  ? iomap_dio_rw+0x31/0x90
[ 2504.141936]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2504.142853]  iomap_dio_actor+0x40f/0x560
[ 2504.143687]  iomap_apply+0x289/0x810
[ 2504.144449]  ? iomap_dio_rw+0x90/0x90
[ 2504.145289]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2504.146488]  ? mark_held_locks+0x9e/0xe0
[ 2504.147356]  ? filemap_check_errors+0xa5/0x150
[ 2504.148288]  __iomap_dio_rw+0x6cd/0x1110
[ 2504.149139]  ? iomap_dio_rw+0x90/0x90
[ 2504.149914]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2504.150895]  ? down_read+0x284/0x430
[ 2504.151678]  ? lock_chain_count+0x20/0x20
[ 2504.152565]  ? down_write+0x160/0x160
[ 2504.153353]  iomap_dio_rw+0x31/0x90
[ 2504.154122]  ext4_file_read_iter+0x2c7/0x4c0
[ 2504.155119]  generic_file_splice_read+0x455/0x6d0
[ 2504.156385]  ? pipe_to_user+0x170/0x170
[ 2504.157388]  ? _cond_resched+0x12/0x80
[ 2504.158380]  ? avc_policy_seqno+0x9/0x70
[ 2504.159423]  ? selinux_file_permission+0x92/0x520
[ 2504.160678]  ? lockdep_init_map_type+0x2c7/0x780
[ 2504.161752]  ? pipe_to_user+0x170/0x170
[ 2504.162573]  do_splice_to+0x10e/0x160
[ 2504.163415]  splice_direct_to_actor+0x2fe/0x980
[ 2504.164499]  ? pipe_to_sendpage+0x380/0x380
[ 2504.165409]  ? do_splice_to+0x160/0x160
[ 2504.166204]  ? security_file_permission+0x24e/0x570
[ 2504.167229]  do_splice_direct+0x1c4/0x290
[ 2504.168067]  ? splice_direct_to_actor+0x980/0x980
[ 2504.169052]  ? selinux_file_permission+0x92/0x520
[ 2504.170022]  ? security_file_permission+0x24e/0x570
[ 2504.171052]  do_sendfile+0x553/0x1090
[ 2504.171828]  ? do_pwritev+0x270/0x270
[ 2504.172595]  ? wait_for_completion_io+0x270/0x270
[ 2504.173584]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2504.174515]  ? vfs_write+0x354/0xa70
[ 2504.175288]  __x64_sys_sendfile64+0x1d1/0x210
[ 2504.176186]  ? __ia32_sys_sendfile+0x220/0x220
[ 2504.177129]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2504.178185]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2504.179216]  do_syscall_64+0x33/0x40
[ 2504.180157]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2504.181229] RIP: 0033:0x7f0f9f161b19
[ 2504.181978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2504.185702] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2504.187260] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2504.188725] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2504.190174] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2504.191632] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2504.193096] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:23:36 executing program 2:
mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x8000, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101982, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x400)
get_mempolicy(&(0x7f0000000500), &(0x7f0000000540), 0xf276, &(0x7f0000ffb000/0x4000)=nil, 0x6)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0xff, 0x3, &(0x7f0000000340)=[{&(0x7f0000000140)="949b7255053e91f754d0d894d27d593d5a96011f0c87609fe5fcdba61825ebe1c21e19dc878ca854a6851106cacfd59643a4e9db352c430816a13710d6ee10dfb12c80c2f5f78b79cd8d5e27f95f3cb6c76859f51f89d593bc946ed868e22eb16113b6ea763c4ee97f136ff8895ec4810b4b4f42a4c3ce899c81bd410e108f00c748414b59f7b414d2f597a1b53fe83a97b35ea3440a7a4612925e026db103", 0x9f, 0x2}, {&(0x7f0000000200)="e099f166d495f5773dd38ef74cecd4251b4647bfbb0e4d0544fd685b5aedf55dc1b167c1927eec3d9dc01a330d08ec69e06e64a38ce2fd2ef3d4962459df627e796d749cabb72417f9ab4e3c8622eb69475db5ef367cfddcd0e02769a6dce2e63551bb15b8164048c1bfcacb45001a7da03960c82fa4ad6d0318a036e1554bb4fdb7ae81772928533335a217b6005976b583ba660254d0f05bc54c226ef09f51f199440657ea1dd478189258de926897bfe0ff5b2b9d1881a52fe6554b5637a64039bf5480f5b55dfc", 0xc9, 0x8}, {&(0x7f0000000300)="f7402cbf", 0x4, 0x7}], 0x2008a, &(0x7f0000000480)={[{@gid}, {@uid={'uid', 0x3d, 0xee01}}, {@overriderock}], [{@fowner_eq={'fowner', 0x3d, r0}}]})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)

18:23:36 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b46, &(0x7f00000000c0))

[ 2504.216550] FAULT_INJECTION: forcing a failure.
[ 2504.216550] name failslab, interval 1, probability 0, space 0, times 0
[ 2504.219458] CPU: 0 PID: 15060 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2504.221073] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2504.222964] Call Trace:
[ 2504.223579]  dump_stack+0x107/0x167
[ 2504.224445]  should_fail.cold+0x5/0xa
[ 2504.225324]  ? create_object.isra.0+0x3a/0xa20
[ 2504.226374]  should_failslab+0x5/0x20
[ 2504.227247]  kmem_cache_alloc+0x5b/0x310
18:23:36 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xff030000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2504.228179]  create_object.isra.0+0x3a/0xa20
[ 2504.229285]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2504.230460]  kmem_cache_alloc_trace+0x151/0x320
[ 2504.231533]  __iomap_dio_rw+0x1ee/0x1110
[ 2504.232501]  ? jbd2_journal_stop+0x188/0xdc0
[ 2504.233506]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2504.234548]  ? ext4_orphan_add+0x253/0x9e0
[ 2504.235631]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2504.236786]  ? ext4_empty_dir+0xae0/0xae0
[ 2504.237731]  ? jbd2__journal_start+0xf3/0x7e0
[ 2504.238777]  iomap_dio_rw+0x31/0x90
[ 2504.239627]  ext4_file_write_iter+0xb26/0x18e0
[ 2504.240726]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2504.241788]  ? kasan_save_stack+0x32/0x40
[ 2504.242736]  ? kasan_save_stack+0x1b/0x40
[ 2504.243684]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2504.244865]  ? iter_file_splice_write+0x16d/0xc30
[ 2504.245976]  ? direct_splice_actor+0x10f/0x170
[ 2504.247015]  ? splice_direct_to_actor+0x387/0x980
[ 2504.248126]  ? do_splice_direct+0x1c4/0x290
[ 2504.249120]  ? do_sendfile+0x553/0x1090
[ 2504.250034]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2504.251114]  do_iter_readv_writev+0x476/0x750
[ 2504.252153]  ? new_sync_write+0x660/0x660
[ 2504.253121]  ? selinux_file_permission+0x92/0x520
[ 2504.254259]  do_iter_write+0x191/0x670
[ 2504.255160]  ? trace_hardirqs_on+0x5b/0x180
[ 2504.256162]  vfs_iter_write+0x70/0xa0
[ 2504.257055]  iter_file_splice_write+0x762/0xc30
[ 2504.258140]  ? generic_splice_sendpage+0x140/0x140
[ 2504.259272]  ? avc_policy_seqno+0x9/0x70
[ 2504.260202]  ? selinux_file_permission+0x92/0x520
[ 2504.261340]  ? lockdep_init_map_type+0x2c7/0x780
[ 2504.262435]  ? generic_splice_sendpage+0x140/0x140
[ 2504.263563]  direct_splice_actor+0x10f/0x170
[ 2504.264594]  splice_direct_to_actor+0x387/0x980
[ 2504.265667]  ? pipe_to_sendpage+0x380/0x380
[ 2504.266669]  ? do_splice_to+0x160/0x160
[ 2504.267583]  ? security_file_permission+0x24e/0x570
[ 2504.268756]  do_splice_direct+0x1c4/0x290
[ 2504.269709]  ? splice_direct_to_actor+0x980/0x980
[ 2504.270810]  ? selinux_file_permission+0x92/0x520
[ 2504.271937]  ? security_file_permission+0x24e/0x570
[ 2504.271974]  do_sendfile+0x553/0x1090
[ 2504.272010]  ? do_pwritev+0x270/0x270
[ 2504.272036]  ? wait_for_completion_io+0x270/0x270
[ 2504.272061]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2504.272078]  ? vfs_write+0x354/0xa70
[ 2504.272109]  __x64_sys_sendfile64+0x1d1/0x210
[ 2504.272133]  ? __ia32_sys_sendfile+0x220/0x220
18:23:36 executing program 7:
timerfd_create(0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='./file0/file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0xc}, 0x0, 0x0, 0x0, 0x0, 0xa9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x1c, 0x1a, 0x101, 0x0, 0x0, {}, [@generic="7b828f25ec5b"]}, 0x1c}}, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x401070cd, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r2, 0x0, &(0x7f0000000200), 0x0, 0x40000, 0x1}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r4 = syz_open_dev$rtc(&(0x7f0000000540), 0x7, 0x4800)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000880)=@IORING_OP_READV=@pass_iovec={0x1, 0xcde352ed1253d4ea, 0x2000, @fd=r4, 0xf4, &(0x7f0000000840)=[{&(0x7f0000000580)}, {&(0x7f00000005c0)=""/100, 0x64}, {&(0x7f0000000640)=""/207, 0xcf}, {&(0x7f0000000740)=""/232, 0xe8}], 0x4, 0x0, 0x0, {0x0, r5}}, 0x4)
sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x24, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x8000)
readv(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000001c0)=""/220, 0xdc}, {&(0x7f0000000080)=""/40, 0x28}, {&(0x7f00000002c0)=""/207, 0xcf}], 0x3)
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000040))
unshare(0x48020200)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
openat(r0, &(0x7f00000004c0)='./file0/file0\x00', 0x80, 0xb0)
fallocate(r6, 0x1f, 0xe93a, 0x4)

[ 2504.272160]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2504.272183]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2504.272210]  do_syscall_64+0x33/0x40
[ 2504.272233]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2504.272249] RIP: 0033:0x7fb754cd3b19
[ 2504.272274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
18:23:36 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)

[ 2504.272286] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2504.272311] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2504.272323] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2504.272356] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2504.272370] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2504.272382] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2504.457404] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15075 comm=syz-executor.7
[ 2504.726671] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15075 comm=syz-executor.7
[ 2521.390591] SELinux:  Context system_u:object_r:pinentry_exec_t:s0 is not valid (left unmapped).
18:23:53 executing program 7:
r0 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000000)='cpu.pressure\x00', 0x2, 0x0)
stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100), 0x6e, &(0x7f0000000200)=[{&(0x7f0000000180)=""/94, 0x5e}], 0x1, &(0x7f0000000240)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r3=>0x0}}}], 0x38}, 0x2000)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r4=>r0, {r1, r3}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r5=>r2, {0x9}}, './file0\x00'})
r6 = openat(r5, &(0x7f0000000340)='./file0\x00', 0x1, 0x2)
r7 = open(&(0x7f0000000380)='./file0\x00', 0x26e000, 0xe0)
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f00000003c0), 0x200, 0x0)
ioctl$BTRFS_IOC_RESIZE(r8, 0x50009403, &(0x7f0000000400)={{r4}, {@void, @max}})
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000440), 0x40, 0x0)
stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0))
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BTRFS_IOC_INO_LOOKUP(r9, 0xd0009412, &(0x7f0000000540)={0x0, 0x3})
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000001600)={&(0x7f0000001540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001580)={0x3c, 0x0, 0x7, 0x5, 0x0, 0x0, {0xc, 0x0, 0x3}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xd87}, @NFACCT_FILTER={0x1c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8001}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20048004}, 0x4)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000001680), r4)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r7, &(0x7f0000001740)={&(0x7f0000001640)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001700)={&(0x7f00000016c0)={0x40, r10, 0x100, 0x70bd29, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0xd}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004041}, 0x20000095)
r11 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001780), 0x101021, 0x0)
renameat(r11, &(0x7f00000017c0)='./file0\x00', r6, &(0x7f0000001800)='./file0\x00')
r12 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_mreq(r12, 0x29, 0x1c, &(0x7f0000001840), &(0x7f0000001880)=0x14)

18:23:53 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)

18:23:53 executing program 5:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000340), 0x0, 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140)='system_u:object_r:pinentry_exec_t:s0\x00', 0x25, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000180), &(0x7f0000000080)=@v3={0x3000000, [], 0xee00}, 0x18, 0x0)
ioctl$TIOCNOTTY(r0, 0x5422)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = accept4$bt_l2cap(r0, &(0x7f00000001c0)={0x1f, 0x0, @fixed}, &(0x7f0000000200)=0xe, 0x80800)
pread64(r1, &(0x7f0000000240)=""/82, 0x52, 0x2)

18:23:53 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b47, &(0x7f00000000c0))

18:23:53 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xffffe000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:23:53 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 67)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:23:53 executing program 2:
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="02000000030000000400000032000f000300040000000000000000000f002f7c", 0x20, 0x1000}, {&(0x7f0000012500)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000040)={[{@stripe={'stripe', 0x3d, 0x6b024773}}, {@max_batch_time}]})
r1 = getegid()
setresgid(r1, r1, 0x0)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0})
setresuid(0x0, 0x0, 0x0)
r4 = getegid()
setresgid(r4, r4, 0x0)
r5 = syz_open_dev$ptys(0xc, 0x3, 0x0)
r6 = getpid()
getpriority(0x0, r6)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
r8 = syz_open_dev$hiddev(&(0x7f0000002800), 0x1, 0x420001)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r10 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f0000000040)=0xb, 0x80000001)
clone3(&(0x7f0000002d40)={0x80800, &(0x7f0000002b00)=<r11=>0xffffffffffffffff, &(0x7f0000002b40), &(0x7f0000002b80), {}, &(0x7f0000002bc0)=""/193, 0xc1, &(0x7f0000002cc0)=""/31, &(0x7f0000002d00)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff], 0x4}, 0x58)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000002f00)={&(0x7f0000002740)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000027c0)=[{&(0x7f0000002940)="3c20d56b76e723becafa2c722a55ddeb808a33879a5d869e24d917691de37e934d6b2bd9c5e6c969ff8ca3b22a142ffc706965362744d314b46bd62d724bee322b90796a8b3fd0f46d91d02f13efa2cd83940c7949e49df110a537885fa8abc03077086281b1207e1570147c252826a7f6b39e044712a62f671b8893519056267ff1b9d1231ec9d88b6bd0c327d1e50e42d8f1e721675739c364ce21db5565475a9d", 0xa2}, {&(0x7f0000002a00)="3d323861be16a76ba5876a2b04076dbe48fc255e70ed261d42c6f354161140c3c2e68693c17966ffe8214f49f33a13d8ce733f34e37d7acfb6eb09e4270a7431b1541983de1f4b695cf2c5e8461d1f33524e7e1193daafbeb91d1a9b46f1260e44875f2766b786f4810374a1a50792a76b3a9c0ba3d1412974e49c544ab47bb21ed98ccad2cf24e18b7b36e2ae99aa1a12e12229c2f8964fb85cdfba1007b03eaab0ae468120ab7d8d27f5b0936dfbb0c11fed5686043a890a2907bca8a39899f1d6df8f509c2bf0f51711647d21271cd86a10e7b8b162c28f92ea91fb7ef40ea06204", 0xe3}], 0x2, &(0x7f0000002dc0)=[@rights={{0x30, 0x1, 0x1, [r0, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, r4}}}, @rights={{0x14, 0x1, 0x1, [r5]}}, @rights={{0x24, 0x1, 0x1, [r0, r0, r0, 0xffffffffffffffff, r0]}}, @cred={{0x1c, 0x1, 0x2, {r6, r7, r3}}}, @rights={{0x1c, 0x1, 0x1, [r8, r0, r0]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r10, r11, r0]}}], 0x118, 0x2400c090}, 0x80)
setresuid(0x0, r2, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x9, 0x9, &(0x7f0000002640)=[{&(0x7f0000000140)="15e90a3ff9336f70be9a8dfc4e35adc9f824d1f7a6cc1faba583bd3ee60e53bab58a59edb67a73510bfb32a96f2b4e6b31049248da41ce8cd203c05f835187c1aa487a0f63", 0x45, 0x6}, {&(0x7f0000000280)="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", 0x1000, 0x1}, {&(0x7f0000001280)="65b9688aae2b2eaf2d34b6a6fe064191216e7f48e369654a566cf7dc774b7a7474c455f7ebc6b00a52f4293d70da616635599d25690c082de0ce09f21555c1d42f6055f9bc169c5cc051608d3979224f5ef1937c8c49b35b336d12", 0x5b, 0x800}, {&(0x7f0000001300)="10de0ffa6cffcfc29615faec4a9a6c964a227e95dcb814f032fd0727a84bca3d52765a86a614b787bdcf2774a4a87ab05b8c3d1e9535ea2f346e49910e9687b27ce96838ed5129fb5ed870c3850096fe8f5d2543c3d47f8f38165ec7ab9d92a251dc4339a660358bb834f9cb9161cbdb8923ff640e4e65d4d3a992be7b95a61299d54dd97c10e83910830d45", 0x8c, 0x4}, {&(0x7f00000001c0)="d3e8cef08695d32ff7e217d6f3e5cd66979d69659cfafcb848f97ad4b19ed6cedcb27fdab6af", 0x26, 0x100}, {&(0x7f00000013c0)="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", 0x1000, 0x101}, {&(0x7f00000023c0)="eab9ed425f83b224ec80e057f731c7be6febd1a10677bc8de2f56745d7e6e05592971002d43b3d7378241e2a1e3a9142b1279e99e3cefad95f01e027b1b7845c1eb60a70503cbb7b7e23d9f8712418b07f66179d6719272076677c2448c9ed90d775d1e3338e5ebec2648dc128b9990c102ba91432a2fa9f5810713880f22a178e9c177e55a42ca5d9593a07f6a006c07445d0959ca8907c6f2823d5bbd277478d94d7d5ecc8fb12a765", 0xaa, 0x6}, {&(0x7f0000002480)="150f1543c4fb7dac702262eddb7aaf1f7f43c68f59bec92fbcba342178fdbf9e7fc15f04b0969b21cc98eac9d4fa3081a346e6d5781d144ae96c268cbe917ef3c478499a04882bade1658b1624c483acdc5bc5478cfe8a11cd0ea39e72d612dd26346f662b84dd8a26af537d2e7dd21eb117efc45827ab5d322543415242138796abeb31824e4783ae1f29fc2f9d477d1a8c745a795d5621406f49e65ee393552fa5d0cec7f4a449d2933458a98d202247465aa536959de13481", 0xba, 0x1}, {&(0x7f0000002540)="8bff47334f4235b84a20ee3dae7bb89a5feabcedefc5eda771b9105a763c3d83b804f43d602d70737ac3c6b0182355028423938d7a8dbe9fde3887715003c93ad23b972e310edfb69c21c6767e523a94d2659df20f332106ac8e0bfdc593afb12a4f5f9026a64fc7b4d53252978581521da7cabbf64ed9d0deb606b3104d6f60691b16a10fd6b49b79e66e3a6c55c280f406ad1854af789dc38d0f3a6d5fdcf8e93567bcf4cf63672808ec546d43c6e5ceb5a94da98e0f1a41243d95bfc8f4349675c9460911c62c08353b3035d196bc26a366c02bc8", 0xd6, 0x8}], 0xaf58bf4fb4da2cfb, &(0x7f0000002840)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=r1, @ANYBLOB=',huge=never,nr_blocks=8e2%p,huge=advise,gid=', @ANYRESHEX=0xee00, @ANYBLOB=',subj_role=max_batch_time,uid>', @ANYRESDEC=0xee01, @ANYBLOB=',hash,euid>', @ANYRESDEC=r2, @ANYBLOB="2c736d61636b6605757b367cf2f67b2c00e70f4aec69c437a0ec65663897c6dd59ed224c36cf84e4ae624426eeee46bc1200a08c4aa78816b3f74823bf8fbf318bcc2468b1ff12e9b9a477f1fae86103"])

18:23:54 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 17)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

[ 2521.412818] FAULT_INJECTION: forcing a failure.
[ 2521.412818] name failslab, interval 1, probability 0, space 0, times 0
[ 2521.414480] CPU: 1 PID: 15094 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2521.414489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2521.414495] Call Trace:
[ 2521.414517]  dump_stack+0x107/0x167
[ 2521.414535]  should_fail.cold+0x5/0xa
[ 2521.414555]  ? jbd2__journal_start+0x190/0x7e0
18:23:54 executing program 5:
r0 = epoll_create1(0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x90000019})
r2 = epoll_create(0x6)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000000)=0x6359, 0x4)
r4 = epoll_create1(0x80000)
r5 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000080)={0x1})
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000100)=ANY=[@ANYBLOB="000000000000000001000100", @ANYRES32=r3, @ANYBLOB="2b0e000000000000"])
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x20000001})
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r4, 0x8040942d, &(0x7f00000000c0))
creat(0x0, 0x0)
dup2(r6, r0)

[ 2521.414572]  should_failslab+0x5/0x20
[ 2521.414587]  kmem_cache_alloc+0x5b/0x310
18:23:54 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 68)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2521.414602]  ? __kernel_text_address+0x9/0x40
[ 2521.414624]  jbd2__journal_start+0x190/0x7e0
18:23:54 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b48, &(0x7f00000000c0))

[ 2521.414647]  __ext4_journal_start_sb+0x214/0x390
[ 2521.414668]  ext4_iomap_begin+0x485/0x700
[ 2521.414693]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2521.414706]  ? kasan_save_stack+0x1b/0x40
[ 2521.414721]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2521.414742]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2521.414755]  ? splice_direct_to_actor+0x387/0x980
[ 2521.414766]  ? do_splice_direct+0x1c4/0x290
[ 2521.414780]  ? do_sendfile+0x553/0x1090
[ 2521.414794]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2521.414809]  ? do_syscall_64+0x33/0x40
[ 2521.414825]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2521.414845]  iomap_apply+0x164/0x810
[ 2521.414861]  ? iomap_dio_rw+0x90/0x90
[ 2521.414882]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2521.414911]  ? mark_held_locks+0x9e/0xe0
[ 2521.414946]  ? filemap_check_errors+0xa5/0x150
[ 2521.414966]  __iomap_dio_rw+0x6cd/0x1110
[ 2521.414978]  ? iomap_dio_rw+0x90/0x90
[ 2521.415010]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2521.415026]  ? ext4_orphan_add+0x253/0x9e0
[ 2521.415042]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2521.415061]  ? ext4_empty_dir+0xae0/0xae0
[ 2521.415075]  ? jbd2__journal_start+0xf3/0x7e0
[ 2521.415099]  iomap_dio_rw+0x31/0x90
[ 2521.415116]  ext4_file_write_iter+0xb26/0x18e0
[ 2521.415147]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2521.415159]  ? kasan_save_stack+0x32/0x40
[ 2521.415172]  ? kasan_save_stack+0x1b/0x40
[ 2521.415186]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2521.415198]  ? iter_file_splice_write+0x16d/0xc30
[ 2521.415210]  ? direct_splice_actor+0x10f/0x170
[ 2521.415222]  ? splice_direct_to_actor+0x387/0x980
[ 2521.415234]  ? do_splice_direct+0x1c4/0x290
[ 2521.415245]  ? do_sendfile+0x553/0x1090
[ 2521.415257]  ? __x64_sys_sendfile64+0x1d1/0x210
18:23:54 executing program 2:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0xd20)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef)
syz_io_uring_setup(0x200286f, &(0x7f0000000140)={0x0, 0xf292, 0x2, 0x0, 0x18f}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0))
fcntl$getflags(0xffffffffffffffff, 0x40a)
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fallocate(r0, 0x12, 0x2, 0x275)
fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0x4)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000800)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xcc}}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
acct(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz0\x00', 0x200002, 0x0)
ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f0000000300)={{}, 0x3, &(0x7f0000000280)=[0x5, 0x2, 0xe3], 0x5, 0x3, [0x0, 0x81, 0x2]})
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x8, 0x0, 0x4686}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_UIE_ON(r3, 0x7003)

[ 2521.415279]  do_iter_readv_writev+0x476/0x750
18:23:54 executing program 5:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
close_range(r0, r0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x408c80, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000000180)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext, 0x0, 0x0, 0x800000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0xa, 0x3, 0xff)
sendto(r2, &(0x7f0000000000)="d4f8dfaa394996add3afd1da13fac83014b8e5c45afa1a1f3ed44d2f6eaf6b5f9203bf69ab683862", 0x28, 0x0, &(0x7f0000000140)=@nl=@unspec={0x0, 0xff00, 0x0, 0xf5ffffff}, 0x80)
io_setup(0x0, &(0x7f0000000180))
rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000600))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x68, r3, 0x2, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0x4c, 0x18, {0x2, @link='broadcast-link\x00'}}}, ["", "", "", "", "", "", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x4048840)
syz_open_procfs(0x0, &(0x7f0000000580)='coredump_filter\x00')
syz_open_procfs(0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
request_key(&(0x7f0000000000)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x3, 0x2}, &(0x7f0000000040)='Z.;\xf9\xf6F\xee\x80#', 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/handlers\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000001f40), 0x0, 0x0, 0x0)
ioctl$sock_ifreq(r4, 0x0, &(0x7f00000000c0)={'veth1_to_hsr\x00', @ifru_names})

[ 2521.415297]  ? new_sync_write+0x660/0x660
[ 2521.415309]  ? selinux_file_permission+0x92/0x520
[ 2521.415342]  do_iter_write+0x191/0x670
[ 2521.415364]  ? trace_hardirqs_on+0x5b/0x180
[ 2521.415386]  vfs_iter_write+0x70/0xa0
[ 2521.415403]  iter_file_splice_write+0x762/0xc30
[ 2521.415433]  ? generic_splice_sendpage+0x140/0x140
18:23:54 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_io_uring_setup(0x7d39, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000000)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000190c0)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_open_dev$loop(&(0x7f00000004c0), 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r3, 0x0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000000500)=""/170, 0xaa}, {&(0x7f00000005c0)=""/4096, 0x1000}, {&(0x7f00000015c0)=""/1, 0x1}, {&(0x7f0000001600)=""/7, 0x7}, {&(0x7f0000001640)=""/4096, 0x1000}, {&(0x7f0000002640)=""/36, 0x24}, {&(0x7f0000002680)=""/114, 0x72}, {&(0x7f0000002700)=""/31, 0x1f}, {&(0x7f0000002740)=""/237, 0xed}], 0x9, &(0x7f0000002900)=""/158, 0x9e}, 0x0, 0x2203, 0x1, {0x1}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$PERF_EVENT_IOC_REFRESH(r6, 0x2402, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2521.415457]  ? avc_policy_seqno+0x9/0x70
[ 2521.415469]  ? selinux_file_permission+0x92/0x520
[ 2521.415491]  ? lockdep_init_map_type+0x2c7/0x780
[ 2521.415510]  ? generic_splice_sendpage+0x140/0x140
[ 2521.415525]  direct_splice_actor+0x10f/0x170
[ 2521.415543]  splice_direct_to_actor+0x387/0x980
[ 2521.415564]  ? pipe_to_sendpage+0x380/0x380
[ 2521.415582]  ? do_splice_to+0x160/0x160
[ 2521.415597]  ? security_file_permission+0x24e/0x570
[ 2521.415623]  do_splice_direct+0x1c4/0x290
[ 2521.415638]  ? splice_direct_to_actor+0x980/0x980
[ 2521.415650]  ? selinux_file_permission+0x92/0x520
[ 2521.415671]  ? security_file_permission+0x24e/0x570
[ 2521.415697]  do_sendfile+0x553/0x1090
[ 2521.415723]  ? do_pwritev+0x270/0x270
[ 2521.415740]  ? wait_for_completion_io+0x270/0x270
[ 2521.415758]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2521.415770]  ? vfs_write+0x354/0xa70
[ 2521.415792]  __x64_sys_sendfile64+0x1d1/0x210
18:23:54 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 69)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2521.415808]  ? __ia32_sys_sendfile+0x220/0x220
[ 2521.415828]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2521.415844]  ? syscall_enter_from_user_mode+0x1d/0x50
18:23:54 executing program 2:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
write(r0, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r2, 0x8008f511, &(0x7f0000000000))
r4 = syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000180)='./file0\x00', 0x99, 0x1, &(0x7f0000000200)=[{&(0x7f00000001c0)="b1ae98208b40109118bc2b8e89ab527ea44387bbe242d76991f216d46e9f0978c17ef3e86128", 0x26, 0x7}], 0x1000, &(0x7f0000000240)={[{@iocharset={'iocharset', 0x3d, 'maccroatian'}}, {@shortname_win95}], [{@obj_type}, {@dont_measure}, {@smackfstransmute={'smackfstransmute', 0x3d, '/proc/sys/net/ipv4/tcp_wmem\x00'}}, {@pcr={'pcr', 0x3d, 0x4}}, {@appraise}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@obj_type}]})
fallocate(r4, 0x9a, 0x7, 0x5)

[ 2521.415862]  do_syscall_64+0x33/0x40
[ 2521.415878]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2521.415889] RIP: 0033:0x7fb754cd3b19
[ 2521.415905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2521.415913] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2521.415930] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2521.415940] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2521.415948] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2521.415957] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2521.415967] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2521.522521] udc-core: couldn't find an available UDC or it's busy
[ 2521.522547] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2521.535590] udc-core: couldn't find an available UDC or it's busy
[ 2521.535612] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2521.563279] FAULT_INJECTION: forcing a failure.
[ 2521.563279] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2521.563303] CPU: 0 PID: 15108 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2521.563315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2521.563323] Call Trace:
[ 2521.563352]  dump_stack+0x107/0x167
[ 2521.563377]  should_fail.cold+0x5/0xa
[ 2521.563409]  __alloc_pages_nodemask+0x182/0x600
[ 2521.563430]  ? mark_held_locks+0x9e/0xe0
[ 2521.563458]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2521.563479]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2521.563508]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2521.563541]  alloc_pages_current+0x187/0x280
[ 2521.563569]  push_pipe+0x2b5/0x6d0
[ 2521.563604]  iov_iter_zero+0x418/0xef0
[ 2521.563632]  ? ext4_iomap_begin+0x1a0/0x700
[ 2521.563660]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2521.563686]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2521.563705]  ? kasan_save_stack+0x1b/0x40
[ 2521.563725]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2521.563744]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2521.563765]  ? iomap_dio_rw+0x31/0x90
[ 2521.563782]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2521.563808]  iomap_dio_actor+0x40f/0x560
[ 2521.563836]  iomap_apply+0x289/0x810
[ 2521.563857]  ? iomap_dio_rw+0x90/0x90
[ 2521.563881]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2521.563915]  ? mark_held_locks+0x9e/0xe0
[ 2521.563955]  ? filemap_check_errors+0xa5/0x150
[ 2521.563982]  __iomap_dio_rw+0x6cd/0x1110
[ 2521.564003]  ? iomap_dio_rw+0x90/0x90
[ 2521.564043]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2521.564064]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2521.564084]  ? trace_hardirqs_on+0x5b/0x180
[ 2521.564109]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2521.564144]  ? ext4_inode_journal_mode+0x374/0x4f0
[ 2521.564169]  iomap_dio_rw+0x31/0x90
[ 2521.564192]  ext4_file_read_iter+0x2c7/0x4c0
[ 2521.564217]  generic_file_splice_read+0x455/0x6d0
[ 2521.564238]  ? pipe_to_user+0x170/0x170
[ 2521.564254]  ? _cond_resched+0x12/0x80
[ 2521.564277]  ? avc_policy_seqno+0x9/0x70
[ 2521.564295]  ? selinux_file_permission+0x92/0x520
[ 2521.564324]  ? lockdep_init_map_type+0x2c7/0x780
[ 2521.564347]  ? pipe_to_user+0x170/0x170
[ 2521.564368]  do_splice_to+0x10e/0x160
[ 2521.564392]  splice_direct_to_actor+0x2fe/0x980
[ 2521.564419]  ? pipe_to_sendpage+0x380/0x380
[ 2521.564443]  ? do_splice_to+0x160/0x160
[ 2521.564463]  ? security_file_permission+0x24e/0x570
[ 2521.564496]  do_splice_direct+0x1c4/0x290
[ 2521.564516]  ? splice_direct_to_actor+0x980/0x980
[ 2521.564533]  ? selinux_file_permission+0x92/0x520
[ 2521.564560]  ? security_file_permission+0x24e/0x570
[ 2521.564605]  do_sendfile+0x553/0x1090
[ 2521.564639]  ? do_pwritev+0x270/0x270
[ 2521.564660]  ? wait_for_completion_io+0x270/0x270
[ 2521.564684]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2521.564700]  ? vfs_write+0x354/0xa70
[ 2521.564730]  __x64_sys_sendfile64+0x1d1/0x210
[ 2521.564753]  ? __ia32_sys_sendfile+0x220/0x220
[ 2521.564778]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2521.564800]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2521.564826]  do_syscall_64+0x33/0x40
[ 2521.564847]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2521.564862] RIP: 0033:0x7f0f9f161b19
[ 2521.564884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2521.564895] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2521.564918] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2521.564930] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2521.564942] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2521.564954] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2521.564966] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2521.595521] FAULT_INJECTION: forcing a failure.
[ 2521.595521] name failslab, interval 1, probability 0, space 0, times 0
[ 2521.595533] CPU: 1 PID: 15117 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2521.595539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2521.595543] Call Trace:
[ 2521.595559]  dump_stack+0x107/0x167
[ 2521.595572]  should_fail.cold+0x5/0xa
[ 2521.595584]  ? create_object.isra.0+0x3a/0xa20
[ 2521.595596]  should_failslab+0x5/0x20
[ 2521.595607]  kmem_cache_alloc+0x5b/0x310
[ 2521.595621]  create_object.isra.0+0x3a/0xa20
[ 2521.595631]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2521.595644]  kmem_cache_alloc_trace+0x151/0x320
[ 2521.595659]  __iomap_dio_rw+0x1ee/0x1110
[ 2521.595679]  ? jbd2_journal_stop+0x188/0xdc0
[ 2521.595691]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2521.595702]  ? ext4_orphan_add+0x253/0x9e0
[ 2521.595714]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2521.595726]  ? ext4_empty_dir+0xae0/0xae0
[ 2521.595735]  ? jbd2__journal_start+0xf3/0x7e0
[ 2521.595755]  iomap_dio_rw+0x31/0x90
[ 2521.595766]  ext4_file_write_iter+0xb26/0x18e0
[ 2521.595785]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2521.595795]  ? kasan_save_stack+0x32/0x40
[ 2521.595803]  ? kasan_save_stack+0x1b/0x40
[ 2521.595814]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2521.595822]  ? iter_file_splice_write+0x16d/0xc30
[ 2521.595830]  ? direct_splice_actor+0x10f/0x170
[ 2521.595838]  ? splice_direct_to_actor+0x387/0x980
[ 2521.595846]  ? do_splice_direct+0x1c4/0x290
[ 2521.595855]  ? do_sendfile+0x553/0x1090
[ 2521.595865]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2521.595880]  do_iter_readv_writev+0x476/0x750
[ 2521.595892]  ? new_sync_write+0x660/0x660
[ 2521.595902]  ? selinux_file_permission+0x92/0x520
[ 2521.595924]  do_iter_write+0x191/0x670
[ 2521.595939]  ? trace_hardirqs_on+0x5b/0x180
[ 2521.595953]  vfs_iter_write+0x70/0xa0
[ 2521.595965]  iter_file_splice_write+0x762/0xc30
[ 2521.595985]  ? generic_splice_sendpage+0x140/0x140
[ 2521.596001]  ? avc_policy_seqno+0x9/0x70
[ 2521.596010]  ? selinux_file_permission+0x92/0x520
[ 2521.596025]  ? lockdep_init_map_type+0x2c7/0x780
[ 2521.596037]  ? generic_splice_sendpage+0x140/0x140
[ 2521.596049]  direct_splice_actor+0x10f/0x170
[ 2521.596060]  splice_direct_to_actor+0x387/0x980
[ 2521.596074]  ? pipe_to_sendpage+0x380/0x380
[ 2521.596086]  ? do_splice_to+0x160/0x160
[ 2521.596097]  ? security_file_permission+0x24e/0x570
[ 2521.596113]  do_splice_direct+0x1c4/0x290
[ 2521.596124]  ? splice_direct_to_actor+0x980/0x980
[ 2521.596132]  ? selinux_file_permission+0x92/0x520
[ 2521.596146]  ? security_file_permission+0x24e/0x570
[ 2521.596163]  do_sendfile+0x553/0x1090
[ 2521.596180]  ? do_pwritev+0x270/0x270
[ 2521.596192]  ? wait_for_completion_io+0x270/0x270
[ 2521.596205]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2521.596214]  ? vfs_write+0x354/0xa70
[ 2521.596228]  __x64_sys_sendfile64+0x1d1/0x210
[ 2521.596240]  ? __ia32_sys_sendfile+0x220/0x220
[ 2521.596253]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2521.596265]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2521.596278]  do_syscall_64+0x33/0x40
[ 2521.596289]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2521.596296] RIP: 0033:0x7fb754cd3b19
[ 2521.596308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2521.596314] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2521.596326] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2521.596333] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2521.596339] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2521.596345] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2521.596352] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2521.839761] FAULT_INJECTION: forcing a failure.
[ 2521.839761] name failslab, interval 1, probability 0, space 0, times 0
[ 2521.839774] CPU: 1 PID: 15141 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2521.839781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2521.839785] Call Trace:
[ 2521.839801]  dump_stack+0x107/0x167
[ 2521.839815]  should_fail.cold+0x5/0xa
[ 2521.839828]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2521.839840]  should_failslab+0x5/0x20
[ 2521.839851]  kmem_cache_alloc_trace+0x55/0x320
[ 2521.839866]  __iomap_dio_rw+0x1ee/0x1110
[ 2521.839886]  ? jbd2_journal_stop+0x188/0xdc0
[ 2521.839897]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2521.839908]  ? ext4_orphan_add+0x253/0x9e0
[ 2521.839924]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2521.839935]  ? ext4_empty_dir+0xae0/0xae0
[ 2521.839945]  ? jbd2__journal_start+0xf3/0x7e0
[ 2521.839961]  iomap_dio_rw+0x31/0x90
[ 2521.839973]  ext4_file_write_iter+0xb26/0x18e0
[ 2521.839992]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2521.840002]  ? kasan_save_stack+0x32/0x40
[ 2521.840010]  ? kasan_save_stack+0x1b/0x40
[ 2521.840021]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2521.840030]  ? iter_file_splice_write+0x16d/0xc30
[ 2521.840038]  ? direct_splice_actor+0x10f/0x170
[ 2521.840046]  ? splice_direct_to_actor+0x387/0x980
[ 2521.840054]  ? do_splice_direct+0x1c4/0x290
[ 2521.840064]  ? do_sendfile+0x553/0x1090
[ 2521.840074]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2521.840089]  do_iter_readv_writev+0x476/0x750
[ 2521.840101]  ? new_sync_write+0x660/0x660
[ 2521.840111]  ? selinux_file_permission+0x92/0x520
[ 2521.840132]  do_iter_write+0x191/0x670
[ 2521.840147]  ? trace_hardirqs_on+0x5b/0x180
[ 2521.840162]  vfs_iter_write+0x70/0xa0
[ 2521.840173]  iter_file_splice_write+0x762/0xc30
[ 2521.840193]  ? generic_splice_sendpage+0x140/0x140
[ 2521.840208]  ? avc_policy_seqno+0x9/0x70
[ 2521.840217]  ? selinux_file_permission+0x92/0x520
[ 2521.840233]  ? lockdep_init_map_type+0x2c7/0x780
[ 2521.840245]  ? generic_splice_sendpage+0x140/0x140
[ 2521.840256]  direct_splice_actor+0x10f/0x170
[ 2521.840268]  splice_direct_to_actor+0x387/0x980
[ 2521.840282]  ? pipe_to_sendpage+0x380/0x380
[ 2521.840294]  ? do_splice_to+0x160/0x160
[ 2521.840305]  ? security_file_permission+0x24e/0x570
[ 2521.840321]  do_splice_direct+0x1c4/0x290
[ 2521.840332]  ? splice_direct_to_actor+0x980/0x980
[ 2521.840340]  ? selinux_file_permission+0x92/0x520
[ 2521.840354]  ? security_file_permission+0x24e/0x570
[ 2521.840371]  do_sendfile+0x553/0x1090
[ 2521.840388]  ? do_pwritev+0x270/0x270
[ 2521.840400]  ? wait_for_completion_io+0x270/0x270
[ 2521.840413]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2521.840422]  ? vfs_write+0x354/0xa70
[ 2521.840436]  __x64_sys_sendfile64+0x1d1/0x210
[ 2521.840448]  ? __ia32_sys_sendfile+0x220/0x220
[ 2521.840461]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2521.840472]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2521.840486]  do_syscall_64+0x33/0x40
[ 2521.840497]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2521.840504] RIP: 0033:0x7fb754cd3b19
[ 2521.840516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2521.840522] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2521.840534] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2521.840540] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2521.840546] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2521.840553] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2521.840559] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:24:09 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 70)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:24:09 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x18, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000002000028020000028400001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e37313539353330323300"/192, 0xc0, 0x400}, {&(0x7f0000010100)="0000000000000000000000006a641059655a4e10bf1130ee7fdbd1e0010000000c00000000000000d9f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000003000000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000066000f000300040000000000000000000f007f5c", 0x20, 0x800}, {&(0x7f0000010400)="ffffff03000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d9f4655fd9f4655fd9f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000d9f4655fdaf4655fdaf4655f00000000000004000400000000000000050000000c00"/64, 0x40, 0x2200}, {&(0x7f0000011600)="200000007412ab417412ab4100000000d9f4655f00"/32, 0x20, 0x2280}, {&(0x7f0000011700)="c041000000380000d9f4655fd9f4655fd9f4655f00000000000002001c00000000000000000000000d0000000e0000000f0000001000000011000000120000001300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d9f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x3400}, {&(0x7f0000011800)="ed4100003c000000daf4655fdaf4655fdaf4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c653100000000000000000000000000000000000000000000000000000002010b1b000000000000000000000000000000000000000000000000200000007412ab417412ab417412ab41daf4655f7412ab410000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x3600}, {&(0x7f0000011900)="ed8100001a040000daf4655fdaf4655fdaf4655f000000000000010004000000000000000100000014000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000039c34d38000000000000000000000000000000000000000000000000200000007412ab417412ab417412ab41daf4655f7412ab410000000000000000", 0xa0, 0x3800}, {&(0x7f0000011a00)="ffa1000026000000daf4655fdaf4655fdaf4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3731353935333032332f66696c65302f66696c65300000000000000000000000000000000000000000000026908b44000000000000000000000000000000000000000000000000200000007412ab417412ab417412ab41daf4655f7412ab410000000000000000", 0xa0, 0x3a00}, {&(0x7f0000011b00)="ed8100000a000000daf4655fdaf4655fdaf4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000aa02805e000000000000000000000000000000000000000000000000200000007412ab417412ab417412ab41daf4655f7412ab410000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3c00}, {&(0x7f0000011c00)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000daf4655fdaf4655fdaf4655f0000000000000200140000000000000001000000150000001600000017000000180000001900000000000000000000000000000000000000000000000000000000000000000000000000000000000000cb34f3d3000000000000000000000000000000000000000000000000200000007412ab417412ab417412ab41daf4655f7412ab410000000000000000", 0xc0, 0x3de0}, {&(0x7f0000011d00)="ed81000064000000daf4655fdaf4655fdaf4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c91b90e27000000000000000000000000000000000000000000000000200000007412ab417412ab417412ab41daf4655f7412ab410000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x4000}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x41c0}, {&(0x7f0000011f00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x6000}, {&(0x7f0000012000)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x6800}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x7000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x7800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x8000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x8800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x9000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x9800}, {&(0x7f0000012700)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0xa000}], 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="2b811a9728d1e7a2a9920c95fbb6c325c521d760f51b35af231406188fdf58b3fdca2d1cbdc46341a1d803b2e97a43e6e623efea9f236544e479a6bce61c691096c2ee0c2972831bf2ac89a3beab5126054a07bf79cfb32c75bcd5eade34c7af3355a2c31fe9a77eae8a5e913b2e9b46cf30b0ea8e4bb8c0030f2ccf5444878a66f669b09a36978872e633f38724e53d968236f0d443900c8f257fb3f2d75743650b188b67d5c50ff66d0662e8755bd77b5c998df5a9eb62d369efe53ff5cf7ae699837426181c3f43819a7089c9a67e92b58b27f5cb6be74d0820e399b02b48db31602e60cccf6c136474c37caf73176d5ef6ba10fe6a47444128151362d0de863941dcc08ac74eb98fb4935fa3ceebcb615617570035a5e41bf5f0688c462f813dc175c0180adcf7d69026b23ec612300c34a4d066f6cfe81d584022035ff4c6f3fce0"])
r0 = fsmount(0xffffffffffffffff, 0x1, 0x1)
mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x8, 0x1)

18:24:09 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 18)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:24:09 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b49, &(0x7f00000000c0))

18:24:09 executing program 7:
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f00000000c0))
pipe(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x0, @loopback=0x7f00000b}, {0x2, 0x0, @multicast2}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0xfffffffffffffffc, 0x1})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
creat(&(0x7f0000000240)='./file0\x00', 0x49)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0xa}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
sendmmsg(0xffffffffffffffff, &(0x7f0000003bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="836acc9659000000100000f8755c2d16b8d1b2a113f86dc76fc7062b2d130afb2c4f576048b47c7a9d7f6bf9c6f01323aa8451763956c9f20a127a34abccedf4dee5250b7c045581c53ab5a8a96fb80400eaf600"/97, @ANYRES32=r2], 0x10}}], 0x2, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r3, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2})
fstatfs(r1, &(0x7f0000002e00)=""/4102)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB='!\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4801)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r4, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})

18:24:09 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)

18:24:09 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xfffffdef}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:24:09 executing program 5:
openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x8, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
write$binfmt_elf64(r0, &(0x7f0000000140)=ANY=[@ANYRESOCT, @ANYBLOB="f699314831d6955e33f3b1e418536903c46c64c2f0a59fa5676bf3a43d1f59799fc0ffa0f463762b786b42643662d2cf7c14c1c136676678997277d43231ae4e8375af272e57e599f75397d5803be47058b8d30aee38a5584cf2d4d958364f1bc85792cb63aee4b7657284d6b0e02b74ea14908d51ec272774511e9cc2532fb409c64608ace7bb0bcbc5558c222350dbcb00873d8dc4469e4796cbca435d90337391bfed309548c2cb16a92e9a1ab4d374eb49fab2320ad16343f0ee95021f64ebcd9a", @ANYBLOB="ca0e7873ff970fce8b10f4b7dc39bf44a157017ef793d61e61a5b41ece4c1ba79c4c8ccec989429ff99a149771cf4cefedbcd68b5a5cee7458d5059056ac40de6ff16122b9d7a6cfac584c147b66f240cb29ee0a44b633aa0dc0358663c5c6e07cca107bcdcc7371979bf1b23e52ee5f9aec11cf32", @ANYRESHEX=r5, @ANYRES32=r4], 0x5c000)

18:24:09 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
creat(0x0, 0x1)

[ 2537.027205] FAULT_INJECTION: forcing a failure.
[ 2537.027205] name failslab, interval 1, probability 0, space 0, times 0
[ 2537.028536] CPU: 1 PID: 15164 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2537.029374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2537.030329] Call Trace:
[ 2537.030646]  dump_stack+0x107/0x167
[ 2537.031073]  should_fail.cold+0x5/0xa
[ 2537.031518]  ? jbd2__journal_start+0x190/0x7e0
[ 2537.032053]  should_failslab+0x5/0x20
[ 2537.032504]  kmem_cache_alloc+0x5b/0x310
[ 2537.032991]  ? __kernel_text_address+0x9/0x40
[ 2537.033525]  jbd2__journal_start+0x190/0x7e0
[ 2537.034048]  __ext4_journal_start_sb+0x214/0x390
[ 2537.034602]  ext4_iomap_begin+0x485/0x700
[ 2537.035099]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2537.035671]  ? kasan_save_stack+0x1b/0x40
[ 2537.036145]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2537.036712]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2537.037462]  ? splice_direct_to_actor+0x387/0x980
[ 2537.038024]  ? do_splice_direct+0x1c4/0x290
[ 2537.038518]  ? do_sendfile+0x553/0x1090
[ 2537.038980]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2537.039512]  ? do_syscall_64+0x33/0x40
[ 2537.039958]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2537.040587]  iomap_apply+0x164/0x810
[ 2537.041036]  ? iomap_dio_rw+0x90/0x90
[ 2537.041486]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2537.042176]  ? mark_held_locks+0x9e/0xe0
[ 2537.042667]  ? filemap_check_errors+0xa5/0x150
[ 2537.043213]  __iomap_dio_rw+0x6cd/0x1110
[ 2537.043692]  ? iomap_dio_rw+0x90/0x90
[ 2537.044148]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2537.044679]  ? ext4_orphan_add+0x253/0x9e0
[ 2537.045191]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2537.045769]  ? ext4_empty_dir+0xae0/0xae0
[ 2537.046253]  ? jbd2__journal_start+0xf3/0x7e0
[ 2537.046777]  iomap_dio_rw+0x31/0x90
[ 2537.047205]  ext4_file_write_iter+0xb26/0x18e0
[ 2537.047739]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2537.048269]  ? kasan_save_stack+0x32/0x40
[ 2537.048758]  ? kasan_save_stack+0x1b/0x40
[ 2537.049251]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2537.049829]  ? iter_file_splice_write+0x16d/0xc30
[ 2537.050385]  ? direct_splice_actor+0x10f/0x170
[ 2537.050919]  ? splice_direct_to_actor+0x387/0x980
[ 2537.051487]  ? do_splice_direct+0x1c4/0x290
[ 2537.051986]  ? do_sendfile+0x553/0x1090
[ 2537.052452]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2537.053013]  do_iter_readv_writev+0x476/0x750
18:24:09 executing program 2:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='status\x00')
readv(r0, &(0x7f0000000100), 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
kcmp(0x0, 0x0, 0x1, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f00000000c0)={0x0, @tick, 0x1f, {}, 0x4, 0x0, 0x6d})
r4 = accept4$inet(r0, 0x0, &(0x7f0000000180), 0x80000)
r5 = getegid()
setresgid(r5, r5, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000400)={{{@in=@initdev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@remote}}, &(0x7f0000000500)=0xe8)
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x4000, &(0x7f0000000540)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@msize={'msize', 0x3d, 0xb55}}, {@version_L}, {@dfltgid={'dfltgid', 0x3d, r5}}], [{@uid_lt={'uid<', r6}}]}})

[ 2537.053541]  ? new_sync_write+0x660/0x660
[ 2537.054149]  ? selinux_file_permission+0x92/0x520
[ 2537.054721]  do_iter_write+0x191/0x670
[ 2537.055187]  ? trace_hardirqs_on+0x5b/0x180
18:24:09 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4a, &(0x7f00000000c0))

[ 2537.055695]  vfs_iter_write+0x70/0xa0
[ 2537.056218]  iter_file_splice_write+0x762/0xc30
[ 2537.056785]  ? generic_splice_sendpage+0x140/0x140
[ 2537.057364]  ? avc_policy_seqno+0x9/0x70
[ 2537.057832]  ? selinux_file_permission+0x92/0x520
[ 2537.058396]  ? lockdep_init_map_type+0x2c7/0x780
[ 2537.058951]  ? generic_splice_sendpage+0x140/0x140
[ 2537.059526]  direct_splice_actor+0x10f/0x170
[ 2537.060033]  splice_direct_to_actor+0x387/0x980
[ 2537.060584]  ? pipe_to_sendpage+0x380/0x380
[ 2537.061101]  ? do_splice_to+0x160/0x160
[ 2537.061566]  ? security_file_permission+0x24e/0x570
[ 2537.062138]  do_splice_direct+0x1c4/0x290
[ 2537.062611]  ? splice_direct_to_actor+0x980/0x980
[ 2537.063154]  ? selinux_file_permission+0x92/0x520
[ 2537.063714]  ? security_file_permission+0x24e/0x570
[ 2537.064290]  do_sendfile+0x553/0x1090
[ 2537.064738]  ? do_pwritev+0x270/0x270
[ 2537.065188]  ? wait_for_completion_io+0x270/0x270
[ 2537.065747]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2537.066283]  ? vfs_write+0x354/0xa70
[ 2537.066716]  __x64_sys_sendfile64+0x1d1/0x210
[ 2537.067227]  ? __ia32_sys_sendfile+0x220/0x220
[ 2537.067752]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2537.068362]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2537.068974]  do_syscall_64+0x33/0x40
[ 2537.069406]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2537.070003] RIP: 0033:0x7fb754cd3b19
[ 2537.070430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2537.072517] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2537.073419] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2537.074236] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2537.075061] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2537.075880] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2537.076697] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2537.100785] udc-core: couldn't find an available UDC or it's busy
[ 2537.102507] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:24:09 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xffffff7f}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2537.126401] udc-core: couldn't find an available UDC or it's busy
[ 2537.127871] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2537.212872] FAULT_INJECTION: forcing a failure.
[ 2537.212872] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2537.215679] CPU: 1 PID: 15169 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2537.217136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2537.218784] Call Trace:
[ 2537.219331]  dump_stack+0x107/0x167
[ 2537.220067]  should_fail.cold+0x5/0xa
[ 2537.220888]  __alloc_pages_nodemask+0x182/0x600
[ 2537.221829]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2537.223040]  ? lock_acquire+0x197/0x470
[ 2537.223836]  ? find_held_lock+0x2c/0x110
[ 2537.224710]  ? jbd2_transaction_committed+0x111/0x150
[ 2537.225772]  ? lock_downgrade+0x6d0/0x6d0
[ 2537.226616]  ? ext4_map_blocks+0x967/0x1970
[ 2537.227507]  alloc_pages_current+0x187/0x280
[ 2537.228411]  ? __kernel_text_address+0x9/0x40
[ 2537.229342]  push_pipe+0x2b5/0x6d0
[ 2537.230090]  iov_iter_zero+0x418/0xef0
[ 2537.230896]  ? ext4_iomap_begin+0x1a0/0x700
[ 2537.231794]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2537.232928]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2537.233927]  ? kasan_save_stack+0x1b/0x40
[ 2537.234766]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2537.235803]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2537.236662]  ? iomap_dio_rw+0x31/0x90
[ 2537.237464]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2537.238406]  iomap_dio_actor+0x40f/0x560
[ 2537.239251]  iomap_apply+0x289/0x810
[ 2537.240028]  ? iomap_dio_rw+0x90/0x90
[ 2537.240833]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2537.242029]  ? mark_held_locks+0x9e/0xe0
[ 2537.242883]  ? filemap_check_errors+0xa5/0x150
[ 2537.243814]  __iomap_dio_rw+0x6cd/0x1110
[ 2537.244645]  ? iomap_dio_rw+0x90/0x90
[ 2537.245459]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2537.246420]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2537.247550]  iomap_dio_rw+0x31/0x90
[ 2537.248313]  ext4_file_read_iter+0x2c7/0x4c0
[ 2537.249235]  generic_file_splice_read+0x455/0x6d0
[ 2537.250229]  ? pipe_to_user+0x170/0x170
[ 2537.251042]  ? _cond_resched+0x12/0x80
[ 2537.251848]  ? avc_policy_seqno+0x9/0x70
[ 2537.252677]  ? selinux_file_permission+0x92/0x520
[ 2537.253687]  ? lockdep_init_map_type+0x2c7/0x780
[ 2537.254663]  ? pipe_to_user+0x170/0x170
[ 2537.255480]  do_splice_to+0x10e/0x160
[ 2537.256272]  splice_direct_to_actor+0x2fe/0x980
[ 2537.257243]  ? pipe_to_sendpage+0x380/0x380
[ 2537.258137]  ? do_splice_to+0x160/0x160
[ 2537.258959]  ? security_file_permission+0x24e/0x570
[ 2537.259996]  do_splice_direct+0x1c4/0x290
[ 2537.260868]  ? splice_direct_to_actor+0x980/0x980
[ 2537.261852]  ? selinux_file_permission+0x92/0x520
[ 2537.262851]  ? security_file_permission+0x24e/0x570
[ 2537.263891]  do_sendfile+0x553/0x1090
[ 2537.264695]  ? do_pwritev+0x270/0x270
[ 2537.265500]  ? wait_for_completion_io+0x270/0x270
[ 2537.266485]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2537.267433]  ? vfs_write+0x354/0xa70
[ 2537.268204]  __x64_sys_sendfile64+0x1d1/0x210
[ 2537.269125]  ? __ia32_sys_sendfile+0x220/0x220
[ 2537.270065]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2537.271140]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2537.272211]  do_syscall_64+0x33/0x40
[ 2537.272990]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2537.274041] RIP: 0033:0x7f0f9f161b19
[ 2537.274803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2537.278572] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2537.280126] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2537.281600] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2537.283058] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2537.284516] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2537.285975] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:24:09 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4b, &(0x7f00000000c0))

18:24:09 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
creat(0x0, 0x1)

18:24:10 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x4000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:24:10 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 71)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:24:10 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x191140, 0x0)
perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

18:24:10 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4c, &(0x7f00000000c0))

[ 2537.479913] FAULT_INJECTION: forcing a failure.
[ 2537.479913] name failslab, interval 1, probability 0, space 0, times 0
[ 2537.482301] CPU: 0 PID: 15196 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2537.483740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2537.485511] Call Trace:
[ 2537.486076]  dump_stack+0x107/0x167
[ 2537.486846]  should_fail.cold+0x5/0xa
[ 2537.487670]  ? create_object.isra.0+0x3a/0xa20
[ 2537.488613]  should_failslab+0x5/0x20
[ 2537.489420]  kmem_cache_alloc+0x5b/0x310
[ 2537.490271]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2537.491397]  create_object.isra.0+0x3a/0xa20
[ 2537.492312]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2537.493400]  kmem_cache_alloc+0x159/0x310
[ 2537.494272]  ? __kernel_text_address+0x9/0x40
[ 2537.495216]  jbd2__journal_start+0x190/0x7e0
[ 2537.496148]  __ext4_journal_start_sb+0x214/0x390
[ 2537.497157]  ext4_iomap_begin+0x485/0x700
[ 2537.498038]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2537.499060]  ? kasan_save_stack+0x1b/0x40
[ 2537.499924]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2537.500935]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2537.502250]  ? splice_direct_to_actor+0x387/0x980
[ 2537.503258]  ? do_splice_direct+0x1c4/0x290
[ 2537.504153]  ? do_sendfile+0x553/0x1090
[ 2537.505005]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2537.505963]  ? do_syscall_64+0x33/0x40
[ 2537.506784]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2537.506809]  iomap_apply+0x164/0x810
[ 2537.506829]  ? iomap_dio_rw+0x90/0x90
[ 2537.506851]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2537.506890]  ? mark_held_locks+0x9e/0xe0
[ 2537.511536]  ? filemap_check_errors+0xa5/0x150
[ 2537.512490]  __iomap_dio_rw+0x6cd/0x1110
[ 2537.513346]  ? iomap_dio_rw+0x90/0x90
[ 2537.514158]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2537.515109]  ? ext4_orphan_add+0x253/0x9e0
[ 2537.515993]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2537.517034]  ? ext4_empty_dir+0xae0/0xae0
[ 2537.517894]  ? jbd2__journal_start+0xf3/0x7e0
[ 2537.518833]  iomap_dio_rw+0x31/0x90
[ 2537.519594]  ext4_file_write_iter+0xb26/0x18e0
[ 2537.520559]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2537.521512]  ? kasan_save_stack+0x32/0x40
[ 2537.522375]  ? kasan_save_stack+0x1b/0x40
[ 2537.523233]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2537.524279]  ? iter_file_splice_write+0x16d/0xc30
[ 2537.525293]  ? direct_splice_actor+0x10f/0x170
[ 2537.526243]  ? splice_direct_to_actor+0x387/0x980
[ 2537.527241]  ? do_splice_direct+0x1c4/0x290
[ 2537.528137]  ? do_sendfile+0x553/0x1090
[ 2537.528968]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2537.529944]  do_iter_readv_writev+0x476/0x750
[ 2537.530875]  ? new_sync_write+0x660/0x660
[ 2537.531733]  ? selinux_file_permission+0x92/0x520
[ 2537.532752]  do_iter_write+0x191/0x670
[ 2537.533587]  ? trace_hardirqs_on+0x5b/0x180
[ 2537.534496]  vfs_iter_write+0x70/0xa0
[ 2537.535358]  iter_file_splice_write+0x762/0xc30
[ 2537.536412]  ? generic_splice_sendpage+0x140/0x140
[ 2537.537453]  ? avc_policy_seqno+0x9/0x70
[ 2537.538295]  ? selinux_file_permission+0x92/0x520
[ 2537.539305]  ? lockdep_init_map_type+0x2c7/0x780
[ 2537.540293]  ? generic_splice_sendpage+0x140/0x140
[ 2537.541335]  direct_splice_actor+0x10f/0x170
[ 2537.542254]  splice_direct_to_actor+0x387/0x980
[ 2537.543230]  ? pipe_to_sendpage+0x380/0x380
[ 2537.544130]  ? do_splice_to+0x160/0x160
[ 2537.544967]  ? security_file_permission+0x24e/0x570
[ 2537.546015]  do_splice_direct+0x1c4/0x290
[ 2537.546876]  ? splice_direct_to_actor+0x980/0x980
[ 2537.547870]  ? selinux_file_permission+0x92/0x520
[ 2537.548887]  ? security_file_permission+0x24e/0x570
[ 2537.549934]  do_sendfile+0x553/0x1090
[ 2537.550737]  ? do_pwritev+0x270/0x270
[ 2537.551530]  ? wait_for_completion_io+0x270/0x270
[ 2537.552532]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2537.553512]  ? vfs_write+0x354/0xa70
[ 2537.554292]  __x64_sys_sendfile64+0x1d1/0x210
[ 2537.555225]  ? __ia32_sys_sendfile+0x220/0x220
[ 2537.556178]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2537.557293]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2537.558370]  do_syscall_64+0x33/0x40
[ 2537.559143]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2537.560207] RIP: 0033:0x7fb754cd3b19
[ 2537.560999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2537.564815] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2537.566392] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2537.567869] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2537.569357] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2537.570837] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2537.572311] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:24:27 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 72)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:24:27 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
creat(0x0, 0x1)

