727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
openat$cgroup_type(r0, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x400400, 0x0)
r4 = fspick(r0, &(0x7f0000000200)='./file0\x00', 0x1)
sendfile(r3, r4, 0x0, 0xfffe)

03:12:41 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010020100000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:41 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:41 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000001f00000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:41 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3297.300135][T27649] loop3: detected capacity change from 0 to 512
[ 3297.309955][T27649] EXT4-fs (loop3): bad geometry: first data block 270532609 is beyond end of filesystem (256)
03:12:41 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:41 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000020000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:41 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000110000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3297.368915][T27649] loop3: detected capacity change from 0 to 512
[ 3297.381331][T27649] EXT4-fs (loop3): bad geometry: first data block 270532609 is beyond end of filesystem (256)
[ 3297.436763][T27677] loop3: detected capacity change from 0 to 512
[ 3297.445240][T27677] EXT4-fs (loop3): bad geometry: first data block 285212673 is beyond end of filesystem (256)
[ 3297.498716][T27677] loop3: detected capacity change from 0 to 512
[ 3297.505573][T27677] EXT4-fs (loop3): bad geometry: first data block 285212673 is beyond end of filesystem (256)
03:12:42 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xfc020000}, 0x1c)

03:12:42 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000030000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:42 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000120000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:42 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x182)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f0000000200)={0x0, {}, 0x0, {}, 0x2, 0x5, 0x17, 0x8, "2edc24ce5b457b8ee3f032101debdba1790059a0a0dc66a0a4e731215eaa061ba8d170e2f82748df05499b17b802b0e2e6c464d6c6b64fcd1ae13892ac2d414e", "465a262001b44fce24acecf53595077d78d137ef6445aff960388b86331624b2", [0x3ff, 0x90]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup3(r3, r1, 0x80000)
splice(r4, &(0x7f00000002c0), r3, &(0x7f0000000300)=0x12, 0x200, 0x4)
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r3)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000000)={0x0, {}, 0x0, {}, 0xfc, 0xa, 0x1b, 0x4, "4ab3a8e8a64fd1f6cc744b5b24dd38939f480c3a49e44df55bb943c3e76450bb0b51587cb055c0869edb518aa80ad3abca827ed186724ee9e0b4f5485a9aa377", "5144f36f1b98e73804775db194515f5754bf565903a9995f1b0837b681bf198f", [0x400, 0x8d2]})
sendfile(r0, r0, 0x0, 0x24000000)

03:12:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000040000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3298.176599][T27702] loop3: detected capacity change from 0 to 512
[ 3298.187464][T27702] EXT4-fs (loop3): bad geometry: first data block 301989889 is beyond end of filesystem (256)
03:12:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000050000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:42 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:42 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000040), 0xc01, 0xc6001)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1)
sendfile(r0, r0, 0x0, 0x24000000)

03:12:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000060000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:42 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000140000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000070000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3298.227151][T27702] loop3: detected capacity change from 0 to 512
[ 3298.245836][T27702] EXT4-fs (loop3): bad geometry: first data block 301989889 is beyond end of filesystem (256)
[ 3298.334103][T27732] loop3: detected capacity change from 0 to 512
[ 3298.344105][T27732] EXT4-fs (loop3): bad geometry: first data block 335544321 is beyond end of filesystem (256)
03:12:42 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xfdcb1d7c}, 0x1c)

03:12:43 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:43 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000080000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000180000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000090000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000190000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000a0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:43 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x509000)
sendfile(r0, r0, 0x0, 0x24000000)

03:12:43 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000b0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100001b0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x20240)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3299.204295][T27776] loop3: detected capacity change from 0 to 512
[ 3299.212787][T27776] EXT4-fs (loop3): bad geometry: first data block 452984833 is beyond end of filesystem (256)
03:12:43 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xfe800000}, 0x1c)

03:12:43 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:43 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000c0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100001f0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:43 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x182)
sendfile(r0, r0, 0x0, 0x24000000)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000000)={0x0, 0x1, 0x7, 0x1})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x100, 0x40)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x2010, 0xffffffffffffffff, 0xf34a0000)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000d0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000e0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3299.919172][T27799] loop3: detected capacity change from 0 to 512
[ 3299.931928][T27799] EXT4-fs (loop3): bad geometry: first data block 520093697 is beyond end of filesystem (256)
03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000f0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000100000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000110000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3299.995704][T27799] loop3: detected capacity change from 0 to 512
[ 3300.007444][T27799] EXT4-fs (loop3): bad geometry: first data block 520093697 is beyond end of filesystem (256)
03:12:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000200000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3300.094356][T27830] loop3: detected capacity change from 0 to 512
[ 3300.102874][T27830] EXT4-fs (loop3): bad geometry: first data block 536870913 is beyond end of filesystem (256)
03:12:44 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xfe80ffff}, 0x1c)

03:12:44 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000120000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010010200000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$LOOP_CLR_FD(r0, 0x4c01)
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/current\x00', 0x2, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000280), 0x8000, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
fcntl$getflags(r3, 0x401)
sendfile(r1, r2, 0x0, 0x23fffffc)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r4, 0x4008941a, &(0x7f0000000080)=0x2)

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000140000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000180000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000190000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3300.786652][T27847] loop3: detected capacity change from 0 to 512
[ 3300.802884][T27847] EXT4-fs (loop3): bad geometry: first data block 537919489 is beyond end of filesystem (256)
03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000001b0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000220000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000220000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3300.874918][T27847] loop3: detected capacity change from 0 to 512
[ 3300.887420][T27847] EXT4-fs (loop3): bad geometry: first data block 537919489 is beyond end of filesystem (256)
[ 3300.962998][T27879] loop3: detected capacity change from 0 to 512
[ 3300.977302][T27879] EXT4-fs (loop3): bad geometry: first data block 570425345 is beyond end of filesystem (256)
[ 3301.036926][T27879] loop3: detected capacity change from 0 to 512
[ 3301.057222][T27879] EXT4-fs (loop3): bad geometry: first data block 570425345 is beyond end of filesystem (256)
03:12:45 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xfe880000}, 0x1c)

03:12:45 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000230000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:45 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000230000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:45 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0xfffffffffffffffd, 0x100)
r1 = accept(0xffffffffffffffff, &(0x7f0000000040)=@qipcrtr, &(0x7f00000000c0)=0x80)
ioctl$LOOP_SET_FD(r0, 0x4c00, r1)
sendfile(r0, r0, 0x0, 0x24000000)

03:12:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000250000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:45 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:45 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000000fffffff2000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3301.646599][T27900] loop3: detected capacity change from 0 to 512
[ 3301.673406][T27900] EXT4-fs (loop3): bad geometry: first data block 587202561 is beyond end of filesystem (256)
03:12:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000002a0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:45 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)
fchmod(r0, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x81, 0x81, 0x3, 0x3, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000040)}, 0x10000, 0x7, 0x7fffffff, 0x0, 0x5, 0x8, 0x7f, 0x0, 0x3}, 0x0, 0xc, r1, 0x19)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f0000000280)={{0x0, 0x2, 0x400, 0x5, 0xffffffff00000000, 0x6, 0x2, 0x4, 0x6, 0x8000, 0x100, 0x288f, 0x80, 0x0, 0xce7f}, 0x10, [0x0, 0x0]})
close(r2)

03:12:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000002b0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000002e0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3301.754143][T27900] loop3: detected capacity change from 0 to 512
[ 3301.771410][T27900] EXT4-fs (loop3): bad geometry: first data block 587202561 is beyond end of filesystem (256)
03:12:46 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xfec0ffff}, 0x1c)

03:12:46 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000250000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:46 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:46 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000480000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:46 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:46 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000490000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:46 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:46 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:46 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000260000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3302.520563][T27951] loop3: detected capacity change from 0 to 512
[ 3302.538560][T27951] EXT4-fs (loop3): bad geometry: first data block 620756993 is beyond end of filesystem (256)
03:12:46 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)
fchmod(r0, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x81, 0x81, 0x3, 0x3, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000040)}, 0x10000, 0x7, 0x7fffffff, 0x0, 0x5, 0x8, 0x7f, 0x0, 0x3}, 0x0, 0xc, r1, 0x19)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f0000000280)={{0x0, 0x2, 0x400, 0x5, 0xffffffff00000000, 0x6, 0x2, 0x4, 0x6, 0x8000, 0x100, 0x288f, 0x80, 0x0, 0xce7f}, 0x10, [0x0, 0x0]})
close(r2)

03:12:46 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000004c0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:46 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

[ 3302.620075][T27965] loop3: detected capacity change from 0 to 512
[ 3302.636899][T27965] EXT4-fs (loop3): bad geometry: first data block 637534209 is beyond end of filesystem (256)
[ 3302.695562][T27965] loop3: detected capacity change from 0 to 512
[ 3302.702670][T27965] EXT4-fs (loop3): bad geometry: first data block 637534209 is beyond end of filesystem (256)
03:12:47 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xff000000}, 0x1c)

03:12:47 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000520000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:47 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

03:12:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000270000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:47 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

03:12:47 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000530000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3303.331876][T27996] loop3: detected capacity change from 0 to 512
[ 3303.345773][T27996] EXT4-fs (loop3): bad geometry: first data block 654311425 is beyond end of filesystem (256)
03:12:47 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:47 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000540000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:47 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(0x0)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4)

[ 3303.389432][T27996] loop3: detected capacity change from 0 to 512
[ 3303.399436][T27996] EXT4-fs (loop3): bad geometry: first data block 654311425 is beyond end of filesystem (256)
03:12:47 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)
fchmod(r0, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x81, 0x81, 0x3, 0x3, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000040)}, 0x10000, 0x7, 0x7fffffff, 0x0, 0x5, 0x8, 0x7f, 0x0, 0x3}, 0x0, 0xc, r1, 0x19)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f0000000280)={{0x0, 0x2, 0x400, 0x5, 0xffffffff00000000, 0x6, 0x2, 0x4, 0x6, 0x8000, 0x100, 0x288f, 0x80, 0x0, 0xce7f}, 0x10, [0x0, 0x0]})
close(r2)

03:12:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000280000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:47 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(0x0)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4)

[ 3303.501605][T28024] loop3: detected capacity change from 0 to 512
[ 3303.511406][T28024] EXT4-fs (loop3): bad geometry: first data block 671088641 is beyond end of filesystem (256)
03:12:48 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xff020000}, 0x1c)

03:12:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000600000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(0x0)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4)

03:12:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000290000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000680000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100))
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

03:12:48 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100))
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

03:12:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000006c0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:48 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)
fchmod(r0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x81, 0x81, 0x3, 0x3, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000040)}, 0x10000, 0x7, 0x7fffffff, 0x0, 0x5, 0x8, 0x7f, 0x0, 0x3}, 0x0, 0xc, r1, 0x19)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f0000000280)={{0x0, 0x2, 0x400, 0x5, 0xffffffff00000000, 0x6, 0x2, 0x4, 0x6, 0x8000, 0x100, 0x288f, 0x80, 0x0, 0xce7f}, 0x10, [0x0, 0x0]})

03:12:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100))
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