18:24:27 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c4600000007000000000000000003003e"], 0xaf2)
close(r0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x1000)

18:24:27 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4d, &(0x7f00000000c0))

18:24:27 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x8000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:24:27 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
recvmmsg(r0, &(0x7f0000000580)=[{{&(0x7f0000000000)=@pptp={0x18, 0x2, {0x0, @private}}, 0x80, &(0x7f0000000080), 0x0, &(0x7f00000000c0)=""/141, 0x8d}, 0x8}, {{&(0x7f0000000180)=@l2={0x1f, 0x0, @none}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000400)=""/141, 0x8d}], 0x3, &(0x7f0000000500)=""/119, 0x77}, 0x2}], 0x2, 0x0, &(0x7f0000000600)={0x77359400})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
fchmod(r3, 0x90)

18:24:27 executing program 7:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000005e80)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, 0x0)
io_setup(0x0, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r2)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r2, &(0x7f0000000400)={&(0x7f0000000280), 0xc, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="15030000", @ANYRES16=r3, @ANYBLOB="01000000000000000000040000002f00070073797374656d5f753a6f626a6563745f723a7379736c6f67645f696e697472635f657865635f743a7330000008000500ac1e00010500010000000000"], 0x54}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r1, 0x0, 0x0, 0x8800000)

18:24:27 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 19)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

[ 2554.989722] FAULT_INJECTION: forcing a failure.
[ 2554.989722] name failslab, interval 1, probability 0, space 0, times 0
[ 2554.992186] CPU: 0 PID: 15214 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2554.993697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2554.995497] Call Trace:
[ 2554.996074]  dump_stack+0x107/0x167
[ 2554.996865]  should_fail.cold+0x5/0xa
[ 2554.997713]  ? ext4_find_extent+0xa3d/0xd30
[ 2554.998647]  should_failslab+0x5/0x20
[ 2554.999471]  __kmalloc+0x72/0x390
[ 2555.000231]  ext4_find_extent+0xa3d/0xd30
[ 2555.001148]  ext4_ext_map_blocks+0x1c8/0x5850
[ 2555.002133]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2555.003257]  ? SOFTIRQ_verbose+0x10/0x10
[ 2555.004133]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2555.005321]  ? SOFTIRQ_verbose+0x10/0x10
[ 2555.006204]  ? ext4_ext_release+0x10/0x10
[ 2555.007136]  ? ext4_map_blocks+0x5e0/0x1970
[ 2555.008077]  ? lock_release+0x680/0x680
[ 2555.008958]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2555.009991]  ? lock_downgrade+0x6d0/0x6d0
[ 2555.010925]  ? down_write+0xe0/0x160
[ 2555.011726]  ? down_write_killable+0x180/0x180
[ 2555.012760]  ext4_map_blocks+0x652/0x1970
[ 2555.013675]  ? kmem_cache_alloc+0x2a6/0x310
[ 2555.014635]  ? __kernel_text_address+0x9/0x40
[ 2555.015603]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2555.016576]  ? jbd2__journal_start+0xf3/0x7e0
[ 2555.017618]  ? __ext4_journal_start_sb+0x214/0x390
[ 2555.018711]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2555.019775]  ext4_iomap_begin+0x3ad/0x700
[ 2555.020688]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2555.021748]  ? kasan_save_stack+0x1b/0x40
[ 2555.022636]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2555.023661]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2555.025041]  ? splice_direct_to_actor+0x387/0x980
[ 2555.026068]  ? do_splice_direct+0x1c4/0x290
[ 2555.027000]  ? do_sendfile+0x553/0x1090
[ 2555.027852]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2555.028876]  ? do_syscall_64+0x33/0x40
[ 2555.029759]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2555.030974]  iomap_apply+0x164/0x810
[ 2555.031802]  ? iomap_dio_rw+0x90/0x90
[ 2555.032654]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2555.033973]  ? mark_held_locks+0x9e/0xe0
[ 2555.034915]  ? filemap_check_errors+0xa5/0x150
[ 2555.035933]  __iomap_dio_rw+0x6cd/0x1110
[ 2555.036866]  ? iomap_dio_rw+0x90/0x90
[ 2555.037745]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2555.038770]  ? ext4_orphan_add+0x253/0x9e0
[ 2555.039731]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2555.040847]  ? ext4_empty_dir+0xae0/0xae0
[ 2555.041791]  ? jbd2__journal_start+0xf3/0x7e0
[ 2555.042822]  iomap_dio_rw+0x31/0x90
[ 2555.043662]  ext4_file_write_iter+0xb26/0x18e0
[ 2555.043703]  ? ext4_file_read_iter+0x4c0/0x4c0
18:24:27 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x20000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:24:27 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4e, &(0x7f00000000c0))

18:24:27 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x200001, 0x8)
r1 = signalfd4(r0, &(0x7f00000001c0)={[0x401]}, 0x8, 0x80800)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}, 0x298a, 0x8000000000004, 0xfffffffc, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x0, 0xfffffffffffffffd, r1, 0x0)
r2 = socket$inet(0x2, 0x1, 0x0)
getsockopt$sock_buf(r2, 0x1, 0x1c, 0x0, &(0x7f0000000180))
r3 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="007da1804886b1655e09966a7e17c44ff9f87834ecdbb6650240e96358eb356dcb1b3d4462fe59be4c704b17c759b22d78c09367f849dcb8494ee15dcf7d0932dbaed64f8c680c37873c7d65d8eecdf0eaed8aa6cb52ef5ae7ab35864fec9cb683"])
mkdirat(r3, &(0x7f0000000040)='./file0\x00', 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r3, &(0x7f0000000180)={0x2})
ioctl$BTRFS_IOC_LOGICAL_INO(r3, 0xc0389424, &(0x7f0000000100)={0x9fcf, 0x38, '\x00', 0x1, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
creat(&(0x7f0000000040)='./file0\x00', 0x50)
unshare(0x48020200)
readv(r0, &(0x7f0000000140)=[{&(0x7f00000002c0)=""/124, 0x7c}, {&(0x7f0000000340)=""/98, 0x62}, {&(0x7f00000003c0)=""/96, 0x60}], 0x3)
r4 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CHANGE_FD(r4, 0x4c06, r5)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r8=>r3, {0x2, 0x9}}, './file0/file0\x00'})
ioctl$SG_GET_PACK_ID(r8, 0x227c, 0x0)

[ 2555.043722]  ? kasan_save_stack+0x32/0x40
[ 2555.043740]  ? kasan_save_stack+0x1b/0x40
[ 2555.043759]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2555.043776]  ? iter_file_splice_write+0x16d/0xc30
[ 2555.043792]  ? direct_splice_actor+0x10f/0x170
[ 2555.043808]  ? splice_direct_to_actor+0x387/0x980
18:24:27 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2555.043823]  ? do_splice_direct+0x1c4/0x290
[ 2555.043840]  ? do_sendfile+0x553/0x1090
[ 2555.043860]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2555.043890]  do_iter_readv_writev+0x476/0x750
[ 2555.043916]  ? new_sync_write+0x660/0x660
[ 2555.043933]  ? selinux_file_permission+0x92/0x520
[ 2555.043979]  do_iter_write+0x191/0x670
[ 2555.044007]  ? trace_hardirqs_on+0x5b/0x180
[ 2555.044038]  vfs_iter_write+0x70/0xa0
[ 2555.044061]  iter_file_splice_write+0x762/0xc30
[ 2555.044103]  ? generic_splice_sendpage+0x140/0x140
[ 2555.044133]  ? avc_policy_seqno+0x9/0x70
[ 2555.044150]  ? selinux_file_permission+0x92/0x520
[ 2555.044180]  ? lockdep_init_map_type+0x2c7/0x780
[ 2555.044205]  ? generic_splice_sendpage+0x140/0x140
[ 2555.044228]  direct_splice_actor+0x10f/0x170
[ 2555.044252]  splice_direct_to_actor+0x387/0x980
18:24:27 executing program 2:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
readlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/60, 0x3c)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$AUDIT_MAKE_EQUIV(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYRESOCT=r0, @ANYRESHEX=r0, @ANYRESDEC=r4], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000)
r5 = gettid()
clone3(&(0x7f0000000440)={0x40001000, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280), {0x10}, &(0x7f00000002c0)=""/26, 0x1a, &(0x7f0000000300)=""/254, &(0x7f0000000400)=[r5, 0xffffffffffffffff], 0x2, {r1}}, 0x58)

[ 2555.044281]  ? pipe_to_sendpage+0x380/0x380
[ 2555.044307]  ? do_splice_to+0x160/0x160
[ 2555.044327]  ? security_file_permission+0x24e/0x570
[ 2555.044361]  do_splice_direct+0x1c4/0x290
[ 2555.044382]  ? splice_direct_to_actor+0x980/0x980
[ 2555.044399]  ? selinux_file_permission+0x92/0x520
[ 2555.044427]  ? security_file_permission+0x24e/0x570
[ 2555.044463]  do_sendfile+0x553/0x1090
[ 2555.044499]  ? do_pwritev+0x270/0x270
18:24:27 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 73)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2555.044521]  ? wait_for_completion_io+0x270/0x270
[ 2555.044546]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2555.044563]  ? vfs_write+0x354/0xa70
[ 2555.044593]  __x64_sys_sendfile64+0x1d1/0x210
[ 2555.044616]  ? __ia32_sys_sendfile+0x220/0x220
[ 2555.044642]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2555.044665]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2555.044691]  do_syscall_64+0x33/0x40
[ 2555.044713]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2555.044728] RIP: 0033:0x7fb754cd3b19
[ 2555.044751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
18:24:27 executing program 7:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
syz_mount_image$nfs4(0x0, &(0x7f0000005040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lchown(&(0x7f0000000200)='./file0\x00', 0xee00, 0xee00)
r0 = accept4(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x800)
fsetxattr$security_selinux(r0, &(0x7f00000000c0), &(0x7f0000000100)='system_u:object_r:cert_t:s0\x00', 0x1c, 0x1)

[ 2555.044763] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2555.044787] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2555.044799] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2555.044812] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2555.044824] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2555.044837] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2555.066978] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2555.133952] udc-core: couldn't find an available UDC or it's busy
18:24:27 executing program 5:
r0 = syz_io_uring_setup(0x4d4b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
close(0xffffffffffffffff)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000580)}, 0x0)
open(0x0, 0x0, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x300000a, 0x2010, r0, 0x8000000)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0xff, 0x5, 0x81, 0x30, 0x0, 0x8, 0x21000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000, 0x1, @perf_config_ext={0xf6, 0x4}, 0x100, 0x0, 0x7, 0x7, 0x80, 0x6b, 0xffff, 0x0, 0x7, 0x0, 0x5c}, 0x0, 0x4, r4, 0x0)

[ 2555.134298] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2555.159551] udc-core: couldn't find an available UDC or it's busy
[ 2555.159574] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2555.195862] FAULT_INJECTION: forcing a failure.
[ 2555.195862] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2555.195886] CPU: 0 PID: 15239 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2555.195898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
18:24:28 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000180)={'ip6gre0\x00', &(0x7f0000000000)={'ip6_vti0\x00', <r1=>0x0, 0x29, 0x9, 0x40, 0x10001, 0x43, @local, @local, 0x10, 0x80, 0x8cc6, 0x1800}})
sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in6=@local, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, {@in=@remote, 0x0, 0x3c}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0xf8}}, 0x0)

[ 2555.195905] Call Trace:
[ 2555.195931]  dump_stack+0x107/0x167
[ 2555.195961]  should_fail.cold+0x5/0xa
[ 2555.195991]  __alloc_pages_nodemask+0x182/0x600
[ 2555.196021]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2555.196040]  ? lock_acquire+0x197/0x470
[ 2555.196059]  ? find_held_lock+0x2c/0x110
[ 2555.196087]  ? jbd2_transaction_committed+0x111/0x150
[ 2555.196108]  ? lock_downgrade+0x6d0/0x6d0
[ 2555.196126]  ? ext4_map_blocks+0x967/0x1970
[ 2555.196152]  alloc_pages_current+0x187/0x280
[ 2555.196172]  ? __kernel_text_address+0x9/0x40
[ 2555.196197]  push_pipe+0x2b5/0x6d0
[ 2555.196232]  iov_iter_zero+0x418/0xef0
[ 2555.196259]  ? ext4_iomap_begin+0x1a0/0x700
[ 2555.196288]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2555.196314]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2555.196332]  ? kasan_save_stack+0x1b/0x40
[ 2555.196352]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2555.196371]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2555.196388]  ? iomap_dio_rw+0x31/0x90
[ 2555.196405]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2555.196431]  iomap_dio_actor+0x40f/0x560
[ 2555.196460]  iomap_apply+0x289/0x810
[ 2555.196480]  ? iomap_dio_rw+0x90/0x90
[ 2555.196504]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2555.196538]  ? mark_held_locks+0x9e/0xe0
[ 2555.196577]  ? filemap_check_errors+0xa5/0x150
[ 2555.196604]  __iomap_dio_rw+0x6cd/0x1110
[ 2555.196621]  ? iomap_dio_rw+0x90/0x90
[ 2555.196662]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2555.196694]  ? down_read+0x284/0x430
[ 2555.196712]  ? lock_chain_count+0x20/0x20
[ 2555.196730]  ? down_write+0x160/0x160
[ 2555.196758]  iomap_dio_rw+0x31/0x90
[ 2555.196780]  ext4_file_read_iter+0x2c7/0x4c0
[ 2555.196805]  generic_file_splice_read+0x455/0x6d0
[ 2555.196826]  ? pipe_to_user+0x170/0x170
[ 2555.196841]  ? _cond_resched+0x12/0x80
[ 2555.196865]  ? avc_policy_seqno+0x9/0x70
[ 2555.196883]  ? selinux_file_permission+0x92/0x520
[ 2555.196911]  ? lockdep_init_map_type+0x2c7/0x780
[ 2555.196935]  ? pipe_to_user+0x170/0x170
[ 2555.196956]  do_splice_to+0x10e/0x160
[ 2555.196979]  splice_direct_to_actor+0x2fe/0x980
[ 2555.197017]  ? pipe_to_sendpage+0x380/0x380
[ 2555.197042]  ? do_splice_to+0x160/0x160
[ 2555.197062]  ? security_file_permission+0x24e/0x570
[ 2555.197094]  do_splice_direct+0x1c4/0x290
[ 2555.197114]  ? splice_direct_to_actor+0x980/0x980
[ 2555.197131]  ? selinux_file_permission+0x92/0x520
[ 2555.197158]  ? security_file_permission+0x24e/0x570
[ 2555.197193]  do_sendfile+0x553/0x1090
[ 2555.197227]  ? do_pwritev+0x270/0x270
[ 2555.197249]  ? wait_for_completion_io+0x270/0x270
[ 2555.197273]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2555.197289]  ? vfs_write+0x354/0xa70
[ 2555.197318]  __x64_sys_sendfile64+0x1d1/0x210
[ 2555.197341]  ? __ia32_sys_sendfile+0x220/0x220
[ 2555.197366]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2555.197388]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2555.197414]  do_syscall_64+0x33/0x40
[ 2555.197436]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2555.197450] RIP: 0033:0x7f0f9f161b19
[ 2555.197472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2555.197483] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2555.197506] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2555.197518] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2555.197531] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2555.197544] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2555.197556] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2555.284283] FAULT_INJECTION: forcing a failure.
[ 2555.284283] name failslab, interval 1, probability 0, space 0, times 0
[ 2555.284296] CPU: 1 PID: 15249 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2555.284303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2555.284307] Call Trace:
[ 2555.284323]  dump_stack+0x107/0x167
[ 2555.284336]  should_fail.cold+0x5/0xa
[ 2555.284349]  ? create_object.isra.0+0x3a/0xa20
[ 2555.284362]  should_failslab+0x5/0x20
[ 2555.284372]  kmem_cache_alloc+0x5b/0x310
[ 2555.284387]  create_object.isra.0+0x3a/0xa20
[ 2555.284397]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2555.284411]  kmem_cache_alloc+0x159/0x310
[ 2555.284428]  ext4_mb_new_blocks+0x64d/0x4570
[ 2555.284450]  ? trace_hardirqs_on+0x5b/0x180
[ 2555.284466]  ? ext4_cache_extents+0x148/0x2d0
[ 2555.284478]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2555.284491]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2555.284510]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2555.284532]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2555.284542]  ? SOFTIRQ_verbose+0x10/0x10
[ 2555.284552]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2555.284563]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2555.284572]  ? trace_hardirqs_on+0x5b/0x180
[ 2555.284583]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2555.284595]  ? finish_task_switch+0x126/0x5d0
[ 2555.284607]  ? ext4_ext_release+0x10/0x10
[ 2555.284622]  ? ext4_map_blocks+0x5e0/0x1970
[ 2555.284635]  ? lock_release+0x680/0x680
[ 2555.284646]  ? io_schedule_timeout+0x140/0x140
[ 2555.284656]  ? lock_downgrade+0x6d0/0x6d0
[ 2555.284677]  ? down_write_killable+0x180/0x180
[ 2555.284695]  ext4_map_blocks+0x652/0x1970
[ 2555.284709]  ? kmem_cache_alloc+0x2a6/0x310
[ 2555.284719]  ? __kernel_text_address+0x9/0x40
[ 2555.284730]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2555.284743]  ? jbd2__journal_start+0xf3/0x7e0
[ 2555.284761]  ? __ext4_journal_start_sb+0x214/0x390
[ 2555.284771]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2555.284785]  ext4_iomap_begin+0x3ad/0x700
[ 2555.284803]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2555.284812]  ? kasan_save_stack+0x1b/0x40
[ 2555.284823]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2555.284838]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2555.284847]  ? splice_direct_to_actor+0x387/0x980
[ 2555.284855]  ? do_splice_direct+0x1c4/0x290
[ 2555.284864]  ? do_sendfile+0x553/0x1090
[ 2555.284874]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2555.284884]  ? do_syscall_64+0x33/0x40
[ 2555.284894]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2555.284908]  iomap_apply+0x164/0x810
[ 2555.284919]  ? iomap_dio_rw+0x90/0x90
[ 2555.284931]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2555.284948]  ? mark_held_locks+0x9e/0xe0
[ 2555.284970]  ? filemap_check_errors+0xa5/0x150
[ 2555.284984]  __iomap_dio_rw+0x6cd/0x1110
[ 2555.284993]  ? iomap_dio_rw+0x90/0x90
[ 2555.285022]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2555.285033]  ? ext4_orphan_add+0x253/0x9e0
[ 2555.285045]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2555.285057]  ? ext4_empty_dir+0xae0/0xae0
[ 2555.285067]  ? jbd2__journal_start+0xf3/0x7e0
[ 2555.285083]  iomap_dio_rw+0x31/0x90
[ 2555.285095]  ext4_file_write_iter+0xb26/0x18e0
[ 2555.285115]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2555.285124]  ? kasan_save_stack+0x32/0x40
[ 2555.285134]  ? kasan_save_stack+0x1b/0x40
[ 2555.285144]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2555.285152]  ? iter_file_splice_write+0x16d/0xc30
[ 2555.285160]  ? direct_splice_actor+0x10f/0x170
[ 2555.285169]  ? splice_direct_to_actor+0x387/0x980
[ 2555.285177]  ? do_splice_direct+0x1c4/0x290
[ 2555.285186]  ? do_sendfile+0x553/0x1090
[ 2555.285195]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2555.285211]  do_iter_readv_writev+0x476/0x750
[ 2555.285224]  ? new_sync_write+0x660/0x660
[ 2555.285234]  ? selinux_file_permission+0x92/0x520
[ 2555.285257]  do_iter_write+0x191/0x670
[ 2555.285270]  ? trace_hardirqs_on+0x5b/0x180
[ 2555.285285]  vfs_iter_write+0x70/0xa0
[ 2555.285297]  iter_file_splice_write+0x762/0xc30
[ 2555.285318]  ? generic_splice_sendpage+0x140/0x140
[ 2555.285334]  ? avc_policy_seqno+0x9/0x70
[ 2555.285343]  ? selinux_file_permission+0x92/0x520
[ 2555.285358]  ? lockdep_init_map_type+0x2c7/0x780
[ 2555.285370]  ? generic_splice_sendpage+0x140/0x140
[ 2555.285382]  direct_splice_actor+0x10f/0x170
[ 2555.285394]  splice_direct_to_actor+0x387/0x980
[ 2555.285408]  ? pipe_to_sendpage+0x380/0x380
[ 2555.285420]  ? do_splice_to+0x160/0x160
[ 2555.285431]  ? security_file_permission+0x24e/0x570
[ 2555.285448]  do_splice_direct+0x1c4/0x290
[ 2555.285458]  ? splice_direct_to_actor+0x980/0x980
[ 2555.285467]  ? selinux_file_permission+0x92/0x520
[ 2555.285481]  ? security_file_permission+0x24e/0x570
[ 2555.285499]  do_sendfile+0x553/0x1090
[ 2555.285516]  ? do_pwritev+0x270/0x270
[ 2555.285528]  ? wait_for_completion_io+0x270/0x270
[ 2555.285541]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2555.285549]  ? vfs_write+0x354/0xa70
[ 2555.285564]  __x64_sys_sendfile64+0x1d1/0x210
[ 2555.285575]  ? __ia32_sys_sendfile+0x220/0x220
[ 2555.285589]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2555.285600]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2555.285613]  do_syscall_64+0x33/0x40
[ 2555.285624]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2555.285632] RIP: 0033:0x7fb754cd3b19
[ 2555.285644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2555.285649] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2555.285662] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2555.285668] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2555.285674] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2555.285681] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2555.285687] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2555.287732] audit: type=1400 audit(1682533467.899:89): avc:  denied  { checkpoint_restore } for  pid=15241 comm="syz-executor.2" capability=40  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[ 2555.291250] audit: type=1326 audit(1682533467.903:90): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.291701] audit: type=1326 audit(1682533467.903:91): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f597e931c27 code=0x7ffc0000
[ 2555.292292] audit: type=1326 audit(1682533467.904:92): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.295572] audit: type=1326 audit(1682533467.905:93): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.295666] audit: type=1326 audit(1682533467.907:94): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.295762] audit: type=1326 audit(1682533467.907:95): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.295850] audit: type=1326 audit(1682533467.907:96): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.295947] audit: type=1326 audit(1682533467.907:97): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.296084] audit: type=1326 audit(1682533467.907:98): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15248 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f597e932b19 code=0x7ffc0000
[ 2555.343297] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
18:24:47 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 74)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:24:47 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 20)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:24:47 executing program 7:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x4000007ffffffc)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000eba2525800ec00", @ANYRES32, @ANYBLOB="04000000000000002e2f66696c65302f66696c653000"])
accept4$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @dev}, &(0x7f0000000140)=0x10, 0x80800)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r1, 0x0, 0x130f, 0x0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x8100, 0x0)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40040140}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000326bd7000ffdbdf250100000600000000090000140018000008007564703a73797a30d9a82c561edd0269ee5100000000"], 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x8880)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r3, 0x100, 0x70bd2b, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x20000010)
ftruncate(0xffffffffffffffff, 0x1000003)
getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000180)={'IDLETIMER\x00'}, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$nl_generic(r1, &(0x7f0000000680)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000640)={&(0x7f0000000380)={0x2b4, 0x11, 0x800, 0x70bd26, 0x25dfdbff, {0x40}, [@nested={0x1e9, 0x21, 0x0, 0x1, [@generic="d3dd050b074050758e0f753212f647586df0b6bf3d13eb95cf04d8411fcb9ac90d759f174f016db0a51ec2b19a578a38aa572517fc21b8e4f0d9edec912ef1e001883afb42c7c3ef8574bdc1bf71b2eee3d83f94ff05180f1984633f2a7ebfad6aa0d70eec6a4bea9b6301ed3e37d84720c411b83f6e126293e318f7ca9bda31cb730b67938afc5b715051a6f21994cada70bb99037984f7173bc69974392d6e00aa481324f76be76ec7b5cb5b78681eb5709fa6ad0e1296270718f47e99b5244aae3c80092841dfeac8c46580fe16fb776a04a8e7bc6b1f1bbe980016db3a46a582801e90b1834cd925ccbacf2914cd7c04ff49", @generic="2a090dcfe6", @generic="7a682308b3ce3b6ad4fc041241e2aa38f96e5b7910cf663c4e9cd5621b2b8f8c14435c38ec017c0dd3d3920a23130ff28796c581052688dc5a53f6061688bd85634161366528a213c0382347221d27962826ebfdb9999312e978358770180f6262c819f2a2772848f396a2ea511f7dff17c9375dc65df7e6c7cfb7b8a64c1c56ae8aa4c7a3cb9e47ca1e94ac2561d44ec7f38e52918cc1e374", @typed={0x4, 0x68}, @generic="8a13a33daaff7439088cc38b591d7f51e3f05a689e3a4cf0ccbc5ad56c525c7799ba19a97d8adb305c71a2493f6f96527d0226c218b37c9c55938a0ec341ab", @typed={0xf, 0x5, 0x0, 0x0, @str='/dev/nvram\x00'}]}, @generic="542678dd58902e334719e55912a9fcc5d186010a1dbd8c2ab457a44eb1910a2ca7586667bbdfffc5f860886b0dd18de92f1085d52379c998b1e5feac29a31a738f8d045f9e1a3141144124bd8ed0bc49154717fa5e492d3ef9d427906bff1b69062bf605f9ea08a1f9ed6799666068cf537ed82fb662be18f86ee3091dba470c8d684fadc8cba88ce6916852fdd6550106b0bcc3c4838238a30c803e5353b44f4f2e8a94584fb069e9b96505c0ccd111b9"]}, 0x2b4}, 0x1, 0x0, 0x0, 0x20040000}, 0xc004050)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x5}]}, 0x14, 0x1)
clock_gettime(0x0, &(0x7f0000002500)={<r4=>0x0, <r5=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000002440)=[{{&(0x7f0000000a00)=@tipc, 0x80, &(0x7f0000001e00)=[{&(0x7f0000000a80)=""/243, 0xf3}, {&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000001b80)=""/7, 0x7}, {&(0x7f0000001bc0)=""/94, 0x5e}, {&(0x7f0000001c40)=""/242, 0xf2}, {&(0x7f0000001d40)=""/37, 0x25}], 0x6, &(0x7f0000001e80)=""/129, 0x81}, 0x2}, {{&(0x7f0000001f40)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000002040)=[{&(0x7f0000001fc0)=""/70, 0x46}], 0x1, &(0x7f0000002080)=""/107, 0x6b}, 0xfff}, {{&(0x7f0000002100)=@caif=@rfm, 0x80, &(0x7f00000023c0)=[{&(0x7f0000002180)=""/215, 0xd7}, {&(0x7f0000002280)=""/164, 0xa4}, {&(0x7f0000002340)=""/79, 0x4f}], 0x3, &(0x7f0000002400)=""/17, 0x11}, 0x1}], 0x3, 0x12120, &(0x7f0000002540)={r4, r5+60000000})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, @perf_config_ext={0xfffffffffffffff7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef)

18:24:47 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x40030000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:24:47 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x200001, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)={0x108, 0x1, 0x2, 0x201, 0x0, 0x0, {0x3, 0x0, 0x8}, [@CTA_EXPECT_NAT={0x34, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x28, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6}]}]}, @CTA_EXPECT_MASTER={0xc0, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0xf61707c5270a61b2, 0x3, @private2}, {0x14, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}}}}, @CTA_TUPLE_PROTO={0x0, 0x2, 0x0, 0x1, {0x0, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010100}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x3e}}, {0x8, 0x2, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000180)={0x0, 0xd6f, [0x40, 0x7, 0x8000, 0xfc, 0xa3, 0x8]})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f511, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
unlinkat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x200)
ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000140)={0x0, 0x1, 0x2, 0x9})
sendmsg$nl_generic(r2, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x14, 0x42, 0x20, 0x70bd25, 0x25dfdbfc, {0x16}}, 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x10)
r3 = getpid()
getpriority(0x0, r3)
fcntl$setown(r2, 0x8, r3)
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x90391, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = fcntl$dupfd(r1, 0x0, r1)
ioctl$CDROM_CHANGER_NSLOTS(r4, 0x5328)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x242300, 0x120)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c3c64d5ee00210c0000000000000000040002000800000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000844}, 0x0)

18:24:47 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
r6 = dup2(r4, r4)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000000780)={{0x1, 0x1, 0x18, r8, {0x20, 0x4}}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r5)

18:24:47 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:24:47 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b52, &(0x7f00000000c0))

[ 2575.418844] FAULT_INJECTION: forcing a failure.
[ 2575.418844] name failslab, interval 1, probability 0, space 0, times 0
[ 2575.421438] CPU: 0 PID: 15267 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2575.422925] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2575.422933] Call Trace:
[ 2575.422958]  dump_stack+0x107/0x167
[ 2575.422983]  should_fail.cold+0x5/0xa
[ 2575.423004]  ? create_object.isra.0+0x3a/0xa20
[ 2575.423026]  should_failslab+0x5/0x20
[ 2575.423045]  kmem_cache_alloc+0x5b/0x310
[ 2575.423072]  create_object.isra.0+0x3a/0xa20
[ 2575.423092]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2575.423119]  kmem_cache_alloc+0x159/0x310
[ 2575.423151]  ext4_mb_new_blocks+0x64d/0x4570
[ 2575.423191]  ? trace_hardirqs_on+0x5b/0x180
[ 2575.423219]  ? ext4_cache_extents+0x148/0x2d0
[ 2575.423244]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2575.423268]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2575.423305]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2575.423346]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2575.423370]  ? SOFTIRQ_verbose+0x10/0x10
[ 2575.440028]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2575.441135]  ? SOFTIRQ_verbose+0x10/0x10
[ 2575.442033]  ? ext4_ext_release+0x10/0x10
[ 2575.442923]  ? ext4_map_blocks+0x5e0/0x1970
[ 2575.443853]  ? lock_release+0x680/0x680
[ 2575.444709]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2575.445724]  ? lock_downgrade+0x6d0/0x6d0
[ 2575.446638]  ? down_write_killable+0x180/0x180
[ 2575.447681]  ext4_map_blocks+0x652/0x1970
[ 2575.448562]  ? kmem_cache_alloc+0x2a6/0x310
[ 2575.449490]  ? __kernel_text_address+0x9/0x40
[ 2575.450434]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2575.451382]  ? jbd2__journal_start+0xf3/0x7e0
[ 2575.452334]  ? __ext4_journal_start_sb+0x214/0x390
[ 2575.453372]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2575.454409]  ext4_iomap_begin+0x3ad/0x700
[ 2575.455320]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2575.456347]  ? kasan_save_stack+0x1b/0x40
[ 2575.457238]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2575.458266]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2575.459623]  ? splice_direct_to_actor+0x387/0x980
[ 2575.460634]  ? do_splice_direct+0x1c4/0x290
[ 2575.461569]  ? do_sendfile+0x553/0x1090
[ 2575.462419]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2575.463425]  ? do_syscall_64+0x33/0x40
[ 2575.464250]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2575.465410]  iomap_apply+0x164/0x810
[ 2575.466204]  ? iomap_dio_rw+0x90/0x90
[ 2575.467027]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2575.468255]  ? mark_held_locks+0x9e/0xe0
[ 2575.469148]  ? filemap_check_errors+0xa5/0x150
[ 2575.470135]  __iomap_dio_rw+0x6cd/0x1110
[ 2575.471003]  ? iomap_dio_rw+0x90/0x90
[ 2575.471835]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2575.472811]  ? ext4_orphan_add+0x253/0x9e0
[ 2575.473714]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2575.474766]  ? ext4_empty_dir+0xae0/0xae0
[ 2575.475641]  ? jbd2__journal_start+0xf3/0x7e0
[ 2575.476610]  iomap_dio_rw+0x31/0x90
[ 2575.477403]  ext4_file_write_iter+0xb26/0x18e0
[ 2575.478403]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2575.479363]  ? kasan_save_stack+0x32/0x40
[ 2575.480246]  ? kasan_save_stack+0x1b/0x40
[ 2575.481123]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2575.482211]  ? iter_file_splice_write+0x16d/0xc30
[ 2575.483226]  ? direct_splice_actor+0x10f/0x170
[ 2575.484197]  ? splice_direct_to_actor+0x387/0x980
[ 2575.485207]  ? do_splice_direct+0x1c4/0x290
[ 2575.486138]  ? do_sendfile+0x553/0x1090
[ 2575.486990]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2575.487994]  do_iter_readv_writev+0x476/0x750
[ 2575.488949]  ? new_sync_write+0x660/0x660
[ 2575.489849]  ? selinux_file_permission+0x92/0x520
[ 2575.490885]  do_iter_write+0x191/0x670
[ 2575.491720]  ? trace_hardirqs_on+0x5b/0x180
[ 2575.492631]  vfs_iter_write+0x70/0xa0
[ 2575.493440]  iter_file_splice_write+0x762/0xc30
[ 2575.494427]  ? generic_splice_sendpage+0x140/0x140
[ 2575.495458]  ? avc_policy_seqno+0x9/0x70
[ 2575.496299]  ? selinux_file_permission+0x92/0x520
[ 2575.497319]  ? lockdep_init_map_type+0x2c7/0x780
[ 2575.498306]  ? generic_splice_sendpage+0x140/0x140
[ 2575.499330]  direct_splice_actor+0x10f/0x170
[ 2575.500265]  splice_direct_to_actor+0x387/0x980
[ 2575.501246]  ? pipe_to_sendpage+0x380/0x380
[ 2575.502177]  ? do_splice_to+0x160/0x160
[ 2575.503014]  ? security_file_permission+0x24e/0x570
[ 2575.504079]  do_splice_direct+0x1c4/0x290
[ 2575.504948]  ? splice_direct_to_actor+0x980/0x980
[ 2575.505966]  ? selinux_file_permission+0x92/0x520
[ 2575.506985]  ? security_file_permission+0x24e/0x570
[ 2575.508052]  do_sendfile+0x553/0x1090
[ 2575.508867]  ? do_pwritev+0x270/0x270
[ 2575.509681]  ? wait_for_completion_io+0x270/0x270
[ 2575.510695]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2575.511693]  ? vfs_write+0x354/0xa70
[ 2575.512488]  __x64_sys_sendfile64+0x1d1/0x210
[ 2575.513449]  ? __ia32_sys_sendfile+0x220/0x220
[ 2575.514424]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2575.515524]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2575.516606]  do_syscall_64+0x33/0x40
[ 2575.517397]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2575.518488] RIP: 0033:0x7fb754cd3b19
[ 2575.519273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2575.523113] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2575.524711] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2575.526212] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2575.527706] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2575.529194] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2575.530688] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2575.541359] udc-core: couldn't find an available UDC or it's busy
[ 2575.542948] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:24:48 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b62, &(0x7f00000000c0))

18:24:48 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xe0ffff00000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:24:48 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2575.566599] udc-core: couldn't find an available UDC or it's busy
[ 2575.568325] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:24:48 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000180)="eb3c906d6b66732e66617400020801000470000000f8014c", 0x18}, {0x0, 0x0, 0x1000a00}], 0x1018818, &(0x7f0000000340)=ANY=[])
r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x141800, 0x41)
openat(r1, &(0x7f0000000040)='./file0\x00', 0x40580, 0x8)

18:24:48 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
r6 = dup2(r4, r4)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000000780)={{0x1, 0x1, 0x18, r8, {0x20, 0x4}}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r5)

[ 2575.599457] FAULT_INJECTION: forcing a failure.
[ 2575.599457] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2575.601449] CPU: 1 PID: 15282 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2575.602584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2575.603987] Call Trace:
[ 2575.604425]  dump_stack+0x107/0x167
[ 2575.605041]  should_fail.cold+0x5/0xa
[ 2575.605686]  __alloc_pages_nodemask+0x182/0x600
[ 2575.606469]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2575.607443]  ? lock_acquire+0x197/0x470
[ 2575.608089]  ? find_held_lock+0x2c/0x110
[ 2575.608773]  ? jbd2_transaction_committed+0x111/0x150
[ 2575.609619]  ? lock_downgrade+0x6d0/0x6d0
[ 2575.610290]  ? ext4_map_blocks+0x967/0x1970
[ 2575.610996]  alloc_pages_current+0x187/0x280
[ 2575.611710]  ? __kernel_text_address+0x9/0x40
[ 2575.612439]  push_pipe+0x2b5/0x6d0
[ 2575.613026]  iov_iter_zero+0x418/0xef0
[ 2575.613675]  ? ext4_iomap_begin+0x1a0/0x700
[ 2575.614383]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2575.615283]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2575.616080]  ? kasan_save_stack+0x1b/0x40
[ 2575.616765]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2575.617593]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2575.618274]  ? iomap_dio_rw+0x31/0x90
[ 2575.618886]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2575.619628]  iomap_dio_actor+0x40f/0x560
[ 2575.620295]  iomap_apply+0x289/0x810
[ 2575.620897]  ? iomap_dio_rw+0x90/0x90
[ 2575.621526]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2575.622457]  ? mark_held_locks+0x9e/0xe0
[ 2575.623122]  ? filemap_check_errors+0xa5/0x150
[ 2575.623857]  __iomap_dio_rw+0x6cd/0x1110
[ 2575.624507]  ? iomap_dio_rw+0x90/0x90
[ 2575.625143]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2575.625899]  ? down_read+0x284/0x430
[ 2575.626493]  ? lock_chain_count+0x20/0x20
[ 2575.627159]  ? down_write+0x160/0x160
[ 2575.627782]  iomap_dio_rw+0x31/0x90
[ 2575.628366]  ext4_file_read_iter+0x2c7/0x4c0
[ 2575.629077]  generic_file_splice_read+0x455/0x6d0
[ 2575.629864]  ? pipe_to_user+0x170/0x170
[ 2575.630500]  ? _cond_resched+0x12/0x80
[ 2575.631128]  ? avc_policy_seqno+0x9/0x70
[ 2575.631779]  ? selinux_file_permission+0x92/0x520
[ 2575.632562]  ? lockdep_init_map_type+0x2c7/0x780
[ 2575.633337]  ? pipe_to_user+0x170/0x170
[ 2575.633980]  do_splice_to+0x10e/0x160
[ 2575.634601]  splice_direct_to_actor+0x2fe/0x980
[ 2575.635359]  ? pipe_to_sendpage+0x380/0x380
[ 2575.636066]  ? do_splice_to+0x160/0x160
[ 2575.636723]  ? security_file_permission+0x24e/0x570
[ 2575.637542]  do_splice_direct+0x1c4/0x290
[ 2575.638229]  ? splice_direct_to_actor+0x980/0x980
[ 2575.639003]  ? selinux_file_permission+0x92/0x520
[ 2575.639820]  ? security_file_permission+0x24e/0x570
[ 2575.640637]  do_sendfile+0x553/0x1090
[ 2575.641298]  ? do_pwritev+0x270/0x270
[ 2575.641942]  ? wait_for_completion_io+0x270/0x270
[ 2575.642750]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2575.643509]  ? vfs_write+0x354/0xa70
[ 2575.644138]  __x64_sys_sendfile64+0x1d1/0x210
[ 2575.644887]  ? __ia32_sys_sendfile+0x220/0x220
[ 2575.645654]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2575.646509]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2575.647377]  do_syscall_64+0x33/0x40
[ 2575.647987]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2575.648823] RIP: 0033:0x7f0f9f161b19
[ 2575.649455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2575.652478] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2575.653730] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2575.654901] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2575.656081] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2575.657250] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2575.658429] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:24:48 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b63, &(0x7f00000000c0))

18:25:04 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 21)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:25:04 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
r6 = dup2(r4, r4)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000000780)={{0x1, 0x1, 0x18, r8, {0x20, 0x4}}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r5)

18:25:04 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000400)={0x0, 0x1, 0x2000000000000, 0xff})
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, &(0x7f0000000480))
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$incfs(r2, &(0x7f0000000440)='.pending_reads\x00', 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESOCT, @ANYRES32, @ANYRESHEX, @ANYRESDEC, @ANYRESOCT], 0xfdef)
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x0, 0x0)
accept4$unix(r2, &(0x7f0000000200), &(0x7f0000000300)=0x6e, 0x80000)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext={0x0, 0xffffffffffff0bde}, 0x0, 0x53f, 0x0, 0x0, 0x2, 0xfffffff3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x3, 0x4077, 0x8000)
openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x40741, 0x0)
fgetxattr(0xffffffffffffffff, &(0x7f0000000180)=@random={'osx.', '/dev/vcsu\x00'}, &(0x7f0000000340)=""/89, 0x59)

18:25:04 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 75)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:25:04 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x8000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r4, &(0x7f00000001c0))
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)
ioctl$sock_bt_hci(r5, 0x400448e7, &(0x7f0000000880))
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000080)={0x0, r5, 0x2, 0x5, 0x4, 0x1})
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
fallocate(r1, 0x0, 0x10001, 0x100)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
mkdirat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000140)={0x0, 0x3, 0x7ff, 0x4})

18:25:04 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x100000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:25:04 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b64, &(0x7f00000000c0))

18:25:04 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, 0x0)
creat(0x0, 0x1)

18:25:04 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, 0x0)
creat(0x0, 0x1)

18:25:04 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b65, &(0x7f00000000c0))

[ 2591.770300] FAULT_INJECTION: forcing a failure.
[ 2591.770300] name failslab, interval 1, probability 0, space 0, times 0
[ 2591.771535] CPU: 1 PID: 15327 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2591.772262] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2591.773137] Call Trace:
[ 2591.773433]  dump_stack+0x107/0x167
[ 2591.773835]  should_fail.cold+0x5/0xa
[ 2591.774241]  ? ext4_mb_new_blocks+0x20a3/0x4570
[ 2591.774729]  should_failslab+0x5/0x20
[ 2591.775129]  kmem_cache_alloc+0x5b/0x310
[ 2591.775573]  ext4_mb_new_blocks+0x20a3/0x4570
[ 2591.776063]  ? trace_hardirqs_on+0x5b/0x180
[ 2591.776524]  ? ext4_cache_extents+0x148/0x2d0
[ 2591.777004]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2591.777581]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2591.778101]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2591.778599]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2591.779144]  ? SOFTIRQ_verbose+0x10/0x10
[ 2591.779572]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2591.780119]  ? SOFTIRQ_verbose+0x10/0x10
[ 2591.780554]  ? ext4_ext_release+0x10/0x10
[ 2591.780991]  ? ext4_map_blocks+0x5e0/0x1970
[ 2591.781447]  ? lock_release+0x680/0x680
[ 2591.781878]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2591.782374]  ? lock_downgrade+0x6d0/0x6d0
[ 2591.782820]  ? down_write_killable+0x180/0x180
[ 2591.783428]  ext4_map_blocks+0x652/0x1970
[ 2591.783926]  ? kmem_cache_alloc+0x2a6/0x310
[ 2591.784497]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2591.784969]  ? jbd2__journal_start+0xf3/0x7e0
[ 2591.785441]  ? __ext4_journal_start_sb+0x214/0x390
[ 2591.785964]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2591.786484]  ext4_iomap_begin+0x3ad/0x700
[ 2591.786926]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2591.787440]  ? kasan_save_stack+0x1b/0x40
[ 2591.787878]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2591.788381]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2591.789048]  ? splice_direct_to_actor+0x387/0x980
[ 2591.789557]  ? do_splice_direct+0x1c4/0x290
[ 2591.790016]  ? do_sendfile+0x553/0x1090
[ 2591.790436]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2591.790932]  ? do_syscall_64+0x33/0x40
[ 2591.791343]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2591.791902]  iomap_apply+0x164/0x810
[ 2591.792293]  ? iomap_dio_rw+0x90/0x90
[ 2591.792697]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2591.793301]  ? mark_held_locks+0x9e/0xe0
[ 2591.793757]  ? filemap_check_errors+0xa5/0x150
[ 2591.794240]  __iomap_dio_rw+0x6cd/0x1110
[ 2591.794667]  ? iomap_dio_rw+0x90/0x90
[ 2591.795078]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2591.795557]  ? ext4_orphan_add+0x253/0x9e0
[ 2591.796003]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2591.796516]  ? ext4_empty_dir+0xae0/0xae0
[ 2591.796958]  ? jbd2__journal_start+0xf3/0x7e0
[ 2591.797433]  iomap_dio_rw+0x31/0x90
[ 2591.797845]  ext4_file_write_iter+0xb26/0x18e0
[ 2591.798330]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2591.798824]  ? kasan_save_stack+0x32/0x40
[ 2591.799257]  ? kasan_save_stack+0x1b/0x40
[ 2591.799700]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2591.800229]  ? iter_file_splice_write+0x16d/0xc30
[ 2591.800756]  ? direct_splice_actor+0x10f/0x170
[ 2591.801241]  ? splice_direct_to_actor+0x387/0x980
[ 2591.801772]  ? do_splice_direct+0x1c4/0x290
[ 2591.802244]  ? do_sendfile+0x553/0x1090
[ 2591.802666]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2591.803178]  do_iter_readv_writev+0x476/0x750
[ 2591.803661]  ? new_sync_write+0x660/0x660
[ 2591.804113]  ? selinux_file_permission+0x92/0x520
[ 2591.804639]  do_iter_write+0x191/0x670
[ 2591.805070]  ? trace_hardirqs_on+0x5b/0x180
[ 2591.805546]  vfs_iter_write+0x70/0xa0
[ 2591.805956]  iter_file_splice_write+0x762/0xc30
[ 2591.806476]  ? generic_splice_sendpage+0x140/0x140
18:25:04 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x200000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2591.807031]  ? avc_policy_seqno+0x9/0x70
[ 2591.807599]  ? selinux_file_permission+0x92/0x520
[ 2591.808110]  ? lockdep_init_map_type+0x2c7/0x780
[ 2591.808612]  ? generic_splice_sendpage+0x140/0x140
[ 2591.809129]  direct_splice_actor+0x10f/0x170
[ 2591.809602]  splice_direct_to_actor+0x387/0x980
[ 2591.810104]  ? pipe_to_sendpage+0x380/0x380
[ 2591.810564]  ? do_splice_to+0x160/0x160
[ 2591.810989]  ? security_file_permission+0x24e/0x570
[ 2591.811540]  do_splice_direct+0x1c4/0x290
[ 2591.811988]  ? splice_direct_to_actor+0x980/0x980
[ 2591.812509]  ? selinux_file_permission+0x92/0x520
[ 2591.813033]  ? security_file_permission+0x24e/0x570
[ 2591.813586]  do_sendfile+0x553/0x1090
[ 2591.814001]  ? do_pwritev+0x270/0x270
[ 2591.814405]  ? wait_for_completion_io+0x270/0x270
[ 2591.814914]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2591.815416]  ? vfs_write+0x354/0xa70
[ 2591.815827]  __x64_sys_sendfile64+0x1d1/0x210
[ 2591.816300]  ? __ia32_sys_sendfile+0x220/0x220
[ 2591.816782]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2591.817344]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2591.817906]  do_syscall_64+0x33/0x40
[ 2591.818301]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2591.818851] RIP: 0033:0x7fb754cd3b19
[ 2591.819257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2591.821176] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2591.821983] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2591.822737] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2591.823493] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2591.824248] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2591.824992] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2591.835898] udc-core: couldn't find an available UDC or it's busy
[ 2591.836656] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2591.838620] udc-core: couldn't find an available UDC or it's busy
[ 2591.839585] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:25:04 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
r6 = dup2(r4, r4)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000000780)={{0x1, 0x1, 0x18, r8, {0x20, 0x4}}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r5)

[ 2591.893902] FAULT_INJECTION: forcing a failure.
[ 2591.893902] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2591.895490] CPU: 1 PID: 15330 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2591.896240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2591.897118] Call Trace:
[ 2591.897407]  dump_stack+0x107/0x167
[ 2591.897818]  should_fail.cold+0x5/0xa
[ 2591.898234]  __alloc_pages_nodemask+0x182/0x600
[ 2591.898735]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2591.899380]  ? lock_acquire+0x197/0x470
[ 2591.899810]  ? mark_held_locks+0x9e/0xe0
[ 2591.900255]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2591.900812]  alloc_pages_current+0x187/0x280
[ 2591.901286]  push_pipe+0x2b5/0x6d0
[ 2591.901677]  iov_iter_zero+0x418/0xef0
[ 2591.902095]  ? ext4_iomap_begin+0x1a0/0x700
[ 2591.902553]  ? lock_chain_count+0x20/0x20
[ 2591.902996]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2591.903579]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2591.904102]  ? kasan_save_stack+0x1b/0x40
[ 2591.904559]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2591.904569]  ? __iomap_dio_rw+0x1ee/0x1110
18:25:04 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 76)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2591.904578]  ? iomap_dio_rw+0x31/0x90
[ 2591.904586]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2591.904600]  iomap_dio_actor+0x40f/0x560
18:25:04 executing program 2:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x8000000000000009, 0x0, 0x0, 0x808, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$vcsa(&(0x7f0000000400), 0xc7, 0x10080)
openat(r2, &(0x7f0000000440)='./file1\x00', 0x80, 0xe7)
r3 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x9, 0x2, &(0x7f0000000200)=[{&(0x7f0000000280)="f59a08a73ec072b221627b57d6fef04d2287fe2bbfacecfc75b23496d391dea34f64f14ff02b962262866fee59e6ec2248c1b1b3c3ab7032c4d71767082a5db0ff9d", 0x42, 0x27}, {&(0x7f0000000300)="cae79a9e6855b88eac66ef571805b8580d8f7d5aaacd30f24cf46f8db37d91f61f751c6032867cdd6d5479759bb2af6bc94cf6ed2ceec054830334eaa474776e723b453caf6e213558e5eadf943e423cd90d4a00a00b609b9cd616fdd2c669a5de77f50ad0182af3976ab03852ce8748f7ce90c2f3e84f2f9a375caaa1a23c424de057be278b82c57dbd4d7b6fd36f83307b0162246a878d6ccb03592822e476ccae1bf0474ce2431ade57803715afbb3b43e23c2c34d053628643119dab728ab5cb022d5c5d6c167f", 0xc9, 0x7}], 0x1, &(0x7f0000000980)={[{@utf8}, {}, {@uni_xlateno}, {@shortname_win95}, {@rodir}, {@utf8}, {@utf8}, {@utf8no}], [{@measure}]})
execveat(r3, &(0x7f0000000480)='./file1\x00', &(0x7f0000000740)=[&(0x7f00000004c0)='9p\x00', &(0x7f0000000500)='}::-)\x00', &(0x7f0000000540)='(\x00', &(0x7f0000000580)='#{(@\x00', &(0x7f00000005c0)=']&]$^\x00', &(0x7f0000000600)='9p\x00', &(0x7f0000000640)='9p\x00', &(0x7f0000000680)='9p\x00', &(0x7f00000006c0)='[\'\x00', &(0x7f0000000700)='%{@]}}-./&\xd1\x00'], &(0x7f0000000940)=[&(0x7f00000007c0)='9p\x00', &(0x7f0000000800)='!^\xbe-+#\\@^\xce*\\]\\\x00', &(0x7f0000000840)='9p\x00', &(0x7f0000000880)='9p\x00', &(0x7f00000008c0)='9p\x00', &(0x7f0000000900)='9p\x00'], 0x400)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="ba5be68d00006ea221b2aaf58c75c8313adfd6140000", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])
dup3(r0, r0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x8000, 0xc)

[ 2591.904614]  iomap_apply+0x289/0x810
[ 2591.904624]  ? iomap_dio_rw+0x90/0x90
[ 2591.904636]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2591.904666]  ? filemap_check_errors+0xa5/0x150
[ 2591.904679]  __iomap_dio_rw+0x6cd/0x1110
[ 2591.904688]  ? iomap_dio_rw+0x90/0x90
[ 2591.904709]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2591.904725]  ? down_read+0x284/0x430
[ 2591.904734]  ? lock_chain_count+0x20/0x20
[ 2591.904744]  ? down_write+0x160/0x160
18:25:04 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
r5 = dup2(r4, r4)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000000780)={{0x1, 0x1, 0x18, r7, {0x20, 0x4}}, './file0\x00'})

18:25:04 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b66, &(0x7f00000000c0))

[ 2591.904758]  iomap_dio_rw+0x31/0x90
[ 2591.904769]  ext4_file_read_iter+0x2c7/0x4c0
[ 2591.904783]  generic_file_splice_read+0x455/0x6d0
[ 2591.904793]  ? pipe_to_user+0x170/0x170
[ 2591.904801]  ? _cond_resched+0x12/0x80
[ 2591.904814]  ? avc_policy_seqno+0x9/0x70
[ 2591.904823]  ? selinux_file_permission+0x92/0x520
[ 2591.904837]  ? lockdep_init_map_type+0x2c7/0x780
[ 2591.904849]  ? pipe_to_user+0x170/0x170
[ 2591.904860]  do_splice_to+0x10e/0x160
[ 2591.904872]  splice_direct_to_actor+0x2fe/0x980
[ 2591.904886]  ? pipe_to_sendpage+0x380/0x380
[ 2591.904898]  ? do_splice_to+0x160/0x160
[ 2591.904908]  ? do_splice_direct+0x1a6/0x290
[ 2591.904917]  ? do_splice_direct+0x1b0/0x290
[ 2591.904930]  do_splice_direct+0x1c4/0x290
[ 2591.904940]  ? splice_direct_to_actor+0x980/0x980
[ 2591.904948]  ? selinux_file_permission+0x92/0x520
[ 2591.904963]  ? security_file_permission+0x24e/0x570
[ 2591.904981]  do_sendfile+0x553/0x1090
[ 2591.904998]  ? do_pwritev+0x270/0x270
[ 2591.905009]  ? wait_for_completion_io+0x270/0x270
[ 2591.905021]  ? __f_unlock_pos+0x9/0x20
[ 2591.905036]  __x64_sys_sendfile64+0x1d1/0x210
[ 2591.905048]  ? __ia32_sys_sendfile+0x220/0x220
[ 2591.905061]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2591.905072]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2591.905086]  do_syscall_64+0x33/0x40
[ 2591.905097]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2591.905105] RIP: 0033:0x7f0f9f161b19
[ 2591.905117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2591.905123] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2591.905134] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2591.905141] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2591.905148] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2591.905154] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2591.905160] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2592.001759] FAULT_INJECTION: forcing a failure.
[ 2592.001759] name failslab, interval 1, probability 0, space 0, times 0
[ 2592.001784] CPU: 0 PID: 15348 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2592.001797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2592.001804] Call Trace:
[ 2592.001832]  dump_stack+0x107/0x167
[ 2592.001858]  should_fail.cold+0x5/0xa
[ 2592.001880]  ? create_object.isra.0+0x3a/0xa20
[ 2592.049310]  should_failslab+0x5/0x20
[ 2592.049331]  kmem_cache_alloc+0x5b/0x310
[ 2592.049359]  create_object.isra.0+0x3a/0xa20
[ 2592.049380]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2592.049408]  kmem_cache_alloc+0x159/0x310
[ 2592.049441]  ext4_mb_new_blocks+0x20a3/0x4570
[ 2592.049483]  ? trace_hardirqs_on+0x5b/0x180
[ 2592.049532]  ? ext4_cache_extents+0x148/0x2d0
[ 2592.049558]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2592.049583]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2592.049621]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2592.049664]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2592.049682]  ? SOFTIRQ_verbose+0x10/0x10
[ 2592.049702]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2592.049721]  ? SOFTIRQ_verbose+0x10/0x10
[ 2592.049753]  ? ext4_ext_release+0x10/0x10
[ 2592.049778]  ? ext4_map_blocks+0x5e0/0x1970
[ 2592.049803]  ? lock_release+0x680/0x680
[ 2592.049825]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2592.049846]  ? lock_downgrade+0x6d0/0x6d0
[ 2592.049888]  ? down_write_killable+0x180/0x180
[ 2592.049923]  ext4_map_blocks+0x652/0x1970
[ 2592.049951]  ? kmem_cache_alloc+0x2a6/0x310
[ 2592.049971]  ? __kernel_text_address+0x9/0x40
[ 2592.049993]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2592.050019]  ? jbd2__journal_start+0xf3/0x7e0
[ 2592.050049]  ? __ext4_journal_start_sb+0x214/0x390
[ 2592.050069]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2592.050097]  ext4_iomap_begin+0x3ad/0x700
[ 2592.050133]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2592.050151]  ? kasan_save_stack+0x1b/0x40
[ 2592.050171]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2592.050200]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2592.050217]  ? splice_direct_to_actor+0x387/0x980
[ 2592.050233]  ? do_splice_direct+0x1c4/0x290
[ 2592.050251]  ? do_sendfile+0x553/0x1090
[ 2592.050270]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2592.050288]  ? do_syscall_64+0x33/0x40
[ 2592.050308]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2592.050334]  iomap_apply+0x164/0x810
[ 2592.050356]  ? iomap_dio_rw+0x90/0x90
[ 2592.050380]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2592.050414]  ? mark_held_locks+0x9e/0xe0
[ 2592.050455]  ? filemap_check_errors+0xa5/0x150
[ 2592.050482]  __iomap_dio_rw+0x6cd/0x1110
[ 2592.050500]  ? iomap_dio_rw+0x90/0x90
[ 2592.050542]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2592.050563]  ? ext4_orphan_add+0x253/0x9e0
[ 2592.050587]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2592.050611]  ? ext4_empty_dir+0xae0/0xae0
[ 2592.050631]  ? jbd2__journal_start+0xf3/0x7e0
[ 2592.050663]  iomap_dio_rw+0x31/0x90
[ 2592.050687]  ext4_file_write_iter+0xb26/0x18e0
[ 2592.050727]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2592.050746]  ? kasan_save_stack+0x32/0x40
[ 2592.050764]  ? kasan_save_stack+0x1b/0x40
[ 2592.050784]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2592.050801]  ? iter_file_splice_write+0x16d/0xc30
[ 2592.050817]  ? direct_splice_actor+0x10f/0x170
[ 2592.050834]  ? splice_direct_to_actor+0x387/0x980
[ 2592.050850]  ? do_splice_direct+0x1c4/0x290
[ 2592.050867]  ? do_sendfile+0x553/0x1090
[ 2592.050886]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2592.050917]  do_iter_readv_writev+0x476/0x750
[ 2592.050943]  ? new_sync_write+0x660/0x660
[ 2592.050960]  ? selinux_file_permission+0x92/0x520
[ 2592.051006]  do_iter_write+0x191/0x670
[ 2592.051033]  ? trace_hardirqs_on+0x5b/0x180
[ 2592.051064]  vfs_iter_write+0x70/0xa0
[ 2592.051087]  iter_file_splice_write+0x762/0xc30
[ 2592.051129]  ? generic_splice_sendpage+0x140/0x140
[ 2592.051159]  ? avc_policy_seqno+0x9/0x70
[ 2592.051177]  ? selinux_file_permission+0x92/0x520
[ 2592.051206]  ? lockdep_init_map_type+0x2c7/0x780
[ 2592.051232]  ? generic_splice_sendpage+0x140/0x140
[ 2592.051254]  direct_splice_actor+0x10f/0x170
[ 2592.051279]  splice_direct_to_actor+0x387/0x980
[ 2592.051306]  ? pipe_to_sendpage+0x380/0x380
[ 2592.051332]  ? do_splice_to+0x160/0x160
[ 2592.051352]  ? security_file_permission+0x24e/0x570
[ 2592.051386]  do_splice_direct+0x1c4/0x290
[ 2592.051407]  ? splice_direct_to_actor+0x980/0x980
[ 2592.051424]  ? selinux_file_permission+0x92/0x520
[ 2592.051453]  ? security_file_permission+0x24e/0x570
[ 2592.051488]  do_sendfile+0x553/0x1090
[ 2592.051523]  ? do_pwritev+0x270/0x270
[ 2592.051546]  ? wait_for_completion_io+0x270/0x270
[ 2592.051570]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2592.051587]  ? vfs_write+0x354/0xa70
[ 2592.051617]  __x64_sys_sendfile64+0x1d1/0x210
[ 2592.051640]  ? __ia32_sys_sendfile+0x220/0x220
[ 2592.051667]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2592.051689]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2592.051715]  do_syscall_64+0x33/0x40
[ 2592.051737]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2592.051751] RIP: 0033:0x7fb754cd3b19
[ 2592.051773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2592.051784] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2592.051807] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2592.051819] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2592.051832] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2592.051844] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2592.051856] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:25:19 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x46e2, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$nl_generic(r1, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x40811)
openat(0xffffffffffffff9c, 0x0, 0x1b1000, 0x0)
ftruncate(r0, 0x1000003)
r2 = syz_open_dev$sg(&(0x7f00000000c0), 0x4, 0x20000)
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x1ff)
r3 = open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x81001)
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{0x0, 0x7ff}, {0x5}]}, 0x14, 0x1)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4e24, 0xc0, @mcast1, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xfffffffffffffff7, 0xbc0d}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef)

18:25:19 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
dup2(r4, r4)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)

18:25:19 executing program 7:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='\x00'/16])
semctl$SEM_INFO(0x0, 0x0, 0x13, &(0x7f00000001c0)=""/25)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
r0 = semget$private(0x0, 0x1, 0x100)
semop(r0, &(0x7f00000000c0)=[{0x3, 0x9, 0x1800}, {0x2, 0x6, 0x1800}, {0x0, 0xffff, 0x1000}], 0x2aaaaaaaaaaaac00)

18:25:19 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 22)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:25:19 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x300000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:25:19 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, 0x0)
creat(0x0, 0x1)