[ 3304.258956][T28040] loop3: detected capacity change from 0 to 512
[ 3304.277478][T28040] EXT4-fs (loop3): bad geometry: first data block 687865857 is beyond end of filesystem (256)
03:12:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000740000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3304.350832][T28040] loop3: detected capacity change from 0 to 512
[ 3304.358757][T28040] EXT4-fs (loop3): bad geometry: first data block 687865857 is beyond end of filesystem (256)
03:12:49 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xff0f0000}, 0x1c)

03:12:49 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100002a0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:49 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:49 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000007a0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:49 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:49 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000cc0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:49 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:49 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)
fchmod(r0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x81, 0x81, 0x3, 0x3, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000040)}, 0x10000, 0x7, 0x7fffffff, 0x0, 0x5, 0x8, 0x7f, 0x0, 0x3}, 0x0, 0xc, r1, 0x19)

03:12:49 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000cd0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3305.175511][T28077] loop3: detected capacity change from 0 to 512
[ 3305.190622][T28077] EXT4-fs (loop3): bad geometry: first data block 704643073 is beyond end of filesystem (256)
03:12:49 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:49 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:49 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100002b0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3305.243892][T28077] loop3: detected capacity change from 0 to 512
[ 3305.259574][T28077] EXT4-fs (loop3): bad geometry: first data block 704643073 is beyond end of filesystem (256)
[ 3305.323390][T28108] loop3: detected capacity change from 0 to 512
[ 3305.334706][T28108] EXT4-fs (loop3): bad geometry: first data block 721420289 is beyond end of filesystem (256)
03:12:50 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xffff0000}, 0x1c)

03:12:50 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000ce0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:50 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:50 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100002e0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:50 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:50 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:50 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)
fchmod(r0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

03:12:50 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000cf0000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:50 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3306.075153][T28124] loop3: detected capacity change from 0 to 512
[ 3306.094240][T28124] EXT4-fs (loop3): bad geometry: first data block 771751937 is beyond end of filesystem (256)
03:12:50 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000d00000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:50 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100003f0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:50 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000580100000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3306.160147][T28124] loop3: detected capacity change from 0 to 512
[ 3306.171730][T28124] EXT4-fs (loop3): bad geometry: first data block 771751937 is beyond end of filesystem (256)
[ 3306.229807][T28157] loop3: detected capacity change from 0 to 512
[ 3306.238823][T28157] EXT4-fs (loop3): bad geometry: first data block 1056964609 is beyond end of filesystem (256)
03:12:51 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xffff80fe}, 0x1c)

03:12:51 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000040200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:51 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000400000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:51 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:51 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)
fchmod(r0, 0x0)

03:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000300000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000020400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:51 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000060400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3307.016207][T28174] loop3: detected capacity change from 0 to 512
[ 3307.037504][T28174] EXT4-fs (loop3): bad geometry: first data block 1073741825 is beyond end of filesystem (256)
03:12:51 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010001400000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000100400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3307.096588][T28174] loop3: detected capacity change from 0 to 512
[ 3307.104570][T28174] EXT4-fs (loop3): bad geometry: first data block 1073741825 is beyond end of filesystem (256)
[ 3307.168688][T28199] loop3: detected capacity change from 0 to 512
[ 3307.183775][T28199] EXT4-fs (loop3): bad geometry: first data block 1073807361 is beyond end of filesystem (256)
[ 3307.239808][T28199] loop3: detected capacity change from 0 to 512
[ 3307.246929][T28199] EXT4-fs (loop3): bad geometry: first data block 1073807361 is beyond end of filesystem (256)
03:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000500000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:51 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500), &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:51 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xffffc0fe}, 0x1c)

03:12:51 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000480000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:51 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:51 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x6)
sendfile(r0, r0, 0x0, 0x24000000)

03:12:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000600000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:52 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000490000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000040600000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3307.968989][T28230] loop3: detected capacity change from 0 to 512
[ 3307.978602][T28230] EXT4-fs (loop3): bad geometry: first data block 1207959553 is beyond end of filesystem (256)
03:12:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000700000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000900000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3308.024732][T28241] loop3: detected capacity change from 0 to 512
[ 3308.034942][T28241] EXT4-fs (loop3): bad geometry: first data block 1224736769 is beyond end of filesystem (256)
03:12:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000a00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:52 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100004c0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3308.095547][T28241] loop3: detected capacity change from 0 to 512
[ 3308.107849][T28241] EXT4-fs (loop3): bad geometry: first data block 1224736769 is beyond end of filesystem (256)
[ 3308.160632][T28261] loop3: detected capacity change from 0 to 512
[ 3308.170236][T28261] EXT4-fs (loop3): bad geometry: first data block 1275068417 is beyond end of filesystem (256)
[ 3308.226240][T28261] loop3: detected capacity change from 0 to 512
[ 3308.243190][T28261] EXT4-fs (loop3): bad geometry: first data block 1275068417 is beyond end of filesystem (256)
03:12:55 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500), &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:55 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000b00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:55 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000520000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:55 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:55 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xffffff91}, 0x1c)

03:12:55 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
sendfile(r0, r0, 0x0, 0x24000000)

03:12:55 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000c00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:55 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000d00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:55 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000e00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3310.973741][T28285] loop3: detected capacity change from 0 to 512
[ 3310.990228][T28285] EXT4-fs (loop3): bad geometry: first data block 1375731713 is beyond end of filesystem (256)
03:12:55 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000530000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:55 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000f00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:55 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000041000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3311.084150][T28308] loop3: detected capacity change from 0 to 512
[ 3311.104247][T28308] EXT4-fs (loop3): bad geometry: first data block 1392508929 is beyond end of filesystem (256)
03:12:58 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500), &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:12:58 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000201000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:58 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000540000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:58 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
pipe(&(0x7f0000000000))
sendfile(r0, r0, 0x0, 0x24000000)

03:12:58 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:12:58 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xffffffe0}, 0x1c)

03:12:58 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:12:58 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001100000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:58 executing program 5:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24000000)

[ 3314.024501][T28330] loop3: detected capacity change from 0 to 512
[ 3314.041915][T28330] EXT4-fs (loop3): bad geometry: first data block 1409286145 is beyond end of filesystem (256)
03:12:58 executing program 5:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24000000)

03:12:58 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:12:58 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000550000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3314.105625][T28330] loop3: detected capacity change from 0 to 512
[ 3314.122020][T28330] EXT4-fs (loop3): bad geometry: first data block 1409286145 is beyond end of filesystem (256)
[ 3314.204129][T28363] loop3: detected capacity change from 0 to 512
[ 3314.214213][T28363] EXT4-fs (loop3): bad geometry: first data block 1426063361 is beyond end of filesystem (256)
[ 3314.244838][T28363] loop3: detected capacity change from 0 to 512
[ 3314.252392][T28363] EXT4-fs (loop3): bad geometry: first data block 1426063361 is beyond end of filesystem (256)
03:13:01 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:01 executing program 5:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24000000)

03:13:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000600000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:01 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:01 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xfffffff5}, 0x1c)

03:13:01 executing program 5:
r0 = syz_open_dev$loop(0x0, 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:01 executing program 5:
r0 = syz_open_dev$loop(0x0, 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001900000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3317.056741][T28384] loop3: detected capacity change from 0 to 512
[ 3317.083060][T28384] EXT4-fs (loop3): bad geometry: first data block 1610612737 is beyond end of filesystem (256)
03:13:01 executing program 5:
r0 = syz_open_dev$loop(0x0, 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000680000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3317.144153][T28384] loop3: detected capacity change from 0 to 512
[ 3317.151277][T28384] EXT4-fs (loop3): bad geometry: first data block 1610612737 is beyond end of filesystem (256)
[ 3317.216815][T28419] loop3: detected capacity change from 0 to 512
[ 3317.227736][T28419] EXT4-fs (loop3): bad geometry: first data block 1744830465 is beyond end of filesystem (256)
03:13:04 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001b00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:04 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100006c0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:04 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:04 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x2)

03:13:04 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001f00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:04 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:04 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x18)

03:13:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3320.095050][T28435] loop3: detected capacity change from 0 to 512
[ 3320.118711][T28435] EXT4-fs (loop3): bad geometry: first data block 1811939329 is beyond end of filesystem (256)
03:13:04 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(0xffffffffffffffff, r0, 0x0, 0x24000000)

03:13:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000102000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:04 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(0xffffffffffffffff, r0, 0x0, 0x24000000)

[ 3320.192613][T28435] loop3: detected capacity change from 0 to 512
[ 3320.206401][T28435] EXT4-fs (loop3): bad geometry: first data block 1811939329 is beyond end of filesystem (256)
03:13:07 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000740000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:07 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:07 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(0xffffffffffffffff, r0, 0x0, 0x24000000)

03:13:07 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:07 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x2000001c)

03:13:07 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x24000000)

03:13:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002300000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:07 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
setsockopt$inet6_tcp_int(r3, 0x6, 0x18, &(0x7f0000000040)=0x10001, 0x4)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3323.108319][T28488] loop3: detected capacity change from 0 to 512
[ 3323.129429][T28488] EXT4-fs (loop3): bad geometry: first data block 1946157057 is beyond end of filesystem (256)
03:13:07 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100007a0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:07 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x24000000)

03:13:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002500000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:07 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x24000000)

[ 3323.219570][T28514] loop3: detected capacity change from 0 to 512
[ 3323.237915][T28514] EXT4-fs (loop3): bad geometry: first data block 2046820353 is beyond end of filesystem (256)
[ 3323.297885][T28514] loop3: detected capacity change from 0 to 512
[ 3323.310670][T28514] EXT4-fs (loop3): bad geometry: first data block 2046820353 is beyond end of filesystem (256)
03:13:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002a00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100c0ed0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:10 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:10 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x0)

03:13:10 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:10 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
preadv(r3, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/220, 0xdc}], 0x1, 0x9, 0x10000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000500)=[{&(0x7f0000000200)=""/207, 0xcf}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000340)=""/11, 0xb}, {&(0x7f0000000380)=""/126, 0x7e}, {&(0x7f0000000400)=""/220, 0xdc}], 0x5, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r2, 0x29, 0x1, &(0x7f00000001c0), 0x4)
fcntl$dupfd(r1, 0x406, r0)

03:13:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002b00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:10 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x0)

03:13:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002e00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3326.122834][T28546] loop3: detected capacity change from 0 to 512
[ 3326.134034][T28546] EXT4-fs (loop3): bad geometry: first data block 3988783105 is beyond end of filesystem (256)
03:13:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffe0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:10 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x0)

03:13:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000003f00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3326.177109][T28546] loop3: detected capacity change from 0 to 512
[ 3326.189126][T28546] EXT4-fs (loop3): bad geometry: first data block 3988783105 is beyond end of filesystem (256)
03:13:10 executing program 5:
prlimit64(0x0, 0x0, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000ff0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3326.237905][T28577] loop3: detected capacity change from 0 to 512
[ 3326.245623][T28577] EXT4-fs (loop3): bad geometry: first data block 4278124545 is beyond end of filesystem (256)
[ 3326.303182][T28590] loop3: detected capacity change from 0 to 512
[ 3326.312082][T28590] EXT4-fs (loop3): bad geometry: first data block 4278190081 is beyond end of filesystem (256)
03:13:13 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:13 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000fff0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:13 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:13 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x204000, 0x35)
r2 = openat(r1, &(0x7f0000000180)='/proc/self/exe\x00', 0x410802, 0x60)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x40000000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
fremovexattr(r1, &(0x7f0000000100)=@known='trusted.overlay.nlink\x00')
preadv(r3, &(0x7f0000000040), 0x0, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0xfffffffc}, 0x1c)