18:25:19 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 77)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:25:19 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b67, &(0x7f00000000c0))

[ 2606.429344] FAULT_INJECTION: forcing a failure.
[ 2606.429344] name failslab, interval 1, probability 0, space 0, times 0
[ 2606.430644] CPU: 1 PID: 15377 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2606.431387] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2606.432272] Call Trace:
[ 2606.432559]  dump_stack+0x107/0x167
[ 2606.432957]  should_fail.cold+0x5/0xa
[ 2606.433371]  ? create_object.isra.0+0x3a/0xa20
[ 2606.433880]  should_failslab+0x5/0x20
[ 2606.434302]  kmem_cache_alloc+0x5b/0x310
[ 2606.434753]  create_object.isra.0+0x3a/0xa20
[ 2606.435228]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2606.435779]  kmem_cache_alloc+0x159/0x310
[ 2606.436229]  ext4_mb_new_blocks+0x20a3/0x4570
[ 2606.436731]  ? trace_hardirqs_on+0x5b/0x180
[ 2606.437214]  ? ext4_cache_extents+0x148/0x2d0
[ 2606.437714]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2606.437728]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2606.437747]  ext4_ext_map_blocks+0x1d68/0x5850
[ 2606.437769]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2606.437779]  ? SOFTIRQ_verbose+0x10/0x10
18:25:19 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
dup2(r4, r4)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)

[ 2606.437789]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2606.437798]  ? SOFTIRQ_verbose+0x10/0x10
[ 2606.437814]  ? ext4_ext_release+0x10/0x10
[ 2606.437827]  ? ext4_map_blocks+0x5e0/0x1970
[ 2606.437840]  ? lock_release+0x680/0x680
[ 2606.437852]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2606.437862]  ? lock_downgrade+0x6d0/0x6d0
[ 2606.437884]  ? down_write_killable+0x180/0x180
[ 2606.437901]  ext4_map_blocks+0x652/0x1970
[ 2606.437915]  ? kmem_cache_alloc+0x2a6/0x310
[ 2606.437926]  ? __kernel_text_address+0x9/0x40
[ 2606.437937]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2606.437951]  ? jbd2__journal_start+0xf3/0x7e0
[ 2606.437967]  ? __ext4_journal_start_sb+0x214/0x390
[ 2606.437976]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2606.437991]  ext4_iomap_begin+0x3ad/0x700
[ 2606.438009]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2606.438018]  ? kasan_save_stack+0x1b/0x40
[ 2606.438028]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2606.438043]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2606.438053]  ? splice_direct_to_actor+0x387/0x980
[ 2606.438060]  ? do_splice_direct+0x1c4/0x290
[ 2606.438070]  ? do_sendfile+0x553/0x1090
[ 2606.438080]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2606.438090]  ? do_syscall_64+0x33/0x40
[ 2606.438100]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2606.438114]  iomap_apply+0x164/0x810
[ 2606.438125]  ? iomap_dio_rw+0x90/0x90
[ 2606.438137]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2606.438154]  ? mark_held_locks+0x9e/0xe0
[ 2606.438175]  ? filemap_check_errors+0xa5/0x150
[ 2606.438189]  __iomap_dio_rw+0x6cd/0x1110
[ 2606.438198]  ? iomap_dio_rw+0x90/0x90
[ 2606.438219]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2606.438230]  ? ext4_orphan_add+0x253/0x9e0
[ 2606.438242]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2606.438254]  ? ext4_empty_dir+0xae0/0xae0
[ 2606.438264]  ? jbd2__journal_start+0xf3/0x7e0
[ 2606.438280]  iomap_dio_rw+0x31/0x90
[ 2606.438292]  ext4_file_write_iter+0xb26/0x18e0
[ 2606.438311]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2606.438320]  ? kasan_save_stack+0x32/0x40
[ 2606.438330]  ? kasan_save_stack+0x1b/0x40
[ 2606.438340]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2606.438348]  ? iter_file_splice_write+0x16d/0xc30
[ 2606.438357]  ? direct_splice_actor+0x10f/0x170
[ 2606.438365]  ? splice_direct_to_actor+0x387/0x980
[ 2606.438374]  ? do_splice_direct+0x1c4/0x290
[ 2606.438382]  ? do_sendfile+0x553/0x1090
[ 2606.438392]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2606.438408]  do_iter_readv_writev+0x476/0x750
[ 2606.438421]  ? new_sync_write+0x660/0x660
[ 2606.438431]  ? selinux_file_permission+0x92/0x520
[ 2606.438454]  do_iter_write+0x191/0x670
[ 2606.438467]  ? trace_hardirqs_on+0x5b/0x180
18:25:19 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2606.438483]  vfs_iter_write+0x70/0xa0
[ 2606.438495]  iter_file_splice_write+0x762/0xc30
[ 2606.438515]  ? generic_splice_sendpage+0x140/0x140
[ 2606.438531]  ? avc_policy_seqno+0x9/0x70
[ 2606.438540]  ? selinux_file_permission+0x92/0x520
[ 2606.438555]  ? lockdep_init_map_type+0x2c7/0x780
[ 2606.438568]  ? generic_splice_sendpage+0x140/0x140
[ 2606.438579]  direct_splice_actor+0x10f/0x170
[ 2606.438592]  splice_direct_to_actor+0x387/0x980
[ 2606.438606]  ? pipe_to_sendpage+0x380/0x380
[ 2606.438619]  ? do_splice_to+0x160/0x160
[ 2606.438630]  ? security_file_permission+0x24e/0x570
[ 2606.438647]  do_splice_direct+0x1c4/0x290
[ 2606.438658]  ? splice_direct_to_actor+0x980/0x980
[ 2606.438666]  ? selinux_file_permission+0x92/0x520
[ 2606.438680]  ? security_file_permission+0x24e/0x570
[ 2606.438698]  do_sendfile+0x553/0x1090
[ 2606.438716]  ? do_pwritev+0x270/0x270
[ 2606.438728]  ? wait_for_completion_io+0x270/0x270
[ 2606.438741]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2606.438749]  ? vfs_write+0x354/0xa70
[ 2606.438764]  __x64_sys_sendfile64+0x1d1/0x210
18:25:19 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 78)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:25:19 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
dup2(r4, r4)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)

18:25:19 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000000c0)=<r0=>0x0)
perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x4, 0xfb, 0x3b, 0x1, 0x0, 0x400, 0x1, 0xc, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7e, 0x4, @perf_bp={&(0x7f0000000000), 0x3}, 0x8000, 0x6, 0x0, 0x6, 0x0, 0x5, 0x8, 0x0, 0x401, 0x0, 0x9359}, r0, 0x4, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000500)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2606.438776]  ? __ia32_sys_sendfile+0x220/0x220
[ 2606.438789]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2606.438800]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2606.438814]  do_syscall_64+0x33/0x40
[ 2606.438824]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2606.438832] RIP: 0033:0x7fb754cd3b19
[ 2606.438844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2606.438850] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2606.438863] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2606.438869] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2606.438876] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2606.438882] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2606.438889] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2606.455625] FAT-fs (loop7): Directory bread(block 6) failed
[ 2606.617298] udc-core: couldn't find an available UDC or it's busy
[ 2606.617325] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2606.627485] udc-core: couldn't find an available UDC or it's busy
[ 2606.627508] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2606.665856] FAULT_INJECTION: forcing a failure.
[ 2606.665856] name failslab, interval 1, probability 0, space 0, times 0
[ 2606.679093] CPU: 1 PID: 15394 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2606.679100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2606.679104] Call Trace:
[ 2606.679120]  dump_stack+0x107/0x167
[ 2606.679134]  should_fail.cold+0x5/0xa
[ 2606.679147]  ? mempool_alloc+0x148/0x360
[ 2606.679155]  ? mempool_free_pages+0x20/0x20
[ 2606.679167]  should_failslab+0x5/0x20
[ 2606.679177]  kmem_cache_alloc+0x5b/0x310
[ 2606.679189]  ? mempool_free_pages+0x20/0x20
[ 2606.679198]  mempool_alloc+0x148/0x360
[ 2606.679212]  ? mempool_resize+0x7d0/0x7d0
[ 2606.679223]  ? lock_downgrade+0x6d0/0x6d0
[ 2606.679241]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2606.679258]  bio_alloc_bioset+0x36e/0x600
[ 2606.679269]  ? bvec_alloc+0x2f0/0x2f0
[ 2606.679284]  ? iov_iter_npages+0x1fd/0xa70
[ 2606.679300]  iomap_dio_bio_actor+0x518/0xef0
[ 2606.679320]  iomap_dio_actor+0x36f/0x560
[ 2606.679331]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2606.679342]  ? do_syscall_64+0x33/0x40
[ 2606.679353]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2606.679372]  iomap_apply+0x289/0x810
[ 2606.690932]  ? iomap_dio_rw+0x90/0x90
[ 2606.690944]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2606.690961]  ? mark_held_locks+0x9e/0xe0
[ 2606.690982]  ? filemap_check_errors+0xa5/0x150
[ 2606.691006]  __iomap_dio_rw+0x6cd/0x1110
[ 2606.693827]  ? iomap_dio_rw+0x90/0x90
[ 2606.694252]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2606.694776]  ? ext4_orphan_add+0x253/0x9e0
[ 2606.695256]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2606.695810]  ? ext4_empty_dir+0xae0/0xae0
[ 2606.696260]  ? jbd2__journal_start+0xf3/0x7e0
[ 2606.696277]  iomap_dio_rw+0x31/0x90
[ 2606.696289]  ext4_file_write_iter+0xb26/0x18e0
[ 2606.696308]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2606.696318]  ? kasan_save_stack+0x32/0x40
[ 2606.696327]  ? kasan_save_stack+0x1b/0x40
[ 2606.696337]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2606.696347]  ? iter_file_splice_write+0x16d/0xc30
[ 2606.696356]  ? direct_splice_actor+0x10f/0x170
[ 2606.696364]  ? splice_direct_to_actor+0x387/0x980
[ 2606.696371]  ? do_splice_direct+0x1c4/0x290
[ 2606.696380]  ? do_sendfile+0x553/0x1090
[ 2606.696390]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2606.696405]  do_iter_readv_writev+0x476/0x750
[ 2606.696418]  ? new_sync_write+0x660/0x660
[ 2606.696427]  ? selinux_file_permission+0x92/0x520
[ 2606.696449]  do_iter_write+0x191/0x670
[ 2606.696464]  ? trace_hardirqs_on+0x5b/0x180
[ 2606.696479]  vfs_iter_write+0x70/0xa0
[ 2606.696490]  iter_file_splice_write+0x762/0xc30
[ 2606.696512]  ? generic_splice_sendpage+0x140/0x140
[ 2606.706707]  ? avc_policy_seqno+0x9/0x70
[ 2606.707139]  ? selinux_file_permission+0x92/0x520
[ 2606.707661]  ? lockdep_init_map_type+0x2c7/0x780
[ 2606.708166]  ? generic_splice_sendpage+0x140/0x140
[ 2606.708687]  direct_splice_actor+0x10f/0x170
[ 2606.709154]  splice_direct_to_actor+0x387/0x980
[ 2606.709648]  ? pipe_to_sendpage+0x380/0x380
[ 2606.710123]  ? do_splice_to+0x160/0x160
[ 2606.710747]  ? security_file_permission+0x24e/0x570
[ 2606.711315]  do_splice_direct+0x1c4/0x290
[ 2606.711752]  ? splice_direct_to_actor+0x980/0x980
[ 2606.712254]  ? selinux_file_permission+0x92/0x520
[ 2606.712896]  ? security_file_permission+0x24e/0x570
18:25:19 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/ip_mr_cache\x00')
pread64(r0, &(0x7f0000002100)=""/4095, 0xfff, 0x6)
r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x800, 0x7, &(0x7f0000001380)=[{&(0x7f0000000080)="abe4de9fa5684d761649fe0cfd263ec139afe02c7118878308e394050f05b780", 0x20, 0x800}, {&(0x7f00000000c0)="a9eb31b7404d20cf5aa28ed256581139dd1aa4382136cc586993652c83cb55ddc86e9e1f886842f969d850f9e951ef1605db1b94f5d5af86de0edfcd2208787c1e2d0ddc4f42c78fd40a78e46e5fc7f525fd14b7c5427f5a867c57b8a79cd623c1fac0baa7b539561513", 0x6a, 0x3ff}, {&(0x7f0000000140)="ca292053e5873dcfbe4aac19eed08783ed1ac62af5f6ab42b73cc38043bd8c93e723b25f13ae2d37f500e4a10ff0f09e6064f64d9372e5c9d35d5cfe395efbd501d01cc7a40e5367a2aabc0aa7e4b27f9139e0a2ef76073288d090cf40", 0x5d, 0x6}, {&(0x7f00000001c0)="3077c1644b4099b008f45ded603feb77df3d49006c6a928da612180b777a702c0661d693e464c82ca151ca831b56fbd6c7f139571f78a3d0416d53a81723f10055dc062d8de25834094b134761c94fc0002bde0966ae2b87a06c339fbd6ca6b7ef9f5e136a2878bfe968657509c8a28b26f987c205a057c7be395effe8c2da60baaf852c7710bc5c", 0x88, 0x5}, {&(0x7f00000002c0)="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", 0x1000, 0xffffffffffffffff}, {&(0x7f00000012c0)="73ebf1dffce44653c692824d740246595477dd825aeb36c3ca9b6c19d32110abe603214e14103a02a9c3dd8826405f759c7e77e90810883bc88ea647b16349a53fdb99df5ebc08117eed5115fb0fb1ed7852bd27ee4068db281aafb40cad92c84f3515e87ead4d74d9a341f2bfa2b9b3d283a0453ec2a0d63fe91cfc94cc", 0x7e, 0x7}, {&(0x7f0000001340)="49aeb9badeeb383c458c8721ef12614e8cd083f67961d3f2d8226ee92b7a77707a7522fcc4", 0x25, 0x9}], 0x22000, &(0x7f0000001440)={[{@shortname_winnt}, {@nonumtail}], [{@fowner_gt={'fowner>', 0xee00}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'net/ip_mr_cache\x00'}}]})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
r7 = syz_mount_image$vfat(&(0x7f00000014c0), &(0x7f0000001500)='./file0\x00', 0xffffffff, 0x3, &(0x7f0000001780)=[{&(0x7f0000001540)="cacb2be0b0fbb99a33fcf34fee426315ecf317b765730c1acdc84f144c10", 0x1e, 0x3}, {&(0x7f0000001580)="2817bf5035f5efb0eaac602d59bd7f682cb1d1d66aa0bac7a5c2f4585ac863b0440d4d7ada6cc9c9df2babc97f3726b5426fe70937022b24f3a9e64684a4beddf10a8038a5b590e87325442720093197cb3597a29eb5b5136f8d7d8ade3d70f3ad91b9816583b6e02788ee98f59df2b6914d41681e4d8e65854481152e390b99ea9a50453f8873ad7f2daff447331d9a908e0dd6056e28ccaacb1338b62cc78a1c4a665a6c2eac7a19bc99eb31d020861e3e27749c6a9b3c1292a2146f88f0bb8364f7de9376357390fee9e14efd5eb46309", 0xd2, 0x8}, {&(0x7f0000001680)="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", 0xfb, 0x20}], 0x300000, &(0x7f0000001800)={[{@iocharset={'iocharset', 0x3d, 'cp852'}}, {@utf8}, {@utf8}, {@fat=@sys_immutable}, {@shortname_mixed}, {@utf8}, {@utf8}], [{@euid_eq}]})
r8 = openat2(r1, &(0x7f0000001880)='./file0\x00', &(0x7f0000001900)={0x0, 0x20, 0x1d}, 0x18)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r10 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f0000000040)=0xb, 0x80000001)
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f00000018c0)=[r1, r0, r2, r8, r4, r10, r7], 0x7)

[ 2606.713443]  do_sendfile+0x553/0x1090
[ 2606.714049]  ? do_pwritev+0x270/0x270
[ 2606.714455]  ? wait_for_completion_io+0x270/0x270
[ 2606.714964]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2606.715456]  ? vfs_write+0x354/0xa70
[ 2606.715869]  __x64_sys_sendfile64+0x1d1/0x210
[ 2606.716350]  ? __ia32_sys_sendfile+0x220/0x220
[ 2606.716854]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2606.717406]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2606.717983]  do_syscall_64+0x33/0x40
[ 2606.718378]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2606.718936] RIP: 0033:0x7fb754cd3b19
[ 2606.719332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2606.721322] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2606.722130] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2606.722873] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2606.723615] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2606.724360] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2606.725112] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2606.732372] FAULT_INJECTION: forcing a failure.
[ 2606.732372] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2606.735353] CPU: 0 PID: 15386 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2606.736870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2606.738689] Call Trace:
[ 2606.739277]  dump_stack+0x107/0x167
[ 2606.740083]  should_fail.cold+0x5/0xa
[ 2606.740930]  __alloc_pages_nodemask+0x182/0x600
[ 2606.741969]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2606.743279]  ? lock_acquire+0x197/0x470
[ 2606.744148]  ? find_held_lock+0x2c/0x110
[ 2606.745032]  ? jbd2_transaction_committed+0x111/0x150
[ 2606.746182]  ? lock_downgrade+0x6d0/0x6d0
[ 2606.747096]  ? ext4_map_blocks+0x967/0x1970
[ 2606.748047]  alloc_pages_current+0x187/0x280
[ 2606.749015]  ? __kernel_text_address+0x9/0x40
[ 2606.750016]  push_pipe+0x2b5/0x6d0
[ 2606.750814]  iov_iter_zero+0x418/0xef0
[ 2606.751674]  ? ext4_iomap_begin+0x1a0/0x700
[ 2606.752624]  ? iov_iter_copy_from_user_atomic+0xdb0/0xdb0
[ 2606.753860]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2606.754930]  ? kasan_save_stack+0x1b/0x40
[ 2606.755838]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2606.756946]  ? __iomap_dio_rw+0x1ee/0x1110
[ 2606.757875]  ? iomap_dio_rw+0x31/0x90
[ 2606.758705]  ? ext4_file_read_iter+0x2c7/0x4c0
[ 2606.759710]  iomap_dio_actor+0x40f/0x560
[ 2606.760608]  iomap_apply+0x289/0x810
[ 2606.761426]  ? iomap_dio_rw+0x90/0x90
[ 2606.762278]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2606.763559]  ? mark_held_locks+0x9e/0xe0
[ 2606.764472]  ? filemap_check_errors+0xa5/0x150
[ 2606.765488]  __iomap_dio_rw+0x6cd/0x1110
[ 2606.766383]  ? iomap_dio_rw+0x90/0x90
[ 2606.767247]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2606.768252]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2606.769453]  ? trace_hardirqs_on+0x5b/0x180
[ 2606.770454]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2606.770489]  ? ext4_inode_journal_mode+0xc4/0x4f0
[ 2606.770509]  ? ext4_inode_journal_mode+0xe9/0x4f0
[ 2606.770535]  iomap_dio_rw+0x31/0x90
[ 2606.770557]  ext4_file_read_iter+0x2c7/0x4c0
[ 2606.770583]  generic_file_splice_read+0x455/0x6d0
[ 2606.770606]  ? pipe_to_user+0x170/0x170
[ 2606.770621]  ? _cond_resched+0x12/0x80
[ 2606.770646]  ? avc_policy_seqno+0x9/0x70
[ 2606.770664]  ? selinux_file_permission+0x92/0x520
[ 2606.770693]  ? lockdep_init_map_type+0x2c7/0x780
[ 2606.770716]  ? pipe_to_user+0x170/0x170
[ 2606.770737]  do_splice_to+0x10e/0x160
[ 2606.770762]  splice_direct_to_actor+0x2fe/0x980
[ 2606.770789]  ? pipe_to_sendpage+0x380/0x380
[ 2606.770814]  ? do_splice_to+0x160/0x160
[ 2606.770835]  ? security_file_permission+0x24e/0x570
[ 2606.770867]  do_splice_direct+0x1c4/0x290
[ 2606.770889]  ? splice_direct_to_actor+0x980/0x980
[ 2606.770911]  ? selinux_file_permission+0x92/0x520
[ 2606.789440]  ? security_file_permission+0x24e/0x570
[ 2606.790557]  do_sendfile+0x553/0x1090
[ 2606.791421]  ? do_pwritev+0x270/0x270
[ 2606.792271]  ? wait_for_completion_io+0x270/0x270
[ 2606.793338]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2606.794381]  ? vfs_write+0x354/0xa70
[ 2606.795213]  __x64_sys_sendfile64+0x1d1/0x210
[ 2606.796206]  ? __ia32_sys_sendfile+0x220/0x220
[ 2606.797219]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2606.798383]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2606.799536]  do_syscall_64+0x33/0x40
[ 2606.800378]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2606.801521] RIP: 0033:0x7f0f9f161b19
[ 2606.802356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2606.806409] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2606.808082] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2606.809648] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2606.811219] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2606.812785] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2606.814360] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:25:19 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:25:19 executing program 7:
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
chown(&(0x7f0000000080)='./file0\x00', 0xee01, 0x0)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f0000000200)={{}, {0x1, 0x4}, [], {0x4, 0xb}, [{}], {0x10, 0x4}, {0x20, 0x5}}, 0x2c, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

18:25:34 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = getpid()
getpriority(0x0, r2)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
fcntl$setownex(r5, 0xf, &(0x7f00000003c0)={0x1, 0xffffffffffffffff})
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x2, 0x80, 0x3f, 0x4, 0x0, 0x1, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x101, 0x1, @perf_bp={&(0x7f0000000300), 0x9}, 0x4b425, 0x9bfb, 0xfff, 0x6, 0x2, 0x0, 0xd1, 0x0, 0x200, 0x0, 0x81}, r2, 0x4, r3, 0xa)
perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0xc1, 0x88, 0x2, 0x1, 0x0, 0x3, 0x20051, 0xd, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0x2, 0xffc0000000000000}, 0xcb04, 0x7, 0x9, 0x3, 0x1f7d49be, 0x1, 0x2, 0x0, 0x7f, 0x0, 0x1f}, 0x0, 0x5, r0, 0x8)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r6=>r0, 0x7ff, 0x4, 0x20})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r6, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x800}}, './file1\x00'})
mount$9p_unix(&(0x7f00000001c0)='./file0\x00', &(0x7f0000002f00)='./file0/../file0\x00', 0x0, 0x1d3004, 0x0)
pivot_root(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000240)='./file0\x00')
mount(&(0x7f0000000040)=ANY=[@ANYBLOB="2f6465764173670100"], &(0x7f0000000080)='./file0/../file0\x00', &(0x7f0000000140)='reiserfs\x00', 0x8, &(0x7f0000000200)='^},\x00')

18:25:34 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:25:34 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 23)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:25:34 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r0, &(0x7f00000062c0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000140)='8m', 0x2}], 0x1}}], 0x1, 0xc840)
sendmmsg$inet(r0, &(0x7f0000002400)=[{{0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000000080)="60c8", 0x2}], 0x1}}], 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
sendmmsg$inet6(r1, &(0x7f0000000100)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty, 0x101}, 0x1c, &(0x7f00000000c0), 0x0, &(0x7f0000000180)=[@flowinfo={{0x14, 0x29, 0xb, 0xfffffffa}}, @dstopts={{0x20, 0x29, 0x37, {0x3c, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0x4e}]}}}, @rthdrdstopts={{0xe0, 0x29, 0x37, {0x9c, 0x18, '\x00', [@hao={0xc9, 0x10, @remote}, @padn={0x1, 0x1, [0x0]}, @pad1, @generic={0x40, 0x1a, "b6da69a9845139673bad1f28666ba0ce3c394cd5d43b9e5a47de"}, @calipso={0x7, 0x58, {0x3, 0x14, 0x5, 0xfff8, [0x3, 0x80000001, 0x101, 0x2, 0x5, 0x3f00, 0x3, 0x634, 0x6, 0xd881]}}, @pad1, @enc_lim={0x4, 0x1, 0x6}, @generic={0x9, 0x30, "abcc5c91d4c18cf4a39e007dfdaf016b0af3e3e78c077bdf2e64636989e420e8da09d15051ced51ffc6596ca81ba3724"}]}}}], 0x118}}], 0x1, 0x4040)

18:25:34 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x400000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:25:34 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b68, &(0x7f00000000c0))

18:25:34 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 79)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:25:34 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)
dup2(r4, r4)

[ 2622.417760] FAULT_INJECTION: forcing a failure.
[ 2622.417760] name failslab, interval 1, probability 0, space 0, times 0
[ 2622.420449] CPU: 0 PID: 15432 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2622.422011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2622.423863] Call Trace:
[ 2622.424460]  dump_stack+0x107/0x167
[ 2622.425269]  should_fail.cold+0x5/0xa
[ 2622.426136]  ? create_object.isra.0+0x3a/0xa20
[ 2622.427141]  should_failslab+0x5/0x20
[ 2622.428016]  kmem_cache_alloc+0x5b/0x310
[ 2622.428913]  ? quarantine_put+0x8b/0x1a0
18:25:35 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b69, &(0x7f00000000c0))

[ 2622.429828]  create_object.isra.0+0x3a/0xa20
[ 2622.430924]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2622.432054]  kmem_cache_alloc+0x159/0x310
[ 2622.432971]  ? mempool_free_pages+0x20/0x20
[ 2622.433937]  mempool_alloc+0x148/0x360
[ 2622.434807]  ? mempool_resize+0x7d0/0x7d0
[ 2622.435735]  ? lock_downgrade+0x6d0/0x6d0
[ 2622.436662]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2622.437751]  bio_alloc_bioset+0x36e/0x600
[ 2622.438674]  ? bvec_alloc+0x2f0/0x2f0
[ 2622.439521]  ? iov_iter_npages+0x1fd/0xa70
[ 2622.440454]  iomap_dio_bio_actor+0x518/0xef0
[ 2622.441438]  iomap_dio_actor+0x36f/0x560
[ 2622.442364]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2622.443399]  ? do_syscall_64+0x33/0x40
[ 2622.444268]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2622.445467]  iomap_apply+0x289/0x810
[ 2622.446302]  ? iomap_dio_rw+0x90/0x90
18:25:35 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:25:35 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x500000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2622.447151]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2622.448479]  ? mark_held_locks+0x9e/0xe0
[ 2622.449522]  ? filemap_check_errors+0xa5/0x150
[ 2622.450573]  __iomap_dio_rw+0x6cd/0x1110
[ 2622.451480]  ? iomap_dio_rw+0x90/0x90
[ 2622.452354]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2622.453371]  ? ext4_orphan_add+0x253/0x9e0
[ 2622.454325]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2622.455413]  ? ext4_empty_dir+0xae0/0xae0
[ 2622.456365]  ? jbd2__journal_start+0xf3/0x7e0
[ 2622.457369]  iomap_dio_rw+0x31/0x90
[ 2622.458189]  ext4_file_write_iter+0xb26/0x18e0
[ 2622.459227]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2622.460251]  ? kasan_save_stack+0x32/0x40
[ 2622.461170]  ? kasan_save_stack+0x1b/0x40
[ 2622.462112]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2622.463217]  ? iter_file_splice_write+0x16d/0xc30
[ 2622.464271]  ? direct_splice_actor+0x10f/0x170
[ 2622.465279]  ? splice_direct_to_actor+0x387/0x980
[ 2622.466348]  ? do_splice_direct+0x1c4/0x290
[ 2622.467334]  ? do_sendfile+0x553/0x1090
[ 2622.468254]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2622.469290]  do_iter_readv_writev+0x476/0x750
[ 2622.470285]  ? new_sync_write+0x660/0x660
[ 2622.471230]  ? selinux_file_permission+0x92/0x520
[ 2622.472333]  do_iter_write+0x191/0x670
[ 2622.473213]  ? trace_hardirqs_on+0x5b/0x180
[ 2622.474204]  vfs_iter_write+0x70/0xa0
[ 2622.475061]  iter_file_splice_write+0x762/0xc30
[ 2622.476111]  ? generic_splice_sendpage+0x140/0x140
[ 2622.477209]  ? avc_policy_seqno+0x9/0x70
[ 2622.478114]  ? selinux_file_permission+0x92/0x520
[ 2622.479211]  ? lockdep_init_map_type+0x2c7/0x780
[ 2622.480276]  ? generic_splice_sendpage+0x140/0x140
[ 2622.481373]  direct_splice_actor+0x10f/0x170
[ 2622.482369]  splice_direct_to_actor+0x387/0x980
[ 2622.483416]  ? pipe_to_sendpage+0x380/0x380
[ 2622.484383]  ? do_splice_to+0x160/0x160
[ 2622.485276]  ? security_file_permission+0x24e/0x570
[ 2622.486404]  do_splice_direct+0x1c4/0x290
[ 2622.487327]  ? splice_direct_to_actor+0x980/0x980
[ 2622.488396]  ? selinux_file_permission+0x92/0x520
[ 2622.489479]  ? security_file_permission+0x24e/0x570
[ 2622.490634]  do_sendfile+0x553/0x1090
[ 2622.491505]  ? do_pwritev+0x270/0x270
[ 2622.492364]  ? wait_for_completion_io+0x270/0x270
[ 2622.493444]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2622.494480]  ? vfs_write+0x354/0xa70
[ 2622.495322]  __x64_sys_sendfile64+0x1d1/0x210
[ 2622.496322]  ? __ia32_sys_sendfile+0x220/0x220
[ 2622.497339]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2622.498530]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2622.499690]  do_syscall_64+0x33/0x40
[ 2622.500524]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2622.501669] RIP: 0033:0x7fb754cd3b19
[ 2622.502551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2622.506781] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2622.508468] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2622.510087] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2622.511670] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2622.513298] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2622.514941] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:25:35 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/110, 0x6e}, {&(0x7f0000000140)=""/8, 0x8}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/82, 0x52}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/163, 0xa3}], 0x8, &(0x7f00000006c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x40000000)

18:25:35 executing program 7:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{}, {0x6, 0x0, 0x0, 0x7fffffff}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000080)={<r1=>0x0})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x8c400)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000140)={r1, 0x1, r2, 0x108e053d, 0x80000})
faccessat(0xffffffffffffffff, 0x0, 0x0)

[ 2622.580301] udc-core: couldn't find an available UDC or it's busy
[ 2622.581301] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2622.589287] udc-core: couldn't find an available UDC or it's busy
[ 2622.590040] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:25:35 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000640)={0x0, r2, 0x0, 0x9, 0x0, 0x9})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:25:35 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 80)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2622.619276] FAULT_INJECTION: forcing a failure.
[ 2622.619276] name failslab, interval 1, probability 0, space 0, times 0
[ 2622.621216] CPU: 1 PID: 15441 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2622.621976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2622.622862] Call Trace:
[ 2622.623157]  dump_stack+0x107/0x167
[ 2622.623554]  should_fail.cold+0x5/0xa
[ 2622.623969]  ? jbd2__journal_start+0x190/0x7e0
[ 2622.624470]  should_failslab+0x5/0x20
[ 2622.624882]  kmem_cache_alloc+0x5b/0x310
[ 2622.625317]  jbd2__journal_start+0x190/0x7e0
[ 2622.625801]  __ext4_journal_start_sb+0x214/0x390
[ 2622.626319]  ext4_dirty_inode+0xbc/0x130
[ 2622.626755]  ? ext4_setattr+0x2210/0x2210
[ 2622.627210]  __mark_inode_dirty+0x492/0xd40
[ 2622.627677]  touch_atime+0x5ea/0x6e0
18:25:35 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b6a, &(0x7f00000000c0))

[ 2622.628145]  ? atime_needs_update+0x600/0x600
[ 2622.628176]  ext4_file_read_iter+0x344/0x4c0
[ 2622.628188]  generic_file_splice_read+0x455/0x6d0
18:25:35 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x3, 0x207e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x8000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = epoll_create(0x3)
fallocate(0xffffffffffffffff, 0x0, 0x5b, 0x2)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r5, 0x40189429, &(0x7f0000000080)={0x0, 0x3, 0xfffffffffffffeff})
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r7, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000100)={0x30, r6, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc}}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x30}}, 0x0)
sendmsg$NL80211_CMD_ABORT_SCAN(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x28, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x9864, 0x61}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}}, 0x801)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2})
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000, 0x13, r0, 0x0)

[ 2622.628199]  ? pipe_to_user+0x170/0x170
[ 2622.628209]  ? _cond_resched+0x12/0x80
[ 2622.628223]  ? avc_policy_seqno+0x9/0x70
18:25:35 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2622.628232]  ? selinux_file_permission+0x92/0x520
[ 2622.628249]  ? lockdep_init_map_type+0x2c7/0x780
[ 2622.628261]  ? pipe_to_user+0x170/0x170
[ 2622.628272]  do_splice_to+0x10e/0x160
[ 2622.628284]  splice_direct_to_actor+0x2fe/0x980
[ 2622.628297]  ? pipe_to_sendpage+0x380/0x380
[ 2622.628309]  ? do_splice_to+0x160/0x160
[ 2622.628320]  ? security_file_permission+0x24e/0x570
[ 2622.628337]  do_splice_direct+0x1c4/0x290
[ 2622.628347]  ? splice_direct_to_actor+0x980/0x980
[ 2622.628355]  ? selinux_file_permission+0x92/0x520
[ 2622.628369]  ? security_file_permission+0x24e/0x570
[ 2622.628388]  do_sendfile+0x553/0x1090
[ 2622.628406]  ? do_pwritev+0x270/0x270
[ 2622.628417]  ? wait_for_completion_io+0x270/0x270
[ 2622.628430]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2622.628439]  ? vfs_write+0x354/0xa70
[ 2622.628453]  __x64_sys_sendfile64+0x1d1/0x210
[ 2622.628465]  ? __ia32_sys_sendfile+0x220/0x220
[ 2622.628478]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2622.628490]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2622.628504]  do_syscall_64+0x33/0x40
[ 2622.628515]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2622.628522] RIP: 0033:0x7f0f9f161b19
[ 2622.628536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2622.628542] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2622.628554] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2622.628560] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2622.628567] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2622.628573] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2622.628580] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2623.057191] FAULT_INJECTION: forcing a failure.
[ 2623.057191] name failslab, interval 1, probability 0, space 0, times 0
[ 2623.059680] CPU: 0 PID: 15462 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2623.061240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2623.063144] Call Trace:
[ 2623.063730]  dump_stack+0x107/0x167
[ 2623.064537]  should_fail.cold+0x5/0xa
[ 2623.065377]  ? create_object.isra.0+0x3a/0xa20
[ 2623.066418]  should_failslab+0x5/0x20
[ 2623.067254]  kmem_cache_alloc+0x5b/0x310
[ 2623.068192]  ? quarantine_put+0x8b/0x1a0
[ 2623.069103]  create_object.isra.0+0x3a/0xa20
[ 2623.070091]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2623.071227]  kmem_cache_alloc+0x159/0x310
[ 2623.072155]  ? mempool_free_pages+0x20/0x20
[ 2623.073110]  mempool_alloc+0x148/0x360
[ 2623.074019]  ? mempool_resize+0x7d0/0x7d0
[ 2623.074988]  ? lock_downgrade+0x6d0/0x6d0
[ 2623.075916]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2623.077000]  bio_alloc_bioset+0x36e/0x600
[ 2623.077929]  ? bvec_alloc+0x2f0/0x2f0
[ 2623.078783]  ? iov_iter_npages+0x1fd/0xa70
[ 2623.079716]  iomap_dio_bio_actor+0x518/0xef0
[ 2623.080697]  iomap_dio_actor+0x36f/0x560
[ 2623.081609]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2623.082649]  ? do_syscall_64+0x33/0x40
[ 2623.083515]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2623.084693]  iomap_apply+0x289/0x810
[ 2623.085522]  ? iomap_dio_rw+0x90/0x90
[ 2623.086376]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2623.087646]  ? mark_held_locks+0x9e/0xe0
[ 2623.088548]  ? filemap_check_errors+0xa5/0x150
[ 2623.089580]  __iomap_dio_rw+0x6cd/0x1110
[ 2623.090480]  ? iomap_dio_rw+0x90/0x90
[ 2623.091314]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2623.092315]  ? ext4_orphan_add+0x253/0x9e0
[ 2623.093247]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2623.094355]  ? ext4_empty_dir+0xae0/0xae0
[ 2623.095272]  ? jbd2__journal_start+0xf3/0x7e0
[ 2623.096342]  iomap_dio_rw+0x31/0x90
[ 2623.097186]  ext4_file_write_iter+0xb26/0x18e0
[ 2623.098265]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2623.099320]  ? kasan_save_stack+0x32/0x40
[ 2623.100279]  ? kasan_save_stack+0x1b/0x40
[ 2623.101245]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2623.102479]  ? iter_file_splice_write+0x16d/0xc30
[ 2623.103597]  ? direct_splice_actor+0x10f/0x170
[ 2623.104655]  ? splice_direct_to_actor+0x387/0x980
[ 2623.105762]  ? do_splice_direct+0x1c4/0x290
[ 2623.106765]  ? do_sendfile+0x553/0x1090
[ 2623.107648]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2623.108688]  do_iter_readv_writev+0x476/0x750
[ 2623.109692]  ? new_sync_write+0x660/0x660
[ 2623.110638]  ? selinux_file_permission+0x92/0x520
[ 2623.111694]  do_iter_write+0x191/0x670
[ 2623.112535]  ? trace_hardirqs_on+0x5b/0x180
[ 2623.113487]  vfs_iter_write+0x70/0xa0
[ 2623.114312]  iter_file_splice_write+0x762/0xc30
[ 2623.115373]  ? generic_splice_sendpage+0x140/0x140
[ 2623.116456]  ? avc_policy_seqno+0x9/0x70
[ 2623.117346]  ? selinux_file_permission+0x92/0x520
[ 2623.118403]  ? lockdep_init_map_type+0x2c7/0x780
[ 2623.119442]  ? generic_splice_sendpage+0x140/0x140
[ 2623.120513]  direct_splice_actor+0x10f/0x170
[ 2623.121478]  splice_direct_to_actor+0x387/0x980
[ 2623.122519]  ? pipe_to_sendpage+0x380/0x380
[ 2623.123468]  ? do_splice_to+0x160/0x160
[ 2623.124360]  ? security_file_permission+0x24e/0x570
[ 2623.125488]  do_splice_direct+0x1c4/0x290
[ 2623.126433]  ? splice_direct_to_actor+0x980/0x980
[ 2623.127489]  ? selinux_file_permission+0x92/0x520
[ 2623.128559]  ? security_file_permission+0x24e/0x570
[ 2623.129719]  do_sendfile+0x553/0x1090
[ 2623.130634]  ? do_pwritev+0x270/0x270
[ 2623.131474]  ? wait_for_completion_io+0x270/0x270
[ 2623.132553]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2623.133574]  ? vfs_write+0x354/0xa70
[ 2623.134414]  __x64_sys_sendfile64+0x1d1/0x210
[ 2623.135402]  ? __ia32_sys_sendfile+0x220/0x220
[ 2623.136450]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2623.137668]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2623.138864]  do_syscall_64+0x33/0x40
[ 2623.139696]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2623.140866] RIP: 0033:0x7fb754cd3b19
[ 2623.141685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2623.145706] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2623.147427] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2623.149008] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2623.150620] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2623.152206] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2623.153801] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:25:49 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 81)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:25:49 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:25:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:25:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b70, &(0x7f00000000c0))

18:25:49 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x600000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:25:49 executing program 7:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f00000004c0)={0x2, 0x0, 0x2, 0x18, 0x47, &(0x7f00000000c0)="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"})
writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)='>', 0x1}], 0x1)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r1, 0x25, &(0x7f0000000600)={0x1, 0x0, 0x7fffffff})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9)
fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000500))

18:25:49 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 24)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:25:49 executing program 2:
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x8, 0x0, 0x4686}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7001)
ioctl$RTC_UIE_ON(r0, 0x7003)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x28, 0x1a, 0xd, 0xa, 0x0, 0x81, 0x0, 0xf5})
r1 = open(&(0x7f0000000000)='./file0\x00', 0x84400, 0x20)
ioctl$RTC_UIE_ON(r1, 0x7003)
ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000002400)=[{0x0}], 0x1, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='sessionid\x00')
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0))
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, &(0x7f0000000240))

[ 2636.847895] FAULT_INJECTION: forcing a failure.
[ 2636.847895] name failslab, interval 1, probability 0, space 0, times 0
[ 2636.850612] CPU: 0 PID: 15479 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2636.852063] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2636.853802] Call Trace:
[ 2636.854362]  dump_stack+0x107/0x167
[ 2636.855131]  should_fail.cold+0x5/0xa
[ 2636.855921]  ? mempool_alloc+0x148/0x360
[ 2636.856765]  ? mempool_free_pages+0x20/0x20
[ 2636.857674]  should_failslab+0x5/0x20
[ 2636.858498]  kmem_cache_alloc+0x5b/0x310
[ 2636.859356]  ? mempool_free_pages+0x20/0x20
[ 2636.860253]  mempool_alloc+0x148/0x360
[ 2636.861087]  ? mempool_resize+0x7d0/0x7d0
[ 2636.861958]  ? lock_downgrade+0x6d0/0x6d0
[ 2636.862829]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2636.863853]  bio_alloc_bioset+0x36e/0x600
[ 2636.864733]  ? bvec_alloc+0x2f0/0x2f0
[ 2636.865525]  ? iov_iter_npages+0x1fd/0xa70
[ 2636.866440]  iomap_dio_bio_actor+0x518/0xef0
[ 2636.867356]  iomap_dio_actor+0x36f/0x560
[ 2636.868204]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2636.869168]  ? do_syscall_64+0x33/0x40
[ 2636.869991]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2636.871125]  iomap_apply+0x289/0x810
[ 2636.871898]  ? iomap_dio_rw+0x90/0x90
[ 2636.872700]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2636.873912]  ? mark_held_locks+0x9e/0xe0
[ 2636.874774]  ? filemap_check_errors+0xa5/0x150
[ 2636.875719]  __iomap_dio_rw+0x6cd/0x1110
[ 2636.876553]  ? iomap_dio_rw+0x90/0x90
[ 2636.877364]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2636.878334]  ? ext4_orphan_add+0x253/0x9e0
[ 2636.879204]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2636.880245]  ? ext4_empty_dir+0xae0/0xae0
[ 2636.881102]  ? jbd2__journal_start+0xf3/0x7e0
[ 2636.882041]  iomap_dio_rw+0x31/0x90
[ 2636.882817]  ext4_file_write_iter+0xb26/0x18e0
[ 2636.883780]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2636.884725]  ? kasan_save_stack+0x32/0x40
[ 2636.885588]  ? kasan_save_stack+0x1b/0x40
[ 2636.886441]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2636.887494]  ? iter_file_splice_write+0x16d/0xc30
[ 2636.888490]  ? direct_splice_actor+0x10f/0x170
[ 2636.889427]  ? splice_direct_to_actor+0x387/0x980
[ 2636.890445]  ? do_splice_direct+0x1c4/0x290
[ 2636.891334]  ? do_sendfile+0x553/0x1090
[ 2636.892171]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2636.893138]  do_iter_readv_writev+0x476/0x750
[ 2636.894066]  ? new_sync_write+0x660/0x660
[ 2636.894928]  ? selinux_file_permission+0x92/0x520
[ 2636.895935]  do_iter_write+0x191/0x670
[ 2636.896764]  ? trace_hardirqs_on+0x5b/0x180
[ 2636.897659]  vfs_iter_write+0x70/0xa0
[ 2636.898447]  iter_file_splice_write+0x762/0xc30
[ 2636.899435]  ? generic_splice_sendpage+0x140/0x140
[ 2636.900461]  ? avc_policy_seqno+0x9/0x70
[ 2636.901299]  ? selinux_file_permission+0x92/0x520
[ 2636.902328]  ? lockdep_init_map_type+0x2c7/0x780
[ 2636.903310]  ? generic_splice_sendpage+0x140/0x140
[ 2636.904335]  direct_splice_actor+0x10f/0x170
[ 2636.905255]  splice_direct_to_actor+0x387/0x980
[ 2636.906235]  ? pipe_to_sendpage+0x380/0x380
[ 2636.907116]  ? do_splice_to+0x160/0x160
[ 2636.907941]  ? security_file_permission+0x24e/0x570
[ 2636.908996]  do_splice_direct+0x1c4/0x290
[ 2636.909842]  ? splice_direct_to_actor+0x980/0x980
[ 2636.910858]  ? selinux_file_permission+0x92/0x520
[ 2636.911848]  ? security_file_permission+0x24e/0x570
[ 2636.912907]  do_sendfile+0x553/0x1090
[ 2636.913715]  ? do_pwritev+0x270/0x270
[ 2636.914527]  ? wait_for_completion_io+0x270/0x270
[ 2636.915534]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2636.916507]  ? vfs_write+0x354/0xa70
[ 2636.917290]  __x64_sys_sendfile64+0x1d1/0x210
[ 2636.918228]  ? __ia32_sys_sendfile+0x220/0x220
[ 2636.919178]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2636.920267]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2636.921358]  do_syscall_64+0x33/0x40
[ 2636.922148]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2636.923217] RIP: 0033:0x7fb754cd3b19
[ 2636.923990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2636.927784] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2636.929357] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2636.930857] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2636.932332] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2636.933804] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2636.935294] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:25:49 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2636.968383] udc-core: couldn't find an available UDC or it's busy
[ 2636.970361] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2636.987322] udc-core: couldn't find an available UDC or it's busy
[ 2636.988877] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2637.017180] FAULT_INJECTION: forcing a failure.
[ 2637.017180] name failslab, interval 1, probability 0, space 0, times 0
[ 2637.019866] CPU: 0 PID: 15485 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2637.021393] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2637.023149] Call Trace:
[ 2637.023711]  dump_stack+0x107/0x167
[ 2637.024491]  should_fail.cold+0x5/0xa
[ 2637.025278]  ? create_object.isra.0+0x3a/0xa20
[ 2637.026252]  should_failslab+0x5/0x20
[ 2637.027041]  kmem_cache_alloc+0x5b/0x310
[ 2637.027898]  create_object.isra.0+0x3a/0xa20
[ 2637.028808]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2637.029869]  kmem_cache_alloc+0x159/0x310
[ 2637.030766]  jbd2__journal_start+0x190/0x7e0
[ 2637.031691]  __ext4_journal_start_sb+0x214/0x390
[ 2637.032730]  ext4_dirty_inode+0xbc/0x130
[ 2637.033584]  ? ext4_setattr+0x2210/0x2210
[ 2637.034451]  __mark_inode_dirty+0x492/0xd40
[ 2637.035349]  touch_atime+0x5ea/0x6e0
[ 2637.036135]  ? atime_needs_update+0x600/0x600
[ 2637.037079]  ext4_file_read_iter+0x344/0x4c0
[ 2637.037998]  generic_file_splice_read+0x455/0x6d0
[ 2637.039004]  ? pipe_to_user+0x170/0x170
[ 2637.039825]  ? _cond_resched+0x12/0x80
[ 2637.040642]  ? avc_policy_seqno+0x9/0x70
[ 2637.041490]  ? selinux_file_permission+0x92/0x520
[ 2637.042492]  ? lockdep_init_map_type+0x2c7/0x780
[ 2637.043489]  ? pipe_to_user+0x170/0x170
[ 2637.044312]  do_splice_to+0x10e/0x160
[ 2637.045098]  splice_direct_to_actor+0x2fe/0x980
[ 2637.046053]  ? pipe_to_sendpage+0x380/0x380
[ 2637.046986]  ? do_splice_to+0x160/0x160
[ 2637.047815]  ? security_file_permission+0x24e/0x570
[ 2637.048870]  do_splice_direct+0x1c4/0x290
[ 2637.049734]  ? splice_direct_to_actor+0x980/0x980
[ 2637.050745]  ? selinux_file_permission+0x92/0x520
[ 2637.051749]  ? security_file_permission+0x24e/0x570
[ 2637.052789]  do_sendfile+0x553/0x1090
[ 2637.053599]  ? do_pwritev+0x270/0x270
[ 2637.054391]  ? wait_for_completion_io+0x270/0x270
[ 2637.055397]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2637.056363]  ? vfs_write+0x354/0xa70
[ 2637.057144]  __x64_sys_sendfile64+0x1d1/0x210
[ 2637.058069]  ? __ia32_sys_sendfile+0x220/0x220
[ 2637.059039]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2637.060107]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2637.061194]  do_syscall_64+0x33/0x40
[ 2637.061960]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2637.063040] RIP: 0033:0x7f0f9f161b19
[ 2637.063807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2637.067611] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2637.069196] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2637.070703] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2637.072207] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2637.073671] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2637.075135] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:25:49 executing program 2:
r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0)
open_by_handle_at(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000050000000000000000000000070000000100000003000000135576526d437fc69bf1fc97765d1a46e32bbf990ec27730cfaba9915f7dc2062d01c2a5b554e735e4775c721015139cbbf2046211779e8524a9f4663b6da8375e78cff9dfb82b32bb5c3bea7e0d80ebfe566e6d1de49d4829f0dd0d9832"], 0x0)
setsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000100)=0x7, 0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
open$dir(&(0x7f0000000040)='./cgroup/cgroup.procs/file0\x00', 0x10280, 0xaa)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/route\x00')
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000001680)={{0x4}, 0x100, './cgroup/cgroup.procs/file0\x00'})
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000ffe000/0x1000)=nil)
pread64(r1, &(0x7f0000000540)=""/4089, 0x1016, 0x6a00)

18:25:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:25:49 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x700000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:25:49 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 82)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:25:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b71, &(0x7f00000000c0))

18:25:49 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2637.214484] FAULT_INJECTION: forcing a failure.
[ 2637.214484] name failslab, interval 1, probability 0, space 0, times 0
[ 2637.216867] CPU: 0 PID: 15501 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2637.218322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2637.220033] Call Trace:
[ 2637.220600]  dump_stack+0x107/0x167
[ 2637.221351]  should_fail.cold+0x5/0xa
[ 2637.222161]  ? kmem_cache_alloc+0x2a6/0x310
[ 2637.223060]  ? create_object.isra.0+0x3a/0xa20
[ 2637.224024]  should_failslab+0x5/0x20
[ 2637.224806]  kmem_cache_alloc+0x5b/0x310
[ 2637.225658]  ? mempool_alloc+0x155/0x360
[ 2637.226534]  create_object.isra.0+0x3a/0xa20
18:25:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b72, &(0x7f00000000c0))

[ 2637.227434]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2637.228579]  kmem_cache_alloc+0x159/0x310
[ 2637.229446]  bvec_alloc+0x148/0x2f0
[ 2637.230225]  bio_alloc_bioset+0x40a/0x600
[ 2637.231093]  ? bvec_alloc+0x2f0/0x2f0
[ 2637.231880]  ? iov_iter_npages+0x1fd/0xa70
[ 2637.232751]  iomap_dio_bio_actor+0x518/0xef0
[ 2637.233700]  iomap_dio_actor+0x36f/0x560
[ 2637.234546]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2637.235513]  ? do_syscall_64+0x33/0x40
[ 2637.236326]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2637.237440]  iomap_apply+0x289/0x810
[ 2637.238239]  ? iomap_dio_rw+0x90/0x90
[ 2637.239038]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2637.240254]  ? mark_held_locks+0x9e/0xe0
[ 2637.241126]  ? filemap_check_errors+0xa5/0x150
[ 2637.242070]  __iomap_dio_rw+0x6cd/0x1110
[ 2637.242936]  ? iomap_dio_rw+0x90/0x90
[ 2637.243758]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2637.243778]  ? ext4_orphan_add+0x253/0x9e0
[ 2637.243801]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2637.243823]  ? ext4_empty_dir+0xae0/0xae0
[ 2637.243841]  ? jbd2__journal_start+0xf3/0x7e0
[ 2637.243870]  iomap_dio_rw+0x31/0x90
[ 2637.243892]  ext4_file_write_iter+0xb26/0x18e0
[ 2637.243928]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2637.243945]  ? kasan_save_stack+0x32/0x40
[ 2637.243962]  ? kasan_save_stack+0x1b/0x40
[ 2637.243981]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2637.243997]  ? iter_file_splice_write+0x16d/0xc30
[ 2637.244012]  ? direct_splice_actor+0x10f/0x170
[ 2637.244027]  ? splice_direct_to_actor+0x387/0x980
[ 2637.244042]  ? do_splice_direct+0x1c4/0x290
[ 2637.244059]  ? do_sendfile+0x553/0x1090
[ 2637.244083]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2637.259420]  do_iter_readv_writev+0x476/0x750
[ 2637.259444]  ? new_sync_write+0x660/0x660
[ 2637.261198]  ? selinux_file_permission+0x92/0x520
[ 2637.261239]  do_iter_write+0x191/0x670
[ 2637.263000]  ? trace_hardirqs_on+0x5b/0x180
[ 2637.263027]  vfs_iter_write+0x70/0xa0
[ 2637.264651]  iter_file_splice_write+0x762/0xc30
[ 2637.265624]  ? generic_splice_sendpage+0x140/0x140
[ 2637.266656]  ? avc_policy_seqno+0x9/0x70
[ 2637.267492]  ? selinux_file_permission+0x92/0x520
[ 2637.268521]  ? lockdep_init_map_type+0x2c7/0x780
[ 2637.269499]  ? generic_splice_sendpage+0x140/0x140
[ 2637.270540]  direct_splice_actor+0x10f/0x170
[ 2637.271487]  splice_direct_to_actor+0x387/0x980
[ 2637.272462]  ? pipe_to_sendpage+0x380/0x380
[ 2637.273356]  ? do_splice_to+0x160/0x160
[ 2637.274183]  ? security_file_permission+0x24e/0x570
[ 2637.275227]  do_splice_direct+0x1c4/0x290
[ 2637.276091]  ? splice_direct_to_actor+0x980/0x980
[ 2637.277081]  ? selinux_file_permission+0x92/0x520
[ 2637.278091]  ? security_file_permission+0x24e/0x570
[ 2637.279121]  do_sendfile+0x553/0x1090
[ 2637.279923]  ? do_pwritev+0x270/0x270
[ 2637.280709]  ? wait_for_completion_io+0x270/0x270
[ 2637.281717]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2637.282697]  ? vfs_write+0x354/0xa70
[ 2637.283463]  __x64_sys_sendfile64+0x1d1/0x210
[ 2637.284383]  ? __ia32_sys_sendfile+0x220/0x220
[ 2637.285317]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2637.286430]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2637.287509]  do_syscall_64+0x33/0x40
[ 2637.288266]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2637.289326] RIP: 0033:0x7fb754cd3b19
[ 2637.290115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2637.293920] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2637.295490] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2637.296975] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2637.298458] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2637.299963] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2637.301434] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:25:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4bfa, &(0x7f00000000c0))

18:25:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:25:49 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xe00000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:25:50 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4bfb, &(0x7f00000000c0))

18:25:50 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_SPACE_INFO(0xffffffffffffffff, 0xc0109414, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000bf0000000000000000"])
r1 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000180)=[{&(0x7f00000000c0)="3e89e1bdf1d0", 0x6}], 0x10c0400, &(0x7f00000001c0)={[{@map_off}, {@nocompress}, {@cruft}, {@hide}, {@nojoliet}, {}, {@check_strict}, {@block={'block', 0x3d, 0x800}}, {@nojoliet}], [{@euid_gt}]})
ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f00000007c0)={{r0}, "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"})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf32(r2, &(0x7f0000000780)=ANY=[@ANYBLOB="7f454c4609022106ff0000000000000003000300020000002a000000380000001201000007000000ff00200001000000020000020000000003"], 0x31b)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

[ 2647.502520] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2647.504686] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2647.522397] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2647.576755] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2647.578588] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2647.582234] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
18:26:18 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 83)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:26:18 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

18:26:18 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, 0x0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:26:18 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x1100000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:26:18 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5409, &(0x7f00000000c0))

18:26:18 executing program 2:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
shutdown(r1, 0x2)
readv(r1, &(0x7f0000001400)=[{&(0x7f0000000000)=""/245, 0xf5}, {0x0}], 0x2)
r2 = accept4(r0, 0x0, &(0x7f0000000100), 0x80800)
recvfrom(r2, &(0x7f0000000140)=""/26, 0x1a, 0x2002, 0x0, 0x0)

18:26:18 executing program 7:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f00000004c0)={0x2, 0x0, 0x2, 0x18, 0x47, &(0x7f00000000c0)="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"})
writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)='>', 0x1}], 0x1)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r1, 0x25, &(0x7f0000000600)={0x1, 0x0, 0x7fffffff})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9)
fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000500))

18:26:18 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 25)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

[ 2665.586674] FAULT_INJECTION: forcing a failure.
[ 2665.586674] name failslab, interval 1, probability 0, space 0, times 0
[ 2665.589377] CPU: 0 PID: 16002 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2665.590938] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2665.592660] Call Trace:
[ 2665.593214]  dump_stack+0x107/0x167
[ 2665.593976]  should_fail.cold+0x5/0xa
[ 2665.594798]  ? jbd2__journal_start+0x190/0x7e0
[ 2665.595751]  should_failslab+0x5/0x20
[ 2665.596543]  kmem_cache_alloc+0x5b/0x310
[ 2665.597414]  jbd2__journal_start+0x190/0x7e0
[ 2665.598358]  __ext4_journal_start_sb+0x214/0x390
[ 2665.599383]  ext4_file_write_iter+0x114b/0x18e0
[ 2665.600375]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2665.601330]  ? kasan_save_stack+0x32/0x40
[ 2665.602193]  ? kasan_save_stack+0x1b/0x40
[ 2665.603070]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2665.604115]  ? iter_file_splice_write+0x16d/0xc30
[ 2665.605115]  ? direct_splice_actor+0x10f/0x170
[ 2665.606053]  ? splice_direct_to_actor+0x387/0x980
[ 2665.607045]  ? do_splice_direct+0x1c4/0x290
[ 2665.607926]  ? do_sendfile+0x553/0x1090
[ 2665.608741]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2665.609704]  do_iter_readv_writev+0x476/0x750
[ 2665.610634]  ? new_sync_write+0x660/0x660
[ 2665.611521]  ? selinux_file_permission+0x92/0x520
[ 2665.612551]  do_iter_write+0x191/0x670
[ 2665.613367]  ? trace_hardirqs_on+0x5b/0x180
[ 2665.614263]  vfs_iter_write+0x70/0xa0
[ 2665.615111]  iter_file_splice_write+0x762/0xc30
[ 2665.616158]  ? generic_splice_sendpage+0x140/0x140
[ 2665.617352]  ? avc_policy_seqno+0x9/0x70
[ 2665.618336]  ? selinux_file_permission+0x92/0x520
[ 2665.619516]  ? lockdep_init_map_type+0x2c7/0x780
[ 2665.620673]  ? generic_splice_sendpage+0x140/0x140
[ 2665.621874]  direct_splice_actor+0x10f/0x170
[ 2665.622949]  splice_direct_to_actor+0x387/0x980
[ 2665.624099]  ? pipe_to_sendpage+0x380/0x380
[ 2665.625152]  ? do_splice_to+0x160/0x160
[ 2665.626122]  ? security_file_permission+0x24e/0x570
[ 2665.627369]  do_splice_direct+0x1c4/0x290
[ 2665.628384]  ? splice_direct_to_actor+0x980/0x980
[ 2665.629548]  ? selinux_file_permission+0x92/0x520
[ 2665.630728]  ? security_file_permission+0x24e/0x570
[ 2665.631953]  do_sendfile+0x553/0x1090
[ 2665.632883]  ? do_pwritev+0x270/0x270
[ 2665.633806]  ? wait_for_completion_io+0x270/0x270
[ 2665.634970]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2665.636086]  ? vfs_write+0x354/0xa70
[ 2665.636988]  __x64_sys_sendfile64+0x1d1/0x210
[ 2665.638084]  ? __ia32_sys_sendfile+0x220/0x220
[ 2665.639201]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2665.640468]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2665.641730]  do_syscall_64+0x33/0x40
18:26:18 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

18:26:18 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, 0x0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:26:18 executing program 7:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f00000004c0)={0x2, 0x0, 0x2, 0x18, 0x47, &(0x7f00000000c0)="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"})
writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)='>', 0x1}], 0x1)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r1, 0x25, &(0x7f0000000600)={0x1, 0x0, 0x7fffffff})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9)
fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000500))

[ 2665.641755]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2665.641771] RIP: 0033:0x7fb754cd3b19
[ 2665.641798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2665.641810] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2665.641836] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2665.641849] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2665.641862] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2665.641876] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2665.641890] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2665.665826] udc-core: couldn't find an available UDC or it's busy
[ 2665.665855] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2665.680826] udc-core: couldn't find an available UDC or it's busy
[ 2665.680855] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2665.694623] FAULT_INJECTION: forcing a failure.
[ 2665.694623] name failslab, interval 1, probability 0, space 0, times 0
18:26:18 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x540b, &(0x7f00000000c0))

[ 2665.694647] CPU: 1 PID: 16015 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2665.694659] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2665.694666] Call Trace:
[ 2665.694699]  dump_stack+0x107/0x167
[ 2665.694723]  should_fail.cold+0x5/0xa
[ 2665.694746]  ? iter_file_splice_write+0x16d/0xc30
[ 2665.694768]  should_failslab+0x5/0x20
18:26:18 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, 0x0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2665.694785]  __kmalloc+0x72/0x390
[ 2665.694811]  iter_file_splice_write+0x16d/0xc30
[ 2665.694827]  ? atime_needs_update+0x600/0x600
[ 2665.694862]  ? generic_splice_sendpage+0x140/0x140
[ 2665.694880]  ? pipe_to_user+0x170/0x170
[ 2665.694895]  ? _cond_resched+0x12/0x80
[ 2665.694917]  ? avc_policy_seqno+0x9/0x70
[ 2665.694934]  ? selinux_file_permission+0x92/0x520
[ 2665.694963]  ? lockdep_init_map_type+0x2c7/0x780
[ 2665.694985]  ? generic_splice_sendpage+0x140/0x140
[ 2665.695006]  direct_splice_actor+0x10f/0x170
[ 2665.695028]  splice_direct_to_actor+0x387/0x980
[ 2665.695051]  ? pipe_to_sendpage+0x380/0x380
[ 2665.695074]  ? do_splice_to+0x160/0x160
[ 2665.695092]  ? security_file_permission+0x24e/0x570
[ 2665.695122]  do_splice_direct+0x1c4/0x290
[ 2665.695140]  ? splice_direct_to_actor+0x980/0x980
[ 2665.695155]  ? selinux_file_permission+0x92/0x520
[ 2665.695181]  ? security_file_permission+0x24e/0x570
[ 2665.695213]  do_sendfile+0x553/0x1090
[ 2665.695244]  ? do_pwritev+0x270/0x270
[ 2665.695264]  ? wait_for_completion_io+0x270/0x270
[ 2665.695286]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2665.695302]  ? vfs_write+0x354/0xa70
[ 2665.695328]  __x64_sys_sendfile64+0x1d1/0x210
[ 2665.695349]  ? __ia32_sys_sendfile+0x220/0x220
[ 2665.695373]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
18:26:18 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2665.695394]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2665.695418]  do_syscall_64+0x33/0x40
[ 2665.695438]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2665.695451] RIP: 0033:0x7f0f9f161b19
[ 2665.695472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
18:26:18 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 84)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2665.695483] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2665.695504] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2665.695515] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2665.695527] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2665.695538] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2665.695550] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2666.054265] FAULT_INJECTION: forcing a failure.
[ 2666.054265] name failslab, interval 1, probability 0, space 0, times 0
[ 2666.057034] CPU: 1 PID: 16036 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2666.058595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2666.060609] Call Trace:
[ 2666.061281]  dump_stack+0x107/0x167
[ 2666.062193]  should_fail.cold+0x5/0xa
[ 2666.063160]  ? mempool_alloc+0x148/0x360
[ 2666.064136]  ? mempool_free_pages+0x20/0x20
[ 2666.065007]  should_failslab+0x5/0x20
[ 2666.065775]  kmem_cache_alloc+0x5b/0x310
[ 2666.066600]  ? mempool_free_pages+0x20/0x20
[ 2666.067464]  mempool_alloc+0x148/0x360
[ 2666.068250]  ? mempool_resize+0x7d0/0x7d0
[ 2666.069086]  ? mark_lock+0xf5/0x2df0
[ 2666.069834]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2666.070908]  __sg_alloc_table+0x24e/0x390
[ 2666.071755]  sg_alloc_table_chained+0x9b/0x1f0
[ 2666.072671]  ? sg_alloc_table_chained+0x1f0/0x1f0
[ 2666.073639]  scsi_alloc_sgtables+0x236/0xaf0
[ 2666.074540]  ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0
[ 2666.075558]  ? lockdep_init_map_type+0x2c7/0x780
[ 2666.076520]  sd_init_command+0x516/0x3550
[ 2666.077367]  scsi_queue_rq+0xe73/0x27d0
[ 2666.078181]  blk_mq_dispatch_rq_list+0x372/0x1c30
[ 2666.079170]  ? elv_rb_del+0x50/0xa0
[ 2666.079895]  ? elv_rqhash_del+0x119/0x160
[ 2666.080729]  ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0
18:26:18 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r0, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2666.081720]  ? dd_dispatch_request+0x1c0/0x990
[ 2666.082862]  blk_mq_do_dispatch_sched+0x7f4/0xa00
[ 2666.083838]  ? blk_mq_sched_mark_restart_hctx+0x80/0x80
[ 2666.084907]  ? lock_acquire+0x197/0x470
[ 2666.085697]  ? hctx_lock+0x7f/0x200
[ 2666.086436]  __blk_mq_sched_dispatch_requests+0x2d7/0x450
[ 2666.087539]  ? blk_mq_do_dispatch_sched+0xa00/0xa00
[ 2666.088553]  blk_mq_sched_dispatch_requests+0xfb/0x180
18:26:18 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2000000000000}}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='tracefs\x00', 0x0, 0x0)

[ 2666.089677]  __blk_mq_run_hw_queue+0x12c/0x290
[ 2666.090888]  ? blk_mq_start_request+0x3f0/0x3f0
[ 2666.092005]  ? do_raw_spin_lock+0x121/0x260
[ 2666.093088]  __blk_mq_delay_run_hw_queue+0x4f1/0x550
[ 2666.094321]  blk_mq_run_hw_queue+0x170/0x2f0
[ 2666.095418]  ? blk_mq_delay_run_hw_queues+0x1a0/0x1a0
[ 2666.096697]  ? dd_dispatch_request+0x990/0x990
[ 2666.097825]  blk_mq_sched_insert_requests+0x247/0x720
[ 2666.099106]  blk_mq_flush_plug_list+0x415/0x6c0
[ 2666.100251]  ? blk_mq_insert_requests+0x450/0x450
[ 2666.101444]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2666.102830]  blk_flush_plug_list+0x26c/0x3c0
[ 2666.103822]  ? mark_held_locks+0x9e/0xe0
[ 2666.104712]  ? blk_insert_cloned_request+0x460/0x460
[ 2666.105867]  blk_finish_plug+0x50/0xa0
[ 2666.106764]  __iomap_dio_rw+0xca0/0x1110
[ 2666.107599]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2666.108514]  ? ext4_orphan_add+0x253/0x9e0
[ 2666.109360]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2666.110339]  ? ext4_empty_dir+0xae0/0xae0
[ 2666.111182]  ? jbd2__journal_start+0xf3/0x7e0
[ 2666.112095]  iomap_dio_rw+0x31/0x90
[ 2666.112830]  ext4_file_write_iter+0xb26/0x18e0
[ 2666.113763]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2666.114691]  ? kasan_save_stack+0x32/0x40
[ 2666.115516]  ? kasan_save_stack+0x1b/0x40
[ 2666.116347]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2666.117360]  ? iter_file_splice_write+0x16d/0xc30
[ 2666.118325]  ? direct_splice_actor+0x10f/0x170
[ 2666.119237]  ? splice_direct_to_actor+0x387/0x980
[ 2666.120199]  ? do_splice_direct+0x1c4/0x290
[ 2666.121060]  ? do_sendfile+0x553/0x1090
[ 2666.121853]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2666.122798]  do_iter_readv_writev+0x476/0x750
[ 2666.123696]  ? new_sync_write+0x660/0x660
[ 2666.124524]  ? selinux_file_permission+0x92/0x520
[ 2666.125507]  do_iter_write+0x191/0x670
[ 2666.126289]  ? trace_hardirqs_on+0x5b/0x180
[ 2666.127178]  vfs_iter_write+0x70/0xa0
[ 2666.127945]  iter_file_splice_write+0x762/0xc30
[ 2666.128894]  ? generic_splice_sendpage+0x140/0x140
[ 2666.129886]  ? avc_policy_seqno+0x9/0x70
[ 2666.130699]  ? selinux_file_permission+0x92/0x520
[ 2666.131665]  ? lockdep_init_map_type+0x2c7/0x780
[ 2666.132617]  ? generic_splice_sendpage+0x140/0x140
[ 2666.133594]  direct_splice_actor+0x10f/0x170
[ 2666.134493]  splice_direct_to_actor+0x387/0x980
[ 2666.135431]  ? pipe_to_sendpage+0x380/0x380
[ 2666.136295]  ? do_splice_to+0x160/0x160
[ 2666.137091]  ? security_file_permission+0x24e/0x570
[ 2666.138093]  do_splice_direct+0x1c4/0x290
[ 2666.138925]  ? splice_direct_to_actor+0x980/0x980
[ 2666.139880]  ? selinux_file_permission+0x92/0x520
[ 2666.140847]  ? security_file_permission+0x24e/0x570
[ 2666.141851]  do_sendfile+0x553/0x1090
[ 2666.142632]  ? do_pwritev+0x270/0x270
[ 2666.143396]  ? wait_for_completion_io+0x270/0x270
[ 2666.144359]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2666.145283]  ? vfs_write+0x354/0xa70
[ 2666.146035]  __x64_sys_sendfile64+0x1d1/0x210
[ 2666.146949]  ? __ia32_sys_sendfile+0x220/0x220
[ 2666.147865]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2666.148908]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2666.149946]  do_syscall_64+0x33/0x40
[ 2666.150697]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2666.151714] RIP: 0033:0x7fb754cd3b19
[ 2666.152459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2666.156125] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2666.157641] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2666.159067] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2666.160482] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2666.161900] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2666.163329] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:26:18 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x4000000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:26:18 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:26:18 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x540c, &(0x7f00000000c0))

18:26:18 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r0, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

18:26:18 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x4400000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:26:18 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x540d, &(0x7f00000000c0))

18:26:32 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r0, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

18:26:32 executing program 2:
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, 0x0, 0x8001)
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r0)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB], 0xdc}, 0x1, 0x0, 0x0, 0x687c3735d45af432}, 0x40)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000827bd7000fedbdf2503000000d8000480340007800800040007000000080001001f0000000800040001000000080001001100000008000300ffff0000080004007f0000000900010073797a31000000003c000780080001000e000000080001000e000000080002000a0000000800010001000000080001001a000000080004000900000008000400020000004c0007800800040002000000080002000600000008000200ff03000008000400ff01000008000400de6d000008000300000000000800030000020000080001001d00000008000200020000000900010073797a3100000000"], 0xec}, 0x1, 0x0, 0x0, 0x800}, 0x24000004)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={0x2f4, 0x3, 0xffffffffffffffff})
setsockopt(0xffffffffffffffff, 0x80000001, 0x0, &(0x7f0000000000)="d6547e36fc54c90660b7476ebee6fc625172f9fb41501b197b5f3f70983636a6339e1e85d66136c9ab9c4c4ac9f47e62e803b9ef933f94e7743dd3f042e684ce17f03e969718e964ee18366ffdfce76af1d45d6363a4174148eed0ed680f244413688cf5740d20bfec520e6a149e3680f24f23ef267afc48c0982fa7", 0x7c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000200)={0x44004100, 0x0, &(0x7f00000000c0), &(0x7f0000000100), {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

18:26:32 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:26:32 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x4800000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:26:32 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0)
socket$netlink(0x10, 0x3, 0x0)
fchmod(0xffffffffffffffff, 0x20)
socket$netlink(0x10, 0x3, 0x0)
r1 = getpid()
getpriority(0x0, r1)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x24, 0x1c, 0xd38865185e4463b1, 0x0, 0x0, {0xa}, [@typed={0x5, 0x8, 0x0, 0x0, @str='\x9e'}, @typed={0x8, 0x1, 0x0, 0x0, @pid=r1}]}, 0x24}}, 0x0)
unshare(0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x34, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc1}]}]}]}, 0x34}}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x7ff, 0x100000000, 0x1, 0xff})

18:26:32 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 85)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:26:32 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x540e, &(0x7f00000000c0))

18:26:32 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 26)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

[ 2680.156478] FAULT_INJECTION: forcing a failure.
[ 2680.156478] name failslab, interval 1, probability 0, space 0, times 0
[ 2680.157724] CPU: 1 PID: 16071 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2680.158477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2680.159386] Call Trace:
[ 2680.159681]  dump_stack+0x107/0x167
[ 2680.160078]  should_fail.cold+0x5/0xa
[ 2680.160495]  ? create_object.isra.0+0x3a/0xa20
[ 2680.160994]  should_failslab+0x5/0x20
[ 2680.161412]  kmem_cache_alloc+0x5b/0x310
[ 2680.161426]  create_object.isra.0+0x3a/0xa20
[ 2680.161437]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2680.161450]  kmem_cache_alloc+0x159/0x310
[ 2680.161464]  ? mempool_free_pages+0x20/0x20
[ 2680.161473]  mempool_alloc+0x148/0x360
[ 2680.161487]  ? mempool_resize+0x7d0/0x7d0
[ 2680.161501]  ? mark_lock+0xf5/0x2df0
[ 2680.161514]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2680.161532]  __sg_alloc_table+0x24e/0x390
[ 2680.161550]  sg_alloc_table_chained+0x9b/0x1f0
[ 2680.161559]  ? sg_alloc_table_chained+0x1f0/0x1f0
[ 2680.161571]  scsi_alloc_sgtables+0x236/0xaf0
[ 2680.161585]  ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0
[ 2680.161596]  ? lockdep_init_map_type+0x2c7/0x780
[ 2680.161614]  sd_init_command+0x516/0x3550
[ 2680.161633]  scsi_queue_rq+0xe73/0x27d0
[ 2680.161656]  blk_mq_dispatch_rq_list+0x372/0x1c30
[ 2680.161676]  ? elv_rb_del+0x50/0xa0
[ 2680.161684]  ? elv_rqhash_del+0x119/0x160
[ 2680.161696]  ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0
[ 2680.161711]  ? dd_dispatch_request+0x1c0/0x990
[ 2680.161726]  blk_mq_do_dispatch_sched+0x7f4/0xa00
[ 2680.161745]  ? blk_mq_sched_mark_restart_hctx+0x80/0x80
[ 2680.161757]  ? lock_acquire+0x197/0x470
[ 2680.161767]  ? hctx_lock+0x7f/0x200
[ 2680.161782]  __blk_mq_sched_dispatch_requests+0x2d7/0x450
[ 2680.161793]  ? blk_mq_do_dispatch_sched+0xa00/0xa00
[ 2680.161811]  blk_mq_sched_dispatch_requests+0xfb/0x180
[ 2680.161823]  __blk_mq_run_hw_queue+0x12c/0x290
[ 2680.161834]  ? blk_mq_start_request+0x3f0/0x3f0
[ 2680.161847]  ? do_raw_spin_lock+0x121/0x260
[ 2680.161862]  __blk_mq_delay_run_hw_queue+0x4f1/0x550
[ 2680.161876]  blk_mq_run_hw_queue+0x170/0x2f0
[ 2680.161888]  ? blk_mq_delay_run_hw_queues+0x1a0/0x1a0
[ 2680.161905]  ? dd_dispatch_request+0x990/0x990
[ 2680.161915]  blk_mq_sched_insert_requests+0x247/0x720
[ 2680.161943]  blk_mq_flush_plug_list+0x415/0x6c0
[ 2680.180964]  ? blk_mq_insert_requests+0x450/0x450
[ 2680.180980]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2680.180997]  blk_flush_plug_list+0x26c/0x3c0
[ 2680.181008]  ? mark_held_locks+0x9e/0xe0
[ 2680.181032]  ? blk_insert_cloned_request+0x460/0x460
[ 2680.184160]  blk_finish_plug+0x50/0xa0
[ 2680.184171]  __iomap_dio_rw+0xca0/0x1110
[ 2680.184195]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2680.185922]  ? ext4_orphan_add+0x253/0x9e0
[ 2680.186383]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2680.186948]  ? ext4_empty_dir+0xae0/0xae0
[ 2680.187388]  ? jbd2__journal_start+0xf3/0x7e0
[ 2680.187903]  iomap_dio_rw+0x31/0x90
[ 2680.188300]  ext4_file_write_iter+0xb26/0x18e0
[ 2680.188843]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2680.189332]  ? kasan_save_stack+0x32/0x40
[ 2680.189807]  ? kasan_save_stack+0x1b/0x40
[ 2680.190291]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2680.190884]  ? iter_file_splice_write+0x16d/0xc30
[ 2680.191398]  ? direct_splice_actor+0x10f/0x170
[ 2680.191921]  ? splice_direct_to_actor+0x387/0x980
[ 2680.192476]  ? do_splice_direct+0x1c4/0x290
[ 2680.192982]  ? do_sendfile+0x553/0x1090
[ 2680.193407]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2680.193948]  do_iter_readv_writev+0x476/0x750
[ 2680.194436]  ? new_sync_write+0x660/0x660
[ 2680.194921]  ? selinux_file_permission+0x92/0x520
[ 2680.195454]  do_iter_write+0x191/0x670
[ 2680.195908]  ? trace_hardirqs_on+0x5b/0x180
[ 2680.196385]  vfs_iter_write+0x70/0xa0
[ 2680.196822]  iter_file_splice_write+0x762/0xc30
[ 2680.197331]  ? generic_splice_sendpage+0x140/0x140
[ 2680.197901]  ? avc_policy_seqno+0x9/0x70
[ 2680.198346]  ? selinux_file_permission+0x92/0x520
[ 2680.198923]  ? lockdep_init_map_type+0x2c7/0x780
[ 2680.199443]  ? generic_splice_sendpage+0x140/0x140
[ 2680.199962]  direct_splice_actor+0x10f/0x170
[ 2680.200427]  splice_direct_to_actor+0x387/0x980
[ 2680.200918]  ? pipe_to_sendpage+0x380/0x380
[ 2680.201391]  ? do_splice_to+0x160/0x160
[ 2680.201814]  ? security_file_permission+0x24e/0x570
[ 2680.202367]  do_splice_direct+0x1c4/0x290
[ 2680.202824]  ? splice_direct_to_actor+0x980/0x980
[ 2680.203347]  ? selinux_file_permission+0x92/0x520
[ 2680.203861]  ? security_file_permission+0x24e/0x570
[ 2680.204395]  do_sendfile+0x553/0x1090
[ 2680.204808]  ? do_pwritev+0x270/0x270
[ 2680.205214]  ? wait_for_completion_io+0x270/0x270
[ 2680.205733]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2680.206218]  ? vfs_write+0x354/0xa70
[ 2680.206624]  __x64_sys_sendfile64+0x1d1/0x210
[ 2680.207125]  ? __ia32_sys_sendfile+0x220/0x220
[ 2680.207611]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2680.208160]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2680.208707]  do_syscall_64+0x33/0x40
[ 2680.209102]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2680.209636] RIP: 0033:0x7fb754cd3b19
[ 2680.210032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2680.212014] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2680.212839] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2680.213594] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2680.214372] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2680.215125] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2680.215904] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:26:32 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x4c00000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2680.244834] udc-core: couldn't find an available UDC or it's busy
[ 2680.246670] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2680.288346] udc-core: couldn't find an available UDC or it's busy
[ 2680.289895] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2680.328487] FAULT_INJECTION: forcing a failure.
[ 2680.328487] name failslab, interval 1, probability 0, space 0, times 0
[ 2680.331354] CPU: 0 PID: 16082 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2680.332850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2680.334565] Call Trace:
[ 2680.335138]  dump_stack+0x107/0x167
[ 2680.335908]  should_fail.cold+0x5/0xa
[ 2680.336703]  ? create_object.isra.0+0x3a/0xa20
[ 2680.337653]  should_failslab+0x5/0x20
[ 2680.338441]  kmem_cache_alloc+0x5b/0x310
[ 2680.339291]  ? igrab+0xc0/0xc0
[ 2680.339961]  create_object.isra.0+0x3a/0xa20
[ 2680.340869]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2680.341916]  __kmalloc+0x16e/0x390
[ 2680.342665]  iter_file_splice_write+0x16d/0xc30
[ 2680.343618]  ? atime_needs_update+0x600/0x600
[ 2680.344559]  ? generic_splice_sendpage+0x140/0x140
[ 2680.345569]  ? pipe_to_user+0x170/0x170
[ 2680.346388]  ? _cond_resched+0x12/0x80
[ 2680.347212]  ? avc_policy_seqno+0x9/0x70
[ 2680.348051]  ? selinux_file_permission+0x92/0x520
[ 2680.349050]  ? lockdep_init_map_type+0x2c7/0x780
[ 2680.350034]  ? generic_splice_sendpage+0x140/0x140
[ 2680.351051]  direct_splice_actor+0x10f/0x170
[ 2680.351963]  splice_direct_to_actor+0x387/0x980
[ 2680.352924]  ? pipe_to_sendpage+0x380/0x380
[ 2680.353818]  ? do_splice_to+0x160/0x160
[ 2680.354635]  ? security_file_permission+0x24e/0x570
[ 2680.355687]  do_splice_direct+0x1c4/0x290
[ 2680.356542]  ? splice_direct_to_actor+0x980/0x980
[ 2680.357530]  ? selinux_file_permission+0x92/0x520
[ 2680.358527]  ? security_file_permission+0x24e/0x570
[ 2680.359585]  do_sendfile+0x553/0x1090
[ 2680.360383]  ? do_pwritev+0x270/0x270
[ 2680.361169]  ? wait_for_completion_io+0x270/0x270
[ 2680.362160]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2680.363125]  ? vfs_write+0x354/0xa70
[ 2680.363897]  __x64_sys_sendfile64+0x1d1/0x210
[ 2680.364824]  ? __ia32_sys_sendfile+0x220/0x220
[ 2680.365765]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2680.366860]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2680.367921]  do_syscall_64+0x33/0x40
[ 2680.368688]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2680.369742] RIP: 0033:0x7f0f9f161b19
[ 2680.370517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2680.374289] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2680.375901] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2680.377375] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2680.378875] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2680.380348] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2680.381833] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:26:49 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 27)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:26:49 executing program 0:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:26:49 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
bind$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "afb6a5", 0x14, 0x2c, 0x0, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[], {{0x2f00, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

18:26:49 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 86)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:26:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:26:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x540f, &(0x7f00000000c0))

18:26:49 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x6000000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:26:49 executing program 7:
setitimer(0x1, &(0x7f0000000100)={{}, {0x77359400}}, 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
setitimer(0x2, &(0x7f0000000080)={{r0, r1/1000+60000}}, &(0x7f00000000c0))
timer_create(0x3, &(0x7f0000000000)={0x0, 0x0, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000240))
timer_settime(0x0, 0x0, &(0x7f0000000940)={{}, {0x0, 0x989680}}, 0x0)
clone3(&(0x7f00000005c0)={0x40182300, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2696.924853] FAULT_INJECTION: forcing a failure.
[ 2696.924853] name failslab, interval 1, probability 0, space 0, times 0
[ 2696.926529] CPU: 1 PID: 16106 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2696.927501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2696.928636] Call Trace:
[ 2696.929015]  dump_stack+0x107/0x167
[ 2696.929534]  should_fail.cold+0x5/0xa
[ 2696.930074]  ? create_object.isra.0+0x3a/0xa20
[ 2696.930719]  should_failslab+0x5/0x20
[ 2696.930732]  kmem_cache_alloc+0x5b/0x310
[ 2696.930745]  ? igrab+0xc0/0xc0
[ 2696.930760]  create_object.isra.0+0x3a/0xa20
[ 2696.930773]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
18:26:49 executing program 2:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r1=>r0, 0x2, 0x0, 0x100})
r2 = syz_open_dev$vcsa(&(0x7f0000000140), 0xe11, 0x4000)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f00000000c0)={0x8, 'macvlan1\x00', {'wlan0\x00'}, 0xfff})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000240)={'wg2\x00'})
r3 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000002c0)='devices.allow\x00', 0x2, 0x0)
fsetxattr$security_capability(r3, &(0x7f0000000300), &(0x7f0000000340)=@v2={0x2000000, [{0x1, 0x5}, {0x6e1, 0x1}]}, 0x14, 0x3)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r2, {0x4}}, './file0\x00'})
sendmsg$nl_generic(r4, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000500)={0x1c, 0x15, 0x2, 0x70bd2c, 0x25dfdbfc, {0xf}, [@typed={0x8, 0x4, 0x0, 0x0, @fd}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x40000804)
sendfile(r1, r0, &(0x7f0000000380)=0x5, 0x694)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="640000001f00100027bd7000fedbdf25e0000001000000000000000000000000000004d20a006c00e000000200000000000000000000000001000000ff34000008001f00", @ANYRESOCT, @ANYBLOB="08000b00ff00000014000d00fc000000000000000000008000000001"], 0x64}, 0x1, 0x0, 0x0, 0x4000004}, 0x20040941)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$sock_SIOCBRDELBR(r6, 0x89a1, &(0x7f0000000180)='veth0\x00')

18:26:49 executing program 0:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2696.930789]  __kmalloc+0x16e/0x390
[ 2696.930807]  iter_file_splice_write+0x16d/0xc30
[ 2696.930818]  ? atime_needs_update+0x600/0x600
[ 2696.930842]  ? generic_splice_sendpage+0x140/0x140
[ 2696.930854]  ? pipe_to_user+0x170/0x170
[ 2696.930865]  ? _cond_resched+0x12/0x80
[ 2696.930887]  ? avc_policy_seqno+0x9/0x70
[ 2696.930898]  ? selinux_file_permission+0x92/0x520
[ 2696.930918]  ? lockdep_init_map_type+0x2c7/0x780
[ 2696.930934]  ? generic_splice_sendpage+0x140/0x140
[ 2696.930947]  direct_splice_actor+0x10f/0x170
[ 2696.930962]  splice_direct_to_actor+0x387/0x980
[ 2696.930979]  ? pipe_to_sendpage+0x380/0x380
[ 2696.930995]  ? do_splice_to+0x160/0x160
[ 2696.931008]  ? security_file_permission+0x24e/0x570
[ 2696.931028]  do_splice_direct+0x1c4/0x290
[ 2696.931041]  ? splice_direct_to_actor+0x980/0x980
[ 2696.931051]  ? selinux_file_permission+0x92/0x520
[ 2696.931069]  ? security_file_permission+0x24e/0x570
[ 2696.931090]  do_sendfile+0x553/0x1090
[ 2696.931111]  ? do_pwritev+0x270/0x270
[ 2696.931125]  ? wait_for_completion_io+0x270/0x270
[ 2696.931141]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2696.931151]  ? vfs_write+0x354/0xa70
[ 2696.931169]  __x64_sys_sendfile64+0x1d1/0x210
[ 2696.931184]  ? __ia32_sys_sendfile+0x220/0x220
[ 2696.931200]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2696.931214]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2696.931230]  do_syscall_64+0x33/0x40
[ 2696.931244]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2696.931253] RIP: 0033:0x7fb754cd3b19
[ 2696.931267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2696.931275] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2696.931289] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2696.931296] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2696.931304] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2696.931312] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2696.931320] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2696.970473] udc-core: couldn't find an available UDC or it's busy
[ 2696.970503] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2696.986952] udc-core: couldn't find an available UDC or it's busy
[ 2696.987156] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2697.051455] FAULT_INJECTION: forcing a failure.
[ 2697.051455] name failslab, interval 1, probability 0, space 0, times 0
[ 2697.051481] CPU: 0 PID: 16111 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2697.051494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2697.051501] Call Trace:
[ 2697.051532]  dump_stack+0x107/0x167
[ 2697.051559]  should_fail.cold+0x5/0xa
[ 2697.051586]  ? jbd2__journal_start+0x190/0x7e0
[ 2697.051611]  should_failslab+0x5/0x20
[ 2697.051631]  kmem_cache_alloc+0x5b/0x310
[ 2697.051663]  jbd2__journal_start+0x190/0x7e0
[ 2697.051694]  __ext4_journal_start_sb+0x214/0x390
[ 2697.051725]  ext4_dirty_inode+0xbc/0x130
[ 2697.051746]  ? ext4_setattr+0x2210/0x2210
[ 2697.051768]  __mark_inode_dirty+0x492/0xd40
[ 2697.051801]  generic_update_time+0x21c/0x370
[ 2697.051825]  file_update_time+0x43a/0x520
[ 2697.051846]  ? evict_inodes+0x420/0x420
[ 2697.051871]  ? down_write_killable+0x180/0x180
[ 2697.051898]  file_modified+0x7d/0xa0
[ 2697.051920]  ext4_file_write_iter+0x906/0x18e0
[ 2697.051964]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2697.051984]  ? kasan_save_stack+0x32/0x40
[ 2697.052004]  ? direct_splice_actor+0x10f/0x170
[ 2697.052021]  ? splice_direct_to_actor+0x387/0x980
[ 2697.052037]  ? do_splice_direct+0x1c4/0x290
[ 2697.052057]  ? do_sendfile+0x553/0x1090
[ 2697.052077]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2697.052108]  do_iter_readv_writev+0x476/0x750
[ 2697.052134]  ? new_sync_write+0x660/0x660
[ 2697.052153]  ? selinux_file_permission+0x92/0x520
[ 2697.052198]  do_iter_write+0x191/0x670
[ 2697.052228]  ? trace_hardirqs_on+0x5b/0x180
[ 2697.052259]  vfs_iter_write+0x70/0xa0
[ 2697.052293]  iter_file_splice_write+0x762/0xc30
[ 2697.111316]  ? generic_splice_sendpage+0x140/0x140
[ 2697.111348]  ? avc_policy_seqno+0x9/0x70
[ 2697.111366]  ? selinux_file_permission+0x92/0x520
[ 2697.111397]  ? lockdep_init_map_type+0x2c7/0x780
[ 2697.111424]  ? generic_splice_sendpage+0x140/0x140
[ 2697.137459]  direct_splice_actor+0x10f/0x170
[ 2697.137485]  splice_direct_to_actor+0x387/0x980
[ 2697.137512]  ? pipe_to_sendpage+0x380/0x380
[ 2697.137537]  ? do_splice_to+0x160/0x160
[ 2697.137558]  ? security_file_permission+0x24e/0x570
[ 2697.137590]  do_splice_direct+0x1c4/0x290
[ 2697.137610]  ? splice_direct_to_actor+0x980/0x980
[ 2697.137626]  ? selinux_file_permission+0x92/0x520
[ 2697.137654]  ? security_file_permission+0x24e/0x570
[ 2697.137688]  do_sendfile+0x553/0x1090
[ 2697.137722]  ? do_pwritev+0x270/0x270
[ 2697.137746]  ? wait_for_completion_io+0x270/0x270
[ 2697.137770]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2697.137787]  ? vfs_write+0x354/0xa70
[ 2697.137815]  __x64_sys_sendfile64+0x1d1/0x210
[ 2697.137839]  ? __ia32_sys_sendfile+0x220/0x220
[ 2697.137872]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2697.153815]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2697.153841]  do_syscall_64+0x33/0x40
[ 2697.153873]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2697.156854] RIP: 0033:0x7f0f9f161b19
18:26:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5410, &(0x7f00000000c0))

[ 2697.157655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
18:26:49 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 87)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:26:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2697.157666] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2697.157689] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2697.157702] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2697.157714] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2697.157726] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2697.157738] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
[ 2697.257284] FAULT_INJECTION: forcing a failure.
[ 2697.257284] name failslab, interval 1, probability 0, space 0, times 0
[ 2697.257309] CPU: 0 PID: 16126 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2697.257321] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2697.257328] Call Trace:
[ 2697.257356]  dump_stack+0x107/0x167
[ 2697.257381]  should_fail.cold+0x5/0xa
[ 2697.257406]  ? jbd2__journal_start+0x190/0x7e0
[ 2697.257428]  should_failslab+0x5/0x20
[ 2697.257447]  kmem_cache_alloc+0x5b/0x310
[ 2697.257475]  jbd2__journal_start+0x190/0x7e0
[ 2697.257504]  __ext4_journal_start_sb+0x214/0x390
[ 2697.257532]  ext4_dirty_inode+0xbc/0x130
[ 2697.257551]  ? ext4_setattr+0x2210/0x2210
[ 2697.257571]  __mark_inode_dirty+0x492/0xd40
[ 2697.257601]  generic_update_time+0x21c/0x370
[ 2697.257624]  file_update_time+0x43a/0x520
[ 2697.257642]  ? evict_inodes+0x420/0x420
[ 2697.257665]  ? down_write_killable+0x180/0x180
[ 2697.257690]  file_modified+0x7d/0xa0
[ 2697.257709]  ext4_file_write_iter+0x906/0x18e0
[ 2697.257745]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2697.257762]  ? kasan_save_stack+0x32/0x40
[ 2697.257779]  ? kasan_save_stack+0x1b/0x40
[ 2697.257797]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2697.257813]  ? iter_file_splice_write+0x16d/0xc30
[ 2697.257827]  ? direct_splice_actor+0x10f/0x170
[ 2697.257842]  ? splice_direct_to_actor+0x387/0x980
[ 2697.257856]  ? do_splice_direct+0x1c4/0x290
[ 2697.257873]  ? do_sendfile+0x553/0x1090
[ 2697.257891]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2697.257919]  do_iter_readv_writev+0x476/0x750
[ 2697.257948]  ? new_sync_write+0x660/0x660
[ 2697.257965]  ? selinux_file_permission+0x92/0x520
[ 2697.258005]  do_iter_write+0x191/0x670
[ 2697.258032]  ? trace_hardirqs_on+0x5b/0x180
[ 2697.258059]  vfs_iter_write+0x70/0xa0
[ 2697.258080]  iter_file_splice_write+0x762/0xc30
[ 2697.258117]  ? generic_splice_sendpage+0x140/0x140
[ 2697.258144]  ? avc_policy_seqno+0x9/0x70
[ 2697.258161]  ? selinux_file_permission+0x92/0x520
[ 2697.258189]  ? lockdep_init_map_type+0x2c7/0x780
[ 2697.258212]  ? generic_splice_sendpage+0x140/0x140
[ 2697.258233]  direct_splice_actor+0x10f/0x170
[ 2697.258255]  splice_direct_to_actor+0x387/0x980
[ 2697.258279]  ? pipe_to_sendpage+0x380/0x380
[ 2697.258302]  ? do_splice_to+0x160/0x160
[ 2697.258321]  ? security_file_permission+0x24e/0x570
[ 2697.258351]  do_splice_direct+0x1c4/0x290
[ 2697.258370]  ? splice_direct_to_actor+0x980/0x980
[ 2697.258385]  ? selinux_file_permission+0x92/0x520
[ 2697.258412]  ? security_file_permission+0x24e/0x570
[ 2697.258446]  do_sendfile+0x553/0x1090
[ 2697.258478]  ? do_pwritev+0x270/0x270
[ 2697.258499]  ? wait_for_completion_io+0x270/0x270
[ 2697.258522]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2697.258538]  ? vfs_write+0x354/0xa70
[ 2697.258565]  __x64_sys_sendfile64+0x1d1/0x210
[ 2697.258586]  ? __ia32_sys_sendfile+0x220/0x220
[ 2697.258610]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2697.258631]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2697.258656]  do_syscall_64+0x33/0x40
[ 2697.258677]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2697.258690] RIP: 0033:0x7fb754cd3b19
[ 2697.258712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2697.258723] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2697.258746] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2697.258757] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2697.258769] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2697.258781] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2697.258793] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
18:27:08 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 28)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:27:08 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYRES32=<r1=>r0, @ANYBLOB='\x00\x00\x00le0\x00'])
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000080)=0x40)
shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000)
fsetxattr$security_evm(r0, &(0x7f00000000c0), &(0x7f0000000100)=@v1={0x2, "9866b92c46870a329bb9e7de6cba5b9d88"}, 0x12, 0x3)
shmget(0x0, 0x4000, 0x80, &(0x7f0000ffc000/0x4000)=nil)
r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x43f2181722a8cac9)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802)
r4 = fcntl$dupfd(r3, 0x0, r2)
writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1)
ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f00000001c0)={0x0, 0x1000, &(0x7f0000000440)="a2100cb193c37a092cc53f9237a2f3b4f3b6f8cd99057bb8e0d83e17ed442a776c5f6d2da20baee8ea002a0810716e2a9133db78f880ffa6a603a0e8d868052b99e411ffbac2b8cfd15d99d6fb39fff8adc280599fa4cad82abb239ae8f9a82feca9b2687a3f455e0bb945f09c235468ae106ba7eb6cb50620d5bf7a651e9acaba2b7475e246e4e321a1c6a760993eb19e5794bd8dafee8b96af59447b6cc49883a913f6b9f3285142caed2aa578e68ddd5ced983c8b01a6c4b11bbb3fb51c472505a9d4df0a25985e77bfb51be3df058bee699e30315436ec8d2f477c19d92f62314e00d8d56792750071bc1ef08dcd5ead8e9d9bde47621ddad739b5ef1ffe10f19724db6b351a8fe7a2e9d50e1b17532aac889a51141367bbe4ea4af458b9d9aba663fe324a19bb03da0e64cac43bdcf17bf8af8fd993a582da886e7d81f48fc543450fb7a1af2c42cf1ceaf890e2b5a07b36422fb24d16cec727567b0c4bcbdbca98ce13f2043f1006d837905f18ace297a1fd8b8f0e13b9c6ea94958ceabb8abc29ae00125bb96571171825c1c6d6bdbf9e027c63f104c75d3962730ef91b54eb4e519fd5036b6459549d68cae5a718030b0fca9e65245d17139f41de5fd1a33ecd0d8b15b16be43f4478e324512d594f0728f86ab756d3c47d5aceb4a3ec96c0337ba8f65019738f775421e6d3c7677922f9cae24f33fbffe66a19714936878eb5975e214ba797c80bc023db2f97ce55ce5e6d71f56fe8c1f7d63b1b9cfeb2373bc1a193f981c590e62123dff65fd9cd392cf51554e53e284ac133bef61bcf742508d5dfe03ac9079ca9ed4e3a172fa7fdec0d2c3ca15338de95a0df33f3c1510ffabd39de135560ffc94a30ff01c4a8649d49cbd3dc7d27f41c6207cb77191039adac747a0f3ec1d75b02c01d1e9603b4a9ada7b85e5a4d497f1d515baae7bc7960bb4c354f9e9d5973626cbbbc9cae8af21c78ffbf8efe414d4598b68f59807e4a5528aa1e6a4eb436f3a98d6f3c4b2a39c29135862a5fa46312aede7ca2cf314d0cdb8b591c7b2516997f53fa80534ee369348cff72b80ae318b9697dda5e3315221b25192125a55e50a64fa52420cb419904e6fcc35307c1dd6b013540a335d98405cf6c2f9ddcdab540a78b6751676c15d77f87b10d0cfffb524228aed9a60f94888b5457fb473a4e001da4aa6d10034f38fdba1102bd8cc9eb5f2baf5383692227bb23443d0decb1b7335e9f4aeb600ed1a09af73fabf3210409aba827a796e76386d7b78c8cbee19de3bcf311bfc987401afce9c63054dcf64fe261dc126b4a5cd3fb2e763842100006fb261effa91309620416c5f4d57fad379787347c9de521b710c66636d1ad5e449926fb7e0ad9633c63e554e24ac3de64172b65f92a4c1d4b9bf74177ca25d9859b3b40d1aeb0fee053b656de9825939ba7e5cea5edb86d9ff059c65573aefe608280e66dfdb48740823135c5e63db077f3e4f12d56564b6fcb3c08cbebe52e985a8447cb2e433b5ca330adf8ab8f592c3d4c9bcc106266f0f31629612de6cf1aa9a1d0d370f2e3bc86543d6560ac9737a53260046e259be094821dc2e168f8822d817eb1f0db1797a3e53b1449084eb6e695da0b8cf40853662add61ced31863e279e2549cac3c49c500014dbf7dd8b9b331191a95a9677ae30386701da3160e7e8a5fc91f9786fe27340d0cd82144f3c84d3518bde2f11cb765158f3e057faffb3febd2c568b8fe3538ba8398d978d55da960a82b7f54727a25bcafe40ae0fcfb1ae00ea6d1057ca5e841c0951b80836d58b5a18dfae64d7ef110c94005e04f385570c1c266b82d2dee9a149b0b648eba02ff30c3265ea6aad1e56bb890ca1fb33e0f2befe88cd2992be16bdd9ac4ab3b2ab695d809cf94791f56c4922be253ad919a7f3544ef6663ab210d7ae74f4cf507d4e6f68c17fdddacfa9cb606fb3d5bc5fda19e730c98a3e88ade9f4c6a2ec3d0b75835f6aa83c741c116ca89b0d91d37fd472164748f057436dd5d20154012bc1ff1e9253791a0c0473c9cc09a7c6420411c6acea7218be5c11239080342bed10dc9eb4753aa436542fabd9055a292133896278f838c13f71008b1430f2b5723e682ba28ef90b5c1c4796536bc34c96f692a306b99505b4055118cdb59c35ed72d4c5903a501aa1c2183d096227ca98c585eb4965dea6444e5e549ed3d77d76cd20ea6e31dc8f394246cc1f950fdb4b581090a2662c18bfeb32f2f97f4e14b193839770d3327cadaa2ab90b71f5fe77cfc6446d6e9224bcffdeee925c68a387c368838a3e3dfbf2a0194bb7947d1cddb75d29a7ecc9a2e1271e0da667dee224df254f7eae3d7d4abb375c4cee4c5b20b9ce59b71534eb474396ca523b6ed26b9030daa875467a62ed564c32c3bbfe2e39090e3cce1bee5de26a7e834f73fafc425b04206ae3ca4a9a7a27b328b31c33d83fea402def68f7f798b020c463b376d1ec58a30e2eab6f158dedbc9a7f1a43a78832ef671b590b70f84f63df07066e28afed397e57c54e2b172b5a2e9d74dbea04de3df01cc35b828f9a51489eacadfa51640a6b3144f79d324eac89c38b7c33f98775fe15300ae17bd453acfada7155eac885e99dde647ae97390f94f0fc2b28de0b7c89d9100c9b38c7113a8db89c1d895f2c2468145b993df4ca75fedfa93df8eef0d011ce5a3e9ca0200702d4cd0c39f9f924766b137e2a71a486312d3178e13c83bc7c02b5169110887920ef69a074ee6b05cc6e0a39cb988776637fc139395299eeb813c73c504b137930c7b7c9861cfbcabe6adf7bddade3715305ad65c4244e9f51242e8746eee5604e017b95b9f44f86a53751954315b3e6647234b54029febfe75eecceb6fff10ab9aec42b61a866871176d7f4ab4491b95490a8fff5cc7ab9716215f4eb7bb8e4a7a95a888b94368a453278b2e689fab61cfe0275cca5c432c70b5f828568faf3f45c9e45fac067ef9714c4287cf4026f981d10408e1722aff51e3b593a7292d3f3c72a7781e2b17d34f531906bcfe98ee41911fbd220bc1688acfa41e22b31424c6bb2b7e4dc0cb8c4a5f2c60096f01ebcb756d6165f5bbaaf751e42adc26586d14b656befef70aa8657a561a6482fe8609cebcde64bd88d509b6bf922f15e11afdfb54971dc3579ade2145bf7ca93e5470b3d896405e895f8d1dcc055432bd294a0f7015dae072674fcd7a44c14d3aa13599e60312a489e3a1a71be3b66cba10c1e76425fc77e666616345191e33ab1ec9c3f540f2e8a246def9c7edce03cd16918b55841fb7ab65e1a09b76f1d06e9a8e42c582c8e732d19c4ab03b4f2d036ee8a1cc8fffc87aee8b8643d5e4f0feb982ed52274f0321c7f4f24491fbae472d57ba80f1426fd9e03d7cfae0edd5c6a21b168775b61e47eb3ec1e2a358059d458c4be273c79d3d06502801e2cabc86af90fab4a2e43bd5fb873bdb00c3b659ec5d216025f75f939a1f724b67bbd575683fc7343776c7849bb92f3de28b783bca1fdba742d127040a2ac35a9eded665df1581dae3861ad46470721b1fb18d295b9141776825d295f000c500731f9c95cffc519d93de06a84292a1269b4d58ef3997cf9134e9c2f140c45533d56c3dd2f20cd57af94f9b536792d52859ca45c6a78a465c6710af8498e4d6b792cc05190d6167e797c909accdb8da250a5547d54eb237ae64d7c1418646b5aef1867d934a823405cf1febc6f0cd5861a3c5059c89a5d5a36cada7844925743d08db07338027d7a9ddc8ee06f0019ccba29c6c204137c39f30c92eb29b02b9e04b4303776d25a398bcc00ab9adcc4850586269fbcc69855a50b963355747d9b3aa40eaafebbd512a41a8124ef57dd505e290e914a1dad74f52628eaad3eec225eae124568d5b2f88c94e928f8ec9ced17d41f2fb3c9a410018a451972ec3ace2248ec368e4d10eb2ed6de18d9d51e4efdc9977f9ba8643109c8ad8bf1dbcf8bb9b1e4beef90844adf5e272a80b0773f762eb5d58c0fd517c88cca7263198e894a4f3089a475b62dc9cb5a9ff01a6b0dc0bd5792e631cd17db2884b60ec8b331ef6579fe90ae8a84ab10951a4f33d6299656e408e5521e669f2470652285412617fd76014665d9b2696555fee6342ed51fb0ca82dd51b8d6bb9856453e890ad03bd830b06ae840d566827fbf05ee5c2f53f785662500ef23398754ae94534102e354961237eb9cbac9963eb2b3a499c6bbf48881807964e526cb182028c6268b5e3b8578b2fc8525cf560aa69e995d1758df07e79d2c94da350568ba8efb6cba1ac39c8929c374ee3f4548a4d2e5a9eada5dae8afb6163134ba3cf17b9d0f9d5cabb20ed02971ba8a87541f74684cfaeb47135a05fed4af877f2cf67cc2de5202d649512c7e52c8450293911ba6a3a40856221c643b98d2db027f5baa0fc6b723fb987b492ab4aa755bb9208e038db1ce6c4f46c980da79dd34740aa269586137f59331329b3a9cefb99daa7de4fd8c6c3bb5ae07aebcb9f23745d9e8d339fa801e0025a58f3cf32534b332320cb2c5b769055849c8e622623e297982470494b48bbd0b90f48404c153844c3bb6ad95b3e33ae5eac9445d385a30f82440ae769546b68c184fdf301c1b5ab87214192e1b525fe898c2e36793161413356ca3861cc89167db9f8651fa635b103975280724140625950c21819fad5799d195081e48ee907ac46d174082ecdc7be6f962158fed94c6b0bb00c10ced160ee3633a72e5cc7b79d7612e6d78d611bc754681bfdf54c9348dc6bf52e0e9543abfef4395c887199b01353a5bc038f3fcf90bf4b693bd739225cf7dd536f034784e4afc495ceca82e3fd1c5787fcfa71c15a9ed4fd42342ec022ffcb725ac50c3dc06dd92315f444ff563019956b7e144eb9f8415f655972e88b260baa5ad70242ebd4fd1bc0ef8fe63226120e37b9fce6cbfa99dfa12cc4b60c2eaee070859d6749fc91f059b535f5c48646af38daa2f5b773e0071a1eed45123cd4af9a18fbe9112c11ceb9e5d66872cd049dfbb0214722b2f98b5951f03c7ea91c9fa7fbe44656d85464c7d7529a44ec7ce1b038872d41b2173cd8176a8726aab69bd346edef85952280948451ff6790d5db67d977ff87934aff0d63ae55c90bec1bddf61ba9c3c12335c091d5bd0b505a3474563a1691a8de13b936fb94127766f15fd3a7f89f899416245cc53bba77a086c9b1fa8e08b35e7806036be2d04815ce7acb623dee3fbf0161d747f5a54e831b9c94d7c6a8faae5e8537ba88b8e45dc9bc6038b44b246a8119ec0d0594d5cd6166eddfe37bc7f0e4e0b45c27f3dac3e5557763237b520e1838d540ed69b6fca9794b2d7cb721c255acb496afe08f266a2396793029561be1e71c794639e16f27fbcd3b1cb53d87885f0f6a72f7d5f4277f924845b76bfe42462a0aff85bff531d7ebbe9fb02f3493987536ff2e89bf0285bfbacb37291c6ca840d8ef8519ab77507ecd0f301877d7a6920ede2e9e0a063da90ccec9bff5168924e1684e2f2a93508ffab3fc4433647622ea267f236a5409eef45467128c6dfdc1e34266867f94be2792168fc1e293ef71c8d0ebc6886f572a9f30c1afe1ba40bda1e2f4b620a32f9593b6a50a3db44df51f23619a7d92b1df40d5bae15736cf1fe7cddb5ea06159fb2fc873968ea658520e69fc71293d64ae71c3923f5cbfae63985a444b62bfe0c738bdc2504f504d679562ec3528576f8589ede99045d849f1b3ece0f92491e838e432286ab6813a5a04046c45"})

18:27:08 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5412, &(0x7f00000000c0))

18:27:08 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 88)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:27:08 executing program 0:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:27:08 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x6800000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:27:08 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:27:08 executing program 2:
dup(0xffffffffffffffff)
setns(0xffffffffffffffff, 0x0)
ioctl$TIOCGPTLCK(0xffffffffffffffff, 0x80045439, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000180)={0x1, 0x5, 0x1000, 0x59, &(0x7f0000000080)="2fabb56e60ccfca5f528d63a844f41a0165d036677f75871ffb66d18d89c47b3be4293e1d56e57661c7dbf75ddc84c8fa325df5d9b0a42773f0cbb516bea151c068ccc6261ffa888afebe06295d53d7ca59679c7d15b58d42f", 0x47, 0x0, &(0x7f0000000100)="1d543ad656942b604044b4db9746e98af989a8681882cff17e00a26eca628d0b4fed30a3c3b42607487459246fc3ab07da257fb3f269dfeb35fe6b9c83c65fe9d55768b33e0fbd"})
mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='devpts\x00', 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f00000005c0), 0x0, 0x0, 0x0, 0x0, 0x20, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x20, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
splice(r1, &(0x7f0000000200)=0x5, r3, &(0x7f0000000240)=0x1, 0x6588, 0x0)

18:27:08 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2715.611846] FAULT_INJECTION: forcing a failure.
[ 2715.611846] name failslab, interval 1, probability 0, space 0, times 0
[ 2715.614564] CPU: 0 PID: 16149 Comm: syz-executor.3 Not tainted 5.10.178 #1
[ 2715.616015] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2715.617767] Call Trace:
[ 2715.618323]  dump_stack+0x107/0x167
[ 2715.619098]  should_fail.cold+0x5/0xa
[ 2715.619915]  ? create_object.isra.0+0x3a/0xa20
[ 2715.620860]  should_failslab+0x5/0x20
[ 2715.621656]  kmem_cache_alloc+0x5b/0x310
[ 2715.622502]  ? mark_held_locks+0x9e/0xe0
[ 2715.623354]  create_object.isra.0+0x3a/0xa20
[ 2715.624264]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2715.625317]  kmem_cache_alloc+0x159/0x310
[ 2715.626180]  ? mempool_free_pages+0x20/0x20
[ 2715.627071]  mempool_alloc+0x148/0x360
[ 2715.627891]  ? mempool_resize+0x7d0/0x7d0
[ 2715.628749]  ? usleep_range+0x170/0x170
[ 2715.629577]  ? lock_acquire+0x197/0x470
[ 2715.630403]  ? find_held_lock+0x2c/0x110
[ 2715.631273]  ? ext4_fc_track_range+0x280/0x280
[ 2715.632228]  bio_alloc_bioset+0x36e/0x600
[ 2715.633094]  ? __iomap_dio_rw+0x8ff/0x1110
[ 2715.633973]  ? bvec_alloc+0x2f0/0x2f0
[ 2715.634771]  ? errseq_check+0x4b/0x90
[ 2715.635581]  blkdev_issue_flush+0x20/0x1a0
[ 2715.636467]  ext4_sync_file+0x5f5/0xde0
[ 2715.637294]  ? ext4_getfsmap+0x990/0x990
[ 2715.638139]  vfs_fsync_range+0x13d/0x230
[ 2715.638989]  iomap_dio_complete+0x5ff/0x780
[ 2715.639918]  iomap_dio_rw+0x63/0x90
[ 2715.640676]  ext4_file_write_iter+0xb26/0x18e0
[ 2715.641646]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2715.642590]  ? kasan_save_stack+0x32/0x40
[ 2715.643465]  ? kasan_save_stack+0x1b/0x40
[ 2715.644327]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2715.645380]  ? iter_file_splice_write+0x16d/0xc30
[ 2715.646377]  ? direct_splice_actor+0x10f/0x170
[ 2715.647341]  ? splice_direct_to_actor+0x387/0x980
[ 2715.648337]  ? do_splice_direct+0x1c4/0x290
[ 2715.649239]  ? do_sendfile+0x553/0x1090
[ 2715.650066]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2715.651048]  do_iter_readv_writev+0x476/0x750
[ 2715.651992]  ? new_sync_write+0x660/0x660
[ 2715.652855]  ? selinux_file_permission+0x92/0x520
[ 2715.653878]  do_iter_write+0x191/0x670
[ 2715.654708]  ? trace_hardirqs_on+0x5b/0x180
[ 2715.654735]  vfs_iter_write+0x70/0xa0
18:27:08 executing program 5:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2715.654757]  iter_file_splice_write+0x762/0xc30
[ 2715.654794]  ? generic_splice_sendpage+0x140/0x140
[ 2715.654821]  ? avc_policy_seqno+0x9/0x70
[ 2715.654837]  ? selinux_file_permission+0x92/0x520
[ 2715.654863]  ? lockdep_init_map_type+0x2c7/0x780
[ 2715.654887]  ? generic_splice_sendpage+0x140/0x140
[ 2715.654907]  direct_splice_actor+0x10f/0x170
[ 2715.654929]  splice_direct_to_actor+0x387/0x980
18:27:08 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5413, &(0x7f00000000c0))

18:27:08 executing program 7:
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/unix\x00')
readv(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0xfffd}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f00000001c0)="201900d07642da921fd6ff11430c6c6b8c0ac5060048065e24ecf3bb8ce311427ac446646b66cda5c391a00fbccd665cde721d7307fdcb6b969016edfcfc7632c1f3819bab23a38c40d2318820e65ef0262cc5dd8b5bc96f21bc84022b67785d6741984f29f705f842bd5a0870925cdb5d80eb689f80ea6ff07d3876a48c6519dad01907103c1df3928cb15b27437eb6e994a4bed70de633978e40", 0x9b, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000180)=ANY=[])
pkey_mprotect(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff)

[ 2715.654954]  ? pipe_to_sendpage+0x380/0x380
[ 2715.654977]  ? do_splice_to+0x160/0x160
[ 2715.654997]  ? security_file_permission+0x24e/0x570
[ 2715.655027]  do_splice_direct+0x1c4/0x290
18:27:08 executing program 2:
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x900020, &(0x7f0000000900)=ANY=[])
setfsgid(0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x10, 0x1)
mkdirat(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001)
mkdirat(r1, &(0x7f00000000c0)='\x00', 0x42)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x1, 0x40)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r3, 0x8983, &(0x7f00000001c0)={0x6, 'ip6gretap0\x00', {0xe6}, 0x200})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x13, 0x80, 0x3f, 0x77, 0x0, 0x9, 0x4000, 0x9, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x1, @perf_config_ext={0x4, 0x7}, 0x8062, 0xe13, 0x0, 0x5, 0x2, 0x5, 0x5, 0x0, 0xffff7fff, 0x0, 0x3}, 0xffffffffffffffff, 0x4, r0, 0x2)
r4 = open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0)
mkdirat(r4, &(0x7f0000000200)='./file0\x00', 0x86)

[ 2715.655046]  ? splice_direct_to_actor+0x980/0x980
[ 2715.655061]  ? selinux_file_permission+0x92/0x520
[ 2715.655087]  ? security_file_permission+0x24e/0x570
[ 2715.655138]  do_sendfile+0x553/0x1090
[ 2715.655170]  ? do_pwritev+0x270/0x270
[ 2715.655191]  ? wait_for_completion_io+0x270/0x270
[ 2715.655213]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2715.655229]  ? vfs_write+0x354/0xa70
[ 2715.655256]  __x64_sys_sendfile64+0x1d1/0x210
[ 2715.655277]  ? __ia32_sys_sendfile+0x220/0x220
[ 2715.655301]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2715.655322]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2715.655347]  do_syscall_64+0x33/0x40
[ 2715.655367]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2715.655380] RIP: 0033:0x7fb754cd3b19
[ 2715.655402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2715.655413] RSP: 002b:00007fb752249188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2715.655435] RAX: ffffffffffffffda RBX: 00007fb754de6f60 RCX: 00007fb754cd3b19
[ 2715.655446] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2715.655458] RBP: 00007fb7522491d0 R08: 0000000000000000 R09: 0000000000000000
[ 2715.655470] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2715.655481] R13: 00007ffefe288cbf R14: 00007fb752249300 R15: 0000000000022000
[ 2715.709290] udc-core: couldn't find an available UDC or it's busy
[ 2715.709314] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2715.715694] udc-core: couldn't find an available UDC or it's busy
[ 2715.715720] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2715.764285] FAULT_INJECTION: forcing a failure.
[ 2715.764285] name failslab, interval 1, probability 0, space 0, times 0
[ 2715.799197] CPU: 1 PID: 16158 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2715.799217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2715.802375] Call Trace:
[ 2715.802403]  dump_stack+0x107/0x167
[ 2715.802427]  should_fail.cold+0x5/0xa
[ 2715.802449]  ? create_object.isra.0+0x3a/0xa20
[ 2715.802470]  should_failslab+0x5/0x20
[ 2715.802488]  kmem_cache_alloc+0x5b/0x310
[ 2715.802513]  create_object.isra.0+0x3a/0xa20
[ 2715.802532]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2715.802557]  kmem_cache_alloc+0x159/0x310
[ 2715.802586]  jbd2__journal_start+0x190/0x7e0
[ 2715.802614]  __ext4_journal_start_sb+0x214/0x390
[ 2715.802642]  ext4_dirty_inode+0xbc/0x130
[ 2715.802662]  ? ext4_setattr+0x2210/0x2210
[ 2715.802680]  __mark_inode_dirty+0x492/0xd40
[ 2715.802710]  generic_update_time+0x21c/0x370
[ 2715.802732]  file_update_time+0x43a/0x520
[ 2715.802751]  ? evict_inodes+0x420/0x420
[ 2715.802772]  ? down_write_killable+0x180/0x180
[ 2715.802797]  file_modified+0x7d/0xa0
[ 2715.802816]  ext4_file_write_iter+0x906/0x18e0
[ 2715.802852]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2715.802869]  ? kasan_save_stack+0x32/0x40
[ 2715.802887]  ? direct_splice_actor+0x10f/0x170
[ 2715.802903]  ? splice_direct_to_actor+0x387/0x980
[ 2715.802917]  ? do_splice_direct+0x1c4/0x290
[ 2715.802934]  ? do_sendfile+0x553/0x1090
[ 2715.802951]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2715.802980]  do_iter_readv_writev+0x476/0x750
[ 2715.803003]  ? new_sync_write+0x660/0x660
[ 2715.803019]  ? selinux_file_permission+0x92/0x520
[ 2715.803060]  do_iter_write+0x191/0x670
[ 2715.803093]  ? trace_hardirqs_on+0x5b/0x180
[ 2715.830301]  vfs_iter_write+0x70/0xa0
[ 2715.830325]  iter_file_splice_write+0x762/0xc30
[ 2715.832080]  ? generic_splice_sendpage+0x140/0x140
[ 2715.832107]  ? avc_policy_seqno+0x9/0x70
[ 2715.832131]  ? selinux_file_permission+0x92/0x520
[ 2715.834943]  ? lockdep_init_map_type+0x2c7/0x780
[ 2715.835928]  ? generic_splice_sendpage+0x140/0x140
[ 2715.836939]  direct_splice_actor+0x10f/0x170
[ 2715.837845]  splice_direct_to_actor+0x387/0x980
[ 2715.838801]  ? pipe_to_sendpage+0x380/0x380
[ 2715.839699]  ? do_splice_to+0x160/0x160
[ 2715.840513]  ? security_file_permission+0x24e/0x570
[ 2715.841539]  do_splice_direct+0x1c4/0x290
[ 2715.842384]  ? splice_direct_to_actor+0x980/0x980
[ 2715.843381]  ? selinux_file_permission+0x92/0x520
[ 2715.844373]  ? security_file_permission+0x24e/0x570
[ 2715.845414]  do_sendfile+0x553/0x1090
[ 2715.846207]  ? do_pwritev+0x270/0x270
[ 2715.847000]  ? wait_for_completion_io+0x270/0x270
[ 2715.848008]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2715.848954]  ? vfs_write+0x354/0xa70
[ 2715.849730]  __x64_sys_sendfile64+0x1d1/0x210
[ 2715.850647]  ? __ia32_sys_sendfile+0x220/0x220
[ 2715.851596]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2715.852670]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2715.853747]  do_syscall_64+0x33/0x40
[ 2715.854510]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2715.855569] RIP: 0033:0x7f0f9f161b19
[ 2715.856329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2715.860092] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2715.861638] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2715.863074] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2715.864517] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2715.865950] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2715.867403] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:27:08 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x6c00000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:27:08 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 89)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2715.935907] EXT4-fs error (device loop7): ext4_orphan_get:1413: comm syz-executor.7: bad orphan inode 301979167
[ 2715.939573] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue
18:27:26 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5414, &(0x7f00000000c0))

18:27:26 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:27:26 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 29)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:27:26 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:27:26 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x7400000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:27:26 executing program 7:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f0000000080)={{r1}, 0x2, &(0x7f0000000040)=[0x3, 0x6], 0x8, 0x1, [0x4, 0x5, 0x4, 0x7fff]})
sendmsg$802154_raw(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {0x0, 0x0, 0x1000000000c00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fdef4655fdef4655f000000000000040020", 0x1d, 0x1480}, {&(0x7f0000012000)="504d4d00504d4dff", 0x8, 0x10000}], 0x0, &(0x7f0000012b00)=ANY=[])
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
write$binfmt_aout(r2, &(0x7f00000002c0)={{0x10b, 0x9, 0x2f, 0x15d, 0x72, 0x10001, 0x292, 0x5}, "3e988d5a5d6a9cb8f75a193f156390c6627c9b47b4001863089682222203770fba834f01b50060099879ccdbc3096ce31e137fb3d04d31edff76c8ab0a17d965f0e5a44b203109913b078288b8bfe503a14430788ac888467cc6717cd3f0d5fe9e4fe461735d2dd6965d08b35ec2ebc208f3b682314dc1498c06cf3fe0f43759d7f08951d4fb7abaebceff30ce25db11294a44d746b70c149372", ['\x00', '\x00', '\x00']}, 0x3ba)

18:27:26 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f0000000000))
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000100)=0x5, 0x9)
readv(r0, &(0x7f0000000200)=[{&(0x7f0000000140)=""/161, 0xa1}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2)
setsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@dev, @in6=@private1}}, {{@in6=@private2}}}, 0xe8)

18:27:26 executing program 5:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:27:26 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5415, &(0x7f00000000c0))