03:13:13 executing program 5:
prlimit64(0x0, 0x0, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:13 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@loopback, 0x8, 0x2, 0x1, 0x4, 0x80, 0xba}, 0x20)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0xffff, 0x3, @empty}, 0x1c)

03:13:13 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100feff0000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3329.150216][T28609] loop3: detected capacity change from 0 to 512
[ 3329.162705][T28609] EXT4-fs (loop3): bad geometry: first data block 4279173121 is beyond end of filesystem (256)
03:13:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004900000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004c00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3329.230894][T28631] loop3: detected capacity change from 0 to 512
[ 3329.239296][T28631] EXT4-fs (loop3): bad geometry: first data block 4294836225 is beyond end of filesystem (256)
03:13:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000005200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3329.273006][T28631] loop3: detected capacity change from 0 to 512
[ 3329.282949][T28631] EXT4-fs (loop3): bad geometry: first data block 4294836225 is beyond end of filesystem (256)
03:13:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000200000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000005300000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:16 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:16 executing program 5:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
getpid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

03:13:16 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
mmap(&(0x7f00006bc000/0x1000)=nil, 0x1000, 0x180000a, 0x12, r1, 0x4000)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000000c0)="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"/297, 0xffffffca)
preadv(r2, &(0x7f0000000280), 0x0, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:16 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000005400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3332.176091][T28657] loop3: detected capacity change from 0 to 512
[ 3332.184597][T28657] EXT4-fs (loop3): fragment/cluster size (1024) != block size (4096)
03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000015800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000006000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000006800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3332.229027][T28657] loop3: detected capacity change from 0 to 512
[ 3332.247979][T28657] EXT4-fs (loop3): fragment/cluster size (1024) != block size (4096)
03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000006c00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100ffff0300000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000007400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000007a00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3332.343950][T28692] loop3: detected capacity change from 0 to 512
[ 3332.354159][T28692] EXT4-fs (loop3): bad block size 8192
03:13:17 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000cc00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:17 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x0, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:17 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x1)
recvfrom$inet6(r1, &(0x7f00000000c0)=""/129, 0x81, 0x80000001, &(0x7f0000000040)={0xa, 0x4e20, 0x9, @local, 0x7}, 0x1c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:19 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:19 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000400000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000cd00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x0, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:19 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000440), 0x42000, 0x0)
write$binfmt_misc(r1, &(0x7f0000000480)={'syz0', "14e1ff1b18b4981f6af22d70dde733c3f7f8dd8d3af766a6c0e8a46c461d1a61186b9bce6545437199bc13fa45b955d4bb71d3421cd6844eb90b9176add0a8f7cbc659bc64b164ae763c48581f6e00506cbb2bd3930a916f35811856e7a1d3ddf39da13f8ec78b5d2076025251355a49cf43280a6d34b5c68b8294a002b01cac7d9a57ce3132279f9c455d5936dd4c1d4bf1115c87d38f5dcc0e08dd4edca07ee907"}, 0xa6)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0, 0x80)
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
write(0xffffffffffffffff, &(0x7f0000000200)="e9c2fa87b2b65ce1aa686ec64c97f392e2a20831eab48534d1dd5c7dc84f39c2e23408c1", 0x24)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @local}, 0x1c)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/73, 0x49}, {&(0x7f00000002c0)=""/90, 0x5a}, {&(0x7f0000000340)=""/84, 0x54}], 0x3, 0xd9f, 0x400)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000ce00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 5:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:19 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000800000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000cf00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3335.234442][T28728] loop3: detected capacity change from 0 to 512
[ 3335.248347][T28728] EXT4-fs (loop3): bad block size 16384
03:13:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000d000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000c0ed00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3335.383769][T28754] loop3: detected capacity change from 0 to 512
[ 3335.395902][T28754] EXT4-fs (loop3): Invalid log block size: 8
03:13:19 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010040000800000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000ff00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:19 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3335.541946][T28769] loop3: detected capacity change from 0 to 512
[ 3335.558779][T28769] EXT4-fs (loop3): Invalid log block size: 8
[ 3335.611477][T28769] loop3: detected capacity change from 0 to 512
[ 3335.619204][T28769] EXT4-fs (loop3): Invalid log block size: 8
03:13:20 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x0, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000fff00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000001800000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:20 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x182)
sendfile(r0, r0, 0x0, 0x24000003)

03:13:20 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000), &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:20 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x26, 0xa, 0x101)
r2 = openat2(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x1, 0x4, 0x1}, 0x18)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f0000000200)=0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6, 0x0, 0xff, 0x8, 0x0, 0xffe}, 0x20)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1b, &(0x7f0000000240)=0x400000001, 0x4)
listen(r1, 0x1)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x10, &(0x7f00000000c0)=0x7, 0x4)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f0000000100)='freezer.self_freezing\x00', 0x0, 0x0)
openat(r5, &(0x7f0000000140)='./file0\x00', 0x4000, 0x1)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000ffff03000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3336.086870][T28791] loop3: detected capacity change from 0 to 512
[ 3336.097200][T28791] EXT4-fs (loop3): Invalid log block size: 24
03:13:20 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x182)
sendfile(r0, r0, 0x0, 0x401)
ioctl$LOOP_SET_DIRECT_IO(0xffffffffffffffff, 0x4c08, 0x7)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000000)={0x0, {}, 0x0, {}, 0x2, 0x12, 0x1f, 0x4, "5d74bc995d5caeda54c921da5f4d996aa0af5598ac37a8734e63172de3a2f623ec41d2815811e9c1988b19936a4b08347b9fbe3e222b076d1ae56a998e4f1381", "edeb0a3a0c4b403db2576f4757bcfdae3fa111237166e1126edd4829b84a912e", [0xfffffffffffffff9, 0xfff]})
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x20)