[ 2734.127429] udc-core: couldn't find an available UDC or it's busy
[ 2734.129196] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2734.141521] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue
18:27:26 executing program 5:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:27:26 executing program 2:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$AUDIT_MAKE_EQUIV(0xffffffffffffffff, 0x0, 0x450745c438580058)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r1=>r0, 0x2, 0x0, 0x100})
r2 = syz_open_dev$vcsa(&(0x7f0000000140), 0xe11, 0x4000)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f00000000c0)={0x8, 'macvlan1\x00', {'wlan0\x00'}, 0xfff})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000240)={'wg2\x00'})
r3 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000002c0)='devices.allow\x00', 0x2, 0x0)
fsetxattr$security_capability(r3, &(0x7f0000000300), &(0x7f0000000340)=@v2={0x2000000, [{0x1, 0x5}, {0x6e1, 0x1}]}, 0x14, 0x3)
sendfile(r1, r0, &(0x7f0000000380)=0x5, 0x694)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="640000001f00100027bd7000fedbdf25e0000001000000000000000000000000000004d20a006c00e000000200000000000000000000000001000000ff34000008001f00", @ANYRES32=0x0, @ANYBLOB="08000b00ff00000014000d00fc000000000000000000008000000001"], 0x64}, 0x1, 0x0, 0x0, 0x4000004}, 0x20040941)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000003c0)={0x28, 0x1d, 0x200, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@mcast1}]}, 0x28}, 0x1, 0x0, 0x0, 0x44000}, 0x0)

18:27:26 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2734.189609] ext4 filesystem being mounted at /syzkaller-testdir577448655/syzkaller.eSXEej/8/file0 supports timestamps until 2038 (0x7fffffff)
18:27:26 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x7a00000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2734.234482] udc-core: couldn't find an available UDC or it's busy
[ 2734.236351] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:27:26 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5416, &(0x7f00000000c0))

18:27:26 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000002)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2734.339450] FAULT_INJECTION: forcing a failure.
[ 2734.339450] name failslab, interval 1, probability 0, space 0, times 0
[ 2734.342282] CPU: 1 PID: 16211 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2734.343787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2734.345567] Call Trace:
[ 2734.346145]  dump_stack+0x107/0x167
[ 2734.346944]  should_fail.cold+0x5/0xa
[ 2734.347794]  ? jbd2__journal_start+0x190/0x7e0
[ 2734.348785]  should_failslab+0x5/0x20
[ 2734.349607]  kmem_cache_alloc+0x5b/0x310
[ 2734.350492]  jbd2__journal_start+0x190/0x7e0
[ 2734.351466]  __ext4_journal_start_sb+0x214/0x390
[ 2734.352506]  ext4_dirty_inode+0xbc/0x130
[ 2734.353384]  ? ext4_setattr+0x2210/0x2210
[ 2734.354282]  __mark_inode_dirty+0x492/0xd40
[ 2734.355229]  generic_update_time+0x21c/0x370
[ 2734.356199]  file_update_time+0x43a/0x520
[ 2734.357097]  ? evict_inodes+0x420/0x420
[ 2734.357963]  ? down_write_killable+0x180/0x180
[ 2734.358957]  file_modified+0x7d/0xa0
[ 2734.359799]  ext4_file_write_iter+0x906/0x18e0
[ 2734.360804]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2734.361781]  ? kasan_save_stack+0x32/0x40
[ 2734.362682]  ? direct_splice_actor+0x10f/0x170
[ 2734.363671]  ? splice_direct_to_actor+0x387/0x980
[ 2734.364713]  ? do_splice_direct+0x1c4/0x290
[ 2734.365642]  ? do_sendfile+0x553/0x1090
[ 2734.366503]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2734.367527]  do_iter_readv_writev+0x476/0x750
[ 2734.368501]  ? new_sync_write+0x660/0x660
[ 2734.369404]  ? selinux_file_permission+0x92/0x520
[ 2734.370462]  do_iter_write+0x191/0x670
[ 2734.371311]  ? trace_hardirqs_on+0x5b/0x180
[ 2734.372258]  vfs_iter_write+0x70/0xa0
[ 2734.373093]  iter_file_splice_write+0x762/0xc30
[ 2734.374107]  ? generic_splice_sendpage+0x140/0x140
[ 2734.375186]  ? avc_policy_seqno+0x9/0x70
[ 2734.376069]  ? selinux_file_permission+0x92/0x520
[ 2734.377136]  ? lockdep_init_map_type+0x2c7/0x780
[ 2734.378178]  ? generic_splice_sendpage+0x140/0x140
[ 2734.379239]  direct_splice_actor+0x10f/0x170
[ 2734.380204]  splice_direct_to_actor+0x387/0x980
[ 2734.381221]  ? pipe_to_sendpage+0x380/0x380
[ 2734.382160]  ? do_splice_to+0x160/0x160
[ 2734.383026]  ? security_file_permission+0x24e/0x570
[ 2734.384132]  do_splice_direct+0x1c4/0x290
[ 2734.385029]  ? splice_direct_to_actor+0x980/0x980
[ 2734.386076]  ? selinux_file_permission+0x92/0x520
[ 2734.387132]  ? security_file_permission+0x24e/0x570
[ 2734.388239]  do_sendfile+0x553/0x1090
[ 2734.389091]  ? do_pwritev+0x270/0x270
[ 2734.389923]  ? wait_for_completion_io+0x270/0x270
[ 2734.390975]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2734.391995]  ? vfs_write+0x354/0xa70
[ 2734.392834]  __x64_sys_sendfile64+0x1d1/0x210
[ 2734.393854]  ? __ia32_sys_sendfile+0x220/0x220
[ 2734.394885]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2734.396091]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2734.397255]  do_syscall_64+0x33/0x40
[ 2734.398099]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2734.399250] RIP: 0033:0x7f0f9f161b19
[ 2734.400102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2734.403835] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2734.405375] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2734.406821] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2734.408273] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2734.409735] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2734.411225] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:27:43 executing program 7:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
utimensat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', &(0x7f0000000100)={{}, {0x0, 0x2710}}, 0x100)
setresuid(0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x2)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/keys\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x6c2fb2b8)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/pm_debug_messages', 0x22902, 0x0)
sendfile(r4, r2, &(0x7f00000000c0), 0x3)
sendmsg$inet(r1, &(0x7f0000000000)={&(0x7f0000000180)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0, 0x0, &(0x7f00000017c0)=[@ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x14, 0xd8, 0x2, 0x0, [{}, {@initdev={0xac, 0x1e, 0x0, 0x0}}]}]}}}], 0x28}, 0x0)

18:27:43 executing program 0:
perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:27:43 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 30)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:27:43 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x7f00000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:27:43 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5418, &(0x7f00000000c0))

18:27:43 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="6fcf5258b8dbfafc7c2255bed237c8bb8f562fa2ee3c4448d007819a3bd3933c6019809d16319ef16600372ee119b2d2bff0838de7af8f2672a4cfdf0718c98c034d4e35e08df05a1f3980de1754e3eb0008000046dde200"/102, @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f0070687931000000000c0005007fffffff000000000500200000000000"], 0x34}}, 0x0)

18:27:43 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000003)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:27:43 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

18:27:43 executing program 0:
perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:27:43 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x9518000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:27:43 executing program 7:
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x4, 0x6, &(0x7f0000000440)=[{&(0x7f00000000c0)="61ac28be0e72dae0579304bd8bfc1a773c9bb5ff117accac2b18d31f2de9c846d43db5", 0x23, 0x65}, {&(0x7f0000000100)="0bbb96bd293aab02ef7d3dd15d0d8d1d711b79319b7ea3af0cc7c2fd7904244ef3ca088dd95ded0fef8f37aeb9fd314eb6326dbdf564ce6a30787b920494b78ae2b921f5abf2180cbbdb265ba3f996de2fc8ec3183398cea74024bd615cd8b816a603e5bd0ee68540b4bd6fdf4f69b1a0ee193829aeedf8ea3d2a2efb11fe77ec14ee1ec723e2bc10eb1e5518c6883f7f91cf8f628dbed3a7a8958a38aad85559a7274961b791cb72c971179fff5f8ac384dfbaef38cf85c8b9f3d086b52496082465b4cf74270a7c5", 0xc9, 0x100}, {&(0x7f0000000200)="499389de39d705604eca6621fecc5458fce81ecb53e01ef2270370ed3901cd4869fcf88e7abc6882321b136f423efd980463856dca10095e85a11c03cdacde6f4c5d1fa5d5f2b7f096a1d9f490af3f749289eb1fcea5640d27cb95f3", 0x5c, 0x3cb90fc1}, {&(0x7f0000000280)="3dc124ad30c5dc58cd0bd2aedb081a8b62820cce0c174043a29f2596f022909683636dd76a6b13b11f9eeacfd21eee5dd22f226c73d63fdf2d4c0064c4a4ea85590d1f8afac5dbfa0219ec5a8b7730639e4c5ddb7f1e184ce62af216bc820308c6bdf9e4fe2a3867f8e9c8835ab91167abd7865b53d33f5342664f951a08a10fffe1480fb0cd7eb604cea8f47c8ca1f23b41e9d2c492a44bdfaebfd7ff868e54418bf73a13619c51ecf081e771109e87b74b9fc4bdf2f425f270f1481c6b3a2f586ff73e97046f8ccde1018d9a8a2eebe7cbd4f830a95cead3eb3163c4d399d1", 0xe0, 0x1}, {&(0x7f0000000380)="b7e510a04e4f4b626a18", 0xa, 0x6}, {&(0x7f00000003c0)="ff98f33514dddc173fed7f5f99b15cfc2d73738761ebed1bace9ec3d804ff3c62114e0106387fc0474872ac03bd523fcda60c96041f2120dd455c17a6588dd2f2a51396972812ab51fcfa926", 0x4c, 0x4}], 0x0, &(0x7f0000000600)={[{@nr_inodes}, {@huge_advise}, {@nr_blocks={'nr_blocks', 0x3d, [0x74, 0x25, 0x37, 0x57, 0x70, 0x33]}}, {@uid={'uid', 0x3d, 0xee00}}, {@huge_never}, {@huge_advise}, {@nr_inodes={'nr_inodes', 0x3d, [0x32, 0x10281153eb6fede0, 0x67]}}, {@nr_inodes={'nr_inodes', 0x3d, [0x33, 0x6b, 0x35, 0x37, 0x70, 0x2d, 0x34, 0x65]}}, {@gid}], [{@func={'func', 0x3d, 'FILE_CHECK'}}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}, {@smackfsdef={'smackfsdef', 0x3d, ':'}}, {@dont_appraise}, {@obj_user={'obj_user', 0x3d, '\x99k-}+'}}, {@uid_eq}]})
r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x866e2, 0x10)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x660c)

[ 2750.880553] udc-core: couldn't find an available UDC or it's busy
[ 2750.882255] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:27:43 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='proc\x00', 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
getdents(r0, &(0x7f00000001c0)=""/173, 0xad)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000000), 0x8, 0x8000)
execveat(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000580)=[&(0x7f0000000300)='/\x00', &(0x7f0000000340)='/proc/vmallocinfo\x00', &(0x7f0000000380)='-\x00', &(0x7f00000003c0)='proc\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='\xff\xff\xff\xff\xff\xff', &(0x7f0000000480)='-![\x00', &(0x7f00000004c0)='}\x00', &(0x7f0000000500)='\xff\xff\xff\xff\xff\xff', &(0x7f0000000540)=')\x00'], &(0x7f0000000800)=[&(0x7f0000000600)='proc\x00', &(0x7f0000000640)='\x00', &(0x7f0000000680)='/proc/sys/net/ipv4/tcp_wmem\x00', &(0x7f00000006c0)='%\x00', &(0x7f0000000700)='/proc/sys/net/ipv4/tcp_wmem\x00', &(0x7f0000000740)='*}\x19\x00', &(0x7f0000000780)='^\x00', &(0x7f00000007c0)='/proc/vmallocinfo\x00'], 0x800)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r1, &(0x7f0000000040)=0xb, 0x80000001)
bind(r1, &(0x7f0000000280)=@llc={0x1a, 0x118, 0x3, 0xa9, 0x4, 0x0, @broadcast}, 0x80)

18:27:43 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541b, &(0x7f00000000c0))

18:27:43 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

[ 2750.963924] udc-core: couldn't find an available UDC or it's busy
[ 2750.965534] tmpfs: Bad value for 'nr_inodes'
[ 2750.965567] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2751.002639] tmpfs: Bad value for 'nr_inodes'
18:27:43 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000004)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2751.137478] FAULT_INJECTION: forcing a failure.
[ 2751.137478] name failslab, interval 1, probability 0, space 0, times 0
[ 2751.140006] CPU: 1 PID: 16262 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2751.141460] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2751.143215] Call Trace:
[ 2751.143792]  dump_stack+0x107/0x167
[ 2751.144563]  should_fail.cold+0x5/0xa
[ 2751.145346]  ? create_object.isra.0+0x3a/0xa20
[ 2751.146307]  should_failslab+0x5/0x20
[ 2751.147093]  kmem_cache_alloc+0x5b/0x310
[ 2751.147967]  create_object.isra.0+0x3a/0xa20
[ 2751.148863]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2751.149939]  kmem_cache_alloc+0x159/0x310
[ 2751.150812]  jbd2__journal_start+0x190/0x7e0
[ 2751.151790]  __ext4_journal_start_sb+0x214/0x390
[ 2751.152835]  ext4_dirty_inode+0xbc/0x130
[ 2751.153697]  ? ext4_setattr+0x2210/0x2210
[ 2751.154575]  __mark_inode_dirty+0x492/0xd40
[ 2751.155507]  generic_update_time+0x21c/0x370
[ 2751.156455]  file_update_time+0x43a/0x520
[ 2751.157329]  ? evict_inodes+0x420/0x420
[ 2751.158193]  ? down_write_killable+0x180/0x180
[ 2751.159151]  file_modified+0x7d/0xa0
[ 2751.159947]  ext4_file_write_iter+0x906/0x18e0
[ 2751.160929]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2751.161893]  ? kasan_save_stack+0x32/0x40
[ 2751.162765]  ? direct_splice_actor+0x10f/0x170
[ 2751.163732]  ? splice_direct_to_actor+0x387/0x980
[ 2751.164735]  ? do_splice_direct+0x1c4/0x290
[ 2751.165652]  ? do_sendfile+0x553/0x1090
[ 2751.166483]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2751.167509]  do_iter_readv_writev+0x476/0x750
[ 2751.168473]  ? new_sync_write+0x660/0x660
[ 2751.169328]  ? selinux_file_permission+0x92/0x520
[ 2751.170350]  do_iter_write+0x191/0x670
[ 2751.171163]  ? trace_hardirqs_on+0x5b/0x180
[ 2751.172089]  vfs_iter_write+0x70/0xa0
[ 2751.172882]  iter_file_splice_write+0x762/0xc30
[ 2751.173873]  ? generic_splice_sendpage+0x140/0x140
[ 2751.174896]  ? avc_policy_seqno+0x9/0x70
[ 2751.175751]  ? selinux_file_permission+0x92/0x520
[ 2751.176756]  ? lockdep_init_map_type+0x2c7/0x780
[ 2751.177753]  ? generic_splice_sendpage+0x140/0x140
[ 2751.178834]  direct_splice_actor+0x10f/0x170
[ 2751.179990]  splice_direct_to_actor+0x387/0x980
[ 2751.181185]  ? pipe_to_sendpage+0x380/0x380
[ 2751.182288]  ? do_splice_to+0x160/0x160
[ 2751.183296]  ? security_file_permission+0x24e/0x570
[ 2751.184598]  do_splice_direct+0x1c4/0x290
[ 2751.185507]  ? splice_direct_to_actor+0x980/0x980
[ 2751.186511]  ? selinux_file_permission+0x92/0x520
[ 2751.187521]  ? security_file_permission+0x24e/0x570
[ 2751.188590]  do_sendfile+0x553/0x1090
[ 2751.189383]  ? do_pwritev+0x270/0x270
[ 2751.190191]  __x64_sys_sendfile64+0x1d1/0x210
[ 2751.191135]  ? __ia32_sys_sendfile+0x220/0x220
[ 2751.192090]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2751.193168]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2751.194240]  do_syscall_64+0x33/0x40
[ 2751.195026]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2751.196102] RIP: 0033:0x7f0f9f161b19
[ 2751.196878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2751.200711] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2751.202278] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2751.203782] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2751.205250] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2751.206732] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2751.208211] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:28:00 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541d, &(0x7f00000000c0))

18:28:00 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000005)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:28:00 executing program 0:
perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:28:00 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 31)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:28:00 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

18:28:00 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='net/arp\x00')
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
preadv(r1, &(0x7f00000000c0)=[{&(0x7f00000001c0)=""/200, 0xc8}], 0x1, 0x4, 0x0)
ioprio_get$pid(0x3, 0x0)
r2 = gettid()
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000000380)={'ip6tnl0\x00', &(0x7f0000000300)={'syztnl0\x00', 0x0, 0x2f, 0x4, 0x80, 0x5, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}, @empty, 0x1, 0x8010, 0x1, 0x2}})
kcmp(0x0, r2, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r3}, &(0x7f0000000040))
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
recvmsg$unix(r1, &(0x7f0000000800)={&(0x7f0000000440), 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000500)=""/192, 0xc0}, {&(0x7f0000000640)=""/143, 0x8f}], 0x2, &(0x7f0000001380)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRESHEX, @ANYBLOB="0000000000000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRESOCT=r3, @ANYRES32, @ANYRES16=r4, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=<r5=>0xffffffffffffffff, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xf0}, 0x22)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000840))
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
dup2(0xffffffffffffffff, r5)
pread64(r6, &(0x7f0000000140)=""/4096, 0x1000, 0xb9)

18:28:00 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xeffdffff00000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:28:00 executing program 2:
perf_event_open(&(0x7f00000005c0)={0x2, 0x80, 0x6f, 0x0, 0xff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x10ae0, 0x5, 0x2, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x4)
r0 = syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r1=>0x0, <r2=>0x0})
utimes(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000400)={{0x77359400}, {r1, r2/1000+10000}})
r3 = syz_mount_image$nfs4(0x0, &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x0)
clone3(&(0x7f0000000140)={0x11060900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x125100, 0x0)
openat(r0, &(0x7f0000000300)='./file1\x00', 0x2000, 0xe4)
sendmsg$nl_generic(r4, &(0x7f0000000380)={&(0x7f00000001c0), 0xc, 0x0, 0x1, 0x0, 0x0, 0x24048004}, 0x810)
clock_gettime(0x0, &(0x7f00000004c0))
pselect6(0x40, &(0x7f0000000200)={0x2, 0x5, 0x100, 0x2, 0x3ff, 0x1, 0xfffffffffffffffa, 0x2000000001}, &(0x7f0000000440)={0x3ff, 0x80000001, 0x8001, 0x5, 0x1, 0xfffffffffffffffb, 0xa812015, 0x7}, &(0x7f0000000480)={0x5, 0x9, 0x1, 0x1, 0xfffffffffffffffe, 0xb16, 0x1, 0x100000001}, &(0x7f0000000500), &(0x7f0000000580)={&(0x7f0000000540)={[0x5]}, 0x8})
mount$cgroup(0x0, &(0x7f0000001900)='./file0/file0\x00', &(0x7f0000001940), 0x0, &(0x7f0000001980)=ANY=[@ANYBLOB="7f6b6d652c0000000000"])
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/cpuinfo\x00', 0x0, 0x0)
r6 = syz_mount_image$nfs(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x2, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000640)="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", 0x1cd, 0x2}], 0x40000, &(0x7f0000000840)=ANY=[@ANYBLOB="6e616d652c5e2c6367726f7570002c212b5b2735232c196465666348e1931fdc966f6e6d9c6064797374656d5f752c736d61636b66736465663d242d282f2b3a2c7065726d69745f646972656374696f2c61625c5f726f6c653d002c00"])
signalfd4(r3, &(0x7f0000000340)={[0x3]}, 0x8, 0x80800)
openat(r6, &(0x7f00000003c0)='./file0/file0\x00', 0x40200, 0x54)
ioctl$AUTOFS_IOC_EXPIRE(r5, 0x810c9365, &(0x7f00000019c0)={{0x8, 0x2}, 0x100, './file0\x00'})
signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
write$binfmt_script(r6, &(0x7f00000008c0)={'#! ', './file2', [{0x20, 'nfs\x00'}], 0xa, "39b55bf45f6e7e98a42c69d3da6f90a7c43e46a2fa485cea82ebb7ebc5e607455d81421721075485b31bc04f48f5f32f7dc588805fd2de775d8a055e03d47a17c7974c323d6f581720a5801a817c0630c40f99036ccf5b0937464ddb3bc2bc4c36e838cb30fe2e028b2a6ca3e49454a7c31e54e124f61530130007a95d4ff8a78af638fe13ccca659f8d0bab8905d19b34e2b261985dcfffe4dbdd2205f514cc9ab1ca75d9b12431052b6e8c1f82791caff60049b7c265edbbc0507e41ddd62c7c05727c65696267170a9e0562abb0eec296828f2f7975e644c14790c6272d08eb52d4dcde2420d7f62fbb38d4141b90c8054dc64035b7cfe4bb69c3deb0555fab2e95ad75da0a0320ae133884977e175d0f5321bebbb66039700321077a6eb204387f480f8dbf107fb7cabd4585ef5206cd893190d3ced691904ae5665465cc930c75b14927efcc4dc985b956b5fa1316401c93a3004a03f12c8e3834f191df143032f91c18a1ce2341dc6267c83a86829966e28697fbe7f6af82a65461090088661bbf5e1f9e0ccf20e95abec96bf28e44c339e9612e8c409a029bbac0f6f0d58bc0aa189989ae2074fa6bff797a0fb063c726bb3c69c23afeff4cc0c6ed5dafb67a104eb4fa43f7ab61fb257b018e4155d64761efa9a3b563192610d7b36f62057970c5f83e36d213a4a648a9f6a8e75b4778a9cf288c43bae40c4f62b92603e28833221974213e7203f04381cf2e535a13aef5576e29e0b77e7842ea68b3c697462a272dd8450c962dac29384b972df1ede03a3d4115dc039aea712df813df0cf3d2017799f818f928d287316fbb3256db5ee4aa45dd3932197cb0be8f34c871347c022299ef305b0068a7c498551e5ad22c42790323b9db2da1486e0e9808c5b188eadb1dae02b7feca9c489087c610e77b923c97fc97d47eed2e39e0328ada7700a941784e32c1b58418c1f0bb006f8f2d7973a3c1f56e50352ebbc5b1f8e92ff825ea3ff5eda6a2e4e0146eb07c04979e0663e50e44ff54be4a1d228c847954e9142c554831c00ea22ce173e751156612cd95f72212b035a99b5c759159b1d02129cd002db7b247038fc97e691d042b3ff687072fe28ff045cd19ae4c34c5d7791857be85347ebce123f2d92a49492675a49d141d065427f3d3574036e902cecb055b143745973b6efe8dbdc1182dd33307b8477eb381bd0783dc911aeac8035139efae668c4c6b9e132ed5ed431c92f337b982d35f337c08e316779d8d9da2e2ba018a82db8498722737c1146592f6415cb8b1ae3f4d9c651f021523943cc231a38109e5c51c8dd4a2294cf672a76e1b01f3456a7bc0f9ea75a9a004eb3269ab461a42c603d1d0b7fe6942484b5fccb68f20d135a46f4df745ea14f61798c4f5bda570b42e2d591288b510b1d148b33e4a43b895e3345bc96222d2487312c07fab574418970c1c3423166c26f421d88b5e93903b2cb7fe07c97c272e1f97147af3f0cbfeda438a15c1cfa7efa20a0d3869c1fb73e94da5cdb9d7623b30c3b9ec6ee2d4e630aafa6f9dca002791317a789b2de758f229a48bd0b8b4c1a4a060f64d7bda85f0b7720089530ae475fd76f8a8a7198e1d0bc5ad897be29c848947ba2010fe8f698de0a6402eada58e7a7ddd1ffb176685756e0aa0204aa0215964f8b9f6b0caa7682023968ebe48796f9aa7dbe85e4218de983e92325d1568a724713d9be275c57b29a1ae0dffbe5fbd5eab25493efba1307319260c014b0dfce7b691accfd4eca33aea3fd672db06ff14563155a10789ad1a884c68e89b8c49495c7fc391ea5799b8738b52ddd2b7024039f34e183986e7424af0e8c7640f2419fe769d887de2cf9bdf1b372da333b6361aded8ff0ffe2f02d533e45c2c69f7f42265be0a2d33f8f0d1af2cbfb45196d586826605e696655496cb125c59d96253a3459b5b9e0a392d33554f21d2c5d0e0567e54abbd14e1fc401a37a03eaa4c778f50662d4d0cdaece99f62a62ce5abffec58342e04e39080b3fd816597a75d46833833335dfec1e36d985de163cdf58c6cb10074644b6470a40027a9a8107cc0d496894fea8f837dac6c681fa032fa9a5c2bc06e42a941840cb726aa8c5c02a018adafcb197f3aa39a50e72067dd033d446f435b0f22890859ec55f90617c830b7d73b3a66241782bdb1995f5a42fb644a50c52d0cab50832d1d2b57c80520ae865435141b0b579e40b3333112c4dcdaa91f47d32ded30c6e1c9302e443bf8abf3bf4e8d2d3d57428a8b44952d751d353f651d54ed618fc152f4827432c6111680dec67e9cf3b39a77ac3739507ab2eeb237d6d787550941f7b07c7e4069d94ad347495386009ff7bd0fc2264349b885e0504cd9179bb2a8a5c0029ed6ef9f976dcf2c1b5eafdd001e7efda9f6c922d5e1b01f8c2686a34cb4254c1f86042eebdae88b86651cbe65f9f70b0c1ea68775687caf176df5543006284f05a42a7ab5ba6d294fd8cf89e7c53a65cb3907dadfbf14c516508eee4543ba9b8842c042fbf63a200d027842ad9fe8aa9d7376b2700c9f367d5245bd5514f00faec701676da2e6333bf388d4f1313a1ceab68663ccd4d09330b64c7e71c44db57e3e0eac936c55ee1cc0d0271a06b73c0b34434f4edd49615616db57e08ef373df2176be7ab502f608ab8619024da5d1542c35074b09cff600058435fd8b60739c497594b06450bf54ba57f1e85c2fdd1fb2f7a0f428ac475951b503752aa16bef903a3ddaea9e5a790d0f8b8358d17fb6ef6dc52519d4d413b2c40473cb30da5782591dc61b7d0bbe9660b4d6a103461fe556e485692f93489b4618fe7f309849b66b1d16c6ceaafd2447e23ed068ce7cea4f29660def9b2e3269503de5469ffc73964d5d17f348221512725bdda19cff56374daeacf7ae845967e8e7adc79152aef036860695ef210cd5c269c27d0fb0e1c29cc398625575e5350de1a957e5a846b9267c7a849bacb0f0ef19c1ac6e1d5c414cf002afb1fe3f49d981075bb14223fd7407261883c87a2d5d15922753ce221ddb09cb7a3003b4fc09471f78fc9a594de48ea03fe4120b5d2375b1be918660254f3dcfac23ed41ea1dd2b28c5d225baaa294b477397596a9f88e006e379964ae6f7c3f08f248da9cd1de77da46b27d01844603e0527107655f7c1f03692bd23447cffdf1549314a0a1ab871e828688bfa0b8cdb38219493a3dd60d4257db936ef1fd6712a8c198d6f087fed206a56b89e697353a0bf9de0f696ebce3ef96c6956c2f0d377f6ea8b85e26802ac0220384222896387d13a118cce1deb9d3aff836669f03b6ad5c176106c8911182b4da5b785630c2b12d446f1cd31b0e231eb02198e6903f9aec3b9f3632d45d34b0de9e3d432a22bdb47781f77869b2f924b8d56d80a65d96d50d37827205a1d61bcf898a7deffeb6248c88ed3b823b63b321bd1ab95e33709a5e8acee7c3673dcf950cb9bb93bec8e3be6905248aef989166abf980dd16cd4f50ee898781744d59102228257f36119ecef49e1e84492f72e8844c8d15fae057f53c63eadc939fb3a066e5ab1fbd460eea0589fdda653d347d29b4c964140dd4cf4db068787931e715d049dc9cc28bb5d0245a48587e89f51231af006b0a4ebdbde283359f963a72f0e35b87ac19f516ce5d8f002ac649a578e70a8c572a81185aba164c1177038a1b164d2c6eadb3d1a3f99fd730608d6d0304c28646cbf1e49794ad0219bb0b96b5fe7eb0d9d961b0feadfa13d3715c8ae72c4cea3ad9a7171b6068a540fb05a715ef5c7416967ea3abd0a044ef1551b7de6b4c22df45749b599a6a979367e4aa6c4739943dfae0208b4ea3909431849911e2fdbb6b44bd072d97ea0d7f3b32bb8fdab2209960de477dad041baed5426f76eb2bf3a0b039c59ad83cbe9780e389c0cd13edcdfa0debb518b215a96e1affd8efa3b45742aa87f908d83c8a388799df20bd68409e89a37dc8dbb1d6af139595854d88e48f0a6651a103d1229f3106f69677b3e1be7b55231d5ea33809c20da737b2597901ac09b67008171ead4dd26419a0d740d944cb539890248e685296f90c14b43f166e4ca894809eaa3705f9f7ea9cf8c152c5cff3010369e50952d12c212d8be758470a685dd47a3e94945f0f0a54e322b7ed482fe841475e13aafede7b8e5f2ac3f29504b299325672c92c1356c27ce49072b90b766d85a5b68695cb042dcad3d8e61bc0c18178edc8e163374e2528de29f83489241054bf7960ea91fd5a597d3035eb7eff1f09bd85f012f800681bf256d4c64e8814befafa340446da8671203d946b768300757de63eaf0c91ab3673202669f1ff2c622b22caed44d8a19a7f0eeed992074f5c25240923b8beaacdbef62dd95bf0bf871b5211198a43248daec116719286073b36d7bc62738ce3d217bf10960f406de37c5ce1cafb18e304ec4dad14180300099dbf50686742e8b077cbcc3f7102dcd91c332c182ba7ea08020f0f83b27736a200207b42b487a9daa4dd6f1667f85eff41883a0d471996ab0da3d04803463453be619dc5142ba8fd0dde95968ea489ca93e4e0cd30d6dc0948d5740a4eb8788641b04d3b9349b507a33588e5c9bad555e94953c88f8438600185401494f2c9504fc42176daed7170effcd3e1bc1f440f1f0e3dce7e4522476066f22d60b81fa726dfa5a04c806fc36b015e20ba1a1394a601804f91094d167b30285300dc0cac9e5dde59c7f6f93bfa5d556b869623fe3268947f0ee3b14b7df8bbc8b197ae5608fedbd2e69d31f287bbadcb89449cb1aa50d7945217413b15c147099ee77cf81c03f6c0ebb98124a375f12bdcf4b5d7b9b055e6eeb4cbcd4081311de175d4ff784e3923afa35bccc67e6533a0111a6eabc22d227a67e122db51e62687700f7cac8e5a9e26e7f1d685516f23e0936ac2bc11f797d228dfe7137c2b3d2a0f43340199ded8b7cdce9e5b0da5680b51215e8f9482795dc1d59c60eb3ff1429e3514e97da962d3e3675b18efce70fcd63a2763fac2fff1694d9c34e192d89355529b81e93a512541c107d8d31ffda4ce3ec55eac7470a57a4a439c521c1ee23b92005d8864b89eb7312b3f7365b1771030cb25ff486f56224f766b3049d46ba6a0e083227a8d7f76fea3a152be0a50c555a9513c0321ad6d0f512f1c27234e8aba1998e800e426fd4eb45b3b2b3808ca4aa81be6f03a998c530032914f83322b51dbfcc2d40da4998289c36e5b8c0da0fcef518a67c467d430098dddeff7baa74d50456725a1ae5d3af8e2ece7f666f5548bd98e5956b70aecdd2433658827e19d07820d795ed9bbd956b2dfbb9d3f06e85f672eb1097fa2d5d1ae6b9057e041f3217e0bd63701069b7a79cf02a6e9a09d769c238af07c6a8f75ffe837d1b63129f98801c0d72a99665a7bc977217c1d1fe58062b66b27024b0adc4cdd6db51c558076ace808ba5b82ee782438e6d8b7907c4ab051f43cd71733b18088f9a4406180904675235cc8933e733e1205f4afb5bfeec0f1f9d2a2be5f0a94801fc2706d7c88f6dd50a11c307b538e3ce13d621e611b183891ee7414c9e4838e2b141576e805f93fb83192c74e5d88fcd61a552983439141e2f155e400827f360d24bcf705ee2c5c4e6298c6b8c53ba8793c5659f7a11dfc77b8ef984fba29f686dde3ed708fd04f440f392e8f52155f427cdcb857b8d8f36813a48819d8e4fd9c12140661ada15161adda6e9c50139f3069faaf9ee4ac2d519fe22977cb60f68917f91d4905f7c2b1d8"}, 0x1010)

18:28:00 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

[ 2767.507434] cgroup: Unknown subsys name 'kme'
[ 2767.523277] cgroup: Unknown subsys name 'kme'
[ 2767.540612] udc-core: couldn't find an available UDC or it's busy
[ 2767.541529] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2767.554526] udc-core: couldn't find an available UDC or it's busy
[ 2767.555582] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:28:00 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xff03000000000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:28:00 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541e, &(0x7f00000000c0))

18:28:00 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:28:00 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000006)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2767.608363] FAULT_INJECTION: forcing a failure.
[ 2767.608363] name failslab, interval 1, probability 0, space 0, times 0
[ 2767.610242] CPU: 1 PID: 16314 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2767.611195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2767.612350] Call Trace:
[ 2767.612728]  dump_stack+0x107/0x167
[ 2767.613236]  should_fail.cold+0x5/0xa
[ 2767.613772]  ? jbd2__journal_start+0x190/0x7e0
[ 2767.614409]  should_failslab+0x5/0x20
[ 2767.614938]  kmem_cache_alloc+0x5b/0x310
[ 2767.615497]  ? __kernel_text_address+0x9/0x40
[ 2767.616131]  jbd2__journal_start+0x190/0x7e0
[ 2767.616745]  __ext4_journal_start_sb+0x214/0x390
[ 2767.617319]  ext4_iomap_begin+0x485/0x700
[ 2767.617809]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2767.618372]  ? kasan_save_stack+0x1b/0x40
[ 2767.618859]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2767.619417]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2767.620162]  ? splice_direct_to_actor+0x387/0x980
[ 2767.620718]  ? do_splice_direct+0x1c4/0x290
[ 2767.621227]  ? do_sendfile+0x553/0x1090
[ 2767.621689]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2767.622207]  ? do_syscall_64+0x33/0x40
[ 2767.622663]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2767.623291]  iomap_apply+0x164/0x810
[ 2767.623717]  ? iomap_dio_rw+0x90/0x90
[ 2767.624169]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2767.624836]  ? mark_held_locks+0x9e/0xe0
[ 2767.625314]  ? filemap_check_errors+0xa5/0x150
[ 2767.625844]  __iomap_dio_rw+0x6cd/0x1110
[ 2767.626308]  ? iomap_dio_rw+0x90/0x90
[ 2767.626758]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2767.627279]  ? generic_update_time+0x21c/0x370
[ 2767.627820]  ? __mnt_drop_write_file+0x9/0x70
[ 2767.628340]  ? evict_inodes+0x420/0x420
[ 2767.628798]  ? down_write_killable+0x180/0x180
[ 2767.629329]  iomap_dio_rw+0x31/0x90
[ 2767.629755]  ext4_file_write_iter+0xb26/0x18e0
[ 2767.630291]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2767.630819]  ? kasan_save_stack+0x32/0x40
[ 2767.631298]  ? direct_splice_actor+0x10f/0x170
[ 2767.631832]  ? splice_direct_to_actor+0x387/0x980
[ 2767.632390]  ? do_splice_direct+0x1c4/0x290
[ 2767.632888]  ? do_sendfile+0x553/0x1090
[ 2767.633345]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2767.633845]  do_iter_readv_writev+0x476/0x750
[ 2767.634365]  ? new_sync_write+0x660/0x660
[ 2767.634848]  ? selinux_file_permission+0x92/0x520
[ 2767.635410]  do_iter_write+0x191/0x670
[ 2767.635869]  ? trace_hardirqs_on+0x5b/0x180
[ 2767.636403]  vfs_iter_write+0x70/0xa0
[ 2767.636934]  iter_file_splice_write+0x762/0xc30
[ 2767.637479]  ? generic_splice_sendpage+0x140/0x140
[ 2767.638068]  ? avc_policy_seqno+0x9/0x70
[ 2767.638590]  ? selinux_file_permission+0x92/0x520
[ 2767.639160]  ? lockdep_init_map_type+0x2c7/0x780
[ 2767.639816]  ? generic_splice_sendpage+0x140/0x140
[ 2767.640339]  direct_splice_actor+0x10f/0x170
[ 2767.640853]  splice_direct_to_actor+0x387/0x980
[ 2767.641413]  ? pipe_to_sendpage+0x380/0x380
[ 2767.641912]  ? do_splice_to+0x160/0x160
[ 2767.642340]  ? security_file_permission+0x24e/0x570
[ 2767.642880]  do_splice_direct+0x1c4/0x290
[ 2767.643416]  ? splice_direct_to_actor+0x980/0x980
[ 2767.644049]  ? selinux_file_permission+0x92/0x520
[ 2767.644642]  ? security_file_permission+0x24e/0x570
[ 2767.645178]  do_sendfile+0x553/0x1090
[ 2767.645714]  ? do_pwritev+0x270/0x270
[ 2767.646121]  ? wait_for_completion_io+0x270/0x270
[ 2767.646677]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2767.647173]  ? vfs_write+0x354/0xa70
[ 2767.647707]  __x64_sys_sendfile64+0x1d1/0x210
[ 2767.648226]  ? __ia32_sys_sendfile+0x220/0x220
[ 2767.648820]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2767.649378]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2767.650028]  do_syscall_64+0x33/0x40
[ 2767.650430]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2767.651091] RIP: 0033:0x7f0f9f161b19
[ 2767.651582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2767.653773] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2767.654742] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2767.655608] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2767.656482] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2767.657377] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2767.658145] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:28:00 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xffffff7f00000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:28:00 executing program 2:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f511, 0x0)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040), 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[], 0x54}}, 0x20000001)
fstatfs(r0, &(0x7f00000002c0)=""/141)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
copy_file_range(r2, 0x0, 0xffffffffffffffff, 0x0, 0x10001, 0x0)
dup2(r1, r2)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, &(0x7f0000000380)={0x0, 0x8000, 0x7})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x6ec)
sendmsg$nl_generic(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000004200200025bd7000fcdbdf251600c70d2f082c7d2d05b8136692596f568f662ca6bd0be0c6866133b79ace475bc0173030d200"/65], 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x24, 0x10, 0x800, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x8, 0x0, 0x0, 0x1, [@typed={0x4, 0x1a}]}]}, 0x24}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0)

18:28:00 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541e, &(0x7f00000000c0))

18:28:16 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

18:28:16 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0xffffffff00000000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:28:16 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 32)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:28:16 executing program 7:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000002000028020000028400001b", 0x65, 0x400}, {&(0x7f0000010300)="02000000030000000400000066000f000300040000000000000000000f007f5c", 0x20, 0x800}, {&(0x7f0000000300)="ed4100008b4858f3a3607ddbc988b44705f5bf7500080000d9f4655fdaf4655fdaf4655f", 0x24, 0x2200}], 0x0, &(0x7f0000001680))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x6, 0x7, &(0x7f0000001540)=[{&(0x7f0000000340)="f9117a26e0ac6a95c085f542484ebcb1d3afec20726da9ce29a9f1498cd0d3c2355cee916da6359cf5b0948336bf1028e659868f737c97d883bd669b948763e25fb45b1632500575da9f7964a98e361d3f83c867e5216d3fc01cfefd929a5cc8d319a4e386d0ce70a3a5104fc938e0429b9f2113eb1866db8ab8444e720271fcf6ab8eab09cd6b6dc1f701ff9848329f01660374d107aac6a1ab5fcef2ac66d10bf4d0c2841d53042a9b10a431803f0626e5f286bb6451df0672b79d052784a3a015c099c163caad17aaf033b1f63a4ed420063a7ca0fd3d8ced086e98ccd1dfdc42f2f40e879db0317fd027c5fd48e5d93d7288e152f9ab998c49e2f3b506c92de5724acf3c2e7524d3258e3e2bc23ae7f6350860c8f8617997374453555cdf640fb7411d088351a7479bc3ca66ee4284a78639118cea930f48a1fc463f2d77b277a9299eda7284ee2b5b88cc254e12a01ca97e94e2b850ebc51c33384790cec3f785306e3e4a5e3cda99b7820aac6c7eef97873aef231343055d93d81fee0d14637526c03108986986c15b9a353c7506c6f7cab744cae80e4efe059d598ee32bc050330077e5d867b62c005d4eb91b1bba99af388c2df364027deb7e0f0806a90b3368e902ad3b81c9c0c8f59cef81b1b187ece80e1e752e51ae6d206d1bc32da32ebc7ba117609b7280afccdae6afd69c21426b3b677aea8812c093ae3078d1537c9cb25b45fff88a4e4883fa5e7bf91af1f2a971152bcfb979f306926c70714df010233ce1718c27b0059ea0ea6108096421d85a326f0721602e0342dda76414477530e843ef9747750e2200fbb9e7eda29b40cce42d3c57e31df9345047231a42892bff7879d5e1086481f5f8637eb017f89e170c74082d23268856cce1c86d81052d6f8b18c3d7899452e947d4669bf2e8a2580a8b56cf2255e3fd189b2962dc2a1bbcbaa48787b3a893d476ce67f32736556db7a6f466b3be9bb9168d35c09e208007fdd099755247245f52a3a6ca1f1e804fdd37f4c61833cb6698e52d3f5c91ba537bdf6d2f5046b6520c1c293017ffc32567b80bfa41735c32abf2a4a75fa560bf3f9115fa2d4340d2b5565dc4da3800033a4b72af275470079efe90bab4b356741f2cd6bfec2ae941e0419078876cb121796d5f949649d27080c7a4fbfd73a8750b63efd748262c4c27b6e5d79d29c82a94dd7be12a68c329ca289e593871d86f42080062e62148bb6e373e5822a2522360f2100d265cb9ddd45d7235f135002169b3bca4f0ee8c769851894ea6929118029a6065d4d0d48061fa4c0fc490c315ddf9b7b157ee7b310fb8b8d3e0710cd30ca66aa4baecef23a339c5ec249674a0ccf3818e1e36c84726947ccc47d810a31b40d6f6082b66136c67061bf1df5088e846beb521b26808db9fab240a13d6853c8a2e6c35eda0453638dd79641777a9fecf6f38fb9fc1164ec7ac3d5798328db3a39493e6ac5349d95e61912cc33aad3ebb1433781df05f894faf18a79cc174ea4d7d842d0c9804040ee4be34020ec88214e0e0446224b81f5663c53d69ae0ff0f5ec0197dcd45cc4f90a61734f840e298c67ca2aad6322a5c343904ce2e2ed9a12c17955edb3b52ce0852e6946df3495ed19c112c5fca43fdd66d756c990329171d51cd2f4316a1efd65d0c4d77bd5079ae2d673f7d0cf3a48e8eeab055da7431a509ace5123cc7933d2fb5c0b70844de28873083ce2e88722e9dde4c2ae8114d520a4b5a68c9529ef01fed175479bbbdf17608a5b15aee7d302f90494385b143e16e00a05b081a40501884e25d0912ac312e214c9c216139d2c04b0b9852e4ff33623f79658d7a383884a5ed79f2f5e4c18e6da0a0ba6ec7f2980b0ac1317e433812d6643838845b68e0ba961f03d54577dcdcbe45fa4212d3ffcbef82876818e0f2153a195d0aac4fec36b9e29eda006ef1945d8af89b222bde49a7353be599c3c8f1e9ab50220357df743a356021a71d2aea43e2e94f6bc580d9b1a6858a1f582b00be5357c6ce3d8644aff3e9b9680481d42ff40582103d402f98d010fb3837b0d3e36209af8d8a2205f83749fb0437c37bb170d9103b78bf59eaf2fd1775eefaecfc219b745f958da12e5e31735d0791193421c25e6b23ea890638d4a361c44ec305fdb76a833e3c78ac8aa1555cbef6ecf8536c0395cd8e2f95bf9dd379567ccce03ed6650d98a509a25595222d0825459c0de7f6c2050cf236e7aba6f35432111411d780df39b1b600035fc5ea2e8a3e0cf4b5f27f0da991f7fe62cc783c4b2bb6b2995dcfea7a31435a12745f1c60ac014b7e3975702555b9d2bdd913499d5c5992188e814b3e9a8d420927a6ed0b4ad0efa3e51d04e24930417405097f6ffba3c4332a3db7a8d10a9e3ea6d81d5c7132f9d55d3d0a816cef90f2f908282e0fa175b05512b6547527d9b2b9c1b4ea6baa258c55e3b69ee0342710fb272bdd1246fcc397189e6f43c7de3c5bf911f0273cc675994acd0afa4a31875890aed4c05c4ac3b224c82037f0c3995e419f2b7e3012e15be90228ecce770ed2fa665bebff252b0f40c5735ed69e046bfbf087008b0eb748839b66f1248a66e27437537fbe555076e6e1e21456b0a35998795ce7c27ef054b10eca0af985c493a7482f2a89050ef65297829beef1011f0d965d87c7e823d330803575c9964f11a7c14bea119ec5b671fa1602cfbcd8a29aa1b74e0d13f0e0812956396bcec04c5fc9b36f831973ff4e0dbf78684416c98cd65c2e419e1645fe2d73985381f65787ca22968a9004819d29314b4f7e7b0357f9bc8b9a9a10e270f10ffbba53cf5c7d8ab6c406fa479fbdb32ac925a448b81842061105204c3f5ca96810fa4d685ba41412be7a849d33c6c101baee33eaef5d128304c461ccd3ff74e7c90801cec19602631ed039c27ee60b1811241872131acdd21d5cc8356687f02f5e41d3b57a4ae6dd8332267316de014c954f660db3fa1540979170b3bbaac16af85d3b54152dd73c62d589d97392fd776685aaeb1142ae25178df518a4c3d0b7284b7cc48a658a633db69e4d216be599e7db6ec87c29dd16d7e7f98587cb7efc4cfa6b53dc06ccb2db5fe494d02a32df564cbb84aa7ad9f7b064490bf2fce79fb766db109ef5c80212d0dafbe620785ec6f276065563f86633d208d979f1b27eeb1e0d478e5cf556161db328a22dbf8b9d4db37b663978d587b3aadf6494900c6b1a99b95237783db9e5384a79f7057a62af28f43069009555b85fe1da3e583df14bd12ce3178b22248a74b6ef9a43fa1f92cacb8086707e1d446c9fa62574fb5c483513993ee7e0190a205f5df4e743f73c8e2fae8c4b0e1a59a7bfbdd3e8fb96d6c6be9e52dee5acd26532d873daf96bbbf689a5b449557c85b6e5c285bbda45ed847de5779e9a243ca904596a473f9dc64fe8c07afc9afe4c7de6c0ccd2d6be7232413ca38d4cc53d38707c69bd9342fdadc4fc4563b4854a403955dee43dd8ec115f3be29a0480c5734f5e8a8f838ea877ea2e35435fc9fb04ae3c7665fe285d4197ae26afd287c297bf4b7417c53e97e6bfe2200433532a1e93a9cb73f8f75c0e0fdb2fece85891379a2d62541874bf3163362883967f57fb7e48977a9dddf4a5707c0a9b971fe5bcd17ef37f937d6fb6d484ecc406bcceab5737d09a4fa4635217491b3d3475178c0c5d69504e10f090ed3bdb44f8e539465fabf76cf83e3494d9d3c2aef988aee6eb868ee593e9cab1b61bb0d5d3aa0eaf39225d6b94017d7ab81fb8276825a64835cbcdaddcfe6e6fa788a349abf6ec721f8c5999a571617bba33a7587fcd24bf84b4d2097816148ff63b51f414ee45e0f41b4dd4a5f07e51c2e2d381c68a0f13c3dc43565ac383c722a1da17b19275ee18033f41b7cf0b7cf24fa89881166848261a12004dc98715bdc18b3d77ba71582f7aba7064bfa9fbb2b6bee2df9337cefecdecaaca35b2e0a87aa5179d5c919d2a9715020b8f4fcfc0590e3aa6775a43e1aec0e6318053fb0ae46470cf6928bf26d321625ab18ab735317a42ea246fe74d84e76c279d57eec840c1e0b4f82ff6e090fd75cb58baa9e324a4190eee1d83b046a171cfa76728d532d457f4a1d880c119deccd6dfcaf7a4cd96d30a6e2ec59ed376478b36cc390b4e902634ac9245ee5b40c8fa153381f8d6708362b6173bc00463ad80d1ff811a467eb572c974e47d58addda04edcd32e491a4790f74378c977e6474061e70807773c28fe4c40f4d659982d9c3857f1bcaa30643bfe4b7a47824a6edf7e1ee43d7d3c4396cd844f08e2ece8beb00bd852514ed7f2b4f2f1c499385db3626d6ef8081a637829d37114cda22a83b647021c9b14a9a862cfe0fbb5269890b3f739edf5ac5e04918c08805804bf1e8ec1eba9318446f89200d7faaaeaf6a0f2a83a996535ada60443039118f8d053839b67b9e83daa49462fca1452f505ea7a8a2de01bb84a9856d99bdc57b14f4fc45ce7a4efde6b77ea6eb9ffc489723a4696af7c9191ad9fc90985fd6f6dc5ebfe98e382167bd4ab4c289ea347bb8ee9fab620bdd42b69789c0c76e7c7616bdbc576c954dce5784e11b0506b0c4e31b76b0092eedf2efdf1af968c9b16e38a48cdecaf27bf9e945ea49476b0a407752bfa97ff8a5ff3ec5b18605b06912befe030e9d917e4d5bc10bb8d0903eafc64fed33ff203b44563b63895f71d026dde4e31b42051db99e0ed874da75d68140cee077d79a3f6b2d63c2e40d7e43af6de579c30f979969e3d746cd9a2129258528895a47fad246f0c0179ea3052b51b5fa65afe6ae148581530edd331c17dc3c316067443d26f0fcaf6eae35a612964f0852a4a5a86fe465ec1f2aabb4a9d4de2cfa3cf67cc1950add49099858d2136e423b4fdcbd0e6d47bd20fa0570ae4db955333dd5124440720ccdb43193f90bd76e7a4a4994561fd3a57961fcccd9939311342fe5c0c3924ea2a1692817a49c925117252a55085b2295c10652550015e6eb11506f7edb7e5d330f0fa72c2017d018a5f8c90d5fae356a27254305f7a3eacc1dfc1f41f96aa488585900a61b1b89ca3dba66e3b1dfbe65b09a16f6f0359be403549bba78e04983d3e7c1400e585b04546092a23e46aeec477a8886a3e99c64c76806e66b5ea24faf8bbe2950f7b1712846e06d0fbfc61b1046baec98b12deb213b9f6630bbbc03f145ee7ff73a857796d0880eef708a82db6cbef0f97b1f5b48c543840235c4af04dfb2b134f4c5c71918f68995050493fe56894307827d7e6cbff873106948a801503417ff3c52f28feab973951ee5076fc95577c2496a7e161c294a4fdbc95813121ec148ed888f5602a933bea949cc488c0924603bc036ba811df46e22351e265a66294cdc73a5d49f8891e598c811f699f9dca7d8066fc30703a74f1646bf2aee94bf7c0d61a7248a916d0f50ee86a45e60b06bfe36007b46e853d6a1bed95f1864c76528da27c3cd4617b3612634cc1a53cc8085ab1baed35938a27d0c60734d2af29862e7a07264f98534c71fae08801cfcd916479ea527671bb265fb2aa56fb78b13769610066340bd20cfc99477ccbac501380965ef6e6bc8791cd44c67e9eb01a06661981e575dddeee60c0b7c9f00dcd6ba1c4f226113c9cf85c61b31a15cb595bc7de22e526e0df892bc5685346d4cf33c6db359d327df6392ce53b5a470680e1252bc23bbc4992eb5c7e883bfc6c895261a82cc4c7f6ac8c88792d5e1e5dc37cf7dfc85973e2b62b6df55192bca14760632", 0x1000, 0x4de9}, {&(0x7f00000000c0)="2cf3e77f4680ba0d9c59c623bcbf2126ba6e530f1e95d6094b54ff5df290efcc76044dfd504d26a5", 0x28, 0x8}, {&(0x7f0000001340)="b16e64dd4b13eb77324b219510953543744773e4509e501378e0b9e7d8e73486b6522195832e059c92a5f3efd84f78080827371863e184590b0b19fb70cbacc5bb66a8c0ae5b9964a21db99d6a539c7c390cc91e5d3c5dc68210a90f27081cc6ef708eeb3dcb2801243ec93b9035bc973bc851d3872b459503ce238996a0d662ec8df567c2a79e1eceb99ec8b595ae9b74b4658679b40484e2e11750ee15aabf749569e42d6d9a826640c7cef364ccc73670fbbd5bee339bc3d51470cd5c86e95f24ec5eb54ee9bb7e0b4e94aa5ee1a64d43ca51c9f8c1919c1c48ebb65f145f", 0xe0, 0x2c2}, {&(0x7f0000000140)="eb35907bcfd240e8025bdb9f75987f3c09fe492a3a1df9f0d73f0d330bcf439a0a13e4175cda46dbba4151f0e78bffc331ba5e228bce3d50ef4beac06258171f30d02d9712221a76cf2ff72a52902effb543de5ff3d768", 0x57, 0xffffffff7fffffff}, {&(0x7f0000001440)="baba4a2ac52983cbd09bd61e66abb9d11ac49e20b7cf068d4ec978ea311fbbb3271b887c69f1e108f0d2dd3e8cfaa973905a3f3e3cb338a1681b26d06cfd1f818985c046461a78a06cfdd3ae025f8bda6e924a0d7a563ab59d90dea372efaa5b33243a7c94aa7535d045c68bf2e0432eaddbfee16bc81246b5d9aa1194af8ca59937e98e274615b9a9db977c3c298c03e05100e41513993707be7c5195b97c80dab90a15b8d083ae008f0e2119627d86a1fd78ff8e99087d29765d6cc217ea05d286dcff1b02d628a6bd09b9a20d6efcc0f33a3188a55b52c173f9d3913ecb9489", 0xe1, 0x6}, {&(0x7f00000001c0)="6e926a7a6ff471e6538cedb938dd88c9df4e8c005cdb83ff12366e4ec04d6c0690879c8a0267330edaf03b2adc338e6117e3874d50b2cd4f", 0x38, 0x3}, {&(0x7f0000000280)="eadded198c6311d9a28b0e4f0e33bc12778b1fd87ad132ed994ce0d3474664ea50054aa080db77161af254318502adc2394fc796385020182944c12fc647871f5813", 0x42, 0x5}], 0x982484, &(0x7f0000001600)={[{@barrier_val={'barrier', 0x3d, 0x73bb2067}}, {@init_itable}, {@block_validity}, {@oldalloc}], [{@func={'func', 0x3d, 'PATH_CHECK'}}]})

18:28:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5421, &(0x7f00000000c0))

18:28:16 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000007)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:28:16 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000200))
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x5421, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r3 = dup2(r0, r1)
copy_file_range(r3, 0x0, r2, &(0x7f0000000040)=0x3a, 0x8, 0x0)
accept4$inet6(r3, &(0x7f0000000340)={0xa, 0x0, 0x0, @remote}, &(0x7f00000001c0)=0xffffffffffffffe6, 0x800)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000470008000f801", 0x17}, {&(0x7f0000010500)="53595a4b414c4c45522020080000ea80325132510000ea80325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020201000b9ea70325132510000ea70325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c45312020202020202000b9ea70325132510000ea70325107", 0x9b, 0xa00}], 0x0, &(0x7f0000000140)=ANY=[])
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x181002, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r0, &(0x7f0000000180)={0x20000008})
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, &(0x7f0000000040))

18:28:16 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:28:16 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

[ 2783.925302] TCP: request_sock_TCPv6: Possible SYN flooding on port 20000. Sending cookies.  Check SNMP counters.
[ 2783.956039] EXT4-fs error (device loop7): ext4_fill_super:4960: inode #2: comm syz-executor.7: casefold flag without casefold feature
[ 2783.967296] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[ 2783.970126] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue
[ 2783.974974] udc-core: couldn't find an available UDC or it's busy
[ 2783.975819] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2783.978682] udc-core: couldn't find an available UDC or it's busy
[ 2783.979435] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:28:16 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:28:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5422, &(0x7f00000000c0))

18:28:16 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2784.016265] FAULT_INJECTION: forcing a failure.
[ 2784.016265] name failslab, interval 1, probability 0, space 0, times 0
[ 2784.017548] CPU: 0 PID: 16365 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2784.018287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2784.019192] Call Trace:
[ 2784.019498]  dump_stack+0x107/0x167
[ 2784.019893]  should_fail.cold+0x5/0xa
[ 2784.020327]  ? create_object.isra.0+0x3a/0xa20
[ 2784.020822]  should_failslab+0x5/0x20
[ 2784.021244]  kmem_cache_alloc+0x5b/0x310
[ 2784.021685]  create_object.isra.0+0x3a/0xa20
[ 2784.022196]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2784.022805]  kmem_cache_alloc_trace+0x151/0x320
[ 2784.023311]  __iomap_dio_rw+0x1ee/0x1110
[ 2784.023755]  ? __mark_inode_dirty+0x12e/0xd40
[ 2784.024247]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2784.024744]  ? generic_update_time+0x21c/0x370
[ 2784.025238]  ? __mnt_drop_write_file+0x9/0x70
[ 2784.025725]  ? file_update_time+0xd4/0x520
[ 2784.026191]  ? evict_inodes+0x420/0x420
[ 2784.026639]  ? down_write_killable+0x180/0x180
[ 2784.027154]  iomap_dio_rw+0x31/0x90
[ 2784.027559]  ext4_file_write_iter+0xb26/0x18e0
[ 2784.028099]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2784.028621]  ? mark_held_locks+0x9e/0xe0
[ 2784.029088]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2784.029616]  do_iter_readv_writev+0x476/0x750
[ 2784.030118]  ? new_sync_write+0x660/0x660
[ 2784.030586]  ? selinux_file_permission+0x92/0x520
[ 2784.031141]  do_iter_write+0x191/0x670
[ 2784.031591]  vfs_iter_write+0x70/0xa0
[ 2784.032044]  iter_file_splice_write+0x762/0xc30
[ 2784.032229] ieee802154 phy0 wpan0: encryption failed: -22
[ 2784.032577]  ? generic_splice_sendpage+0x140/0x140
[ 2784.033755]  ? avc_policy_seqno+0x9/0x70
[ 2784.034215]  ? selinux_file_permission+0x92/0x520
[ 2784.034767]  ? lockdep_init_map_type+0x2c7/0x780
[ 2784.035293]  ? generic_splice_sendpage+0x140/0x140
[ 2784.035842]  direct_splice_actor+0x10f/0x170
[ 2784.036339]  splice_direct_to_actor+0x387/0x980
[ 2784.036862]  ? pipe_to_sendpage+0x380/0x380
[ 2784.037344]  ? do_splice_to+0x160/0x160
[ 2784.037796]  ? security_file_permission+0x24e/0x570
[ 2784.038365]  do_splice_direct+0x1c4/0x290
[ 2784.038829]  ? splice_direct_to_actor+0x980/0x980
[ 2784.039374]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2784.039995]  do_sendfile+0x553/0x1090
[ 2784.040447]  ? do_pwritev+0x270/0x270
[ 2784.040884]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2784.041483]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2784.042103]  ? trace_hardirqs_on+0x5b/0x180
[ 2784.042582]  __x64_sys_sendfile64+0x1d1/0x210
[ 2784.043095]  ? __ia32_sys_sendfile+0x220/0x220
[ 2784.043619]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2784.044244]  do_syscall_64+0x33/0x40
[ 2784.044668]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2784.045244] RIP: 0033:0x7f0f9f161b19
[ 2784.045665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2784.047715] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2784.048581] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2784.049360] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2784.050139] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2784.050919] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2784.051714] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:28:16 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000008)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:28:16 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={0x0}}, 0x0)

[ 2784.080249] ieee802154 phy0 wpan0: encryption failed: -22
18:28:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5423, &(0x7f00000000c0))

18:28:16 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="7408000000000000007266646e6f3d18aaf92f982b5bd32e0dc65f40ef34ddf4a6c538ad5c03a61fd4e07fcc70ac1cb9358b70ae86b64be873540453ea6e8a6cf0075ec7e0", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',msize=0x00000000000000a0,noextend,\x00'])

18:28:16 executing program 7:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
llistxattr(0x0, 0x0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
openat(r0, &(0x7f0000000100)='./file1/file0\x00', 0x40000, 0x120)
dup(r1)
ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x2d0d)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00')
readv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1)
move_mount(0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file0\x00', r4, &(0x7f0000000200)='./file1\x00', 0x50)
sendfile(r2, r3, 0x0, 0x100000001)

18:28:16 executing program 2:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x9759})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x129)
fcntl$lock(r1, 0x26, &(0x7f0000000040)={0x1, 0x0, 0x800000000000000})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
dup2(r2, r1)

18:28:32 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={0x0}}, 0x0)