03:13:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000004000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:20 executing program 2:
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000040)='+.^-/\xf4)@\x8d\x00', &(0x7f00000000c0)='\x00', 0x0)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000004000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:20 executing program 5:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="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"/297, 0xffffffca)
dup2(r2, r4)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 3336.266813][T28823] loop3: detected capacity change from 0 to 512
[ 3336.288785][T28823] EXT4-fs (loop3): Invalid log block size: 64
[ 3336.344792][T28823] loop3: detected capacity change from 0 to 512
[ 3336.351598][T28823] EXT4-fs (loop3): Invalid log block size: 64
03:13:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000008000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:20 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000001000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000400008000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3336.948726][T28849] loop3: detected capacity change from 0 to 512
[ 3336.958931][T28849] EXT4-fs (loop3): Invalid log block size: 256
03:13:21 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000), &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000018000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3337.038456][T28849] loop3: detected capacity change from 0 to 512
[ 3337.054112][T28849] EXT4-fs (loop3): Invalid log block size: 256
03:13:21 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x1, 0xf4)
setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f00000000c0)={0x11, 0xd, '\x00', [@hao={0xc9, 0x10, @loopback}, @padn={0x1, 0x2, [0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x4}, @calipso={0x7, 0x20, {0x3, 0x6, 0x3f, 0xea9, [0x3, 0x100, 0x71e5]}}, @calipso={0x7, 0x28, {0x2, 0x8, 0x2, 0x5, [0x5, 0x3, 0xffff, 0xa2]}}]}, 0x70)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x220082, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$sock_TIOCOUTQ(r5, 0x5411, &(0x7f0000000140))
r6 = gettid()
ptrace(0x4206, r6)
tkill(r6, 0x800000009)
fcntl$setown(r4, 0x8, r6)

03:13:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000010000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:21 executing program 5:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="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"/297, 0xffffffca)
dup2(r2, r4)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:13:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000002000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000020000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3337.182547][T28883] loop3: detected capacity change from 0 to 512
03:13:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000004020000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3337.235626][T28883] EXT4-fs (loop3): Invalid log block size: 512
[ 3337.290895][T28883] loop3: detected capacity change from 0 to 512
[ 3337.314373][T28883] EXT4-fs (loop3): Invalid log block size: 512
03:13:21 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:21 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x1000)
close(r0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
write$binfmt_misc(r1, &(0x7f0000000300)={'syz1', "562cc64289c01c08ba36d917cc9a34c2d1e2433593ffa2da035afaadf1210cd6100dcf425258e5f1847ba61ea294db2e7e3dd5ac94402571e37dd1d077d7763275aac0def1674265942776ff940bf7cd103fdfa078455367b51905e266e5bb62c6b1e945acd37faabc8737d44bf8dfd267707672333082b1fcadd5eeb775abc71d1dee347fc2ec8784320f74e9d1be3d8d35d743890a48538ef5e6481226b5d5055544865b23841542c15cfe55887026a460af0dda97e14b45dd71534bbb16742622a8f5200d5a074ef71352d0f7038b35e2cbd99fe22407771f58be7a58fe256f93a9cb68513c2b88eb5e9f652c30f3c0d2e98bbf20"}, 0xfa)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
preadv(r3, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/112, 0x70}, {&(0x7f0000000140)=""/201, 0xc9}, {&(0x7f0000000240)=""/146, 0x92}], 0x3, 0x0, 0x1f)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000402000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000030000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3337.822943][T28912] loop3: detected capacity change from 0 to 512
[ 3337.833813][T28912] EXT4-fs (loop3): Invalid log block size: 516
03:13:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000003000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:21 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000), &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000040000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000050000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:22 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000004020000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3337.971340][T28927] loop3: detected capacity change from 0 to 512
[ 3337.984659][T28927] EXT4-fs (loop3): Invalid log block size: 768
03:13:22 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000004000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000060000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:22 executing program 5 (fault-call:1 fault-nth:0):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3338.081890][T28945] loop3: detected capacity change from 0 to 512
[ 3338.110684][T28955] FAULT_INJECTION: forcing a failure.
[ 3338.110684][T28955] name failslab, interval 1, probability 0, space 0, times 0
[ 3338.123793][T28955] CPU: 0 PID: 28955 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3338.132591][T28955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3338.142888][T28955] Call Trace:
[ 3338.146290][T28955]  dump_stack+0x137/0x19d
[ 3338.150724][T28955]  should_fail+0x23c/0x250
[ 3338.155179][T28955]  __should_failslab+0x81/0x90
[ 3338.159947][T28955]  ? alloc_pipe_info+0xac/0x350
[ 3338.164823][T28955]  should_failslab+0x5/0x20
[ 3338.169492][T28955]  kmem_cache_alloc_trace+0x49/0x310
[ 3338.174791][T28955]  alloc_pipe_info+0xac/0x350
[ 3338.179507][T28955]  splice_direct_to_actor+0x5f7/0x650
[ 3338.185281][T28955]  ? do_splice_direct+0x170/0x170
[ 3338.190396][T28955]  ? security_file_permission+0x87/0xa0
[ 3338.196025][T28955]  ? rw_verify_area+0x136/0x250
[ 3338.201003][T28955]  do_splice_direct+0xf5/0x170
[ 3338.205999][T28955]  do_sendfile+0x773/0xda0
[ 3338.210623][T28955]  __x64_sys_sendfile64+0xf2/0x130
[ 3338.215922][T28955]  do_syscall_64+0x4a/0x90
[ 3338.220345][T28955]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3338.224022][T28945] EXT4-fs (loop3): Invalid log block size: 1024
[ 3338.226447][T28955] RIP: 0033:0x4665d9
[ 3338.226467][T28955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3338.256289][T28955] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3338.265270][T28955] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3338.273410][T28955] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3338.281386][T28955] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3338.289381][T28955] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
[ 3338.297530][T28955] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3338.371091][T28945] loop3: detected capacity change from 0 to 512
[ 3338.389818][T28945] EXT4-fs (loop3): Invalid log block size: 1024
03:13:22 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000004060000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:22 executing program 5 (fault-call:1 fault-nth:1):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:22 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000005000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:22 executing program 2:
accept$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0xa203, 0xd9)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
r4 = fsopen(&(0x7f0000000180)='tracefs\x00', 0x1)
ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f00000001c0)={{r4}, 0x6, 0x4764f283, 0x6000000000000})
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
linkat(r2, &(0x7f0000000100)='./file0\x00', r1, &(0x7f0000000140)='./file0\x00', 0x1000)

[ 3338.693898][T28973] FAULT_INJECTION: forcing a failure.
[ 3338.693898][T28973] name failslab, interval 1, probability 0, space 0, times 0
[ 3338.705040][T28976] loop3: detected capacity change from 0 to 512
[ 3338.706680][T28973] CPU: 0 PID: 28973 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3338.718461][T28976] EXT4-fs (loop3): Invalid log block size: 1280
[ 3338.721645][T28973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3338.721659][T28973] Call Trace:
[ 3338.721667][T28973]  dump_stack+0x137/0x19d
[ 3338.745509][T28973]  should_fail+0x23c/0x250
[ 3338.749934][T28973]  ? kcalloc+0x32/0x40
[ 3338.754127][T28973]  __should_failslab+0x81/0x90
[ 3338.758879][T28973]  should_failslab+0x5/0x20
[ 3338.763470][T28973]  __kmalloc+0x66/0x340
[ 3338.767615][T28973]  ? kmem_cache_alloc_trace+0x215/0x310
[ 3338.773264][T28973]  ? alloc_pipe_info+0xac/0x350
[ 3338.778101][T28973]  kcalloc+0x32/0x40
[ 3338.782297][T28973]  alloc_pipe_info+0x1be/0x350
[ 3338.787190][T28973]  splice_direct_to_actor+0x5f7/0x650
[ 3338.792917][T28973]  ? do_splice_direct+0x170/0x170
[ 3338.798059][T28973]  ? security_file_permission+0x87/0xa0
[ 3338.803842][T28973]  ? rw_verify_area+0x136/0x250
[ 3338.808708][T28973]  do_splice_direct+0xf5/0x170
[ 3338.813458][T28973]  do_sendfile+0x773/0xda0
[ 3338.818025][T28973]  __x64_sys_sendfile64+0xf2/0x130
[ 3338.823246][T28973]  do_syscall_64+0x4a/0x90
[ 3338.827734][T28973]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3338.833858][T28973] RIP: 0033:0x4665d9
[ 3338.838022][T28973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3338.858107][T28973] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3338.866782][T28973] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3338.874946][T28973] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3338.883015][T28973] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3338.890987][T28973] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
[ 3338.898961][T28973] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:23 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000070000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:23 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, 0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:23 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000080000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3338.939395][T28976] loop3: detected capacity change from 0 to 512
[ 3338.968950][T28976] EXT4-fs (loop3): Invalid log block size: 1280
03:13:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000006000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:23 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000090000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:23 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000000a0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3339.094069][T29002] loop3: detected capacity change from 0 to 512
[ 3339.104807][T29002] EXT4-fs (loop3): Invalid log block size: 1536
03:13:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000406000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3339.229707][T29015] loop3: detected capacity change from 0 to 512
[ 3339.243312][T29015] EXT4-fs (loop3): Invalid log block size: 1540
03:13:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000007000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:23 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000000b0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:23 executing program 5 (fault-call:1 fault-nth:2):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:23 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r1, &(0x7f00000002c0)={0x10000000})
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
vmsplice(r5, &(0x7f0000000040)=[{&(0x7f00000000c0)="49922f9819650dd61578dd4e95699dfdb651706e2dcf683ddfd759f3a16a8c30b8a5263ca5e78b96b9b737931eed372b2a7aa9520a3bfde68f36a43718afa714bc75e7d75fe45e68ecb794dc7c5f57c23a75f3f209c62d3e66e668412bfe323bbb2fe021f75be36ecf3b92b4d65af25f6868300dc97be58057466b93bbf80ae4aa6b392712ccff17f9be0b41581fdc6c0849296072f7f84084e9e7a1c618cd8acf04337f2af49358ec6851b956fbe794d1b19a1cbca9492138cdb0130e3d557e6cc4c55b04ca8637dd8d9be3701b67ce59d90b4c67f0a2923b69228017d9a94e7a2d25e0e296dc230e1e", 0xea}, {&(0x7f00000001c0)="f022f50b9642f7a2a0c2550a1083798fca3760fb1f9849d57a75530088444961ff23cec501fb80b20bb7beb4603662bbb6ce6735e36f5267bf371c094bbcc71a1a8b9607ec5fcfe53e1ffd54d27b0561c66e459ae12e51d3d18fbe8b75be08393050644806", 0x65}], 0x2, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x4800, 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r6, 0x80089419, &(0x7f0000000280))