18:28:32 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x2}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:28:32 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:28:32 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 33)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:28:32 executing program 7:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x20, 0x0, 0x1, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x2, 0x5d}}}}, ["", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x40010)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280))
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, @in_args={0x4}}, './file0\x00'})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f00000004c0)=ANY=[@ANYBLOB="0f8b4cf859", @ANYRES32=r3, @ANYBLOB="03000000000000002e2f66696c653000c4e136c0d50bb8aaf24e0d293350dafbc259a43bd9fe22d44955d68101f5b18b3c33e45c9cfb805466f356a7794ffe7c15d7d036e703847af2937f16888f5e35f0dfd204f1a96cf875fe8309ada2f91d72cb88d82678e7350848454a9f83293fa8bc3dc593bcbd340c74fa98107571e3eec5b13d54a703eaf41903776b980bca44ec2e617056fd2c248801ebfe998d096adb4d81a3efcfe959029e0a7c03ea863c6b9eb808253c8d8e1ed9cb691d7e35"])
r4 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x80, 0x4, 0xf7, 0x54, 0x0, 0x8, 0x8, 0xd, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3a, 0x2, @perf_config_ext={0x8, 0x9404}, 0x4000, 0x4, 0x8, 0x5, 0xfffffffffffff410, 0x3134, 0x5, 0x0, 0x5b6f, 0x0, 0xc1}, 0xffffffffffffffff, 0x10, r4, 0x2)
syz_read_part_table(0x4, 0x2, &(0x7f0000000000)=[{&(0x7f0000000380)="4f565f733b61f3671b701d68ebc8527a4f1fa374c2f97abf77a4f9b3b8fd08c3fc206f6c75dd6c3060ba450200000000000000007f913fd14b08bfc8a73faa348d29cace600ecacd34b635fbe9a2a68f507ce60b30bb1b882a12e21d923f74c3eb81ba06963319c4927b169b6f3eb130131495c9057f33c2f35e1f5a7a8e20e231f950c64d6c93e1f8533a86183c0147e30608d539c8dac98173f6caa3f8ed7fc25a1c146a8f8130e7ab12da1d94d5a57f6411c0f205b98ce994f424f7c5df67672654f3c5c719730600000000000000843ddfc502cb45c61d6b2df0ed1939ac56af312c2e8c513076cbd65cad9a68fbc9e6e20c2cb59613b13051ca49957a87ef16ca60232f12eae24403520a69da", 0x10f, 0x3}, {&(0x7f00000001c0)="85afcd1ebf19836434dce487cd5a923f9001f97417b0b71480ebd00cde427e49614504ef8e956a24e7e139253c706f50041aa5c5906da3d4fc0a4c9e0724c752bb0cee0d3e3895a20e4b5ebcb5ddaa70cb15be8f18036b03c82cf6d637902979a7626bb5331132148a6878f6819c49ae2de988959c6f52cebfc936222345b7", 0x7f, 0x3}])

18:28:32 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000009)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:28:32 executing program 2:
capset(&(0x7f0000000040)={0x0, 0xffffffffffffffff}, &(0x7f00000000c0)={0x1d5, 0xfffffff7, 0x1f, 0x1, 0x4, 0x8001})
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="01000000000005004008", 0xa, 0x560}, {0x0, 0x0, 0x1000000000c00}], 0x0, &(0x7f0000012b00)=ANY=[])

18:28:32 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5424, &(0x7f00000000c0))

[ 2800.297820] ieee802154 phy0 wpan0: encryption failed: -22
18:28:32 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:28:32 executing program 2:
r0 = inotify_init1(0x0)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
recvfrom$inet6(r1, &(0x7f0000000140)=""/121, 0x79, 0x0, 0x0, 0x0)
inotify_rm_watch(0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x9bbb)
ioctl$SNAPSHOT_S2RAM(r2, 0x330b)
syz_mount_image$nfs4(0x0, &(0x7f0000005040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x6}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = memfd_create(&(0x7f0000000080)='ext4\x00', 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
inotify_init1(0x80000)
dup2(r3, r4)
fsync(r3)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
fcntl$dupfd(r0, 0x0, r6)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000240)=@v1={0x1000000, [{0x2, 0x3}]}, 0xc, 0x0)
rmdir(&(0x7f00000000c0)='./file0\x00')

18:28:33 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={0x0}}, 0x0)

[ 2800.406760] udc-core: couldn't find an available UDC or it's busy
[ 2800.408748] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:28:33 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5425, &(0x7f00000000c0))

[ 2800.546715] udc-core: couldn't find an available UDC or it's busy
[ 2800.547232] ieee802154 phy0 wpan0: encryption failed: -22
[ 2800.548462] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2800.609726] FAULT_INJECTION: forcing a failure.
[ 2800.609726] name failslab, interval 1, probability 0, space 0, times 0
[ 2800.612327] CPU: 0 PID: 16426 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2800.613743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2800.615427] Call Trace:
[ 2800.615974]  dump_stack+0x107/0x167
[ 2800.616746]  should_fail.cold+0x5/0xa
[ 2800.617530]  ? ext4_find_extent+0xa3d/0xd30
[ 2800.618412]  should_failslab+0x5/0x20
[ 2800.619188]  __kmalloc+0x72/0x390
[ 2800.619907]  ext4_find_extent+0xa3d/0xd30
[ 2800.620783]  ext4_ext_map_blocks+0x1c8/0x5850
[ 2800.621717]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2800.622786]  ? SOFTIRQ_verbose+0x10/0x10
18:28:33 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x10000000a)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:28:33 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2800.623615]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2800.624865]  ? SOFTIRQ_verbose+0x10/0x10
[ 2800.625704]  ? ext4_ext_release+0x10/0x10
[ 2800.626553]  ? ext4_map_blocks+0x5e0/0x1970
[ 2800.627442]  ? lock_release+0x680/0x680
[ 2800.628261]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2800.629258]  ? lock_downgrade+0x6d0/0x6d0
[ 2800.630122]  ? down_write+0xe0/0x160
[ 2800.630900]  ? down_write_killable+0x180/0x180
[ 2800.631846]  ext4_map_blocks+0x652/0x1970
[ 2800.632758]  ? kmem_cache_alloc+0x2a6/0x310
[ 2800.633640]  ? __kernel_text_address+0x9/0x40
[ 2800.634554]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2800.635472]  ? jbd2__journal_start+0xf3/0x7e0
[ 2800.636408]  ? __ext4_journal_start_sb+0x214/0x390
[ 2800.637408]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2800.638417]  ext4_iomap_begin+0x3ad/0x700
[ 2800.639277]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2800.640290]  ? kasan_save_stack+0x1b/0x40
[ 2800.641137]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2800.642111]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2800.643400]  ? splice_direct_to_actor+0x387/0x980
[ 2800.644422]  ? do_splice_direct+0x1c4/0x290
[ 2800.645303]  ? do_sendfile+0x553/0x1090
[ 2800.646133]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2800.647080]  ? do_syscall_64+0x33/0x40
[ 2800.647873]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2800.648976]  iomap_apply+0x164/0x810
[ 2800.649741]  ? iomap_dio_rw+0x90/0x90
[ 2800.650521]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2800.651705]  ? mark_held_locks+0x9e/0xe0
[ 2800.652575]  ? filemap_check_errors+0xa5/0x150
[ 2800.653516]  __iomap_dio_rw+0x6cd/0x1110
[ 2800.654341]  ? iomap_dio_rw+0x90/0x90
[ 2800.655140]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2800.656071]  ? generic_update_time+0x21c/0x370
[ 2800.657018]  ? __mnt_drop_write_file+0x9/0x70
[ 2800.657932]  ? evict_inodes+0x420/0x420
[ 2800.658750]  ? down_write_killable+0x180/0x180
[ 2800.659686]  iomap_dio_rw+0x31/0x90
[ 2800.660450]  ext4_file_write_iter+0xb26/0x18e0
[ 2800.661395]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2800.662323]  ? kasan_save_stack+0x32/0x40
[ 2800.663168]  ? direct_splice_actor+0x10f/0x170
[ 2800.664093]  ? splice_direct_to_actor+0x387/0x980
[ 2800.665080]  ? do_splice_direct+0x1c4/0x290
[ 2800.665952]  ? do_sendfile+0x553/0x1090
[ 2800.666759]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2800.667718]  do_iter_readv_writev+0x476/0x750
[ 2800.668649]  ? new_sync_write+0x660/0x660
[ 2800.669488]  ? selinux_file_permission+0x92/0x520
[ 2800.670494]  do_iter_write+0x191/0x670
[ 2800.671312]  ? trace_hardirqs_on+0x5b/0x180
[ 2800.672199]  vfs_iter_write+0x70/0xa0
[ 2800.672983]  iter_file_splice_write+0x762/0xc30
[ 2800.673947]  ? generic_splice_sendpage+0x140/0x140
[ 2800.674951]  ? avc_policy_seqno+0x9/0x70
[ 2800.675775]  ? selinux_file_permission+0x92/0x520
[ 2800.676770]  ? lockdep_init_map_type+0x2c7/0x780
[ 2800.677736]  ? generic_splice_sendpage+0x140/0x140
[ 2800.678731]  direct_splice_actor+0x10f/0x170
[ 2800.679727]  splice_direct_to_actor+0x387/0x980
[ 2800.680739]  ? pipe_to_sendpage+0x380/0x380
[ 2800.681623]  ? do_splice_to+0x160/0x160
[ 2800.682432]  ? security_file_permission+0x24e/0x570
[ 2800.683458]  do_splice_direct+0x1c4/0x290
[ 2800.684314]  ? splice_direct_to_actor+0x980/0x980
[ 2800.685290]  ? selinux_file_permission+0x92/0x520
[ 2800.686276]  ? security_file_permission+0x24e/0x570
[ 2800.687302]  do_sendfile+0x553/0x1090
[ 2800.688090]  ? do_pwritev+0x270/0x270
[ 2800.688885]  ? wait_for_completion_io+0x270/0x270
[ 2800.689873]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2800.690815]  ? vfs_write+0x354/0xa70
[ 2800.691582]  __x64_sys_sendfile64+0x1d1/0x210
[ 2800.692505]  ? __ia32_sys_sendfile+0x220/0x220
[ 2800.693439]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2800.694505]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2800.695555]  do_syscall_64+0x33/0x40
[ 2800.696321]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2800.697366] RIP: 0033:0x7f0f9f161b19
[ 2800.697389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2800.697413] RSP: 002b:00007f0f9c6b6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2800.703556] RAX: ffffffffffffffda RBX: 00007f0f9f275020 RCX: 00007f0f9f161b19
[ 2800.705016] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2800.706471] RBP: 00007f0f9c6b61d0 R08: 0000000000000000 R09: 0000000000000000
[ 2800.707923] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2800.709388] R13: 00007ffdad7d681f R14: 00007f0f9c6b6300 R15: 0000000000022000
18:28:33 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, 0x0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:28:48 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5427, &(0x7f00000000c0))

18:28:48 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001) (fail_nth: 34)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:28:48 executing program 2:
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000005d80)={&(0x7f0000004c80), 0xc, &(0x7f0000005d40)={&(0x7f0000004cc0)={0x24, 0x0, 0x200, 0x70bd26, 0x25dfdbff, {{}, {}, {0x8}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x8, @mcast2, 0x5}, 0x1c)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x5}, 0x409becb7bde85c2, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f00000002c0)={0x3, {{0xa, 0x4e21, 0x7dff, @remote}}, {{0xa, 0x4e20, 0x5c1a294b, @private0={0xfc, 0x0, '\x00', 0x1}, 0xea}}}, 0x108)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x4080012, 0xffffffffffffffff, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000000, 0x50, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r2, r3, &(0x7f0000000280)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x0, 0x989680}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000540)=<r6=>0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000400)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x4000, @fd_index=0x8, 0x20, 0x4, 0x3, 0x0, 0x1}, 0x6)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x142}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_setup(0x42e3, &(0x7f00000005c0)={0x0, 0x9539, 0x20, 0x3, 0x24a}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000640))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000580)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2, r8}}, 0x4)
read(r4, &(0x7f0000000440)=""/86, 0x56)
openat$rtc(0xffffffffffffff9c, &(0x7f0000003580), 0x8000, 0x0)
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder-control\x00', 0x800, 0x0)

18:28:48 executing program 7:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x5, "77004a6efdff00", 0xffffffff, 0x403})
ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, &(0x7f0000000140))
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x22003, 0x0)
ioctl$TIOCGDEV(0xffffffffffffffff, 0x80045432, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = creat(0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000100)={0x40000000})
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
r3 = socket$inet(0x2, 0xa, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1)
write$bt_hci(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB="21020000510007c7753e2d7692a30037692a68ab3fe1cd6ce72f021da924fcc6557f8d02396f5674da6688253fc9c183e01fda23814382ba6c3b2d66c0c182e8ff3fe33696d364e570b87a6a20b80a8f474492f7db4f3a1098ed955d077c5bce38c1138a61a00bebc23020da0b818008562831674170e48321a633220c1d3c64d05fb66f2e81691fc3807227415ea5c24ef53e8ee203782bf6fe453c073b8dd753381a1554878e3efbf186"], 0x7)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x5e, 0x444, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x840, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
dup3(r3, r0, 0x0)

18:28:48 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x3}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2816.135417] ieee802154 phy0 wpan0: encryption failed: -22
18:28:48 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, 0x0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:28:48 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x10000000c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:28:48 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:28:48 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2816.213670] udc-core: couldn't find an available UDC or it's busy
[ 2816.215247] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2816.286571] udc-core: couldn't find an available UDC or it's busy
[ 2816.288384] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:28:48 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5428, &(0x7f00000000c0))

18:28:48 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, 0x0, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:28:48 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x4}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2816.373916] FAULT_INJECTION: forcing a failure.
[ 2816.373916] name failslab, interval 1, probability 0, space 0, times 0
[ 2816.376702] CPU: 0 PID: 16458 Comm: syz-executor.4 Not tainted 5.10.178 #1
[ 2816.378127] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2816.379823] Call Trace:
[ 2816.380381]  dump_stack+0x107/0x167
[ 2816.381152]  should_fail.cold+0x5/0xa
[ 2816.381951]  ? create_object.isra.0+0x3a/0xa20
[ 2816.382897]  should_failslab+0x5/0x20
[ 2816.383686]  kmem_cache_alloc+0x5b/0x310
[ 2816.384559]  create_object.isra.0+0x3a/0xa20
[ 2816.385480]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2816.386540]  kmem_cache_alloc+0x159/0x310
[ 2816.387421]  __es_insert_extent+0x3a9/0x12f0
[ 2816.388365]  ext4_es_insert_extent+0x2dc/0xb10
[ 2816.389338]  ? ext4_es_scan_clu+0x2e0/0x2e0
[ 2816.390233]  ? lock_downgrade+0x6d0/0x6d0
[ 2816.391108]  ? __ext4_handle_dirty_super+0x100/0x100
[ 2816.392159]  ? __es_find_extent_range+0x197/0x4b0
[ 2816.393194]  ? do_raw_read_unlock+0x3b/0x70
[ 2816.394203]  ext4_ext_map_blocks+0x1852/0x5850
[ 2816.395280]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2816.396502]  ? SOFTIRQ_verbose+0x10/0x10
[ 2816.397460]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2816.398677]  ? SOFTIRQ_verbose+0x10/0x10
[ 2816.399635]  ? ext4_ext_release+0x10/0x10
[ 2816.400637]  ? lock_release+0x680/0x680
[ 2816.401525]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2816.402723]  ? lock_downgrade+0x6d0/0x6d0
[ 2816.403699]  ? down_read+0x10f/0x430
[ 2816.404653]  ? down_write+0x160/0x160
[ 2816.405535]  ? ext4_es_lookup_extent+0xc4/0xaa0
[ 2816.406717]  ext4_map_blocks+0x9cc/0x1970
[ 2816.407683]  ? kmem_cache_alloc+0x2a6/0x310
[ 2816.408778]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2816.409813]  ? jbd2__journal_start+0xf3/0x7e0
[ 2816.410947]  ? __ext4_journal_start_sb+0x214/0x390
[ 2816.412067]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2816.413323]  ext4_iomap_begin+0x3ad/0x700
[ 2816.414293]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2816.415432]  ? kasan_save_stack+0x1b/0x40
[ 2816.416385]  ? ext4_file_write_iter+0xb26/0x18e0
[ 2816.417478]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2816.419019]  ? splice_direct_to_actor+0x387/0x980
[ 2816.420280]  ? do_splice_direct+0x1c4/0x290
[ 2816.421439]  ? do_sendfile+0x553/0x1090
[ 2816.422489]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2816.423701]  ? do_syscall_64+0x33/0x40
[ 2816.424727]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2816.426107]  iomap_apply+0x164/0x810
[ 2816.427073]  ? iomap_dio_rw+0x90/0x90
[ 2816.428069]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2816.429582]  ? mark_held_locks+0x9e/0xe0
[ 2816.430650]  ? filemap_check_errors+0xa5/0x150
[ 2816.431852]  __iomap_dio_rw+0x6cd/0x1110
[ 2816.432936]  ? iomap_dio_rw+0x90/0x90
[ 2816.433950]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2816.435125]  ? ext4_orphan_add+0x253/0x9e0
[ 2816.436217]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2816.437496]  ? ext4_empty_dir+0xae0/0xae0
[ 2816.438575]  ? jbd2__journal_start+0xf3/0x7e0
[ 2816.439758]  iomap_dio_rw+0x31/0x90
[ 2816.440719]  ext4_file_write_iter+0xb26/0x18e0
[ 2816.441930]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2816.443108]  ? kasan_save_stack+0x32/0x40
[ 2816.444178]  ? kasan_save_stack+0x1b/0x40
[ 2816.445282]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2816.446591]  ? iter_file_splice_write+0x16d/0xc30
[ 2816.447842]  ? direct_splice_actor+0x10f/0x170
[ 2816.449039]  ? splice_direct_to_actor+0x387/0x980
[ 2816.450281]  ? do_splice_direct+0x1c4/0x290
[ 2816.451390]  ? do_sendfile+0x553/0x1090
[ 2816.452424]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2816.453665]  do_iter_readv_writev+0x476/0x750
[ 2816.454842]  ? new_sync_write+0x660/0x660
[ 2816.455908]  ? selinux_file_permission+0x92/0x520
[ 2816.457200]  do_iter_write+0x191/0x670
[ 2816.458228]  ? trace_hardirqs_on+0x5b/0x180
[ 2816.459353]  vfs_iter_write+0x70/0xa0
[ 2816.460339]  iter_file_splice_write+0x762/0xc30
[ 2816.461580]  ? generic_splice_sendpage+0x140/0x140
[ 2816.462857]  ? avc_policy_seqno+0x9/0x70
[ 2816.463909]  ? selinux_file_permission+0x92/0x520
[ 2816.465198]  ? generic_splice_sendpage+0x140/0x140
[ 2816.466480]  direct_splice_actor+0x10f/0x170
[ 2816.467621]  splice_direct_to_actor+0x387/0x980
[ 2816.468840]  ? pipe_to_sendpage+0x380/0x380
[ 2816.469970]  ? do_splice_to+0x160/0x160
[ 2816.470992]  ? security_file_permission+0x24e/0x570
[ 2816.472298]  do_splice_direct+0x1c4/0x290
[ 2816.473381]  ? splice_direct_to_actor+0x980/0x980
[ 2816.474630]  ? selinux_file_permission+0x92/0x520
[ 2816.475890]  ? security_file_permission+0x24e/0x570
[ 2816.477220]  do_sendfile+0x553/0x1090
[ 2816.478190]  ? do_pwritev+0x270/0x270
[ 2816.479141]  ? wait_for_completion_io+0x270/0x270
[ 2816.480346]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2816.481515]  ? vfs_write+0x354/0xa70
[ 2816.482449]  __x64_sys_sendfile64+0x1d1/0x210
[ 2816.483569]  ? __ia32_sys_sendfile+0x220/0x220
[ 2816.484737]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2816.486049]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2816.487339]  do_syscall_64+0x33/0x40
[ 2816.488269]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2816.489553] RIP: 0033:0x7f0f9f161b19
[ 2816.490494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2816.495090] RSP: 002b:00007f0f9c6d7188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2816.497020] RAX: ffffffffffffffda RBX: 00007f0f9f274f60 RCX: 00007f0f9f161b19
[ 2816.498830] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[ 2816.500662] RBP: 00007f0f9c6d71d0 R08: 0000000000000000 R09: 0000000000000000
[ 2816.502478] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2816.504287] R13: 00007ffdad7d681f R14: 00007f0f9c6d7300 R15: 0000000000022000
18:28:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5429, &(0x7f00000000c0))

18:28:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x0, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2816.549370] ieee802154 phy0 wpan0: encryption failed: -22
18:28:49 executing program 7:
r0 = syz_io_uring_setup(0x1d, &(0x7f0000000000), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000000280))
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x10000000)
r1 = socket$packet(0x11, 0x3, 0x300)
dup2(r1, r0)

18:28:49 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2816.607149] ieee802154 phy0 wpan0: encryption failed: -22
18:28:49 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xed, 0x7, 0x7, 0xd1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x80000001, 0x4, @perf_config_ext={0x9, 0xff}, 0x20e, 0x0, 0x8, 0x3, 0x8, 0x7, 0x7, 0x0, 0x800, 0x0, 0x7}, 0x0, 0x7, r0, 0x9)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
readv(r1, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
r2 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x81, 0x89, 0x6b, 0x3, 0x0, 0x7, 0x5118e, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_bp={0x0}, 0x0, 0xffff, 0x4, 0x2, 0x1b, 0x4, 0x5, 0x0, 0x81}, r2, 0xa, 0xffffffffffffffff, 0x9)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$TIOCMGET(r3, 0x5415, &(0x7f0000000000))
unshare(0x48020200)

18:29:06 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000001)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:29:06 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2833.713243] ieee802154 phy0 wpan0: encryption failed: -22
18:29:06 executing program 2:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x4}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:06 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x10000000d)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:29:06 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x0, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:29:06 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x5}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:06 executing program 7:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
sendmsg$AUDIT_GET(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x3e8, 0x200, 0x70bd26, 0x25dfdbfe, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x80}, 0x4008000)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r0, &(0x7f0000000240)={0x402400, 0xa, 0x8}, &(0x7f0000000280)='./file0\x00', 0x18, 0x0, 0x23456, {0x0, r2}}, 0x5)
rt_sigaction(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000100))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x1000003)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef)
unshare(0x6010780)
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0)
ioctl$RTC_WKALM_SET(r3, 0x4028700f, &(0x7f00000000c0)={0x1, 0x1, {0x24, 0x24, 0x1, 0x3, 0x2, 0xfe2d, 0x0, 0x1d, 0x1}})
acct(&(0x7f0000000040)='./file0\x00')
unshare(0x48020200)

18:29:06 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5437, &(0x7f00000000c0))

18:29:06 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2833.786366] udc-core: couldn't find an available UDC or it's busy
[ 2833.787333] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:06 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5441, &(0x7f00000000c0))

18:29:06 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x0, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2833.815659] ieee802154 phy0 wpan0: encryption failed: -22
18:29:06 executing program 2:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x4}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2833.823778] udc-core: couldn't find an available UDC or it's busy
[ 2833.825444] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:06 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x10000000f)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:29:06 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)

18:29:06 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x6}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:06 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5450, &(0x7f00000000c0))

[ 2833.988253] ieee802154 phy0 wpan0: encryption failed: -22
[ 2834.061591] ieee802154 phy0 wpan0: encryption failed: -22
[ 2849.488255] ieee802154 phy0 wpan0: encryption failed: -22
18:29:22 executing program 2:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x4}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:22 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000002)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:29:22 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x7}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:22 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:29:22 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)

18:29:22 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000010)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:29:22 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5451, &(0x7f00000000c0))

18:29:22 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000240)=@updsa={0x148, 0x1a, 0x1, 0x70bd2c, 0x25dfdbff, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in6=@loopback, {}, {0x3, 0xffffffffffffffff}, {}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}}}, @offload={0xc}]}, 0x148}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f00000000c0)={0x0, r0, 0x6, 0x1, 0x2, 0x9})
r1 = getpid()
getpriority(0x0, r1)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0xfa, 0x1, 0x1, 0x1, 0x0, 0x2, 0x82a, 0xa, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8000, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x8200, 0xb81, 0x9, 0x1, 0xfffffffffffffff7, 0x9, 0x4, 0x0, 0x40, 0x0, 0xffffffffffffff7f}, r1, 0x0, 0xffffffffffffffff, 0x0)

[ 2849.601869] udc-core: couldn't find an available UDC or it's busy
[ 2849.603589] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2849.605699] ieee802154 phy0 wpan0: encryption failed: -22
18:29:22 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5452, &(0x7f00000000c0))

18:29:22 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2849.638799] udc-core: couldn't find an available UDC or it's busy
18:29:22 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)

[ 2849.640611] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:22 executing program 7:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/reserved_size', 0xd2241, 0x104)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000400))
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, @in_args={0x4}}, './file0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000380)=ANY=[@ANYBLOB="0100000001000000180000002b2b44b81b0035c492a1a12373a9b781f46c55946ff0e2370047b78ded4b2b54ee0eda125e6d5f6e59ace83b6423f1649ed1a9f61bd718ed5ce240341e82fcce74906554a517a9b0cd297568ea83960d3c9e7396b30a40a664cc7f37", @ANYRES32=r2, @ANYBLOB="03000000000000002e2f66696c653000"])
r3 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x80, 0x4, 0xf7, 0x54, 0x0, 0x8, 0x8, 0xd, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3a, 0x2, @perf_config_ext={0x8, 0x9404}, 0x4000, 0x4, 0x8, 0x5, 0xfffffffffffff410, 0x3134, 0x5, 0x0, 0x5b6f, 0x0, 0xc1}, 0x0, 0x10, r3, 0x2)
syz_read_part_table(0x4, 0x2, &(0x7f0000000000)=[{&(0x7f0000000240)="4f565f733b61f3671b701d68ebc8527a4f1fa374c2f97abf77a4f9b3b8fd08c3fc206f6c75dd6c3060ba450200000000000000007f913fd14b08bfc8a73faa348d29cace600ecacd34b635fbe9a2a68f507ce60b30bb1b882a12e21d923f74c3eb81ba06963319c4927b169b6f3eb130131495c9057f33c2f35e1f5a7a8e20e231f950c64d6c93e1f8533a86183c0147e30608d539c8dac98173f6caa3f8ed7fc25a1c146a8f8130e7ab12da1d94d5a57f6411c0f205b98ce994f424f7c5df67672654f3c5c719730600000000000000843ddfc502cb45c61d6b2df0ed1939ac56af312c2e8c513076cbd65cad9a68fbc9e6e20c2cb59613b13051ca49957a87ef16ca60232f12eae24403520a69da", 0x10f, 0x11a}, {&(0x7f00000001c0)="3e85afcd1ebf19836434dce487cd5a923f9001f97417b0b71480ebd00cde427e49614504ef8e956a24e7e139253c706f50041aa5c5906da3d4fc0a4c9e0724c752bb0cee0d3e3895a20e6a5ebcb5ddaa70cb15be8f18036b03c82cf6d637902979a7626bb5331132148a6878f6819c49ae2de988959c6f52cebfc936222345b7", 0x80, 0x7}])

18:29:22 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x8}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:22 executing program 2:
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x2d, &(0x7f0000000640)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d3f4655f000000000000000001000000000000000b0000000001000008000000d2420100120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32303232303739373400"/192, 0xc0, 0x400}, {&(0x7f0000010100)="00000000000000000000000076a34e3f63e54dbc8955dd45888f6106010040000c00000000000000d3f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000040000004600000000000000", 0x40, 0x540}, {&(0x7f0000000200)="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", 0x140, 0x640}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d3f4655fd3f4655fd3f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f00000004c0)="ed4100bc36dde400d3f4655fd4f4655fd4f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000a927e20030972d4a5d40907b05e4b1c12974f7615576e7319ffbeddf91034361d0027ce5036c95865da178e2f18896d5bb27baa753e4fa2fd3a30c82ba1a4d7b8c53a1a6e09fec64660f27ac773ce838699ef98c663de93eed5f3846fffaf0cb890ce091d9ee821d07b6a5c288a0c900d2c57f1171cbed9eda5cc639c5dcd41c822461cec2002a4fa7c8f4da79dbba7884c2308b911625c912c0cacd68ac512d", 0xe0, 0x2100}, {&(0x7f00000003c0)="20000000945343359453433500000000d3f4655f000000000000000000000000844e701fafa340c181888421488f0c93747a88296931d03400fefcbb48f870841d43050a32f657f84028e5dbe201bc0c7399843eeca2c26612ec4a3bc118e4f2af7773e6fb81757f80f4f0707ac47d0f09ee871da371a7c42a4d5a14eb7aa6505aa8643e6502ff5f4289575c7a087db7ea1731937ac18d83", 0x98, 0x2180}, {&(0x7f0000011800)="8081000000180000d3f4655fd3f4655fd3f4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000030000000", 0x40, 0x2200}, {&(0x7f0000011900)="20000000000000000000000000000000d3f4655f00"/32, 0x20, 0x2280}, {&(0x7f0000011a00)="8081000000180000d3f4655fd3f4655fd3f4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000040000000", 0x40, 0x2300}, {&(0x7f0000000480)="2000000000000000000000d3f4655f0000000000000000000000000000000000a9093363df70057820a6005d", 0x2c, 0x2380}, {&(0x7f0000011c00)="c041000000400000d3f4655fd3f4655fd3f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2a00}, {&(0x7f0000011d00)="20000000000000000000000000000000d3f4655f00"/32, 0x20, 0x2a80}, {&(0x7f0000011e00)="ed41000000080000d4f4655fd4f4655fd4f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000d6b05c9300000000000000000000000000000000000000000200000020000000945343359453433594534335d4f4655f945343350000000000000000", 0xa0, 0x2b00}, {&(0x7f0000011f00)="ed8100001a040000d4f4655fd4f4655fd4f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000600000000000000000000000000000000000000000000000000000000000000000000000000000000da710e000000000000000000000000000000000000000000000000020000000945343359453433594534335d4f4655f945343350000000000000000", 0xa0, 0x2c00}, {&(0x7f0000012000)="ffa1000026000000d4f4655fd4f4655fd4f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3230323230373937342f66696c65302f66696c653000000000000000000000000000000000000000000000d6e8afef00000000000000000000000000000000000000000000000020000000945343359453433594534335d4f4655f945343350000000000000000", 0xa0, 0x2d00}, {&(0x7f0000012100)="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", 0x1a0, 0x2e00}, {&(0x7f0000012300)="ed81000064000000d4f4655fd4f4655fd4f4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000090000000000000000000000000000000000000000000000000000000000000000000000000000000d9d9ad0100000000000000000000000000000000000000000000000020000000945343359453433594534335d4f4655f945343350000000000000000", 0xa0, 0x3000}, {&(0x7f0000012400)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000000380)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012800)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012900)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012a00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012b00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012c00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012d00)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x18000}, {&(0x7f0000012e00)="0200"/32, 0x20, 0x183fc}, {&(0x7f0000000180)="0300000000000000000000000000000000000000000000000000ec8e6ee481a00000", 0x22, 0x18800}, {&(0x7f0000013000)="0400"/32, 0x20, 0x18c00}, {&(0x7f0000013100)="0500"/32, 0x20, 0x19000}, {&(0x7f0000013200)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x19400}, {&(0x7f0000013300)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x20000}, {&(0x7f0000013400)="0200"/32, 0x20, 0x20400}, {&(0x7f00000001c0)="0300"/32, 0x20, 0x20800}, {&(0x7f0000013600)="0400"/32, 0x20, 0x20c00}, {&(0x7f0000013700)="0500"/32, 0x20, 0x21000}, {&(0x7f0000013800)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x21400}, {&(0x7f0000000340)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x28000}, {&(0x7f0000013a00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x30000}, {&(0x7f0000013f00)='syzkallers\x00'/32, 0x20, 0x38000}, {&(0x7f0000014000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x48000}, {&(0x7f0000000040)="64587a3f0b99b4b0213edaef8a2dd44e6bb5c8e4ee556a762a7452f43e4250503677eb14051dbcfde46957d321fcd8b35951dc7ba8a712ebe2942073085dbc99d01ac54dc5a610d6090d49f0d29d2afb6590ec26e7a0b984666a70e37b91464ae5e57c17cd3b23c515b307ce49a3696894b1315562c13696896385914bec9358274ccb8c926c9e935185d905d57b", 0x8e, 0x8}], 0x2008, &(0x7f00000005c0)=ANY=[@ANYBLOB="9d7500eb686015a1856e23c342b18d9ba036102b016e4f2d85a26c2bc68ae66b8845f188593ac20ccea38d13a8af855eea1078200cab4010d8a7fca4ea5d284c589a92f33f9694ef857a45912bb74473247cf16aa69e2abb4cce5c4d3f9b8a8b340fee09a16055b652417e5f5e4ef0d499eebc0baa1955fad845d23027"])
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000140)=0x1)

18:29:22 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000011)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:29:22 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 1)

18:29:22 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x545d, &(0x7f00000000c0))

[ 2849.795709] ieee802154 phy0 wpan0: encryption failed: -22
[ 2849.835881] FAULT_INJECTION: forcing a failure.
[ 2849.835881] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2849.838330] CPU: 0 PID: 16591 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2849.839736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2849.841450] Call Trace:
[ 2849.841996]  dump_stack+0x107/0x167
[ 2849.842748]  should_fail.cold+0x5/0xa
[ 2849.843549]  _copy_from_user+0x2e/0x1b0
[ 2849.844369]  __copy_msghdr_from_user+0x91/0x4b0
[ 2849.845346]  ? __ia32_sys_shutdown+0x80/0x80
[ 2849.846238]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2849.847316]  ? __lock_acquire+0xbb1/0x5b00
[ 2849.848197]  sendmsg_copy_msghdr+0xa1/0x160
[ 2849.849103]  ? do_recvmmsg+0x6d0/0x6d0
[ 2849.849901]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2849.850994]  ? SOFTIRQ_verbose+0x10/0x10
[ 2849.851824]  ? lock_downgrade+0x6d0/0x6d0
[ 2849.852688]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2849.853789]  ? SOFTIRQ_verbose+0x10/0x10
[ 2849.854634]  ___sys_sendmsg+0xc6/0x170
[ 2849.855450]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2849.855472]  ? __fget_files+0x26d/0x4c0
[ 2849.855491]  ? lock_downgrade+0x6d0/0x6d0
[ 2849.855513]  ? find_held_lock+0x2c/0x110
[ 2849.855539]  ? __fget_files+0x296/0x4c0
[ 2849.855568]  ? __fget_light+0xea/0x290
[ 2849.855593]  __sys_sendmsg+0xe5/0x1b0
[ 2849.855611]  ? __sys_sendmsg_sock+0x40/0x40
[ 2849.855629]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2849.855652]  ? fput_many+0x2f/0x1a0
[ 2849.855672]  ? ksys_write+0x1a9/0x260
[ 2849.855691]  ? __ia32_sys_read+0xb0/0xb0
[ 2849.855714]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2849.855736]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2849.855755]  ? trace_hardirqs_on+0x5b/0x180
[ 2849.855777]  do_syscall_64+0x33/0x40
[ 2849.855798]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2849.855811] RIP: 0033:0x7f73fd2eeb19
[ 2849.855832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2849.855842] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2849.855863] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2849.855874] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2849.855886] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2849.855897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2849.855909] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
[ 2850.009425] ieee802154 phy0 wpan0: encryption failed: -22
[ 2850.712822] udc-core: couldn't find an available UDC or it's busy
[ 2850.713348] udc-core: couldn't find an available UDC or it's busy
[ 2850.714480] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2850.716018] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:39 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000003)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:29:39 executing program 7:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r1=>r0, 0x2, 0x0, 0x100})
r2 = syz_open_dev$vcsa(&(0x7f0000000140), 0xe11, 0x4000)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f00000000c0)={0x8, 'macvlan1\x00', {'wlan0\x00'}, 0xfff})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000240)={'wg2\x00'})
r3 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000002c0)='devices.allow\x00', 0x2, 0x0)
fsetxattr$security_capability(r3, &(0x7f0000000300), &(0x7f0000000340)=@v2={0x2000000, [{0x1, 0x5}, {0x6e1, 0x1}]}, 0x14, 0x3)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r4, 0x0, 0x0, 0x8800000)
fallocate(r4, 0x8, 0x0, 0x0)
sendfile(r1, r0, &(0x7f0000000380)=0x5, 0x694)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$vcsu(&(0x7f00000003c0), 0x3ff, 0x10000)
dup2(r5, r0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000001d00210c0000000000000000040002000800000000000000139273622082b2715b0013e3f876f5a834d854735c769120e44aeaf6"], 0x1c}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x54, 0x1, 0x8, 0x3, 0x0, 0x0, {0xc, 0x0, 0x4}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x1a}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x9}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000011)

18:29:39 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0xe}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:39 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:29:39 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000023)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:29:39 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0x0, r3, 0x0)
r4 = getegid()
setresgid(r4, r4, 0x0)
r5 = getegid()
setresgid(r5, r5, 0x0)
fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000040)={{}, {0x1, 0x1}, [{0x2, 0x3, 0xffffffffffffffff}, {0x2, 0x4}, {0x2, 0x2, r2}, {0x2, 0x4, r3}], {0x4, 0x6}, [{0x8, 0x2, r4}, {0x8, 0x6, 0xffffffffffffffff}, {0x8, 0x7, r5}], {0x10, 0x1}}, 0x5c, 0x2)
syz_emit_ethernet(0xc0, &(0x7f0000000d40)={@multicast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "961517", 0x8a, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xf, "955d69800fd4d91c935e5da9c34e8b085691cea01578fbbe4c03b8315d548389953a6cca9e61b99fa217c3fad4fdffe14e47b6b5c3b9c9ccc4659e6174c054481087f3c469393f99d2a76be44cd19575b8c88c3bd9da4b69628e4634f5083c2537f64cfb816278757f66254b2634a69361b321b3fff322e7"}]}}}}}}, 0x0)

18:29:39 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 2)

18:29:39 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5460, &(0x7f00000000c0))

[ 2867.312858] ieee802154 phy0 wpan0: encryption failed: -22
[ 2867.339741] FAULT_INJECTION: forcing a failure.
[ 2867.339741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2867.342661] CPU: 0 PID: 16617 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2867.344339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2867.346233] Call Trace:
[ 2867.346842]  dump_stack+0x107/0x167
[ 2867.347675]  should_fail.cold+0x5/0xa
[ 2867.348573]  _copy_from_user+0x2e/0x1b0
[ 2867.349490]  iovec_from_user+0x141/0x400
[ 2867.350428]  __import_iovec+0x67/0x590
[ 2867.351319]  ? __ia32_sys_shutdown+0x80/0x80
[ 2867.352320]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2867.353565]  import_iovec+0x83/0xb0
[ 2867.354401]  sendmsg_copy_msghdr+0x131/0x160
[ 2867.355396]  ? do_recvmmsg+0x6d0/0x6d0
[ 2867.356320]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2867.357531]  ? lock_downgrade+0x6d0/0x6d0
[ 2867.358481]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2867.359679]  ? SOFTIRQ_verbose+0x10/0x10
[ 2867.360609]  ___sys_sendmsg+0xc6/0x170
[ 2867.361521]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2867.362571]  ? __fget_files+0x26d/0x4c0
[ 2867.363481]  ? lock_downgrade+0x6d0/0x6d0
[ 2867.364446]  ? find_held_lock+0x2c/0x110
[ 2867.365392]  ? __fget_files+0x296/0x4c0
[ 2867.366311]  ? __fget_light+0xea/0x290
[ 2867.367208]  __sys_sendmsg+0xe5/0x1b0
[ 2867.368077]  ? __sys_sendmsg_sock+0x40/0x40
[ 2867.369063]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2867.370153]  ? fput_many+0x2f/0x1a0
[ 2867.370989]  ? ksys_write+0x1a9/0x260
[ 2867.371871]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2867.373076]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2867.374268]  ? trace_hardirqs_on+0x5b/0x180
[ 2867.375259]  do_syscall_64+0x33/0x40
[ 2867.376115]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2867.377295] RIP: 0033:0x7f73fd2eeb19
[ 2867.378151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2867.382357] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2867.384094] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2867.385732] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2867.387360] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2867.388988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2867.390623] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:29:40 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000004c0))
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000001, 0x10, r0, 0x966b7000)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8}, 0x11000, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3)
pkey_alloc(0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4)
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2, &(0x7f0000000100)=0x3a, 0x0, 0x4)
mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil)
setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r3 = getpid()
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x1, 0x6, 0x1, 0x6, 0x0, 0x5, 0x10010, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000140), 0x1a}, 0x10313, 0xf0, 0x3, 0x0, 0x3, 0x7fffffff, 0x50, 0x0, 0x1, 0x0, 0xfff}, r3, 0x9, 0xffffffffffffffff, 0x0)
sendfile(r2, r1, 0x0, 0x9bbb)

18:29:40 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2867.450411] udc-core: couldn't find an available UDC or it's busy
[ 2867.452121] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:40 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5600, &(0x7f00000000c0))

18:29:40 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x11}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:40 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 3)

[ 2867.530577] udc-core: couldn't find an available UDC or it's busy
[ 2867.532132] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:40 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x1000001da)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2867.679405] ieee802154 phy0 wpan0: encryption failed: -22
[ 2867.712894] FAULT_INJECTION: forcing a failure.
[ 2867.712894] name failslab, interval 1, probability 0, space 0, times 0
[ 2867.715521] CPU: 0 PID: 16641 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2867.717024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2867.718762] Call Trace:
[ 2867.719322]  dump_stack+0x107/0x167
[ 2867.720088]  should_fail.cold+0x5/0xa
[ 2867.720889]  ? __alloc_skb+0x6d/0x5b0
[ 2867.721717]  should_failslab+0x5/0x20
[ 2867.722536]  kmem_cache_alloc_node+0x55/0x330
[ 2867.723502]  __alloc_skb+0x6d/0x5b0
[ 2867.724293]  netlink_sendmsg+0x998/0xdf0
[ 2867.725181]  ? netlink_unicast+0x7f0/0x7f0
[ 2867.726095]  ? netlink_unicast+0x7f0/0x7f0
[ 2867.727010]  sock_sendmsg+0x154/0x190
[ 2867.727814]  ____sys_sendmsg+0x70d/0x870
[ 2867.728689]  ? kernel_sendmsg+0x50/0x50
[ 2867.729549]  ? do_recvmmsg+0x6d0/0x6d0
[ 2867.730385]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2867.731490]  ? lock_downgrade+0x6d0/0x6d0
[ 2867.732383]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2867.733498]  ? SOFTIRQ_verbose+0x10/0x10
[ 2867.734367]  ___sys_sendmsg+0xf3/0x170
[ 2867.735188]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2867.736161]  ? lock_downgrade+0x6d0/0x6d0
[ 2867.737021]  ? find_held_lock+0x2c/0x110
[ 2867.737904]  ? __fget_files+0x296/0x4c0
[ 2867.738751]  ? __fget_light+0xea/0x290
[ 2867.739596]  __sys_sendmsg+0xe5/0x1b0
[ 2867.740381]  ? __sys_sendmsg_sock+0x40/0x40
[ 2867.741287]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2867.742269]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2867.743351]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2867.744426]  ? trace_hardirqs_on+0x5b/0x180
[ 2867.745338]  do_syscall_64+0x33/0x40
[ 2867.746111]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2867.747169] RIP: 0033:0x7f73fd2eeb19
[ 2867.747941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2867.751756] RSP: 002b:00007f73fa843188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2867.753335] RAX: ffffffffffffffda RBX: 00007f73fd402020 RCX: 00007f73fd2eeb19
18:29:40 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2867.754806] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2867.756420] RBP: 00007f73fa8431d0 R08: 0000000000000000 R09: 0000000000000000
[ 2867.757895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
18:29:40 executing program 2:
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x5}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x2}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0xc13}}]}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x4050}, 0x400c1)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x10001, 0x0, &(0x7f0000000180), 0x204002, &(0x7f0000000540)=ANY=[@ANYBLOB='unhide,overriderockperm,iocharset=cp949,block=0x0000000000000800,map=acorn,map=acorn,euid=', @ANYRESDEC, @ANYBLOB="2c61707072616973655f747970653d696d617369672c6f626a5f757365723d2e24257f242b282c7d2c2c6f626a5f726f6c653d5b2d2c666f776e65723d8d0bc871e3c134001904d70a46aecb64831ea9d6eabbfc44c2264fa75bae099aeb824b75a36f13f2035f0834625b324889804c38fe7e7611a0a36e8cf6c7acd937937079ef54b91c84334bcfbe6cd43644ba318e1f42fdb3592978ad536c13329923f33e2e7e23d7f818fcaee73aeef519c32a631d33857459101d72001001cca95af3112a01948b3f7d6eaf7eb5084e8857530173b612249b72109f0a002333fdeed7cc69", @ANYRESDEC=0xee01, @ANYBLOB="2c736d61636b6673666c6f6f723d2c7063723d30303030303030303030303030303030303030302c009e42c6219e0ab9bd5f5a3fd5ba0d68784822a8c0a2d4d8894fa021d8fdcf94c83cddd288061b8e68a0e84fb8c94f1cef9d8786a73a2d102bf61fa5b293101e268af487453d685698c25c7b213b1f8893bc0960d7b79e92c2fe2b96d88c5865"])

[ 2867.759366] R13: 00007ffd8061691f R14: 00007f73fa843300 R15: 0000000000022000
[ 2867.789697] ieee802154 phy0 wpan0: encryption failed: -22
[ 2868.575721] udc-core: couldn't find an available UDC or it's busy
[ 2868.577754] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2868.580229] udc-core: couldn't find an available UDC or it's busy
[ 2868.581790] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:57 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5601, &(0x7f00000000c0))

18:29:57 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000004)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:29:57 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 4)

[ 2885.385123] FAULT_INJECTION: forcing a failure.
[ 2885.385123] name failslab, interval 1, probability 0, space 0, times 0
[ 2885.388026] CPU: 0 PID: 16657 Comm: syz-executor.5 Not tainted 5.10.178 #1
18:29:57 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:29:57 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x44}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:29:57 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000281)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:29:57 executing program 2:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
fchdir(r0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x2, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

18:29:57 executing program 7:
mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
preadv2(r0, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/111, 0x6f}], 0x1, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f00000000c0)={0x6, 0x9, 0xffffff00, 0x7, 0x200})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180), 0x2, 0x2)

[ 2885.389590] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2885.391570] Call Trace:
[ 2885.391842] ieee802154 phy0 wpan0: encryption failed: -22
[ 2885.392174]  dump_stack+0x107/0x167
[ 2885.392200]  should_fail.cold+0x5/0xa
[ 2885.394499]  ? create_object.isra.0+0x3a/0xa20
[ 2885.395540]  should_failslab+0x5/0x20
[ 2885.396463]  kmem_cache_alloc+0x5b/0x310
[ 2885.397416]  create_object.isra.0+0x3a/0xa20
[ 2885.398416]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2885.399745]  kmem_cache_alloc_node+0x169/0x330
[ 2885.400775]  __alloc_skb+0x6d/0x5b0
[ 2885.401754]  netlink_sendmsg+0x998/0xdf0
[ 2885.402680]  ? netlink_unicast+0x7f0/0x7f0
[ 2885.403641]  ? netlink_unicast+0x7f0/0x7f0
[ 2885.404742]  sock_sendmsg+0x154/0x190
[ 2885.405742]  ____sys_sendmsg+0x70d/0x870
[ 2885.406804]  ? kernel_sendmsg+0x50/0x50
[ 2885.407836]  ? do_recvmmsg+0x6d0/0x6d0
[ 2885.408856]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2885.410247]  ? lock_downgrade+0x6d0/0x6d0
[ 2885.411336]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2885.412700]  ? SOFTIRQ_verbose+0x10/0x10
[ 2885.413617]  ___sys_sendmsg+0xf3/0x170
[ 2885.414457]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2885.415443]  ? lock_downgrade+0x6d0/0x6d0
[ 2885.416359]  ? find_held_lock+0x2c/0x110
[ 2885.417244]  ? __fget_files+0x296/0x4c0
[ 2885.418167]  ? __fget_light+0xea/0x290
[ 2885.419070]  __sys_sendmsg+0xe5/0x1b0
[ 2885.419950]  ? __sys_sendmsg_sock+0x40/0x40
[ 2885.420939]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2885.422036]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2885.423237]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2885.424422]  ? trace_hardirqs_on+0x5b/0x180
[ 2885.425435]  do_syscall_64+0x33/0x40
[ 2885.426290]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2885.427442] RIP: 0033:0x7f73fd2eeb19
[ 2885.428204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2885.431969] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2885.433690] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2885.435319] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2885.436953] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2885.438602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2885.440222] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
[ 2885.473677] ieee802154 phy0 wpan0: encryption failed: -22
[ 2885.482619] udc-core: couldn't find an available UDC or it's busy
[ 2885.484723] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:58 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 5)

18:29:58 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000300)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2885.544547] udc-core: couldn't find an available UDC or it's busy
[ 2885.546511] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:29:58 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5602, &(0x7f00000000c0))

18:29:58 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:29:58 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x48}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2885.626070] FAULT_INJECTION: forcing a failure.
[ 2885.626070] name failslab, interval 1, probability 0, space 0, times 0
[ 2885.628840] CPU: 0 PID: 16682 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2885.630752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2885.633042] Call Trace:
[ 2885.633794]  dump_stack+0x107/0x167
[ 2885.634805]  should_fail.cold+0x5/0xa
[ 2885.635866]  should_failslab+0x5/0x20
[ 2885.636919]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2885.638322]  ? netlink_sendmsg+0x998/0xdf0
[ 2885.639495]  __alloc_skb+0xb1/0x5b0
[ 2885.640511]  netlink_sendmsg+0x998/0xdf0
18:29:58 executing program 7:
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r2, 0x1}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, r2, 0x10, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0xce000000, 0x6f}}}}, [@NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x4081)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
sendmmsg$inet6(r3, &(0x7f0000004d00), 0x2f, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x30502, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001)
sendfile(r4, 0xffffffffffffffff, &(0x7f0000000340)=0x7, 0xfffffffffffffffa)
sendfile(r6, r4, 0x0, 0xd5)
ioctl$MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, &(0x7f00000003c0))
sendfile(r5, r4, &(0x7f0000000040)=0xb, 0x80000001)
setsockopt$inet6_IPV6_ADDRFORM(r4, 0x29, 0x1, &(0x7f0000000000), 0x4)
recvfrom$inet6(r3, 0x0, 0x0, 0x2000, 0x0, 0x0)

[ 2885.641672]  ? netlink_unicast+0x7f0/0x7f0
[ 2885.641720]  ? netlink_unicast+0x7f0/0x7f0
[ 2885.641742]  sock_sendmsg+0x154/0x190
[ 2885.641769]  ____sys_sendmsg+0x70d/0x870
[ 2885.641799]  ? kernel_sendmsg+0x50/0x50
[ 2885.641825]  ? do_recvmmsg+0x6d0/0x6d0
[ 2885.647693]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2885.649130]  ? lock_downgrade+0x6d0/0x6d0
[ 2885.650287]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2885.651722]  ? SOFTIRQ_verbose+0x10/0x10
[ 2885.652842]  ___sys_sendmsg+0xf3/0x170
[ 2885.653540] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 2885.653784]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2885.655911]  ? lock_downgrade+0x6d0/0x6d0
[ 2885.656891]  ? find_held_lock+0x2c/0x110
[ 2885.658039]  ? __fget_files+0x296/0x4c0
[ 2885.659147]  ? __fget_light+0xea/0x290
[ 2885.660223]  __sys_sendmsg+0xe5/0x1b0
[ 2885.661266]  ? __sys_sendmsg_sock+0x40/0x40
[ 2885.662454]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2885.663745]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2885.665168]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2885.666581]  ? trace_hardirqs_on+0x5b/0x180
[ 2885.667084] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 2885.667759]  do_syscall_64+0x33/0x40
[ 2885.669512]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2885.670906] RIP: 0033:0x7f73fd2eeb19
[ 2885.671778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2885.676775] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2885.678551] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2885.680188] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2885.681843] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2885.683481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2885.685121] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:29:58 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r0, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

18:29:58 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xfff, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000010e000c000000d40000000f000000010000000000000000000000002040000020000020000000d7f4655ed7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000800000001f1002802000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x100000, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)

[ 2885.715325] ieee802154 phy0 wpan0: encryption failed: -22
18:29:58 executing program 7:
syz_emit_ethernet(0x84, &(0x7f0000000200)={@multicast, @remote, @val={@val={0x9100, 0x4, 0x0, 0x3}, {0x8100, 0x5, 0x1}}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "f27e5f", 0x46, 0x2c, 0x0, @private2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x0, [0x4]}}}}}}}, 0x0)
syz_emit_ethernet(0xc0, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}, @void, {@x25={0x805, {0x2, 0x80, 0xfb, "063b3cc9a76d098796a21912f0fa8a400f2bdd552b19f8cec835695d1837cccf9df31068a94ab8c67b8519735f7dc2c31ad3220cbc43820fa90419d69f6e72cca17b8260435b150d1c5405a58d295d88739812b274ab659ac512932ffc980f7bc916df9e3669c31845768fdd19f5116670a48e0d94fe4f423111449cf31f54df0b0ec614b95f59f848085ab1b168f686bb3892a0ea7bd885deb8dfe24660ac9681b722cd3d8ff183c128556ef54866"}}}}, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @mpls={[{0x6}, {0x5}, {0x8000, 0x0, 0x1}, {0x2, 0x0, 0x1}, {0x3}], @llc={@llc={0xf0, 0x80, "cf62", "6ec8f8a6974f99"}}}}, 0x1f)

[ 2885.879422] ieee802154 phy0 wpan0: encryption failed: -22
18:30:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5603, &(0x7f00000000c0))

18:30:16 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000005)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:30:16 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x4c}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:30:16 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000500)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:30:16 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 6)

18:30:16 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r0, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

18:30:16 executing program 2:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000180), 0x40800, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000200)={0x53, 0xffffffffffffffff, 0x6, 0x40, @scatter={0x5, 0x0, &(0x7f0000001480)=[{&(0x7f00000001c0)=""/53, 0x35}, {&(0x7f0000001500)=""/254, 0xfe}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000000040)=""/42, 0x2a}, {&(0x7f0000001380)=""/253, 0xfd}]}, &(0x7f0000000080)="11165262fdc2", &(0x7f00000000c0)=""/177, 0x0, 0x0, 0x0, 0x0})

18:30:16 executing program 7:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, &(0x7f0000000080)=0x5, 0x4, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x11010, 0x0, 0xfffffffb, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3)
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='environ\x00')
readv(r0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1)
clock_gettime(0x0, &(0x7f00000000c0)={<r1=>0x0, <r2=>0x0})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={r1, r2+60000000}, 0x1, 0x1, 0x1}, 0x0)
madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0xffffffffffffff8a, 0x0, 0x0, 0x0, 0x0, 0x4, 0x100000000, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x200001, 0xffffffffffffffff}, 0x44061, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x1010, r0, 0x0)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1)
r4 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r5=>r0, {0x8}}, './cgroup/cgroup.procs\x00'})
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r3)
sendmsg$TIPC_NL_KEY_FLUSH(r5, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f0000001a00)={0x328, r6, 0x10, 0x70bd28, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10000}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_NET={0x50, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5cc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}, @TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8001}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xffffffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x326}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8d}]}, @TIPC_NLA_MEDIA={0x2c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_MEDIA={0x98, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffff55}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc00000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x401}]}, @TIPC_NLA_MEDIA={0xdc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1b5}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xdcd2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x373}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}]}, @TIPC_NLA_LINK={0x44, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}]}, @TIPC_NLA_SOCK={0x5c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x401}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xff}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}]}, 0x328}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
clone3(&(0x7f0000001980)={0x309203400, &(0x7f0000001740), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r4}}, 0x58)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

[ 2904.047812] ieee802154 phy0 wpan0: encryption failed: -22
[ 2904.057256] FAULT_INJECTION: forcing a failure.
[ 2904.057256] name failslab, interval 1, probability 0, space 0, times 0
[ 2904.059783] CPU: 0 PID: 16721 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2904.061195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2904.062792] Call Trace:
[ 2904.063301]  dump_stack+0x107/0x167
[ 2904.064002]  should_fail.cold+0x5/0xa
[ 2904.064734]  ? create_object.isra.0+0x3a/0xa20
[ 2904.065626]  should_failslab+0x5/0x20
[ 2904.066362]  kmem_cache_alloc+0x5b/0x310
[ 2904.067151]  create_object.isra.0+0x3a/0xa20
[ 2904.067991]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2904.068967]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2904.069955]  ? netlink_sendmsg+0x998/0xdf0
[ 2904.070776]  __alloc_skb+0xb1/0x5b0
[ 2904.071482]  netlink_sendmsg+0x998/0xdf0
[ 2904.072265]  ? netlink_unicast+0x7f0/0x7f0
[ 2904.073082]  ? netlink_unicast+0x7f0/0x7f0
[ 2904.073893]  sock_sendmsg+0x154/0x190
[ 2904.074620]  ____sys_sendmsg+0x70d/0x870
[ 2904.075391]  ? kernel_sendmsg+0x50/0x50
[ 2904.076143]  ? do_recvmmsg+0x6d0/0x6d0
[ 2904.076899]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2904.077917]  ? lock_downgrade+0x6d0/0x6d0
[ 2904.078709]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2904.079700]  ? SOFTIRQ_verbose+0x10/0x10
[ 2904.080474]  ___sys_sendmsg+0xf3/0x170
[ 2904.081215]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2904.082095]  ? lock_downgrade+0x6d0/0x6d0
[ 2904.082882]  ? find_held_lock+0x2c/0x110
[ 2904.083663]  ? __fget_files+0x296/0x4c0
[ 2904.084435]  ? __fget_light+0xea/0x290
[ 2904.085184]  __sys_sendmsg+0xe5/0x1b0
[ 2904.085917]  ? __sys_sendmsg_sock+0x40/0x40
[ 2904.086743]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2904.087644]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2904.088645]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2904.089657]  ? trace_hardirqs_on+0x5b/0x180
[ 2904.090467]  do_syscall_64+0x33/0x40
[ 2904.091188]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2904.092159] RIP: 0033:0x7f73fd2eeb19
[ 2904.092877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2904.096335] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2904.097770] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2904.099118] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2904.100453] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2904.101811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2904.103146] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:30:16 executing program 2:
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x2f4b}, {&(0x7f0000000040)="ed410000fc00000040d9f4655fdaf4655fdaf4655f000000b3c028a1e8", 0x1d, 0x2200}], 0x0, &(0x7f0000000000)=ANY=[@ANYRESDEC])
chroot(&(0x7f0000000180)='./file0\x00')
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000003c40)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)

18:30:16 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5605, &(0x7f00000000c0))

[ 2904.124633] udc-core: couldn't find an available UDC or it's busy
[ 2904.126245] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2904.140525] udc-core: couldn't find an available UDC or it's busy
[ 2904.141807] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2904.145729] ieee802154 phy0 wpan0: encryption failed: -22
18:30:16 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r0, 0x541c, 0x0)
r1 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, 0x0)
creat(0x0, 0x1)

18:30:16 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000600)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2905.143729] udc-core: couldn't find an available UDC or it's busy
[ 2905.145338] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2905.146786] udc-core: couldn't find an available UDC or it's busy
[ 2905.149473] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:30:33 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5606, &(0x7f00000000c0))

18:30:33 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x101}}, './file0\x00'})
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
r1 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="034344303031", 0x6, 0x8000}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="a375f51c28834de29c23c73572b44313c954f1ced4209dcef65e17e559672445df699c05dc5d368436ac24fbeed6100d57ba4916467fa44f4212a6259889eed35551ab8a0518bd292a65eb3000"/90])
openat(r1, &(0x7f0000000040)='./file0\x00', 0x20000, 0x18)
writev(r1, &(0x7f0000000080), 0x0)

18:30:33 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x60}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:30:33 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000006)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:30:33 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 7)

18:30:33 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f0070687931000000000c0005007fffffff00000000050020000000000012abf3e41bb244590c8f7c290657472f153b5db02afbcbf1e6dabac6f96c6ec92692969efa06482cab75fc7cd1384f27459c823945cc3bfd12eb14d5ea84b502c956960113e32c6c4f7511e096c5ad2e202cc2c9ffa5a53b1fba163405b3ede60ba111e4d2923ea5e0a5d3e857a993e5322884b058c2c33f73827d5a4d3e2f05dc2cd0ab1315fc8910cb55b2973aaa17459d420d491c2761143c9611ee4960e9c71650ad4e0557533ae351bc505784d05666594deba9923fb144ce4684b6c02ed76a9448e720e495434487cefd1bfff2b9e43fb9ca5e3343a560239170c3242c133637279ad71f29f2b3ec4ed4352bd854fc14266502f90543be82d6cb04f9b9c0089d3dba6c6b534af9b2ed7dc89b2be3a4878471d17a74a3df92d0401a3a2ea9b14074e4c245716e9b4b232de758c1301ecdafe83b4fef164b1c0a4cdfe74b53d7e3391161a37def19806c8c8c5a0858c03242eff95f58a4ed6104c320c11d505b4273f2b8394698cf585226546adc2c092567b22e7b9abb586f3064943b3449c9068feede998a569a2e3d56c29906537138afcd87183a35e10bf28cfe2575e96b909885a55b84843927efb84e288b5028bb1d25ad3c17995a631fc5"], 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r3)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x30, r4, 0x6ca8e08d8cd7014b, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'geneve0\x00'}]}, 0x30}}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000063b5d9fda302c10a7deb1569f461f3d5da50088cc0104b4f05d4e42d07d6165a4e377c47c5e39ba9ff0035a7b43ef0fc7f1b4560ee22ab330f7e00000000ce4b58ab9d68d22e6cc69072ddf3f8abb5f335c083d65f18cb6e254f70513fe5b180aa077b5c08b89e54f18bf01c19edc070c63f11bba7436b8f67733aeed17945b235e621aff1fd510f837b", @ANYRES16=r4, @ANYBLOB="1a04ac1414aa"], 0x1c}, 0x1, 0x0, 0x0, 0x4004011}, 0x4000000)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

18:30:33 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:30:33 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000700)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2920.812736] ieee802154 phy0 wpan0: encryption failed: -22
[ 2920.818736] FAULT_INJECTION: forcing a failure.
[ 2920.818736] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2920.821480] CPU: 0 PID: 16764 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2920.822971] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2920.824747] Call Trace:
[ 2920.825323]  dump_stack+0x107/0x167
[ 2920.826234]  should_fail.cold+0x5/0xa
[ 2920.827241]  _copy_from_iter_full+0x201/0xa60
[ 2920.828408]  ? __virt_addr_valid+0x128/0x350
[ 2920.829553]  ? __check_object_size+0x319/0x440
[ 2920.830780]  netlink_sendmsg+0x879/0xdf0
[ 2920.831664]  ? netlink_unicast+0x7f0/0x7f0
[ 2920.832569]  ? netlink_unicast+0x7f0/0x7f0
[ 2920.833476]  sock_sendmsg+0x154/0x190
[ 2920.834285]  ____sys_sendmsg+0x70d/0x870
[ 2920.835153]  ? kernel_sendmsg+0x50/0x50
[ 2920.835969]  ? do_recvmmsg+0x6d0/0x6d0
[ 2920.836763]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2920.837831]  ? lock_downgrade+0x6d0/0x6d0
[ 2920.838680]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2920.839743]  ? SOFTIRQ_verbose+0x10/0x10
[ 2920.840574]  ___sys_sendmsg+0xf3/0x170
[ 2920.841411]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2920.842419]  ? lock_downgrade+0x6d0/0x6d0
[ 2920.843314]  ? find_held_lock+0x2c/0x110
[ 2920.844194]  ? __fget_files+0x296/0x4c0
[ 2920.845058]  ? __fget_light+0xea/0x290
[ 2920.845914]  __sys_sendmsg+0xe5/0x1b0
[ 2920.846743]  ? __sys_sendmsg_sock+0x40/0x40
[ 2920.847671]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2920.848687]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2920.849833]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2920.850943]  ? trace_hardirqs_on+0x5b/0x180
[ 2920.851871]  do_syscall_64+0x33/0x40
[ 2920.852670]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2920.853764] RIP: 0033:0x7f73fd2eeb19
[ 2920.854576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2920.858474] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2920.860126] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2920.861577] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2920.863031] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2920.864477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2920.865938] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:30:33 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5607, &(0x7f00000000c0))

18:30:33 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 8)

[ 2920.927599] udc-core: couldn't find an available UDC or it's busy
[ 2920.929307] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:30:33 executing program 7:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0)
socket$packet(0x11, 0x0, 0x300)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000080)=0x4, 0x9)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f00000000c0)={0x0, 0x0, r0, 0x8001})
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100)

[ 2920.955649] ieee802154 phy0 wpan0: encryption failed: -22
[ 2920.972581] udc-core: couldn't find an available UDC or it's busy
[ 2920.974245] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2921.003659] FAULT_INJECTION: forcing a failure.
[ 2921.003659] name failslab, interval 1, probability 0, space 0, times 0
[ 2921.006029] CPU: 0 PID: 16777 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2921.007709] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2921.009407] Call Trace:
[ 2921.010063]  dump_stack+0x107/0x167
[ 2921.010820]  should_fail.cold+0x5/0xa
[ 2921.011753]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280
[ 2921.013111]  should_failslab+0x5/0x20
[ 2921.014057]  __kmalloc+0x72/0x390
[ 2921.014787]  genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280
[ 2921.016333]  genl_family_rcv_msg_doit+0xda/0x330
[ 2921.017310]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2921.018995]  ? cap_capable+0x1d6/0x240
[ 2921.019802]  ? security_capable+0x95/0xc0
[ 2921.020749]  ? ns_capable+0xe2/0x110
[ 2921.021516]  genl_rcv_msg+0x33c/0x5a0
[ 2921.022310]  ? genl_get_cmd+0x480/0x480
[ 2921.023128]  ? nl80211_send_iface+0x1990/0x1990
[ 2921.024083]  ? lock_release+0x680/0x680
[ 2921.024894]  ? netlink_deliver_tap+0xf4/0xcd0
[ 2921.025833]  netlink_rcv_skb+0x14b/0x430
[ 2921.026671]  ? genl_get_cmd+0x480/0x480
[ 2921.027491]  ? netlink_ack+0xab0/0xab0
[ 2921.028298]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2921.029230]  ? is_vmalloc_addr+0x7b/0xb0
[ 2921.030088]  genl_rcv+0x24/0x40
[ 2921.030874]  netlink_unicast+0x549/0x7f0
[ 2921.031942]  ? netlink_attachskb+0x870/0x870
[ 2921.033077]  ? __virt_addr_valid+0x128/0x350
[ 2921.034269]  netlink_sendmsg+0x90f/0xdf0
[ 2921.035241]  ? netlink_unicast+0x7f0/0x7f0
[ 2921.036168]  ? netlink_unicast+0x7f0/0x7f0
[ 2921.037052]  sock_sendmsg+0x154/0x190
[ 2921.037895]  ____sys_sendmsg+0x70d/0x870
[ 2921.038735]  ? kernel_sendmsg+0x50/0x50
[ 2921.039540]  ? do_recvmmsg+0x6d0/0x6d0
[ 2921.040334]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2921.041396]  ? lock_downgrade+0x6d0/0x6d0
[ 2921.042247]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2921.043309]  ? SOFTIRQ_verbose+0x10/0x10
[ 2921.044154]  ___sys_sendmsg+0xf3/0x170
[ 2921.044997]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2921.045991]  ? lock_downgrade+0x6d0/0x6d0
[ 2921.046902]  ? find_held_lock+0x2c/0x110
[ 2921.047789]  ? __fget_files+0x296/0x4c0
[ 2921.048656]  ? __fget_light+0xea/0x290
[ 2921.049501]  __sys_sendmsg+0xe5/0x1b0
[ 2921.050332]  ? __sys_sendmsg_sock+0x40/0x40
[ 2921.051264]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2921.052285]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2921.053406]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2921.054526]  ? trace_hardirqs_on+0x5b/0x180
[ 2921.055454]  do_syscall_64+0x33/0x40
[ 2921.056255]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2921.057355] RIP: 0033:0x7f73fd2eeb19
[ 2921.058175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2921.062105] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2921.063735] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2921.065257] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2921.066802] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2921.068326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2921.069862] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:30:33 executing program 2:
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="03000000000000000a00000000000000ff010000000000000000000000000001000000ed0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a00000000000000ff01000000000000000000000000000100"/202], 0x110)
ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000000180)={0x2, 0x7e850000, 0x5, 0x0, 0x0, [{{r0}, 0x8e}, {{}, 0x2}, {{r2}, 0x20f}, {{r3}, 0x800}, {{r0}, 0x1ff}]})
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
close_range(r1, r5, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r4, 0x80047210, &(0x7f0000000140))
r6 = syz_open_dev$rtc(&(0x7f0000000080), 0x9, 0x101001)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r6, 0x4004f506, &(0x7f00000000c0)=0x1)
unshare(0x48020200)
unshare(0x58040280)
r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/pid_for_children\x00')
setns(r7, 0x20000000)

18:30:33 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:30:33 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5608, &(0x7f00000000c0))

18:30:33 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000900)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:30:33 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x68}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2921.226371] ieee802154 phy0 wpan0: encryption failed: -22
[ 2921.373632] ieee802154 phy0 wpan0: encryption failed: -22
[ 2922.116279] udc-core: couldn't find an available UDC or it's busy
[ 2922.117352] udc-core: couldn't find an available UDC or it's busy
[ 2922.118117] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2922.121739] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2936.874551] FAULT_INJECTION: forcing a failure.
[ 2936.874551] name failslab, interval 1, probability 0, space 0, times 0
[ 2936.876145] CPU: 1 PID: 16805 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2936.876153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2936.876158] Call Trace:
[ 2936.876178]  dump_stack+0x107/0x167
[ 2936.876194]  should_fail.cold+0x5/0xa
[ 2936.876218]  ? create_object.isra.0+0x3a/0xa20
[ 2936.880671]  should_failslab+0x5/0x20
[ 2936.881168]  kmem_cache_alloc+0x5b/0x310
[ 2936.881679]  create_object.isra.0+0x3a/0xa20
[ 2936.882271]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2936.882908]  __kmalloc+0x16e/0x390
[ 2936.883384]  genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280
[ 2936.884216]  genl_family_rcv_msg_doit+0xda/0x330
[ 2936.884844]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2936.885682]  ? cap_capable+0x1d6/0x240
[ 2936.886217]  ? security_capable+0x95/0xc0
[ 2936.886759]  ? ns_capable+0xe2/0x110
[ 2936.887247]  genl_rcv_msg+0x33c/0x5a0
[ 2936.887729]  ? genl_get_cmd+0x480/0x480
[ 2936.888246]  ? nl80211_send_iface+0x1990/0x1990
[ 2936.888851]  ? lock_release+0x680/0x680
[ 2936.889373]  netlink_rcv_skb+0x14b/0x430
[ 2936.889893]  ? genl_get_cmd+0x480/0x480
[ 2936.890423]  ? netlink_ack+0xab0/0xab0
[ 2936.890931]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2936.891526]  ? is_vmalloc_addr+0x7b/0xb0
[ 2936.892051]  genl_rcv+0x24/0x40
[ 2936.892645]  netlink_unicast+0x549/0x7f0
[ 2936.893251]  ? netlink_attachskb+0x870/0x870
[ 2936.893974]  ? __virt_addr_valid+0x128/0x350
[ 2936.894590]  netlink_sendmsg+0x90f/0xdf0
[ 2936.895111]  ? netlink_unicast+0x7f0/0x7f0
[ 2936.895671]  ? netlink_unicast+0x7f0/0x7f0
[ 2936.896240]  sock_sendmsg+0x154/0x190
[ 2936.896757]  ____sys_sendmsg+0x70d/0x870
[ 2936.897304]  ? kernel_sendmsg+0x50/0x50
[ 2936.897835]  ? do_recvmmsg+0x6d0/0x6d0
[ 2936.898352]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2936.899054]  ? lock_downgrade+0x6d0/0x6d0
[ 2936.899589]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2936.900269]  ? SOFTIRQ_verbose+0x10/0x10
[ 2936.900807]  ___sys_sendmsg+0xf3/0x170
[ 2936.901337]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2936.901933]  ? lock_downgrade+0x6d0/0x6d0
18:30:49 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000007)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:30:49 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000a00)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:30:49 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7e4655f070000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
write(0xffffffffffffffff, 0x0, 0x0)
stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0x0, r0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0xa2001, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000000480)=@abs, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000500)=""/37, 0x25}, {&(0x7f0000000540)=""/232, 0xe8}], 0x2, &(0x7f0000000680)=[@cred={{0x1c}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000006c0)=""/190, 0xbe}, {&(0x7f0000000780)=""/167, 0xa7}, {&(0x7f0000000840)=""/67, 0x43}, {&(0x7f00000008c0)=""/108, 0x6c}, {&(0x7f0000000940)=""/191, 0xbf}, {&(0x7f0000000a00)=""/172, 0xac}, {&(0x7f0000000ac0)=""/210, 0xd2}, {&(0x7f0000000bc0)=""/38, 0x26}], 0x8, &(0x7f0000000c80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000d00)=""/212, 0xd4}, {&(0x7f0000000e00)=""/139, 0x8b}, {&(0x7f0000000ec0)=""/97, 0x61}, {&(0x7f0000000f40)=""/51, 0x33}], 0x4, &(0x7f0000000fc0)=ANY=[@ANYBLOB="1c000000040000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x90}}, {{&(0x7f0000001080)=@abs, 0x6e, &(0x7f0000001340)=[{&(0x7f0000001100)=""/247, 0xf7}, {&(0x7f0000001200)=""/162, 0xa2}, {&(0x7f00000012c0)=""/91, 0x5b}], 0x3, &(0x7f0000001380)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xa8}}, {{0x0, 0x0, &(0x7f0000001880)=[{&(0x7f0000001440)=""/240, 0xf0}, {&(0x7f0000001540)=""/36, 0x24}, {&(0x7f0000001580)=""/250, 0xfa}, {&(0x7f0000001680)=""/132, 0x84}, {&(0x7f0000001740)=""/231, 0xe7}, {&(0x7f00000001c0)=""/53, 0x35}], 0x6, &(0x7f0000001900)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x78}}, {{0x0, 0x0, &(0x7f0000001fc0)=[{&(0x7f0000001980)=""/246, 0xf6}, {&(0x7f0000001a80)=""/153, 0x99}, {&(0x7f0000001b40)=""/169, 0xa9}, {&(0x7f0000001c80)=""/165, 0xa5}, {&(0x7f0000001d40)=""/102, 0x66}, {&(0x7f0000001dc0)=""/16, 0x10}, {&(0x7f0000001e00)=""/220, 0xdc}, {&(0x7f0000001f00)=""/145, 0x91}], 0x8}}], 0x6, 0x21, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000021c0))
r2 = getegid()
setresgid(r2, r2, 0x0)
r3 = getpid()
r4 = getegid()
setresgid(r4, r4, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000000040)=0xb, 0x80000001)
r7 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
r8 = getpid()
sendmsg$unix(r1, &(0x7f0000002280)={&(0x7f0000000140)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000080)}, {&(0x7f00000022c0)="65a65f284f710a9e65ce60a6c46832eaf131ee3187efe8b1c51bd4d0194efed701048879835b1ec8d3feed7777dfdfa5c04546daf5790f2e85fb4de41c4a2c63c66db21957ff0208821b1de8ea67214926dae710e9e0de5a2aeea0dfa98e061af92ec1644831290cee254b4746aad213a71fe0e76425e4fae4e1b325b3688b7b72bb3520dee671601d298576e15aa0d0ee5ffce3679f98879af6e0a37bb566bc71d12d9092e8bc8d57c27271de69bcfebd42f5c15a4b7b3e04d5e4efb8dc67ef0a186882b87cf7e390665a9fae00a2492e9078aebe794fb5489f86efcb4076ffa3243c5eef24a63d9605cc", 0xeb}, {&(0x7f0000000380)="f0f7baaec7bcc2ad8ca481a6aee77eeadb1bb4b53aef9f769ca342df28e85f38278da6580c050446553772ee3226e1227866876ceb316814d72cb30f31b2ee1fffc8969d48c051d7126b0920b7e9bd62121afe23812188bca75cb2c90e0c1fa238e39193d67fc3be0372e306be575f778f16a4942fde15a47e20ad8d081ad77dbe8179922a06cdb9323f74", 0x8b}], 0x3, &(0x7f0000002200)=[@cred={{0x1c, 0x1, 0x2, {r8, r0, 0xee01}}}, @rights={{0x18, 0x1, 0x1, [r5, r7]}}, @cred={{0x1c, 0x1, 0x2, {r3, r0, r4}}}], 0x58, 0x4010}, 0x10008080)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYBLOB="0f43669b5a653100e7e4a11d7a1512c1f97188a21d021f44babb5f2d5eaa75ac1ecba4c225b42a88ebee5010f9d3200c671b028c1fd76f00b8757804b62a502c721bfbe2069a64735b52e6f45d7735d4e34e325e79871b1fb3a6df0d422c4f54febb166d18db97a528a6b03bef704d4689ae84b2460dfaa27a1601b605a2d70bcf95a65dfe185151f6e75928a0f137dd5b9fceea52bdae49967ca37019469882520a0826b51d58757ef7a4fbfdf5bd"])
syz_open_procfs(0x0, 0x0)

18:30:49 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:30:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 9)

18:30:49 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000001140)={<r0=>0x0, 0x0}, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r1)
readv(r0, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/44, 0x2c}], 0x1)

18:30:49 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x6c}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:30:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x5609, &(0x7f00000000c0))

[ 2936.902582]  ? find_held_lock+0x2c/0x110
[ 2936.903209]  ? __fget_files+0x296/0x4c0
[ 2936.903760]  ? __fget_light+0xea/0x290
[ 2936.904263]  __sys_sendmsg+0xe5/0x1b0
[ 2936.904755]  ? __sys_sendmsg_sock+0x40/0x40
[ 2936.905316]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2936.905913]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2936.906620]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2936.907298]  ? trace_hardirqs_on+0x5b/0x180
[ 2936.907876]  do_syscall_64+0x33/0x40
[ 2936.908356]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2936.909039] RIP: 0033:0x7f73fd2eeb19
[ 2936.909545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2936.911969] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2936.912962] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2936.913906] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2936.914804] ieee802154 phy0 wpan0: encryption failed: -22
[ 2936.914885] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2936.914894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2936.914902] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:30:49 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0))
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:30:49 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x10000000, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r0, 0x5000940a, &(0x7f00000005c0)={{r1}, "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"})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000004)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff})
sendfile(r3, r2, 0x0, 0xb052)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f00000000c0))
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000000180)=@v1={0x1000000, [{0x4bf, 0x2}]}, 0xc, 0x3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000)
syncfs(r4)
r5 = openat(r2, &(0x7f0000000000)='./file0\x00', 0x800, 0x248)
read(0xffffffffffffffff, &(0x7f0000000380)=""/215, 0xd7)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r6, 0x29, 0x30, &(0x7f0000000480)=ANY=[@ANYBLOB="00000000ecec1b940a00000000000000ff010000010000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d7833392000000000000000000000000000002000000000000000000000000000000b3314605cd8cf0e20306d19cb90795188d254d9ab40525763964335e5d35d47664d5"], 0x90)
ioctl$AUTOFS_IOC_FAIL(r6, 0x9361, 0x66)
openat$incfs(r5, 0x0, 0x18082, 0x20)

[ 2937.020534] ieee802154 phy0 wpan0: encryption failed: -22
18:30:49 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 10)

18:30:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560a, &(0x7f00000000c0))

[ 2937.036560] udc-core: couldn't find an available UDC or it's busy
[ 2937.037346] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2937.050875] FAULT_INJECTION: forcing a failure.
[ 2937.050875] name failslab, interval 1, probability 0, space 0, times 0
[ 2937.053326] CPU: 0 PID: 16825 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2937.054813] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2937.056544] Call Trace:
[ 2937.057118]  dump_stack+0x107/0x167
[ 2937.057909]  should_fail.cold+0x5/0xa
[ 2937.058740]  ? __alloc_skb+0x6d/0x5b0
[ 2937.059139] udc-core: couldn't find an available UDC or it's busy
[ 2937.059543]  should_failslab+0x5/0x20
[ 2937.060281] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2937.061039]  kmem_cache_alloc_node+0x55/0x330
[ 2937.061067]  __alloc_skb+0x6d/0x5b0
[ 2937.063554]  ? genl_rcv_msg+0x33c/0x5a0
[ 2937.063579]  netlink_ack+0x1ed/0xab0
[ 2937.063604]  ? nl80211_send_iface+0x1990/0x1990
[ 2937.063628]  ? netlink_sendmsg+0xdf0/0xdf0
[ 2937.066709]  ? lock_release+0x680/0x680
[ 2937.067510]  ? __lockdep_reset_lock+0x180/0x180
[ 2937.068491]  netlink_rcv_skb+0x348/0x430
[ 2937.069334]  ? genl_get_cmd+0x480/0x480
[ 2937.070170]  ? netlink_ack+0xab0/0xab0
[ 2937.071006]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2937.071958]  ? is_vmalloc_addr+0x7b/0xb0
[ 2937.072805]  genl_rcv+0x24/0x40
[ 2937.073495]  netlink_unicast+0x549/0x7f0
[ 2937.074371]  ? netlink_attachskb+0x870/0x870
[ 2937.075284]  ? __virt_addr_valid+0x128/0x350
[ 2937.076391]  netlink_sendmsg+0x90f/0xdf0
[ 2937.077247]  ? netlink_unicast+0x7f0/0x7f0
[ 2937.078151]  ? netlink_unicast+0x7f0/0x7f0
[ 2937.079024]  sock_sendmsg+0x154/0x190
[ 2937.079813]  ____sys_sendmsg+0x70d/0x870
[ 2937.080655]  ? kernel_sendmsg+0x50/0x50
[ 2937.081471]  ? do_recvmmsg+0x6d0/0x6d0
[ 2937.082279]  ? perf_trace_lock+0xac/0x490
[ 2937.083141]  ? __lockdep_reset_lock+0x180/0x180
[ 2937.084095]  ? perf_trace_lock+0xac/0x490
[ 2937.084947]  ? SOFTIRQ_verbose+0x10/0x10
[ 2937.085800]  ___sys_sendmsg+0xf3/0x170
[ 2937.086628]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2937.087580]  ? lock_downgrade+0x6d0/0x6d0
[ 2937.088443]  ? find_held_lock+0x2c/0x110
[ 2937.089298]  ? __fget_files+0x296/0x4c0
[ 2937.090148]  ? __fget_light+0xea/0x290
[ 2937.090962]  __sys_sendmsg+0xe5/0x1b0
[ 2937.091748]  ? __sys_sendmsg_sock+0x40/0x40
[ 2937.092640]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2937.093619]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2937.094710]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2937.095776]  ? trace_hardirqs_on+0x5b/0x180
[ 2937.096677]  do_syscall_64+0x33/0x40
[ 2937.097446]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2937.098517] RIP: 0033:0x7f73fd2eeb19
[ 2937.099289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2937.103076] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2937.104643] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2937.106132] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2937.107605] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2937.109070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2937.110551] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:30:49 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0))
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:30:49 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000b00)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:30:49 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x74}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:30:49 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560b, &(0x7f00000000c0))

[ 2937.165481] ieee802154 phy0 wpan0: encryption failed: -22
[ 2937.240515] ieee802154 phy0 wpan0: encryption failed: -22
[ 2937.881710] udc-core: couldn't find an available UDC or it's busy
[ 2937.881764] udc-core: couldn't find an available UDC or it's busy
[ 2937.883379] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2937.884929] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:31:07 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560c, &(0x7f00000000c0))

18:31:07 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000c00)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:31:07 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0))
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:07 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 11)

18:31:07 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000008)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:31:07 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='status\x00')
connect$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @loopback}, 0x10)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000380), 0x101080, 0x0)
dup3(r1, 0xffffffffffffffff, 0x80000)
readv(r0, &(0x7f0000001540)=[{&(0x7f0000000140)=""/44, 0x2c}], 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
pipe(&(0x7f0000000080))
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
openat(r2, &(0x7f00000000c0)='./file0\x00', 0x2, 0x121)
r4 = socket$netlink(0x10, 0x3, 0x0)
preadv(r4, 0x0, 0x0, 0x8, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
fcntl$dupfd(r5, 0x0, r0)

18:31:07 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x7a}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:31:07 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020801000470008000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='check=strict'])
chdir(&(0x7f0000000040)='./file0\x00')
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r1=>r0, {0x100}}, './mnt\x00'})
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg$unix(r1, &(0x7f0000002e80)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000380)=""/71, 0x47}], 0x1}}, {{&(0x7f0000000400)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000300)=""/3, 0x3}, {&(0x7f0000000480)=""/47, 0x2f}], 0x2, &(0x7f0000000540)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000000580)=@abs, 0x6e, &(0x7f0000001a80)=[{&(0x7f0000000600)=""/229, 0xe5}, {&(0x7f0000000700)=""/193, 0xc1}, {&(0x7f0000000800)=""/97, 0x61}, {&(0x7f0000000880)}, {&(0x7f00000008c0)=""/70, 0x46}, {&(0x7f0000000940)=""/103, 0x67}, {&(0x7f00000009c0)=""/125, 0x7d}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000001a40)=""/58, 0x3a}], 0x9, &(0x7f0000001c80)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x158}}, {{&(0x7f0000001b40), 0x6e, &(0x7f0000001bc0)=[{&(0x7f0000001e00)=""/220, 0xdc}], 0x1, &(0x7f0000001f00)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{&(0x7f0000001fc0)=@abs, 0x6e, &(0x7f0000002280)=[{&(0x7f0000002040)=""/213, 0xd5}, {&(0x7f0000002140)=""/253, 0xfd}, {&(0x7f0000002240)}], 0x3, &(0x7f00000022c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}}, {{&(0x7f00000023c0), 0x6e, &(0x7f0000002600)=[{&(0x7f0000002440)=""/54, 0x36}, {&(0x7f0000002480)=""/159, 0x9f}, {&(0x7f0000002540)=""/149, 0x95}], 0x3, &(0x7f0000002640)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf8}}, {{&(0x7f0000002740)=@abs, 0x6e, &(0x7f0000002d80)=[{&(0x7f00000027c0)=""/236, 0xec}, {&(0x7f00000028c0)=""/248, 0xf8}, {&(0x7f00000029c0)=""/167, 0xa7}, {&(0x7f0000002a80)=""/54, 0x36}, {&(0x7f0000002ac0)=""/216, 0xd8}, {&(0x7f0000002bc0)=""/207, 0xcf}, {&(0x7f0000002cc0)=""/191, 0xbf}], 0x7, &(0x7f0000002e00)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}], 0x7, 0x20, &(0x7f0000003040)={0x0, 0x989680})
stat(&(0x7f0000000000)='./mnt\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0xffffffffffffffff, r2, 0x0)
getsockname(0xffffffffffffffff, &(0x7f0000000140)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @initdev}}, &(0x7f00000001c0)=0x80)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='mnt/encrypted_dir\x00', 0x0, 0x0)

[ 2954.451533] FAULT_INJECTION: forcing a failure.
[ 2954.451533] name failslab, interval 1, probability 0, space 0, times 0
[ 2954.453887] CPU: 1 PID: 16863 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2954.455289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2954.456955] Call Trace:
[ 2954.457499]  dump_stack+0x107/0x167
[ 2954.458336]  should_fail.cold+0x5/0xa
[ 2954.459150]  ? create_object.isra.0+0x3a/0xa20
[ 2954.460196]  should_failslab+0x5/0x20
[ 2954.460984]  kmem_cache_alloc+0x5b/0x310
[ 2954.461863]  create_object.isra.0+0x3a/0xa20
[ 2954.462840]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2954.463934]  kmem_cache_alloc_node+0x169/0x330
[ 2954.464993]  __alloc_skb+0x6d/0x5b0
[ 2954.465737]  ? genl_rcv_msg+0x33c/0x5a0
[ 2954.466608]  netlink_ack+0x1ed/0xab0
[ 2954.467441]  ? nl80211_send_iface+0x1990/0x1990
[ 2954.468455]  ? netlink_sendmsg+0xdf0/0xdf0
[ 2954.469471]  ? lock_release+0x680/0x680
[ 2954.470275]  ? netlink_deliver_tap+0xf4/0xcd0
[ 2954.471192]  netlink_rcv_skb+0x348/0x430
[ 2954.472076]  ? genl_get_cmd+0x480/0x480
[ 2954.472958]  ? netlink_ack+0xab0/0xab0
[ 2954.473751]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2954.474676]  ? is_vmalloc_addr+0x7b/0xb0
[ 2954.475570]  genl_rcv+0x24/0x40
[ 2954.476293]  netlink_unicast+0x549/0x7f0
[ 2954.477207]  ? netlink_attachskb+0x870/0x870
[ 2954.478107]  ? __virt_addr_valid+0x128/0x350
[ 2954.479143]  netlink_sendmsg+0x90f/0xdf0
[ 2954.480027]  ? netlink_unicast+0x7f0/0x7f0
[ 2954.480983]  ? netlink_unicast+0x7f0/0x7f0
[ 2954.482005]  sock_sendmsg+0x154/0x190
[ 2954.482803]  ____sys_sendmsg+0x70d/0x870
[ 2954.483768]  ? kernel_sendmsg+0x50/0x50
[ 2954.484581]  ? do_recvmmsg+0x6d0/0x6d0
[ 2954.485376]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2954.486510]  ? lock_downgrade+0x6d0/0x6d0
[ 2954.487438]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2954.488619]  ? SOFTIRQ_verbose+0x10/0x10
[ 2954.489481]  ___sys_sendmsg+0xf3/0x170
[ 2954.490341]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2954.491343]  ? lock_downgrade+0x6d0/0x6d0
[ 2954.492252]  ? find_held_lock+0x2c/0x110
[ 2954.493183]  ? __fget_files+0x296/0x4c0
[ 2954.494023]  ? __fget_light+0xea/0x290
[ 2954.494906]  __sys_sendmsg+0xe5/0x1b0
[ 2954.495738]  ? __sys_sendmsg_sock+0x40/0x40
[ 2954.496723]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2954.497719]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2954.498767]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2954.499815]  ? trace_hardirqs_on+0x5b/0x180
[ 2954.500679]  do_syscall_64+0x33/0x40
[ 2954.501535]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2954.502708] RIP: 0033:0x7f73fd2eeb19
[ 2954.503445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2954.507667] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2954.509570] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2954.511333] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2954.513202] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2954.515105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2954.516735] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
[ 2954.536852] ieee802154 phy0 wpan0: encryption failed: -22
18:31:07 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560d, &(0x7f00000000c0))

[ 2954.560595] udc-core: couldn't find an available UDC or it's busy
[ 2954.562234] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:31:07 executing program 2:
r0 = syz_mount_image$nfs4(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x7fffffff, 0x5, &(0x7f0000000540)=[{&(0x7f00000000c0)="74086a6f84109c1894d44fa14d566fdaa9541bafbc0029239d3f05a0ac197c4eb69be17225629c58c6cdd50cba0660743a921a9063ec2f3f02af856a3c41cb8bc1597495a9c7ca396df60f61125de51f1836636ae8d941a1d931206bb930f427799103cd3a93775c0ff1f6c7f2598bbb19e608a3f1bb76ec1677fad3977e105352e6c09c5dbf2f09ca197612517650322d71ebc54881544a27a910bd5322b59980acc1b8ac23839a", 0xa8, 0x8}, {&(0x7f0000000180)="675a1c6997f0280144e59f746b7ae67cb36cb7ae2e35beab2114433d46842e03aaa36484248d3af77ad429b9d5c7057aa93a6a204e015be40319421cc14a9ee6d68e5aefbdbb62c7af0eef683b84be5f1247ac6e95c3256bd3050bf212ecd454dbed27bcf513adaaed08768c61b3a76eb95ae3bb82e0d014", 0x78, 0x2}, {&(0x7f0000000200)="e1c8fbdf9c6f2f3b2091d523faa1841e05232e0521ebe63db40a7e7f5326f9c02ecb55f79c9f66a3953b0707558496344f10f3960855ef3bdca20bd256f7d55cd231f7db260e1b827d4e0d28025a1b2ad968fd9327de744c6e5a0fd353101b5df071a9962dd9eb60e0ff39930b050fa364c712a636adab74cd156ce30bae31e1c979dfe1d2285fcaa09629f27105", 0x8e, 0xea44}, {&(0x7f0000000440)="8217670172b4b2ab7bc712ea961b12f976a81e6b3e73b29e812f0f75d819df4ccc699527255bd729f55a6448b9b4748ce76cbe23a72487002a04c4fadb5ddc135de5df93d9cbe169f8a61a8881646dd788bec9c46993f1c1d866e6d3bf9d949ee019a54f48aa83a12978850a48af14132df417515fbbc1604941b46d474d5c0110927a5de0f14a2ce2eae05cc0962671a89060a8daa23169a3d3c06721b003bb2a0f56a9a2db060ff9650f46c455195e7ae21072031052aa89ccd84e4b70b7db431be2", 0xc3, 0xfffffffffffffffb}, {&(0x7f00000002c0)="238bcaa38b7109943e9051e7e8b2cb1d2bd7a0b59a4df5", 0x17, 0x8001}], 0x60006, &(0x7f0000000300)=ANY=[@ANYBLOB="2c3830322e31352e34204d4143002c2c5e2bb3bfa806626a5f757365723d29232c7375626a5f726f6c653d2c00"])
r1 = openat(r0, &(0x7f0000000380)='./file0\x00', 0x10000, 0x2)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = accept4$unix(r1, &(0x7f0000000680), &(0x7f0000000700)=0x6e, 0x80800)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000740))
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000640), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r4)
r6 = fork()
perf_event_open(&(0x7f00000005c0)={0x2, 0x80, 0x6, 0xff, 0x9d, 0x2, 0x0, 0xfffffffffffffc00, 0x3000, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80, 0x2, @perf_config_ext={0x10001, 0x9}, 0x9b0c, 0xfffffffffffffe01, 0x73bfcdc0, 0x3, 0x4, 0x8, 0x5, 0x0, 0x1000, 0x0, 0xffffffff}, r6, 0xd, r1, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_DEV(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x2c, r5, 0x101, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x2c}}, 0x0)

[ 2954.605593] udc-core: couldn't find an available UDC or it's busy
[ 2954.607389] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:31:07 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 12)

[ 2954.634723] ieee802154 phy0 wpan0: encryption failed: -22
18:31:07 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2954.655144] FAULT_INJECTION: forcing a failure.
[ 2954.655144] name failslab, interval 1, probability 0, space 0, times 0
[ 2954.657526] CPU: 0 PID: 16874 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2954.658964] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2954.660692] Call Trace:
[ 2954.661243]  dump_stack+0x107/0x167
[ 2954.661996]  should_fail.cold+0x5/0xa
[ 2954.662823]  should_failslab+0x5/0x20
[ 2954.662845]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2954.662864]  ? netlink_ack+0x1ed/0xab0
[ 2954.662889]  __alloc_skb+0xb1/0x5b0
[ 2954.662915]  netlink_ack+0x1ed/0xab0
[ 2954.662937]  ? nl80211_send_iface+0x1990/0x1990
[ 2954.662959]  ? netlink_sendmsg+0xdf0/0xdf0
[ 2954.662981]  ? lock_release+0x680/0x680
[ 2954.663000]  ? netlink_deliver_tap+0xf4/0xcd0
18:31:07 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000d00)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2954.663026]  netlink_rcv_skb+0x348/0x430
[ 2954.663048]  ? genl_get_cmd+0x480/0x480
[ 2954.663070]  ? netlink_ack+0xab0/0xab0
18:31:07 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 13)

18:31:07 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x300}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2954.663101]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2954.663119]  ? is_vmalloc_addr+0x7b/0xb0
[ 2954.663143]  genl_rcv+0x24/0x40
[ 2954.663162]  netlink_unicast+0x549/0x7f0
[ 2954.663190]  ? netlink_attachskb+0x870/0x870
[ 2954.663207]  ? __virt_addr_valid+0x128/0x350
[ 2954.663240]  netlink_sendmsg+0x90f/0xdf0
[ 2954.663269]  ? netlink_unicast+0x7f0/0x7f0
[ 2954.663302]  ? netlink_unicast+0x7f0/0x7f0
[ 2954.663320]  sock_sendmsg+0x154/0x190
[ 2954.663339]  ____sys_sendmsg+0x70d/0x870
[ 2954.663360]  ? kernel_sendmsg+0x50/0x50
[ 2954.663375]  ? do_recvmmsg+0x6d0/0x6d0
[ 2954.663396]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2954.663417]  ? lock_downgrade+0x6d0/0x6d0
[ 2954.663440]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2954.663457]  ? SOFTIRQ_verbose+0x10/0x10
[ 2954.663480]  ___sys_sendmsg+0xf3/0x170
[ 2954.663501]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2954.663526]  ? lock_downgrade+0x6d0/0x6d0
[ 2954.663548]  ? find_held_lock+0x2c/0x110
[ 2954.663577]  ? __fget_files+0x296/0x4c0
[ 2954.663607]  ? __fget_light+0xea/0x290
[ 2954.663634]  __sys_sendmsg+0xe5/0x1b0
18:31:07 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x1, 0x0, '\x00', [{0x0, 0x3}, {0x800, 0x0, 0x400000000000000, 0x0, 0x0, 0xfffffffffffffffe}], ['\x00']})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(r3, &(0x7f00000002c0), 0x4a, 0x61bf, 0x2)
flock(r3, 0x6)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000180))
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x30, 0x1c, 0xd38865185e4463b1, 0x0, 0x0, {0xa}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x9e'}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@private2}]}, 0x30}}, 0x0)
fcntl$dupfd(r1, 0x406, 0xffffffffffffffff)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, r4, &(0x7f0000000040)=0xb, 0x80000001)
read(r5, &(0x7f0000000200)=""/119, 0x77)
unshare(0x48020200)

[ 2954.663652]  ? __sys_sendmsg_sock+0x40/0x40
[ 2954.663671]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2954.663710]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2954.663732]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2954.663751]  ? trace_hardirqs_on+0x5b/0x180
[ 2954.663774]  do_syscall_64+0x33/0x40
[ 2954.663795]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2954.663808] RIP: 0033:0x7f73fd2eeb19
[ 2954.663832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
18:31:07 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000e00)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2954.663843] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2954.663867] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2954.663879] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2954.663890] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2954.663902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2954.663913] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
[ 2954.840531] ieee802154 phy0 wpan0: encryption failed: -22
[ 2954.969781] FAULT_INJECTION: forcing a failure.
[ 2954.969781] name failslab, interval 1, probability 0, space 0, times 0
[ 2954.979593] CPU: 0 PID: 16895 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2954.979611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2954.982725] Call Trace:
[ 2954.982754]  dump_stack+0x107/0x167
[ 2954.982780]  should_fail.cold+0x5/0xa
[ 2954.984739] ieee802154 phy0 wpan0: encryption failed: -22
[ 2954.984884]  ? create_object.isra.0+0x3a/0xa20
[ 2954.987120]  should_failslab+0x5/0x20
[ 2954.987145]  kmem_cache_alloc+0x5b/0x310
[ 2954.987175]  create_object.isra.0+0x3a/0xa20
[ 2954.987199]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2954.987224]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2954.987249]  ? netlink_ack+0x1ed/0xab0
[ 2954.987279]  __alloc_skb+0xb1/0x5b0
[ 2954.987312]  netlink_ack+0x1ed/0xab0
[ 2954.987334]  ? nl80211_send_iface+0x1990/0x1990
[ 2954.987364]  ? netlink_sendmsg+0xdf0/0xdf0
[ 2954.987387]  ? lock_release+0x680/0x680
[ 2954.987410]  ? netlink_deliver_tap+0xf4/0xcd0
[ 2954.987443]  netlink_rcv_skb+0x348/0x430
[ 2954.987466]  ? genl_get_cmd+0x480/0x480
[ 2954.987489]  ? netlink_ack+0xab0/0xab0
[ 2954.987522]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2954.987543]  ? is_vmalloc_addr+0x7b/0xb0
[ 2954.987567]  genl_rcv+0x24/0x40
[ 2954.987590]  netlink_unicast+0x549/0x7f0
[ 2954.987623]  ? netlink_attachskb+0x870/0x870
[ 2954.987646]  ? __virt_addr_valid+0x128/0x350
[ 2954.987679]  netlink_sendmsg+0x90f/0xdf0
[ 2954.987707]  ? netlink_unicast+0x7f0/0x7f0
[ 2954.987741]  ? netlink_unicast+0x7f0/0x7f0
[ 2954.987759]  sock_sendmsg+0x154/0x190
[ 2954.987781]  ____sys_sendmsg+0x70d/0x870
[ 2955.009408]  ? kernel_sendmsg+0x50/0x50
[ 2955.009423]  ? do_recvmmsg+0x6d0/0x6d0
[ 2955.009451]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2955.012251]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2955.012268]  ? SOFTIRQ_verbose+0x10/0x10
[ 2955.012290]  ___sys_sendmsg+0xf3/0x170
[ 2955.012310]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2955.012335]  ? lock_downgrade+0x6d0/0x6d0
[ 2955.016892]  ? find_held_lock+0x2c/0x110
[ 2955.017732]  ? __fget_files+0x296/0x4c0
[ 2955.018561]  ? __fget_light+0xea/0x290
[ 2955.019362]  __sys_sendmsg+0xe5/0x1b0
[ 2955.020138]  ? __sys_sendmsg_sock+0x40/0x40
[ 2955.021014]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2955.022129]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2955.023209]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2955.024260]  ? trace_hardirqs_on+0x5b/0x180
[ 2955.025143]  do_syscall_64+0x33/0x40
[ 2955.025903]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2955.026954] RIP: 0033:0x7f73fd2eeb19
[ 2955.027709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2955.031449] RSP: 002b:00007f73fa864188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2955.032984] RAX: ffffffffffffffda RBX: 00007f73fd401f60 RCX: 00007f73fd2eeb19
[ 2955.034426] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 2955.035871] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2955.037340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
18:31:07 executing program 7:
r0 = signalfd4(0xffffffffffffffff, &(0x7f00000002c0), 0x8, 0x0)
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x10, 0x8, 0x3, 0x1000000, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
fallocate(r1, 0x0, 0x20, 0xc57)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r0, 0x80, &(0x7f0000000180)=@caif=@dbg={0x25, 0x2, 0xff}, 0x0, 0x0, 0x1, {0x0, r4}}, 0x97de)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/disk', 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x5e, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1f, 0xfffffffffffffffd}, 0x10800, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e22, @empty}, 0x10)
clock_gettime(0x4, 0x0)
ppoll(&(0x7f00000001c0)=[{r5, 0xc424}, {r6, 0x8}, {0xffffffffffffffff, 0x400}], 0x3, &(0x7f0000000240), &(0x7f0000000280)={[0x32e589f9]}, 0x8)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0xa, &(0x7f0000000180)=0x2, 0x4)
bind$inet6(r7, &(0x7f0000000200)={0xa, 0x4e1f, 0x0, @loopback, 0x401}, 0x1c)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c)
sendfile(r8, r7, 0x0, 0x9bbb)

[ 2955.038806] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
18:31:07 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:07 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x500}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2955.209795] ieee802154 phy0 wpan0: encryption failed: -22
[ 2955.261786] ieee802154 phy0 wpan0: encryption failed: -22
[ 2955.866020] udc-core: couldn't find an available UDC or it's busy
[ 2955.866757] udc-core: couldn't find an available UDC or it's busy
[ 2955.867390] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2955.869827] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:31:23 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000f00)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:31:23 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0) (fail_nth: 14)

18:31:23 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560e, &(0x7f00000000c0))

18:31:23 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x80000009)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:31:23 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x6d0883)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0xc0105303, &(0x7f0000000440)={0x0, @time})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000380)={0xfff, 0x0, 0x1, 'queue0\x00', 0x7ff})
readv(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/141, 0x8d}, {&(0x7f0000000180)=""/206, 0xce}, {&(0x7f0000000280)=""/210, 0xd2}], 0x3)

18:31:23 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:23 executing program 7:
umount2(0x0, 0xa)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"/771], 0x2f6)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
chmod(&(0x7f0000000400)='./file0\x00', 0x141)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x301441, 0x80)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x22902, 0x0)
copy_file_range(r0, 0x0, r1, 0x0, 0xa1, 0x0)
syz_io_uring_setup(0x25, &(0x7f0000000080), &(0x7f0000fe9000/0x4000)=nil, &(0x7f0000fea000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000000000))

18:31:23 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x600}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2971.017709] ieee802154 phy0 wpan0: encryption failed: -22
[ 2971.050429] FAULT_INJECTION: forcing a failure.
[ 2971.050429] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2971.053773] CPU: 0 PID: 16936 Comm: syz-executor.5 Not tainted 5.10.178 #1
[ 2971.055755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2971.058087] Call Trace:
[ 2971.058853]  dump_stack+0x107/0x167
[ 2971.059888]  should_fail.cold+0x5/0xa
[ 2971.060893]  _copy_to_user+0x2e/0x180
[ 2971.061779]  simple_read_from_buffer+0xcc/0x160
[ 2971.062899]  proc_fail_nth_read+0x198/0x230
[ 2971.063886]  ? proc_sessionid_read+0x230/0x230
[ 2971.064928]  ? security_file_permission+0x24e/0x570
[ 2971.066062]  ? perf_trace_initcall_start+0x101/0x380
[ 2971.067241]  ? proc_sessionid_read+0x230/0x230
[ 2971.068279]  vfs_read+0x228/0x580
[ 2971.069079]  ksys_read+0x12d/0x260
[ 2971.069904]  ? vfs_write+0xa70/0xa70
[ 2971.070772]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2971.072225]  ? syscall_enter_from_user_mode+0x1d/0x50
18:31:23 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180), 0x80, 0x0)
write$tcp_mem(r2, &(0x7f00000003c0)={0xfffffffffffff448, 0x20, 0xaf, 0x20, 0x7}, 0x48)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x400}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3}, './file0/file0\x00'})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @local}, &(0x7f00000000c0)=0x10, 0x800)
setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000140)={@empty, @remote, 0x0, 0x6, [@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x18}, @empty, @dev={0xac, 0x14, 0x14, 0x34}, @multicast2]}, 0x28)
syncfs(r4)
add_key(0x0, 0x0, &(0x7f0000000000)='t', 0x1, 0xfffffffffffffffb)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)="ff4344303031", 0x6, 0x8800}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000030000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a0843451c0119000000000000190000000000000000ed000000000000ed6600170000000000001700080000000008007809140b2a3a080200000100000101015252050181505824016d4100000000416d02000000000000020000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a08008c001a0000000000", 0xf6, 0xb800}], 0x0, &(0x7f0000011700))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000002c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="ff000000000000002e2f66546c758b810eb2d72c653000b4feb5a7582d479e7dca80c82c44703d209a97b791997738163424e9bb49b80ed54ec5cb53bc413f6f01bc4164bdb3efa5936ba250e3401743fea43f0df38991c8d11d4a670f752a701c4b847002666b4a36025f07595f1b25d0d6be67c62a7fd104be9fe3453d1d70e692f9da4eb1a21dfa6d05645951cc3b510d3cbb98420298a4ea142797dd71e13962b80f2e1d410b5c42ce07947b5a641c09c6492b7f130b28873e3c"])

[ 2971.072275]  do_syscall_64+0x33/0x40
[ 2971.072298]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2971.072313] RIP: 0033:0x7f73fd2a169c
[ 2971.072336] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2971.072348] RSP: 002b:00007f73fa864170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
18:31:23 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x200001, 0x8)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000180))
r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="007da1804886b1655e09966a7e07c44fecf87834ecdbb6650240e9635802006dcb1b3d4462fe59be4c704b17c759b22d78c09367f8490180ffffe15dcf7d0932dbaed64f8c680c37873c7d65eecdf0eaed8aa6cb52ef5ae7ab35864fec9cb6832dcf658d3b207a59e9d55e0757fcf48c97ef843f7e7986f5520f5c1169f4c6f8dd2f0fdca0235bccc2a12aa7e9621b1a6f4085e4e7c188b7edd9ff"])
mkdirat(r1, &(0x7f0000000040)='./file0\x00', 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000180)={0x2})
ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f00000001c0))
creat(&(0x7f0000000040)='./file0\x00', 0x50)
openat(0xffffffffffffffff, &(0x7f00000006c0)='./file1\x00', 0x40, 0x42)
unshare(0x48020200)

[ 2971.072371] RAX: ffffffffffffffda RBX: 0000000000000028 RCX: 00007f73fd2a169c
[ 2971.072384] RDX: 000000000000000f RSI: 00007f73fa8641e0 RDI: 0000000000000004
[ 2971.072396] RBP: 00007f73fa8641d0 R08: 0000000000000000 R09: 0000000000000000
[ 2971.072409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
18:31:23 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2971.072422] R13: 00007ffd8061691f R14: 00007f73fa864300 R15: 0000000000022000
[ 2971.103531] udc-core: couldn't find an available UDC or it's busy
[ 2971.103559] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2971.134542] udc-core: couldn't find an available UDC or it's busy
[ 2971.134566] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2971.162278] ieee802154 phy0 wpan0: encryption failed: -22
18:31:23 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x10000c000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2971.209675] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
18:31:23 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x700}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:31:23 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:31:23 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:23 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
setresgid(0x0, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f0000000140), 0x6e, &(0x7f0000001380)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/2, 0x2}, {&(0x7f0000001200)=""/124, 0x7c}, {&(0x7f0000001280)}, {&(0x7f00000012c0)=""/166, 0xa6}], 0x5, &(0x7f0000001400)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r1=>0x0}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x118}, 0x10020)
setgid(r1)
readv(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000000c0)={0x3, 0x135, 0x7ff})
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f0000000100))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0xee01, 0xffffffffffffffff}}, './file0\x00'})
semget$private(0x0, 0x0, 0x1)
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000040)={{}, {0x1, 0x7}, [{0x2, 0x1}], {}, [], {0x10, 0x4}}, 0x2c, 0x3)

[ 2971.320372] ieee802154 phy0 wpan0: encryption failed: -22
[ 2971.451571] ieee802154 phy0 wpan0: encryption failed: -22
18:31:24 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x10000e000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:31:24 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

[ 2971.703188] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2972.318762] udc-core: couldn't find an available UDC or it's busy
[ 2972.319491] udc-core: couldn't find an available UDC or it's busy
[ 2972.320404] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2972.324222] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:31:38 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0xe00}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:31:38 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x81)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
sendfile(r2, r1, &(0x7f0000000140), 0x9)
write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[], 0xfdef)
r4 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000240)={0x20, 0x0, &(0x7f0000000180)=[@increfs_done={0x40106308, 0x3}, @free_buffer], 0x43, 0x0, &(0x7f00000001c0)="c6217eb80acdb63500730b20219537317d28f8d9c046e2bf8924e37477a41f2cc27c54c889820188b48a9fbfee7352ed937e74ab5d51ecc7b129818104138bc56b1865"})
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x40880, 0x0)
r6 = eventfd(0x101)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000280)={{0x1, 0x1, 0x18, r6, {0x5, 0x3}}, './file0\x00'})
ioctl$CDROMREADAUDIO(r5, 0x530e, &(0x7f0000000100)={@lba, 0x1, 0x4b, &(0x7f0000000080)=""/75})
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:31:38 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:38 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:31:38 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x1fffffff5)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:31:38 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x8000000a)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:31:38 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560f, &(0x7f00000000c0))

18:31:38 executing program 7:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r1, &(0x7f0000000380)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002440)=""/24, 0x18}}, {{&(0x7f0000000040)=@ethernet={0x0, @random}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/123, 0x7b}, {&(0x7f00000004c0)=""/252, 0xfc}, {&(0x7f0000000280)=""/28, 0x1c}], 0x3, &(0x7f0000000300)=""/33, 0x21}}], 0x2, 0x0, 0x0)

[ 2986.234735] ieee802154 phy0 wpan0: encryption failed: -22
[ 2986.277883] udc-core: couldn't find an available UDC or it's busy
[ 2986.279648] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2986.289456] ieee802154 phy0 wpan0: encryption failed: -22
18:31:38 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

[ 2986.321948] udc-core: couldn't find an available UDC or it's busy
[ 2986.323896] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:31:38 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:38 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:31:38 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x40049409, &(0x7f00000000c0))

18:31:38 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x1100}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2986.411352] ieee802154 phy0 wpan0: encryption failed: -22
18:31:39 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560f, &(0x7f00000000c0))

18:31:39 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:39 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 2986.581735] ieee802154 phy0 wpan0: encryption failed: -22
18:31:39 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x40086602, &(0x7f00000000c0))

18:31:39 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
openat(r0, &(0x7f0000000080)='./file1\x00', 0x410800, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:31:39 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560f, &(0x7f00000000c0))

18:31:39 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:39 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x1895}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

[ 2986.810826] ieee802154 phy0 wpan0: encryption failed: -22
[ 2986.969001] ieee802154 phy0 wpan0: encryption failed: -22
[ 2987.554058] udc-core: couldn't find an available UDC or it's busy
[ 2987.554845] udc-core: couldn't find an available UDC or it's busy
[ 2987.555444] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 2987.559051] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:31:55 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x8000000c)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:31:55 executing program 7:
openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
r2 = dup(r0)
r3 = open_tree(r2, &(0x7f0000000000)='./file0\x00', 0x8801)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'})
mkdirat(r2, &(0x7f0000000280)='./file0\x00', 0x0)

18:31:55 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x560f, &(0x7f00000000c0))

18:31:55 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x40087602, &(0x7f00000000c0))

18:31:55 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

18:31:55 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x2000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:31:55 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:31:55 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000008, 0x100010, r0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000002a40)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r6, r7, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x3, 0x0, @fd=r9, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x0)
r10 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000000540))
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x2)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x0, {0x0, r11}}, 0x400)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000080)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r11}}, 0x9)

[ 3002.978353] ieee802154 phy0 wpan0: encryption failed: -22
18:31:55 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4020940d, &(0x7f00000000c0))

[ 3003.055742] ieee802154 phy0 wpan0: encryption failed: -22
[ 3003.083493] udc-core: couldn't find an available UDC or it's busy
[ 3003.084497] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 3003.092285] udc-core: couldn't find an available UDC or it's busy
[ 3003.093233] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 3003.945588] udc-core: couldn't find an available UDC or it's busy
[ 3003.947104] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 3003.951403] udc-core: couldn't find an available UDC or it's busy
[ 3003.952984] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:32:11 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:32:11 executing program 2:
perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x80}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000003c0)=ANY=[@ANYRES16=r2, @ANYRESOCT, @ANYBLOB="78cb3a33a33af1b9da6f616137addb28f8ff07000000000000c5c3ff4803c440a83a62edd5685b54e4dbc367ee5a1aad43032a3cb2a9873f923af493628d6ec8f1e99149ba10bb605b5c4b8c64ae90742528ace5b58ad7872a15e879aa8d6e0b5fdecb3c2946f380033edd9277c30ce2fca0e14f5d94d0614a5e179268e654a7a38b036c9a4e097923225db2456d4c1185733b8dbabae9cd12ffd8db3e4b4f43e4c4d0cf2e16e2b701356b1df93afbc3622d62250d7e95f4563d66dcdf47752bd3af1c7e7604dd39e761c2a37fbff4fd084ed5e25d697752b4c19b4ad64a5d0d86f4786fcf5a9209ae2738a001910cf3e9d2a849f867d275951e6a9e7dd112ec2427d3ec97064000937c5c0e0ece2f64105d1c8ab12407695eaf3dd1f537824abdca00"/311])
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000140)={@mcast2, 0xf})
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73668553b300080820000400008000f8000020004000030000000000000001", 0x25}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0f", 0xc, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="104a706e9c2ca93f1d2c19d002fc3d6325d7813f8eec1ed77253f6eade7c79f17bc2c9421d3f09a787543d076a6db0dbb6cc575619508cefe652ba25c9d3fd6af22a49bd0fbd06ef03147d70776a4c95f369e5084792fe2b0fee2f3849f08bf4c11f9167"])

18:32:11 executing program 4:
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105142, 0x138)
accept(0xffffffffffffffff, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x24000, 0x0)
r4 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x2002, 0x80)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
fallocate(r4, 0x10, 0x7ff, 0x8)
sendfile(r0, r3, 0x0, 0x8000000d)
open(&(0x7f0000000040)='./file1\x00', 0x4a8001, 0x42)

18:32:11 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x8102, 0x80)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:32:11 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000140)={'\x00', 0xff, 0x8000004, 0x8, 0x9, 0x9, 0xffffffffffffffff})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0, {0x1b7f, 0xb2c0}}, './file0\x00'})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000002380)={0x0, 0xfffffffffffffffe, 0x65, 0x4, @scatter={0x1, 0x0, &(0x7f0000002200)=[{&(0x7f00000021c0)=""/53, 0x35}]}, &(0x7f0000002240)="288ceae20f7c0f57124cf49c543c1fbd0cfc0e71fca0d7e6e18be2f293feaabf6708d97392191164b071ad23ad379b9b7196b2353137cb4bb2d715e1efe68b4ab6ebaeb9e2c87a9a9d188e1145ce43799724c3b04b3e901baed88ec3156f469a343f0e1f9d", &(0x7f00000022c0)=""/76, 0xfff, 0x2, 0x2, &(0x7f0000002340)})
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r1, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB="01000000000000002e2f66696c653069"])
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f00000001c0)={<r5=>0x0, "640bb09992f7b3c964b54622e349fc0e"})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r3, 0x5000943f, &(0x7f00000011c0)={{r4}, 0x0, 0x4, @unused=[0x7, 0x1, 0x285e000000, 0x9], @devid=r5})

18:32:11 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x80045432, &(0x7f00000000c0))

18:32:11 executing program 1:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x4c}], 0x1, 0x0, 0x0, 0x4000}}], 0x7ffff000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)

18:32:11 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 3018.749692] ieee802154 phy0 wpan0: encryption failed: -22
18:32:11 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)
openat(r1, &(0x7f0000000080)='./file1\x00', 0x200680, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x8})

18:32:11 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x80045440, &(0x7f00000000c0))

[ 3018.834592] udc-core: couldn't find an available UDC or it's busy
[ 3018.836230] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 3018.855534] ieee802154 phy0 wpan0: encryption failed: -22
18:32:11 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000680)={&(0x7f00000011c0)={0x28, r1, 0x201, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}}, 0x28}}, 0x0)

[ 3018.876475] udc-core: couldn't find an available UDC or it's busy
[ 3018.877994] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
18:32:11 executing program 0:
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x0, 0x4})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000005)
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, 0x0)
r2 = open$dir(&(0x7f00000011c0)='./file0\x00', 0x404001, 0x1e4)
getdents(0xffffffffffffffff, 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, 0x0)
creat(0x0, 0x1)

18:32:11 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000004c0)=ANY=[])
mkdirat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x2)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000280)=ANY=[@ANYBLOB="010065645c6e348064fadf18aff6eaedf1fe0000010000001800000072c50be1ffd1f5054c110e0e1dd11c87aadb59582bd97c5d04a0c0ccbc1515f58092dba2f502ea", @ANYRES32=<r2=>r0, @ANYBLOB="9a0b0000000000002e2f66696c653000"])
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
faccessat2(r2, &(0x7f00000000c0)='.\x00', 0x58, 0x100)

[ 3019.917793] udc-core: couldn't find an available UDC or it's busy
[ 3019.918884] udc-core: couldn't find an available UDC or it's busy
[ 3019.919297] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 3019.922900] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 3021.711385] systemd-timesyn invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3021.713768] CPU: 0 PID: 118 Comm: systemd-timesyn Not tainted 5.10.178 #1
[ 3021.714974] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3021.716533] Call Trace:
[ 3021.717017]  dump_stack+0x107/0x167
[ 3021.717683]  dump_header+0x106/0x65e
[ 3021.718367]  oom_kill_process.cold+0x10/0x15
[ 3021.719156]  out_of_memory+0x1149/0x1440
[ 3021.719921]  ? oom_killer_disable+0x280/0x280
[ 3021.720712]  ? mutex_trylock+0x237/0x2b0
[ 3021.721443]  ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130
[ 3021.722508]  __alloc_pages_slowpath.constprop.0+0x1b25/0x2130
[ 3021.723575]  ? lock_acquire+0xc7/0x470
[ 3021.724279]  ? warn_alloc+0x190/0x190
[ 3021.724987]  __alloc_pages_nodemask+0x51d/0x600
[ 3021.725827]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3021.726904]  ? find_get_entry+0x2c8/0x740
[ 3021.727673]  alloc_pages_current+0x187/0x280
[ 3021.728469]  __page_cache_alloc+0x2d2/0x360
[ 3021.729251]  pagecache_get_page+0x2c7/0xc80
[ 3021.730032]  filemap_fault+0x177d/0x2210
[ 3021.730772]  ? read_cache_page_gfp+0x30/0x30
[ 3021.731575]  ? replace_page_cache_page+0x1200/0x1200
[ 3021.732487]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 3021.733440]  ext4_filemap_fault+0x87/0xc0
[ 3021.734185]  __do_fault+0x113/0x410
[ 3021.734845]  handle_mm_fault+0x1e72/0x3520
[ 3021.735627]  ? timerfd_tmrproc+0xc0/0xc0
[ 3021.736371]  ? find_held_lock+0x2c/0x110
[ 3021.737103]  ? __pmd_alloc+0x5e0/0x5e0
[ 3021.737811]  ? vmacache_find+0x55/0x2a0
[ 3021.738531]  do_user_addr_fault+0x56e/0xc60
[ 3021.739317]  exc_page_fault+0xa2/0x1a0
[ 3021.740012]  ? asm_exc_page_fault+0x8/0x30
[ 3021.740766]  asm_exc_page_fault+0x1e/0x30
[ 3021.741500] RIP: 0033:0x7f2ee7dc70f0
[ 3021.742164] Code: Unable to access opcode bytes at RIP 0x7f2ee7dc70c6.
[ 3021.743338] RSP: 002b:00007ffda13fcc48 EFLAGS: 00010246
[ 3021.744287] RAX: 0000000000000000 RBX: 00007ffda13fcd98 RCX: 0000000000000002
[ 3021.745558] RDX: 00007ffda13fcda0 RSI: 000055ecf87d5ff2 RDI: 0000000000000064
[ 3021.746780] RBP: 0000000000000000 R08: 0000000000000001 R09: 00007ffda155f080
[ 3021.748070] R10: 000055ecf87d5ff2 R11: 0000000000000000 R12: 000055ecf87d5ff2
[ 3021.749342] R13: 00007ffda13fcda0 R14: 0000000000000002 R15: 0000000000000000
[ 3021.750700] Mem-Info:
[ 3021.751198] active_anon:7334 inactive_anon:60232 isolated_anon:0
[ 3021.751198]  active_file:270 inactive_file:150 isolated_file:0
[ 3021.751198]  unevictable:0 dirty:0 writeback:0
[ 3021.751198]  slab_reclaimable:9863 slab_unreclaimable:66744
[ 3021.751198]  mapped:69779 shmem:125 pagetables:3365 bounce:0
[ 3021.751198]  free:2863 free_pcp:0 free_cma:0
[ 3021.756745] Node 0 active_anon:29336kB inactive_anon:240928kB active_file:1080kB inactive_file:600kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:279116kB dirty:0kB writeback:0kB shmem:500kB writeback_tmp:0kB kernel_stack:6336kB all_unreclaimable? no
[ 3021.760825] Node 0 DMA free:6484kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3021.765525] lowmem_reserve[]: 0 1616 1616 1616
[ 3021.766388] Node 0 DMA32 free:4968kB min:5116kB low:6768kB high:8420kB reserved_highatomic:2048KB active_anon:29336kB inactive_anon:240928kB active_file:936kB inactive_file:812kB unevictable:0kB writepending:0kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:13460kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3021.771439] lowmem_reserve[]: 0 0 0 0
[ 3021.772173] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6484kB
[ 3021.774653] Node 0 DMA32: 667*4kB (UMEH) 188*8kB (UMEH) 59*16kB (UM) 4*32kB (H) 1*64kB (H) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 5308kB
[ 3021.777173] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3021.778665] 557 total pagecache pages
[ 3021.779366] 0 pages in swap cache
[ 3021.779995] Swap cache stats: add 0, delete 0, find 0/0
[ 3021.780919] Free swap  = 0kB
[ 3021.781468] Total swap = 0kB
[ 3021.782019] 524158 pages RAM
[ 3021.782545] 0 pages HighMem/MovableOnly
[ 3021.783263] 105053 pages reserved
[ 3021.783866] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-timesyncd.service,task=systemd-timesyn,pid=118,uid=101
[ 3021.788745] Out of memory (oom_kill_allocating_task): Killed process 118 (systemd-timesyn) total-vm:88376kB, anon-rss:692kB, file-rss:0kB, shmem-rss:0kB, UID:101 pgtables:80kB oom_score_adj:0
[ 3021.807054] syz-executor.7: page allocation failure: order:0, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz7,mems_allowed=0
[ 3021.809768] CPU: 0 PID: 17083 Comm: syz-executor.7 Not tainted 5.10.178 #1
[ 3021.810933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3021.812355] Call Trace:
[ 3021.812797]  dump_stack+0x107/0x167
[ 3021.813409]  warn_alloc.cold+0x95/0x18a
[ 3021.814078]  ? zone_watermark_ok_safe+0x260/0x260
[ 3021.814898]  ? queue_oom_reaper+0x86/0x1e0
[ 3021.815621]  ? wait_for_completion_io+0x270/0x270
[ 3021.816453]  __alloc_pages_slowpath.constprop.0+0x1c80/0x2130
[ 3021.817448]  ? lock_acquire+0xc7/0x470
[ 3021.818126]  ? warn_alloc+0x190/0x190
[ 3021.818802]  __alloc_pages_nodemask+0x51d/0x600
[ 3021.819615]  ? mark_held_locks+0x9e/0xe0
[ 3021.820308]  ? irqentry_enter+0x26/0x60
[ 3021.820991]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3021.822017]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3021.822916]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3021.823857]  alloc_pages_current+0x187/0x280
[ 3021.824617]  relay_open_buf.part.0+0x2a5/0xc00
[ 3021.825407]  relay_open+0x531/0xa10
[ 3021.826039]  do_blk_trace_setup+0x4cf/0xc10
[ 3021.826776]  ? _copy_from_user+0xfb/0x1b0
[ 3021.827490]  __blk_trace_setup+0xca/0x180
[ 3021.828227]  ? do_blk_trace_setup+0xc10/0xc10
[ 3021.828981]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3021.829876]  ? SOFTIRQ_verbose+0x10/0x10
[ 3021.830563]  blk_trace_setup+0x43/0x60
[ 3021.831234]  sg_ioctl_common+0x634/0x2570
[ 3021.831924]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 3021.832789]  ? do_vfs_ioctl+0x283/0x10d0
[ 3021.833458]  ? sg_write+0x120/0x120
[ 3021.834068]  ? generic_block_fiemap+0x60/0x60
[ 3021.834824]  ? _down_write_nest_lock+0x160/0x160
[ 3021.835645]  ? selinux_file_ioctl+0xb6/0x270
[ 3021.836392]  ? sg_compat_ioctl+0x120/0x120
[ 3021.837107]  sg_ioctl+0x8f/0x120
[ 3021.837683]  __x64_sys_ioctl+0x19a/0x210
[ 3021.838373]  do_syscall_64+0x33/0x40
[ 3021.839006]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 3021.839892] RIP: 0033:0x7f5dc9cb4b19
[ 3021.840521] Code: Unable to access opcode bytes at RIP 0x7f5dc9cb4aef.
[ 3021.841628] RSP: 002b:00007f5dc722a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3021.842913] RAX: ffffffffffffffda RBX: 00007f5dc9dc7f60 RCX: 00007f5dc9cb4b19
[ 3021.844143] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003
[ 3021.845344] RBP: 00007f5dc9d0ef6d R08: 0000000000000000 R09: 0000000000000000
[ 3021.846537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3021.847747] syz-executor.7 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3021.849428] R13: 00007fff26e1b41f R14: 00007f5dc722a300 R15: 0000000000022000
[ 3021.850592] CPU: 1 PID: 15528 Comm: syz-executor.7 Not tainted 5.10.178 #1
[ 3021.850695] Mem-Info:
[ 3021.851652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3021.851658] Call Trace:
[ 3021.851680]  dump_stack+0x107/0x167
[ 3021.851699]  dump_header+0x106/0x65e
[ 3021.852138] active_anon:7334 inactive_anon:60232 isolated_anon:0
[ 3021.852138]  active_file:73 inactive_file:61 isolated_file:0
[ 3021.852138]  unevictable:0 dirty:0 writeback:0
[ 3021.852138]  slab_reclaimable:9863 slab_unreclaimable:66744
[ 3021.852138]  mapped:69674 shmem:125 pagetables:3365 bounce:0
[ 3021.852138]  free:2804 free_pcp:16 free_cma:0
[ 3021.853361]  oom_kill_process.cold+0x10/0x15
[ 3021.853382]  out_of_memory+0x1149/0x1440
[ 3021.853822] Node 0 active_anon:29336kB inactive_anon:240928kB active_file:292kB inactive_file:244kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278696kB dirty:0kB writeback:0kB shmem:500kB writeback_tmp:0kB kernel_stack:6336kB all_unreclaimable? no
[ 3021.854350]  ? oom_killer_disable+0x280/0x280
[ 3021.854368]  ? mutex_trylock+0x237/0x2b0
[ 3021.854988] Node 0 
[ 3021.859646]  ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130
[ 3021.859670]  __alloc_pages_slowpath.constprop.0+0x1b25/0x2130
[ 3021.860418] DMA free:6484kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3021.860992]  ? lock_acquire+0xc7/0x470
[ 3021.861013]  ? warn_alloc+0x190/0x190
[ 3021.864812] lowmem_reserve[]:
[ 3021.865486]  __alloc_pages_nodemask+0x51d/0x600
[ 3021.866154]  0
[ 3021.866488]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3021.867472]  1616
[ 3021.868323]  ? find_get_entry+0x2c8/0x740
[ 3021.868346]  alloc_pages_current+0x187/0x280
[ 3021.872512]  1616
[ 3021.873077]  __page_cache_alloc+0x2d2/0x360
[ 3021.873096]  pagecache_get_page+0x2c7/0xc80
[ 3021.873707]  1616
[ 3021.874165]  filemap_fault+0x177d/0x2210
[ 3021.874188]  ? read_cache_page_gfp+0x30/0x30
[ 3021.874936] 
[ 3021.875221]  ? replace_page_cache_page+0x1200/0x1200
[ 3021.875235]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 3021.875257]  ext4_filemap_fault+0x87/0xc0
[ 3021.876233] Node 0 
[ 3021.876532]  __do_fault+0x113/0x410
[ 3021.877243] DMA32 free:4732kB min:5116kB low:6768kB high:8420kB reserved_highatomic:2048KB active_anon:29336kB inactive_anon:240928kB active_file:936kB inactive_file:304kB unevictable:0kB writepending:0kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:13460kB bounce:0kB free_pcp:64kB local_pcp:0kB free_cma:0kB
[ 3021.877855]  handle_mm_fault+0x1e72/0x3520
[ 3021.878207] lowmem_reserve[]:
[ 3021.878822]  ? __pmd_alloc+0x5e0/0x5e0
[ 3021.879541]  0
[ 3021.879843]  ? vmacache_find+0x55/0x2a0
[ 3021.880512]  0
[ 3021.881147]  ? vmacache_update+0xce/0x140
[ 3021.881168]  do_user_addr_fault+0x56e/0xc60
[ 3021.881191]  exc_page_fault+0xa2/0x1a0
[ 3021.881449]  0
[ 3021.882195]  ? asm_exc_page_fault+0x8/0x30
[ 3021.882210]  asm_exc_page_fault+0x1e/0x30
[ 3021.882223] RIP: 0033:0x7f5dc9cd98e1
[ 3021.883082]  0
[ 3021.883684] Code: Unable to access opcode bytes at RIP 0x7f5dc9cd98b7.
[ 3021.884063] 
[ 3021.884579] RSP: 002b:00007fff26e1b600 EFLAGS: 00010293
[ 3021.889159] Node 0 
[ 3021.889757] RAX: 0000000000000000 RBX: 0000000000000078 RCX: 00007f5dc9cd98e1
[ 3021.889769] RDX: 00007fff26e1b640 RSI: 0000000000000000 RDI: 0000000000000000
[ 3021.890287] DMA: 
[ 3021.890838] RBP: 00007fff26e1b6cc R08: 0000000000000000 R09: 00007fff26e98080
[ 3021.890850] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3021.891171] 1*4kB 
[ 3021.891729] R13: 00000000002e12c6 R14: 000000000000000b R15: 00007fff26e1b730
[ 3021.892073] Mem-Info:
[ 3021.892720] (U) 0*8kB 
[ 3021.893430] active_anon:7334 inactive_anon:60232 isolated_anon:0
[ 3021.893430]  active_file:73 inactive_file:61 isolated_file:0
[ 3021.893430]  unevictable:0 dirty:0 writeback:0
[ 3021.893430]  slab_reclaimable:9863 slab_unreclaimable:66744
[ 3021.893430]  mapped:69674 shmem:125 pagetables:3365 bounce:0
[ 3021.893430]  free:2804 free_pcp:16 free_cma:0
[ 3021.894027] 1*16kB 
[ 3021.894309] Node 0 active_anon:29336kB inactive_anon:240928kB active_file:292kB inactive_file:244kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278696kB dirty:0kB writeback:0kB shmem:500kB writeback_tmp:0kB kernel_stack:6336kB all_unreclaimable? no
[ 3021.894984] (U) 
[ 3021.895599] Node 0 
[ 3021.896213] 0*32kB 
[ 3021.896493] DMA free:6484kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3021.897544] 1*64kB 
[ 3021.897781] lowmem_reserve[]: 0
[ 3021.898663] (U) 
[ 3021.899000]  1616 1616
[ 3021.900186] 0*128kB 
[ 3021.901248]  1616
[ 3021.901597] 1*256kB 
[ 3021.902661] Node 0 DMA32 free:4732kB min:5116kB low:6768kB high:8420kB reserved_highatomic:2048KB active_anon:29336kB inactive_anon:240928kB active_file:936kB inactive_file:304kB unevictable:0kB writepending:0kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:13460kB bounce:0kB free_pcp:64kB local_pcp:64kB free_cma:0kB
[ 3021.903855] (U) 
[ 3021.904175] lowmem_reserve[]: 0
[ 3021.905358] 0*512kB 
[ 3021.905705]  0 0
[ 3021.906136] 0*1024kB 
[ 3021.910487]  0
[ 3021.910859] 1*2048kB 
[ 3021.914252] Node 0 DMA: 
[ 3021.914582] (M) 
[ 3021.914911] 1*4kB 
[ 3021.915307] 1*4096kB 
[ 3021.918962] (U) 0*8kB 
[ 3021.919334] (M) = 6484kB
[ 3021.919810] 1*16kB (U) 
[ 3021.920158] Node 0 
[ 3021.920500] 0*32kB 1*64kB 
[ 3021.920878] DMA32: 732*4kB 
[ 3021.921197] (U) 0*128kB 
[ 3021.921579] (UMEH) 
[ 3021.925725] 1*256kB (U) 
[ 3021.926075] 187*8kB 
[ 3021.926547] 0*512kB 0*1024kB 
[ 3021.926922] (UMEH) 50*16kB 
[ 3021.927239] 1*2048kB (M) 
[ 3021.927631] (UM) 
[ 3021.927894] 1*4096kB (M) 
[ 3021.928304] 4*32kB 
[ 3021.928681] = 6484kB
[ 3021.928690] Node 0 
[ 3021.929027] (H) 
[ 3021.929333] DMA32: 732*4kB 
[ 3021.929712] 1*64kB (H) 
[ 3021.930097] (UMEH) 187*8kB 
[ 3021.930529] 0*128kB 
[ 3021.930891] (UMEH) 50*16kB 
[ 3021.931281] 0*256kB 
[ 3021.931689] (UM) 4*32kB 
[ 3021.932182] 0*512kB 
[ 3021.932558] (H) 1*64kB 
[ 3021.932909] 0*1024kB 0*2048kB 
[ 3021.933320] (H) 0*128kB 0*256kB 
[ 3021.933688] 0*4096kB 
[ 3021.934145] 0*512kB 0*1024kB 
[ 3021.934602] = 5416kB
[ 3021.935011] 0*2048kB 0*4096kB 
[ 3021.935369] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3021.935750] = 5416kB
[ 3021.935765] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3021.936133] 242 total pagecache pages
[ 3021.936461] 242 total pagecache pages
[ 3021.936470] 0 pages in swap cache
[ 3021.936820] 0 pages in swap cache
[ 3021.937124] Swap cache stats: add 0, delete 0, find 0/0
[ 3021.937133] Free swap  = 0kB
[ 3021.937592] Swap cache stats: add 0, delete 0, find 0/0
[ 3021.937972] Total swap = 0kB
[ 3021.937978] 524158 pages RAM
[ 3021.937986] 0 pages HighMem/MovableOnly
[ 3021.938444] Free swap  = 0kB
[ 3021.938774] 105053 pages reserved
[ 3021.938785] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null)
[ 3021.939265] Total swap = 0kB
[ 3021.939595] ,cpuset=
[ 3021.940032] 524158 pages RAM
[ 3021.940039] 0 pages HighMem/MovableOnly
[ 3021.940045] 105053 pages reserved
[ 3021.955615] syz7,mems_allowed=0,global_oom,task_memcg=/syz7,task=syz-executor.7,pid=15528,uid=0
[ 3021.956934] Out of memory (oom_kill_allocating_task): Killed process 15528 (syz-executor.7) total-vm:93280kB, anon-rss:384kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:0
[ 3022.416187] (imesyncd) invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3022.418103] CPU: 0 PID: 17120 Comm: (imesyncd) Not tainted 5.10.178 #1
[ 3022.419166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3022.420540] Call Trace:
[ 3022.420971]  dump_stack+0x107/0x167
[ 3022.421572]  dump_header+0x106/0x65e
[ 3022.422180]  oom_kill_process.cold+0x10/0x15
[ 3022.422915]  out_of_memory+0x1149/0x1440
[ 3022.423586]  ? oom_killer_disable+0x280/0x280
[ 3022.424308]  ? mutex_trylock+0x237/0x2b0
[ 3022.424990]  ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130
[ 3022.425956]  __alloc_pages_slowpath.constprop.0+0x1b25/0x2130
[ 3022.426942]  ? lock_acquire+0xc7/0x470
[ 3022.427577]  ? warn_alloc+0x190/0x190
[ 3022.428243]  __alloc_pages_nodemask+0x51d/0x600
[ 3022.429008]  ? lock_acquire+0x197/0x470
[ 3022.429667]  ? lockref_get+0x11/0x50
[ 3022.430290]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3022.431292]  ? lock_downgrade+0x6d0/0x6d0
[ 3022.431982]  ? do_raw_spin_lock+0x121/0x260
[ 3022.432703]  ? rwlock_bug.part.0+0x90/0x90
[ 3022.433409]  alloc_pages_current+0x187/0x280
[ 3022.434156]  __get_free_pages+0xc/0xa0
[ 3022.434813]  inode_doinit_with_dentry+0x8f1/0x1240
[ 3022.435660]  ? hrtimer_run_softirq+0x278/0x310
[ 3022.436435]  ? trace_parse_run_command+0xe0/0x2e0
[ 3022.437252]  ? selinux_file_lock+0x280/0x280
[ 3022.437986]  ? current_time+0x1e6/0x2c0
[ 3022.438602]  selinux_d_instantiate+0x23/0x30
[ 3022.439355]  security_d_instantiate+0x56/0xe0
[ 3022.440130]  d_splice_alias+0x8c/0xc60
[ 3022.440802]  proc_lookup_de+0x17d/0x220
[ 3022.441418]  proc_lookup+0xc8/0x100
[ 3022.442036]  proc_root_lookup+0x38/0x70
[ 3022.442723]  __lookup_slow+0x252/0x490
[ 3022.443398]  ? lookup_open.isra.0+0x1270/0x1270
[ 3022.444162]  ? inode_permission+0xa4/0x380
[ 3022.444864]  walk_component+0x41e/0x6a0
[ 3022.445561]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3022.446358]  ? walk_component+0x6a0/0x6a0
[ 3022.447047]  path_lookupat+0x1ba/0x860
[ 3022.447697]  path_openat+0x17cb/0x26f0
[ 3022.448375]  ? path_lookupat+0x860/0x860
[ 3022.449073]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3022.449941]  ? SOFTIRQ_verbose+0x10/0x10
[ 3022.450606]  do_filp_open+0x190/0x3e0
[ 3022.451263]  ? may_open_dev+0xf0/0xf0
[ 3022.451923]  ? do_raw_spin_lock+0x121/0x260
[ 3022.452670]  ? rwlock_bug.part.0+0x90/0x90
[ 3022.453405]  ? _raw_spin_unlock+0x1a/0x30
[ 3022.454080]  ? __alloc_fd+0x2b8/0x630
[ 3022.454715]  do_sys_openat2+0x171/0x420
[ 3022.455403]  ? build_open_flags+0x6f0/0x6f0
[ 3022.456139]  ? kmem_cache_free+0x249/0x2d0
[ 3022.456868]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3022.457729]  ? call_rcu+0x435/0x9c0
[ 3022.458364]  __x64_sys_openat+0x13f/0x1f0
[ 3022.459084]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3022.459849]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3022.460765]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3022.461560]  do_syscall_64+0x33/0x40
[ 3022.462210]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 3022.463088] RIP: 0033:0x7f0c6e281df3
[ 3022.463755] Code: 89 7c 24 18 44 89 54 24 0c e8 a9 5f f9 ff 44 8b 54 24 0c 8b 54 24 1c 41 89 c0 48 8b 74 24 10 8b 7c 24 18 b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 d9 5f f9 ff 8b 44
[ 3022.466862] RSP: 002b:00007fffa8ac8970 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3022.468218] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0c6e281df3
[ 3022.469413] RDX: 00000000002a0000 RSI: 0000557d0b8e5221 RDI: 0000000000000005
[ 3022.470626] RBP: 00007fffa8ac8ba0 R08: 0000000000000000 R09: 0000000000000011
[ 3022.471870] R10: 0000000000000000 R11: 0000000000000293 R12: 0000557d0b8e5220
[ 3022.473086] R13: 0000557d0b87c320 R14: 0000000000000001 R15: 0000557d0b8e5288
[ 3022.474381] Mem-Info:
[ 3022.474833] active_anon:7334 inactive_anon:60379 isolated_anon:0
[ 3022.474833]  active_file:978 inactive_file:1470 isolated_file:32
[ 3022.474833]  unevictable:0 dirty:76 writeback:21
[ 3022.474833]  slab_reclaimable:9839 slab_unreclaimable:65565
[ 3022.474833]  mapped:71940 shmem:125 pagetables:3303 bounce:0
[ 3022.474833]  free:3743 free_pcp:361 free_cma:0
[ 3022.480363] Node 0 active_anon:29336kB inactive_anon:241516kB active_file:3912kB inactive_file:5880kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:287760kB dirty:304kB writeback:84kB shmem:500kB writeback_tmp:0kB kernel_stack:6208kB all_unreclaimable? no
[ 3022.484461] Node 0 DMA free:6488kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3022.488815] lowmem_reserve[]: 0 1616 1616 1616
[ 3022.489687] Node 0 DMA32 free:8988kB min:17744kB low:19396kB high:21048kB reserved_highatomic:2048KB active_anon:29336kB inactive_anon:241508kB active_file:4616kB inactive_file:5628kB unevictable:0kB writepending:256kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:13212kB bounce:0kB free_pcp:1400kB local_pcp:132kB free_cma:0kB
[ 3022.494925] lowmem_reserve[]: 0 0 0 0
[ 3022.495701] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6488kB
[ 3022.497997] Node 0 DMA32: 874*4kB (UMEH) 212*8kB (UMEH) 88*16kB (UMEH) 34*32kB (UMEH) 30*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 9736kB
[ 3022.500823] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3022.502360] 2436 total pagecache pages
[ 3022.503060] 0 pages in swap cache
[ 3022.503626] Swap cache stats: add 0, delete 0, find 0/0
[ 3022.504503] Free swap  = 0kB
[ 3022.505099] Total swap = 0kB
[ 3022.505676] 524158 pages RAM
[ 3022.506253] 0 pages HighMem/MovableOnly
[ 3022.506985] 105053 pages reserved
[ 3022.507559] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-timesyncd.service,task=(imesyncd),pid=17120,uid=0
[ 3022.511605] Out of memory (oom_kill_allocating_task): Killed process 17120 ((imesyncd)) total-vm:180072kB, anon-rss:11136kB, file-rss:4036kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:0
[ 3022.557914] in:imklog invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3022.559050] CPU: 1 PID: 177 Comm: in:imklog Not tainted 5.10.178 #1
[ 3022.559753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3022.560652] Call Trace:
[ 3022.560950]  dump_stack+0x107/0x167
[ 3022.561350]  dump_header+0x106/0x65e
[ 3022.561763]  oom_kill_process.cold+0x10/0x15
[ 3022.562241]  out_of_memory+0x1149/0x1440
[ 3022.562690]  ? oom_killer_disable+0x280/0x280
[ 3022.563185]  ? mutex_trylock+0x237/0x2b0
[ 3022.563633]  ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130
[ 3022.564289]  __alloc_pages_slowpath.constprop.0+0x1b25/0x2130
[ 3022.564937]  ? lock_acquire+0xc7/0x470
[ 3022.565360]  ? warn_alloc+0x190/0x190
[ 3022.565788]  __alloc_pages_nodemask+0x51d/0x600
[ 3022.566291]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3022.566950]  ? find_get_entry+0x2c8/0x740
[ 3022.567406]  alloc_pages_current+0x187/0x280
[ 3022.567890]  __page_cache_alloc+0x2d2/0x360
[ 3022.568366]  pagecache_get_page+0x2c7/0xc80
[ 3022.568845]  filemap_fault+0x177d/0x2210
[ 3022.569296]  ? read_cache_page_gfp+0x30/0x30
[ 3022.569786]  ? handle_mm_fault+0x28d0/0x3520
[ 3022.570266]  ? lock_downgrade+0x6d0/0x6d0
[ 3022.570724]  ext4_filemap_fault+0x87/0xc0
[ 3022.571187]  __do_fault+0x113/0x410
[ 3022.571592]  handle_mm_fault+0x1e72/0x3520
[ 3022.572068]  ? fsnotify+0xf50/0xf50
[ 3022.572474]  ? __pmd_alloc+0x5e0/0x5e0
[ 3022.572907]  ? vmacache_find+0x55/0x2a0
[ 3022.573341]  do_user_addr_fault+0x56e/0xc60
[ 3022.573827]  exc_page_fault+0xa2/0x1a0
[ 3022.574256]  ? asm_exc_page_fault+0x8/0x30
[ 3022.574715]  asm_exc_page_fault+0x1e/0x30
[ 3022.575170] RIP: 0033:0x7f393f6f90f0
[ 3022.575585] Code: Unable to access opcode bytes at RIP 0x7f393f6f90c6.
[ 3022.576296] RSP: 002b:00007f393eebc3b8 EFLAGS: 00010206
[ 3022.576887] RAX: 0000000000000000 RBX: 00007f393eebc418 RCX: 00007f393eebcd02
[ 3022.577671] RDX: 000000000000003e RSI: 000000000000003e RDI: 0000000000000270
[ 3022.578452] RBP: 00007f393eebc418 R08: 00007f393f7e13c0 R09: 0000563a4dcbee88
[ 3022.579238] R10: 00007f39300111e0 R11: 0000000000000000 R12: 0000563a4dcbe5c0
[ 3022.580012] R13: 00007f393eebcd03 R14: 0000000000000004 R15: 00007f393eebcd66
[ 3022.580830] Mem-Info:
[ 3022.581134] active_anon:7334 inactive_anon:60379 isolated_anon:0
[ 3022.581134]  active_file:441 inactive_file:449 isolated_file:0
[ 3022.581134]  unevictable:0 dirty:76 writeback:21
[ 3022.581134]  slab_reclaimable:9839 slab_unreclaimable:65543
[ 3022.581134]  mapped:70344 shmem:125 pagetables:3303 bounce:0
[ 3022.581134]  free:3834 free_pcp:705 free_cma:0
[ 3022.584561] Node 0 active_anon:29336kB inactive_anon:241516kB active_file:1680kB inactive_file:1796kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:281292kB dirty:304kB writeback:84kB shmem:500kB writeback_tmp:0kB kernel_stack:6208kB all_unreclaimable? no
[ 3022.587103] Node 0 DMA free:6488kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3022.589871] lowmem_reserve[]: 0 1616 1616 1616
[ 3022.590405] Node 0 DMA32 free:9352kB min:17744kB low:19396kB high:21048kB reserved_highatomic:2048KB active_anon:29336kB inactive_anon:241508kB active_file:1972kB inactive_file:2056kB unevictable:0kB writepending:256kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:13212kB bounce:0kB free_pcp:2724kB local_pcp:1320kB free_cma:0kB
[ 3022.593604] lowmem_reserve[]: 0 0 0 0
[ 3022.594295] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6488kB
[ 3022.595804] Node 0 DMA32: 847*4kB (UMEH) 351*8kB (UMEH) 121*16kB (UMEH) 30*32kB (MEH) 12*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 9988kB
[ 3022.597490] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3022.598427] 861 total pagecache pages
[ 3022.598832] 0 pages in swap cache
[ 3022.599232] Swap cache stats: add 0, delete 0, find 0/0
[ 3022.599807] Free swap  = 0kB
[ 3022.600157] Total swap = 0kB
[ 3022.600482] 524158 pages RAM
[ 3022.600808] 0 pages HighMem/MovableOnly
[ 3022.601250] 105053 pages reserved
[ 3022.601626] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/rsyslog.service,task=in:imklog,pid=177,uid=0
[ 3022.603992] Out of memory (oom_kill_allocating_task): Killed process 173 (rsyslogd) total-vm:220876kB, anon-rss:984kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 3022.734084] syz-fuzzer invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3022.735598] CPU: 0 PID: 256 Comm: syz-fuzzer Not tainted 5.10.178 #1
[ 3022.736572] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3022.737814] Call Trace:
[ 3022.738223]  dump_stack+0x107/0x167
[ 3022.738780]  dump_header+0x106/0x65e
[ 3022.739356]  oom_kill_process.cold+0x10/0x15
[ 3022.740022]  out_of_memory+0x1149/0x1440
[ 3022.740645]  ? oom_killer_disable+0x280/0x280
[ 3022.741322]  ? mutex_trylock+0x237/0x2b0
[ 3022.741937]  ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130
[ 3022.742833]  __alloc_pages_slowpath.constprop.0+0x1b25/0x2130
[ 3022.743741]  ? lock_acquire+0xc7/0x470
[ 3022.744337]  ? warn_alloc+0x190/0x190
[ 3022.744936]  __alloc_pages_nodemask+0x51d/0x600
[ 3022.745641]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3022.746555]  ? find_get_entry+0x2c8/0x740
[ 3022.747196]  alloc_pages_current+0x187/0x280
[ 3022.747863]  __page_cache_alloc+0x2d2/0x360
[ 3022.748510]  pagecache_get_page+0x2c7/0xc80
[ 3022.749164]  filemap_fault+0x177d/0x2210
[ 3022.749780]  ? read_cache_page_gfp+0x30/0x30
[ 3022.750440]  ? replace_page_cache_page+0x1200/0x1200
[ 3022.751209]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 3022.752002]  ext4_filemap_fault+0x87/0xc0
[ 3022.752626]  __do_fault+0x113/0x410
[ 3022.753175]  handle_mm_fault+0x1e72/0x3520
[ 3022.753861]  ? ep_read_events_proc+0x3d0/0x3d0
[ 3022.754550]  ? __pmd_alloc+0x5e0/0x5e0
[ 3022.755160]  ? vmacache_find+0x55/0x2a0
[ 3022.755788]  ? vmacache_update+0xce/0x140
[ 3022.756450]  do_user_addr_fault+0x56e/0xc60
[ 3022.757110]  exc_page_fault+0xa2/0x1a0
[ 3022.757728]  ? asm_exc_page_fault+0x8/0x30
[ 3022.758398]  asm_exc_page_fault+0x1e/0x30
[ 3022.759018] RIP: 0033:0x4666e0
[ 3022.759544] Code: Unable to access opcode bytes at RIP 0x4666b6.
[ 3022.760492] RSP: 002b:000000c0000417f0 EFLAGS: 00010246
[ 3022.761287] RAX: 0000000000000000 RBX: 00000000000003e7 RCX: 00000000004666e0
[ 3022.762404] RDX: 0000000000000080 RSI: 000000c000041840 RDI: 0000000000000003
[ 3022.763489] RBP: 000000c000041e40 R08: 0000000000000000 R09: 0000000000000000
[ 3022.764573] R10: 00000000000003e7 R11: 0000000000000246 R12: 0000000000000003
[ 3022.765647] R13: 000000c000000900 R14: 000002bfd4a96ffb R15: 0000000000000039
[ 3022.766825] Mem-Info:
[ 3022.767261] active_anon:7333 inactive_anon:59697 isolated_anon:0
[ 3022.767261]  active_file:318 inactive_file:418 isolated_file:0
[ 3022.767261]  unevictable:0 dirty:31 writeback:0
[ 3022.767261]  slab_reclaimable:9841 slab_unreclaimable:65498
[ 3022.767261]  mapped:70253 shmem:125 pagetables:3291 bounce:0
[ 3022.767261]  free:3821 free_pcp:478 free_cma:0
[ 3022.772145] Node 0 active_anon:29332kB inactive_anon:238788kB active_file:1272kB inactive_file:1436kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:280760kB dirty:124kB writeback:0kB shmem:500kB writeback_tmp:0kB kernel_stack:6080kB all_unreclaimable? no
[ 3022.775735] Node 0 DMA free:6488kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3022.779855] lowmem_reserve[]: 0 1616 1616 1616
[ 3022.780747] Node 0 DMA32 free:10308kB min:5116kB low:6768kB high:8420kB reserved_highatomic:2048KB active_anon:29332kB inactive_anon:239040kB active_file:1104kB inactive_file:1420kB unevictable:0kB writepending:40kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:13164kB bounce:0kB free_pcp:1276kB local_pcp:472kB free_cma:0kB
[ 3022.785430] lowmem_reserve[]: 0 0 0 0
[ 3022.786095] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6488kB
[ 3022.788338] Node 0 DMA32: 727*4kB (UMEH) 363*8kB (MEH) 155*16kB (UMEH) 45*32kB (MEH) 7*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 10308kB
[ 3022.790840] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3022.792289] 486 total pagecache pages
[ 3022.792869] 0 pages in swap cache
[ 3022.793493] Swap cache stats: add 0, delete 0, find 0/0
[ 3022.794390] Free swap  = 0kB
[ 3022.794858] Total swap = 0kB
[ 3022.795389] 524158 pages RAM
[ 3022.795984] 0 pages HighMem/MovableOnly
[ 3022.796601] 105053 pages reserved
[ 3022.797294] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/ssh.service,task=syz-fuzzer,pid=256,uid=0
[ 3022.799822] Out of memory (oom_kill_allocating_task): Killed process 254 (syz-fuzzer) total-vm:1240788kB, anon-rss:223760kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:932kB oom_score_adj:0
[ 3023.721145] oom_reaper: reaped process 17083 (syz-executor.7), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 3024.815608] oom_reaper: reaped process 254 (syz-fuzzer), now anon-rss:0kB, file-rss:24kB, shmem-rss:0kB
[ 3024.895507] systemd-udevd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3024.896921] CPU: 0 PID: 17133 Comm: systemd-udevd Not tainted 5.10.178 #1
[ 3024.897668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3024.898574] Call Trace:
[ 3024.898869]  dump_stack+0x107/0x167
[ 3024.899272]  dump_header+0x106/0x65e
[ 3024.899683]  oom_kill_process.cold+0x10/0x15
[ 3024.900170]  out_of_memory+0x1149/0x1440
[ 3024.900620]  ? oom_killer_disable+0x280/0x280
[ 3024.901114]  ? mutex_trylock+0x237/0x2b0
[ 3024.901563]  ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130
[ 3024.902211]  __alloc_pages_slowpath.constprop.0+0x1b25/0x2130
[ 3024.902866]  ? lock_acquire+0xc7/0x470
[ 3024.903301]  ? warn_alloc+0x190/0x190
[ 3024.903732]  __alloc_pages_nodemask+0x51d/0x600
[ 3024.904244]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3024.904912]  alloc_pages_vma+0xbb/0x410
[ 3024.905352]  wp_page_copy+0x1c3/0x1f00
[ 3024.905783]  ? print_bad_pte+0x5a0/0x5a0
[ 3024.906225]  ? lock_downgrade+0x6d0/0x6d0
[ 3024.906675]  ? vm_normal_page+0x162/0x2e0
[ 3024.907129]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 3024.907680]  do_wp_page+0x27b/0x1390
[ 3024.908088]  handle_mm_fault+0x1ce6/0x3520
[ 3024.908582]  ? lock_downgrade+0x6d0/0x6d0
[ 3024.909049]  ? __pmd_alloc+0x5e0/0x5e0
[ 3024.909453]  ? vmacache_find+0x55/0x2a0
[ 3024.909896]  ? vmacache_update+0xce/0x140
[ 3024.910323]  do_user_addr_fault+0x56e/0xc60
[ 3024.910821]  exc_page_fault+0xa2/0x1a0
[ 3024.911231]  ? asm_exc_page_fault+0x8/0x30
[ 3024.911700]  asm_exc_page_fault+0x1e/0x30
[ 3024.912123] RIP: 0033:0x558ba6559f44
[ 3024.912541] Code: 55 41 54 55 53 48 89 fb 48 81 ec 68 10 00 00 64 48 8b 04 25 28 00 00 00 48 89 84 24 58 10 00 00 31 c0 4c 8d 74 24 50 4c 89 f7 <f3> 48 ab 48 85 db 0f 84 80 04 00 00 31 c0 80 bb 20 01 00 00 00 0f
[ 3024.914394] RSP: 002b:00007ffef6606aa0 EFLAGS: 00010246
[ 3024.914992] RAX: 0000000000000000 RBX: 0000558ba87cef50 RCX: 0000000000000200
[ 3024.915741] RDX: 0000558ba7f5e2e0 RSI: 0000558ba651c540 RDI: 00007ffef6606af0
[ 3024.916499] RBP: 0000558ba87cef50 R08: 0000558ba87cef30 R09: 0000558ba879b2e9
[ 3024.917258] R10: 00007ffef6607a44 R11: 0000000000000202 R12: 0000558ba7f5e2e0
[ 3024.918017] R13: 0000558ba87cef50 R14: 00007ffef6606af0 R15: 0000558ba87ed550
[ 3024.918822] Mem-Info:
[ 3024.919118] active_anon:62 inactive_anon:7437 isolated_anon:0
[ 3024.919118]  active_file:845 inactive_file:791 isolated_file:29
[ 3024.919118]  unevictable:0 dirty:3 writeback:0
[ 3024.919118]  slab_reclaimable:7329 slab_unreclaimable:64347
[ 3024.919118]  mapped:10166 shmem:118 pagetables:353 bounce:0
[ 3024.919118]  free:3241 free_pcp:89 free_cma:0
[ 3024.922451] Node 0 active_anon:248kB inactive_anon:29748kB active_file:3380kB inactive_file:3076kB unevictable:0kB isolated(anon):0kB isolated(file):116kB mapped:40580kB dirty:12kB writeback:0kB shmem:472kB writeback_tmp:0kB kernel_stack:2784kB all_unreclaimable? no
[ 3024.924896] Node 0 DMA free:6488kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3024.927621] lowmem_reserve[]: 0 1616 1616 1616
[ 3024.928142] Node 0 DMA32 free:6476kB min:17404kB low:19056kB high:20708kB reserved_highatomic:2048KB active_anon:248kB inactive_anon:29572kB active_file:3500kB inactive_file:3460kB unevictable:0kB writepending:12kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:1412kB bounce:0kB free_pcp:472kB local_pcp:232kB free_cma:0kB
[ 3024.931186] lowmem_reserve[]: 0 0 0 0
[ 3024.931617] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6488kB
[ 3024.933132] Node 0 DMA32: 535*4kB (UMEH) 141*8kB (UMEH) 75*16kB (UMEH) 40*32kB (UMH) 7*64kB (H) 4*128kB (H) 1*256kB (H) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 6964kB
[ 3024.934755] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3024.935752] 1740 total pagecache pages
[ 3024.936175] 0 pages in swap cache
[ 3024.936543] Swap cache stats: add 0, delete 0, find 0/0
[ 3024.937125] Free swap  = 0kB
[ 3024.937449] Total swap = 0kB
[ 3024.937774] 524158 pages RAM
[ 3024.938108] 0 pages HighMem/MovableOnly
[ 3024.938520] 105053 pages reserved
[ 3024.938922] Unreclaimable slab info:
[ 3024.939650] Name                      Used          Total
[ 3024.940297] pid_3                      7KB          7KB
[ 3024.940858] pid_2                     95KB         97KB
[ 3024.941436] IEEE-802.15.4-MAC         63KB         63KB
[ 3024.942012] IEEE-802.15.4-RAW         63KB         63KB
[ 3024.942578] p9_req_t                   8KB          8KB
[ 3024.943157] ip6-frags                  7KB          7KB
[ 3024.943729] fib6_nodes                28KB         28KB
[ 3024.944307] ip6_dst_cache             37KB         37KB
[ 3024.944874] PINGv6                    63KB         63KB
[ 3024.945449] RAWv6                    330KB        378KB
[ 3024.946047] UDPLITEv6                 62KB         62KB
[ 3024.946605] UDPv6                     62KB         62KB
[ 3024.947195] tw_sock_TCPv6             15KB         15KB
[ 3024.947757] request_sock_TCPv6         15KB         15KB
[ 3024.948348] TCPv6                     62KB         62KB
[ 3024.948917] scsi_sense_cache           8KB          8KB
[ 3024.949507] sd_ext_cdb                 3KB          3KB
[ 3024.950082] virtio_scsi_cmd           16KB         16KB
[ 3024.950655] sgpool-128               148KB        178KB
[ 3024.951249] sgpool-64                 63KB         63KB
[ 3024.951814] sgpool-32                330KB        330KB
[ 3024.952386] sgpool-16                157KB        157KB
[ 3024.952968] sgpool-8                  93KB         93KB
[ 3024.953530] io_kiocb                  32KB         45KB
[ 3024.954106] mqueue_inode_cache         62KB         62KB
[ 3024.954673] nfs_commit_data           15KB         15KB
[ 3024.955258] nfs_write_data            47KB         47KB
[ 3024.955830] jbd2_inode                11KB         11KB
[ 3024.956411] ext4_system_zone           7KB          7KB
[ 3024.956985] ext4_io_end_vec            7KB          7KB
[ 3024.957551] ext4_bio_post_read_ctx         15KB         15KB
[ 3024.958172] kioctx                    31KB         31KB
[ 3024.958750] aio_kiocb                  7KB          7KB
[ 3024.959339] dio                       77KB         77KB
[ 3024.959906] bio-2                      4KB          4KB
[ 3024.960498] fasync_cache               7KB          7KB
[ 3024.961081] pid_namespace              7KB          7KB
[ 3024.961649] posix_timers_cache         15KB         15KB
[ 3024.962237] rpc_buffers               31KB         31KB
[ 3024.962800] rpc_tasks                  3KB          3KB
[ 3024.963397] UNIX                     248KB        341KB
[ 3024.963973] UDP-Lite                  63KB         63KB
[ 3024.964539] tcp_bind_bucket            8KB          8KB
[ 3024.965120] inet_peer_cache            4KB          4KB
[ 3024.965679] xfrm_state                32KB         32KB
[ 3024.966251] ip_fib_trie                8KB          8KB
[ 3024.966821] ip_fib_alias              15KB         15KB
[ 3024.967411] ip_dst_cache              23KB         52KB
[ 3024.967986] PING                      62KB         62KB
[ 3024.968542] RAW                      281KB        281KB
[ 3024.969121] UDP                      229KB        378KB
[ 3024.969679] tw_sock_TCP               15KB         15KB
[ 3024.970263] request_sock_TCP          15KB         15KB
[ 3024.970825] TCP                       60KB         60KB
[ 3024.971415] hugetlbfs_inode_cache         30KB         30KB
[ 3024.972015] bio-1                     11KB         11KB
[ 3024.972580] eventpoll_pwq             23KB         23KB
[ 3024.973163] eventpoll_epi             43KB         43KB
[ 3024.973722] inotify_inode_mark         54KB         54KB
[ 3024.974311] request_queue             90KB         90KB
[ 3024.974879] blkdev_ioc                33KB         33KB
[ 3024.975467] bio-0                    428KB        428KB
[ 3024.976052] biovec-max               981KB       1105KB
[ 3024.976620] biovec-64                582KB        582KB
[ 3024.977199] biovec-16                 82KB         90KB
[ 3024.977768] user_namespace            31KB         31KB
[ 3024.978350] uid_cache                  8KB          8KB
[ 3024.978925] dmaengine-unmap-2          4KB          4KB
[ 3024.979513] audit_buffer               7KB          7KB
[ 3024.980094] skbuff_ext_cache           4KB          4KB
[ 3024.980676] skbuff_fclone_cache         97KB         97KB
[ 3024.981267] skbuff_head_cache        251KB        251KB
[ 3024.981844] file_lock_cache           63KB         63KB
[ 3024.982427] file_lock_ctx              7KB          7KB
[ 3024.983028] fsnotify_mark_connector         40KB         40KB
[ 3024.983651] net_namespace            172KB        172KB
[ 3024.984238] task_delay_info          127KB        127KB
[ 3024.984797] taskstats                 92KB         92KB
[ 3024.985395] proc_dir_entry           657KB        678KB
[ 3024.986175] pde_opener                47KB         47KB
[ 3024.986739] seq_file                  49KB         60KB
[ 3024.987344] sigqueue                 106KB        106KB
[ 3024.987923] shmem_inode_cache       1246KB       1415KB
[ 3024.988512] kernfs_iattrs_cache        230KB        243KB
[ 3024.989117] kernfs_node_cache       6602KB       6620KB
[ 3024.989691] mnt_cache                252KB        283KB
[ 3024.990299] filp                     960KB       1770KB
[ 3024.990870] names_cache             5469KB       5831KB
[ 3024.991454] hashtab_node             274KB        274KB
[ 3024.992030] ebitmap_node            1149KB       1149KB
[ 3024.992596] avtab_node              4976KB       4976KB
[ 3024.993212] avc_node                  35KB         35KB
[ 3024.993885] lsm_inode_cache         2662KB       3083KB
[ 3024.994598] lsm_file_cache           143KB        224KB
[ 3024.995190] key_jar                   39KB         39KB
[ 3024.995764] uts_namespace             23KB         23KB
[ 3024.996517] nsproxy                   15KB         15KB
[ 3024.997116] vm_area_struct          1612KB       1848KB
[ 3024.997686] mm_struct                357KB        567KB
[ 3024.998266] fs_cache                  86KB        116KB
[ 3024.998831] files_cache              307KB        446KB
[ 3024.999419] signal_cache             433KB        617KB
[ 3024.999997] sighand_cache            356KB        511KB
[ 3025.000735] task_struct             1577KB       2188KB
[ 3025.001458] cred_jar                 123KB        208KB
[ 3025.002047] anon_vma_chain           441KB        519KB
[ 3025.002628] anon_vma                 201KB        290KB
[ 3025.003235] pid                       68KB         97KB
[ 3025.003796] Acpi-Operand             141KB        170KB
[ 3025.004372] Acpi-ParseExt             27KB         27KB
[ 3025.004933] Acpi-Parse                86KB        102KB
[ 3025.005511] Acpi-State                86KB        102KB
[ 3025.006092] Acpi-Namespace            20KB         20KB
[ 3025.006649] shared_policy_node          4KB          4KB
[ 3025.007241] numa_policy                7KB          7KB
[ 3025.007987] trace_event_file         163KB        163KB
[ 3025.008690] ftrace_event_field        280KB        280KB
[ 3025.009288] pool_workqueue            48KB         48KB
[ 3025.009851] task_group                16KB         16KB
[ 3025.010433] vmap_area                 92KB        137KB
[ 3025.011184] page->ptl                355KB        460KB
[ 3025.011802] kmemleak_scan_area        143KB        143KB
[ 3025.013832] kmemleak_object       137911KB     163227KB
[ 3025.014576] kmalloc-8k              4848KB       4992KB
[ 3025.015299] kmalloc-4k             10232KB      10240KB
[ 3025.016031] kmalloc-2k              6748KB       7104KB
[ 3025.016748] kmalloc-1k              3122KB       3424KB
[ 3025.017497] kmalloc-512             2803KB       3904KB
[ 3025.018226] kmalloc-256             1593KB       1624KB
[ 3025.018972] kmalloc-192              921KB        940KB
[ 3025.019717] kmalloc-128              615KB        828KB
[ 3025.020446] kmalloc-96               371KB        552KB
[ 3025.021198] kmalloc-64               937KB       1204KB
[ 3025.021914] kmalloc-32               811KB        888KB
[ 3025.022655] kmalloc-16               376KB        376KB
[ 3025.023374] kmalloc-8                346KB        350KB
[ 3025.023943] kmem_cache_node           47KB         47KB
[ 3025.024654] kmem_cache                75KB         75KB
[ 3025.025368] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-udevd.service,task=systemd-udevd,pid=17133,uid=0
[ 3025.028277] Out of memory (oom_kill_allocating_task): Killed process 17133 (systemd-udevd) total-vm:35760kB, anon-rss:10212kB, file-rss:124kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3025.296739] systemd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3025.297746] CPU: 0 PID: 1 Comm: systemd Not tainted 5.10.178 #1
[ 3025.298351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3025.299190] Call Trace:
[ 3025.299478]  dump_stack+0x107/0x167
[ 3025.299849]  dump_header+0x106/0x65e
[ 3025.300230]  oom_kill_process.cold+0x10/0x15
[ 3025.300677]  out_of_memory+0x358/0x1440
[ 3025.301090]  ? oom_killer_disable+0x280/0x280
[ 3025.301566]  ? mutex_trylock+0x237/0x2b0
[ 3025.302000]  ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130
[ 3025.302599]  __alloc_pages_slowpath.constprop.0+0x1b25/0x2130
[ 3025.303243]  ? lock_acquire+0xc7/0x470
[ 3025.303642]  ? warn_alloc+0x190/0x190
[ 3025.304043]  __alloc_pages_nodemask+0x51d/0x600
[ 3025.304542]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 3025.305180]  ? find_get_entry+0x2c8/0x740
[ 3025.305629]  alloc_pages_current+0x187/0x280
[ 3025.306096]  __page_cache_alloc+0x2d2/0x360
[ 3025.306576]  pagecache_get_page+0x2c7/0xc80
[ 3025.307038]  filemap_fault+0x177d/0x2210
[ 3025.307495]  ? read_cache_page_gfp+0x30/0x30
[ 3025.307961]  ? handle_mm_fault+0x28d0/0x3520
[ 3025.308427]  ? lock_downgrade+0x6d0/0x6d0
[ 3025.308872]  ext4_filemap_fault+0x87/0xc0
[ 3025.309316]  __do_fault+0x113/0x410
[ 3025.309707]  handle_mm_fault+0x1e72/0x3520
[ 3025.310165]  ? find_held_lock+0x2c/0x110
[ 3025.310600]  ? __pmd_alloc+0x5e0/0x5e0
[ 3025.311021]  ? vmacache_find+0x55/0x2a0
[ 3025.311459]  do_user_addr_fault+0x56e/0xc60
[ 3025.311923]  exc_page_fault+0xa2/0x1a0
[ 3025.312336]  ? asm_exc_page_fault+0x8/0x30
[ 3025.312781]  asm_exc_page_fault+0x1e/0x30
[ 3025.313219] RIP: 0033:0x7f0c6e20f840
[ 3025.313612] Code: Unable to access opcode bytes at RIP 0x7f0c6e20f816.
[ 3025.314296] RSP: 002b:00007fffa8ac9178 EFLAGS: 00010206
[ 3025.314861] RAX: 0000000000000024 RBX: 0000557d0b7f0bf0 RCX: 00000000fbada4a8
[ 3025.315602] RDX: 0000000000000000 RSI: 0000557d0b8b7ba0 RDI: 0000557d0b7f0bf0
[ 3025.316343] RBP: 0000557d0b893ce0 R08: 0000000000000800 R09: 00007f0c6e351be0
[ 3025.317091] R10: 0000000020000000 R11: 0000000000000000 R12: 0000000000000800
[ 3025.317834] R13: 0000000000000024 R14: 00007f0c6dab46c8 R15: 0000000000000024
[ 3025.318661] Mem-Info:
[ 3025.318935] active_anon:43 inactive_anon:7390 isolated_anon:0
[ 3025.318935]  active_file:38 inactive_file:10 isolated_file:0
[ 3025.318935]  unevictable:0 dirty:0 writeback:0
[ 3025.318935]  slab_reclaimable:7313 slab_unreclaimable:64288
[ 3025.318935]  mapped:8717 shmem:116 pagetables:323 bounce:0
[ 3025.318935]  free:2528 free_pcp:0 free_cma:0
[ 3025.322252] Node 0 active_anon:172kB inactive_anon:29560kB active_file:152kB inactive_file:40kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34868kB dirty:0kB writeback:0kB shmem:464kB writeback_tmp:0kB kernel_stack:2752kB all_unreclaimable? no
[ 3025.324689] Node 0 DMA free:6488kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3025.327451] lowmem_reserve[]: 0 1616 1616 1616
[ 3025.327975] Node 0 DMA32 free:39912kB min:9212kB low:10864kB high:12516kB reserved_highatomic:2048KB active_anon:172kB inactive_anon:29728kB active_file:288kB inactive_file:408kB unevictable:0kB writepending:0kB present:2080640kB managed:1660512kB mlocked:0kB pagetables:1292kB bounce:0kB free_pcp:1312kB local_pcp:0kB free_cma:0kB
[ 3025.331067] lowmem_reserve[]: 0 0 0 0
[ 3025.331504] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6488kB
[ 3025.332956] Node 0 DMA32: 1780*4kB (UMEH) 917*8kB (UMEH) 380*16kB (UMH) 150*32kB (UH) 221*64kB (UH) 127*128kB (UH) 61*256kB (UH) 14*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 78520kB
[ 3025.334760] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3025.335683] 163 total pagecache pages
[ 3025.336106] 0 pages in swap cache
[ 3025.336473] Swap cache stats: add 0, delete 0, find 0/0
[ 3025.337079] Free swap  = 0kB
[ 3025.337401] Total swap = 0kB
[ 3025.337730] 524158 pages RAM
[ 3025.338072] 0 pages HighMem/MovableOnly
[ 3025.338491] 105053 pages reserved
[ 3025.338944] Unreclaimable slab info:
[ 3025.339709] Name                      Used          Total
[ 3025.340401] pid_3                      7KB          7KB
[ 3025.340992] pid_2                     95KB         97KB
[ 3025.341554] IEEE-802.15.4-MAC         63KB         63KB
[ 3025.342160] IEEE-802.15.4-RAW         63KB         63KB
[ 3025.342727] p9_req_t                   8KB          8KB
[ 3025.343319] ip6-frags                  7KB          7KB
[ 3025.343888] fib6_nodes                28KB         28KB
[ 3025.344478] ip6_dst_cache             37KB         37KB
[ 3025.345077] PINGv6                    63KB         63KB
[ 3025.345649] RAWv6                    330KB        378KB
[ 3025.346236] UDPLITEv6                 62KB         62KB
[ 3025.346805] UDPv6                     62KB         62KB
[ 3025.347411] tw_sock_TCPv6             15KB         15KB
[ 3025.348001] request_sock_TCPv6         15KB         15KB
[ 3025.348608] TCPv6                     62KB         62KB
[ 3025.349227] scsi_sense_cache           8KB          8KB
[ 3025.349814] sd_ext_cdb                 3KB          3KB
[ 3025.350415] virtio_scsi_cmd           16KB         16KB
[ 3025.351039] sgpool-128               148KB        178KB
[ 3025.351639] sgpool-64                 63KB         63KB
[ 3025.352257] sgpool-32                393KB        393KB
[ 3025.352890] sgpool-16                157KB        157KB
[ 3025.353636] sgpool-8                 101KB        101KB
[ 3025.354257] io_kiocb                  32KB         45KB
[ 3025.354999] mqueue_inode_cache         62KB         62KB
[ 3025.355617] nfs_commit_data           15KB         15KB
[ 3025.356220] nfs_write_data            47KB         47KB
[ 3025.356938] jbd2_inode                11KB         11KB
[ 3025.357682] ext4_system_zone           7KB          7KB
[ 3025.358315] ext4_io_end_vec            7KB          7KB
[ 3025.359045] ext4_bio_post_read_ctx         15KB         15KB
[ 3025.359757] kioctx                    31KB         31KB
[ 3025.360445] aio_kiocb                  7KB          7KB
[ 3025.361059] dio                       77KB         77KB
[ 3025.361788] bio-2                      4KB          4KB
[ 3025.362410] fasync_cache               7KB          7KB
[ 3025.363048] pid_namespace              7KB          7KB
[ 3025.363717] posix_timers_cache         15KB         15KB
[ 3025.364467] rpc_buffers               31KB         31KB
[ 3025.365240] rpc_tasks                  3KB          3KB
[ 3025.365988] UNIX                     244KB        341KB
[ 3025.366709] UDP-Lite                  63KB         63KB
[ 3025.367489] tcp_bind_bucket            8KB          8KB
[ 3025.368241] inet_peer_cache            4KB          4KB
[ 3025.369736] xfrm_state                32KB         32KB
[ 3025.371286] ip_fib_trie                8KB          8KB
[ 3025.372822] ip_fib_alias              15KB         15KB
[ 3025.374344] ip_dst_cache              23KB         52KB
[ 3025.375871] PING                      62KB         62KB
[ 3025.377374] RAW                      281KB        281KB
[ 3025.378720] UDP                      229KB        378KB
[ 3025.380118] tw_sock_TCP               15KB         15KB
[ 3025.381447] request_sock_TCP          15KB         15KB
[ 3025.382725] TCP                       60KB         60KB
[ 3025.384058] hugetlbfs_inode_cache         30KB         30KB
[ 3025.385418] bio-1                     11KB         11KB
[ 3025.386690] eventpoll_pwq             23KB         23KB
[ 3025.388031] eventpoll_epi             43KB         43KB
[ 3025.389320] inotify_inode_mark         54KB         54KB
[ 3025.390448] request_queue             90KB         90KB
[ 3025.391569] blkdev_ioc                33KB         33KB
[ 3025.392676] bio-0                    464KB        464KB
[ 3025.393785] biovec-max               981KB       1105KB
[ 3025.394895] biovec-64                630KB        630KB
[ 3025.396026] biovec-16                 82KB         90KB
[ 3025.397140] user_namespace            31KB         31KB
[ 3025.398249] uid_cache                  8KB          8KB
[ 3025.399367] dmaengine-unmap-2          4KB          4KB
[ 3025.400481] audit_buffer               7KB          7KB
[ 3025.401588] skbuff_ext_cache           4KB          4KB
[ 3025.402694] skbuff_fclone_cache         97KB         97KB
[ 3025.403860] skbuff_head_cache        261KB        262KB
[ 3025.404988] file_lock_cache           63KB         63KB
[ 3025.406097] file_lock_ctx              7KB          7KB
[ 3025.407219] fsnotify_mark_connector         40KB         40KB
[ 3025.408431] net_namespace            172KB        172KB
[ 3025.409540] task_delay_info          127KB        127KB
[ 3025.410646] taskstats                 92KB         92KB
[ 3025.411777] proc_dir_entry           657KB        678KB
[ 3025.412886] pde_opener                47KB         47KB
[ 3025.413994] seq_file                  49KB         60KB
[ 3025.415196] sigqueue                 106KB        106KB
[ 3025.416352] shmem_inode_cache       1245KB       1415KB
[ 3025.417477] kernfs_iattrs_cache        230KB        243KB
[ 3025.418656] kernfs_node_cache       6602KB       6620KB
[ 3025.419802] mnt_cache                252KB        283KB
[ 3025.420991] filp                     825KB       1755KB
[ 3025.422138] names_cache             4394KB       5801KB
[ 3025.423295] hashtab_node             274KB        274KB
[ 3025.424419] ebitmap_node            1149KB       1149KB
[ 3025.425556] avtab_node              4976KB       4976KB
[ 3025.426686] avc_node                  35KB         35KB
[ 3025.427847] lsm_inode_cache         2660KB       3083KB
[ 3025.428987] lsm_file_cache           143KB        224KB
[ 3025.430112] key_jar                   39KB         39KB
[ 3025.431271] uts_namespace             23KB         23KB
[ 3025.432405] nsproxy                   15KB         15KB
[ 3025.433567] vm_area_struct          1607KB       1848KB
[ 3025.434697] mm_struct                355KB        567KB
[ 3025.435845] fs_cache                  86KB        116KB
[ 3025.436981] files_cache              307KB        446KB
[ 3025.438124] signal_cache             433KB        617KB
[ 3025.439270] sighand_cache            356KB        511KB
[ 3025.440410] task_struct             1570KB       2188KB
[ 3025.441541] cred_jar                 122KB        208KB
[ 3025.442682] anon_vma_chain           441KB        519KB
[ 3025.443832] anon_vma                 201KB        290KB
[ 3025.445018] pid                       68KB         97KB
[ 3025.446143] Acpi-Operand             141KB        170KB
[ 3025.447283] Acpi-ParseExt             27KB         27KB
[ 3025.448424] Acpi-Parse                86KB        102KB
[ 3025.449563] Acpi-State                86KB        102KB
[ 3025.450701] Acpi-Namespace            20KB         20KB
[ 3025.451849] shared_policy_node          4KB          4KB
[ 3025.452996] numa_policy                7KB          7KB
[ 3025.454113] trace_event_file         163KB        163KB
[ 3025.455253] ftrace_event_field        280KB        280KB
[ 3025.456409] pool_workqueue            48KB         48KB
[ 3025.457549] task_group                16KB         16KB
[ 3025.458674] vmap_area                 87KB        133KB
[ 3025.459815] page->ptl                352KB        460KB
[ 3025.460973] kmemleak_scan_area        143KB        143KB
[ 3025.463352] kmemleak_object       137133KB     162939KB
[ 3025.464493] kmalloc-8k              4848KB       4992KB
[ 3025.465614] kmalloc-4k             10272KB      10272KB
[ 3025.466746] kmalloc-2k              6740KB       7104KB
[ 3025.467894] kmalloc-1k              3044KB       3424KB
[ 3025.469053] kmalloc-512             2788KB       3904KB
[ 3025.470199] kmalloc-256             1593KB       1624KB
[ 3025.471347] kmalloc-192              908KB        940KB
[ 3025.472503] kmalloc-128              614KB        824KB
[ 3025.473643] kmalloc-96               371KB        552KB
[ 3025.474802] kmalloc-64               935KB       1204KB
[ 3025.476004] kmalloc-32               811KB        888KB
[ 3025.477152] kmalloc-16               376KB        376KB
[ 3025.478286] kmalloc-8                346KB        350KB
[ 3025.479438] kmem_cache_node           47KB         47KB
[ 3025.480581] kmem_cache                75KB         75KB
[ 3025.481723] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-timesyncd.service,task=(imesyncd),pid=17129,uid=0
[ 3025.485232] Out of memory: Killed process 17129 ((imesyncd)) total-vm:180072kB, anon-rss:11136kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:0

VM DIAGNOSIS:
18:32:18  Registers:
info registers vcpu 0
RAX=0000000000000004 RBX=ffffffff86ba6d00 RCX=ffffffff81276677 RDX=fffffbfff0d74da1
RSI=0000000000000004 RDI=ffffffff86ba6d00 RBP=0000000000000001 RSP=ffff888008927bb8
R8 =0000000000000000 R9 =0000000000000003 R10=fffffbfff0d74da0 R11=0000000000000001
R12=0000000000000003 R13=fffffbfff0d74da0 R14=0000000000000001 R15=1ffff11001124f78
RIP=ffffffff812766f2 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000558ba655b39c CR3=0000000050c3a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=756e696c2d34365f3638782f62696c2f XMM01=00312e6f732e7a62696c2f756e672d78
XMM02=ffff000000000000ffff00000000ff00 XMM03=ffffffffff000000ffffffffffffffff
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffffffff8685b6b8 RCX=ffffffff8125fa5a RDX=ffffffff862aa120
RSI=000000000000000c RDI=000000000000001f RBP=dffffc0000000000 RSP=ffff88801d41fbb8
R8 =0000000000000001 R9 =0000000000008ca5 R10=0000000000000000 R11=0000000000000001
R12=0000000000000569 R13=0000000000008ca1 R14=ffffffff862398c8 R15=ffffffff862aa120
RIP=ffffffff8125f5f1 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff06d03d4c0 CR3=000000000d032000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=4c4c494b465200326963680032313637
XMM02=ffffffffff0f0e0d0c0b0a0908070605 XMM03=52003269636800323136373d4d554e51
XMM04=00000003000000000000558ba87c94a0 XMM05=0000558ba87da6c00000558ba87de4b0
XMM06=000000000000000000000000ffffffff XMM07=00000000000000000000000000000000
XMM08=3269636800323136373d4d554e514553 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000