03:13:23 executing program 1 (fault-call:8 fault-nth:0):
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3339.610977][T29027] loop3: detected capacity change from 0 to 512
[ 3339.621664][T29027] EXT4-fs (loop3): Invalid log block size: 1792
[ 3339.625839][T29030] FAULT_INJECTION: forcing a failure.
[ 3339.625839][T29030] name failslab, interval 1, probability 0, space 0, times 0
[ 3339.641035][T29030] CPU: 1 PID: 29030 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3339.649786][T29030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3339.659927][T29030] Call Trace:
[ 3339.663237][T29030]  dump_stack+0x137/0x19d
[ 3339.667611][T29030]  should_fail+0x23c/0x250
[ 3339.672036][T29030]  ? blkdev_direct_IO+0x392/0x1060
[ 3339.677273][T29030]  __should_failslab+0x81/0x90
[ 3339.682135][T29030]  should_failslab+0x5/0x20
[ 3339.686627][T29030]  __kmalloc+0x66/0x340
[ 3339.690771][T29030]  ? avc_has_perm_noaudit+0x19a/0x240
[ 3339.696133][T29030]  blkdev_direct_IO+0x392/0x1060
[ 3339.701122][T29030]  ? avc_has_perm+0x59/0x150
[ 3339.705791][T29030]  ? __fsnotify_parent+0x32f/0x430
[ 3339.711116][T29030]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3339.717002][T29030]  ? current_time+0xdb/0x190
[ 3339.721746][T29030]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3339.727688][T29030]  ? __mark_inode_dirty+0x103/0x6c0
[ 3339.733260][T29030]  ? __mnt_drop_write+0x12/0x20
[ 3339.738280][T29030]  ? touch_atime+0x1b3/0x240
[ 3339.743016][T29030]  generic_file_read_iter+0x1c5/0x2c0
[ 3339.748571][T29030]  blkdev_read_iter+0xb9/0xf0
[ 3339.753413][T29030]  generic_file_splice_read+0x22a/0x310
[ 3339.758969][T29030]  ? splice_shrink_spd+0x60/0x60
[ 3339.763916][T29030]  splice_direct_to_actor+0x2aa/0x650
[ 3339.769427][T29030]  ? do_splice_direct+0x170/0x170
[ 3339.774440][T29030]  do_splice_direct+0xf5/0x170
[ 3339.779399][T29030]  do_sendfile+0x773/0xda0
[ 3339.783992][T29030]  __x64_sys_sendfile64+0xf2/0x130
[ 3339.789204][T29030]  do_syscall_64+0x4a/0x90
[ 3339.794192][T29030]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3339.800181][T29030] RIP: 0033:0x4665d9
[ 3339.804579][T29030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3339.824788][T29030] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3339.833470][T29030] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3339.841469][T29030] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3339.850336][T29030] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
03:13:23 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000000c0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:23 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, 0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:23 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3339.858448][T29030] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
[ 3339.866422][T29030] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:23 executing program 5 (fault-call:1 fault-nth:3):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000000d0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3339.908137][T29027] loop3: detected capacity change from 0 to 512
[ 3339.925205][T29027] EXT4-fs (loop3): Invalid log block size: 1792
03:13:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000008000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3339.989454][T29056] FAULT_INJECTION: forcing a failure.
[ 3339.989454][T29056] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3340.002866][T29056] CPU: 0 PID: 29056 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3340.011642][T29056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3340.021785][T29056] Call Trace:
[ 3340.025065][T29056]  dump_stack+0x137/0x19d
[ 3340.029438][T29056]  should_fail+0x23c/0x250
[ 3340.033890][T29056]  __alloc_pages+0x102/0x320
03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000000e0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3340.037862][T29066] loop3: detected capacity change from 0 to 512
[ 3340.038484][T29056]  alloc_pages+0x21d/0x310
[ 3340.049405][T29066] EXT4-fs (loop3): Invalid log block size: 2048
[ 3340.049636][T29056]  push_pipe+0x267/0x370
[ 3340.049657][T29056]  iov_iter_get_pages+0xb39/0xcc0
[ 3340.065293][T29056]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3340.071118][T29056]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3340.076558][T29056]  ? blkdev_direct_IO+0x392/0x1060
[ 3340.081699][T29056]  ? __kmalloc+0x23d/0x340
[ 3340.086399][T29056]  ? blkdev_direct_IO+0x392/0x1060
[ 3340.091521][T29056]  blkdev_direct_IO+0x9ec/0x1060
[ 3340.096468][T29056]  ? avc_has_perm+0x59/0x150
[ 3340.101358][T29056]  ? __fsnotify_parent+0x32f/0x430
[ 3340.106499][T29056]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3340.112517][T29056]  ? blkdev_get_block+0x70/0x70
[ 3340.117673][T29056]  ? touch_atime+0xcf/0x240
[ 3340.122471][T29056]  generic_file_read_iter+0x1c5/0x2c0
[ 3340.127942][T29056]  blkdev_read_iter+0xb9/0xf0
[ 3340.132630][T29056]  generic_file_splice_read+0x22a/0x310
[ 3340.138239][T29056]  ? splice_shrink_spd+0x60/0x60
[ 3340.143217][T29056]  splice_direct_to_actor+0x2aa/0x650
[ 3340.148692][T29056]  ? do_splice_direct+0x170/0x170
[ 3340.153719][T29056]  do_splice_direct+0xf5/0x170
[ 3340.158537][T29056]  do_sendfile+0x773/0xda0
[ 3340.163025][T29056]  __x64_sys_sendfile64+0xf2/0x130
[ 3340.168144][T29056]  do_syscall_64+0x4a/0x90
[ 3340.172664][T29056]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3340.178755][T29056] RIP: 0033:0x4665d9
[ 3340.182893][T29056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3340.202941][T29056] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3340.211578][T29056] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3340.219898][T29056] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3340.228061][T29056] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3340.236198][T29056] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
[ 3340.244266][T29056] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000000f0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:24 executing program 5 (fault-call:1 fault-nth:4):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3340.282713][T29066] loop3: detected capacity change from 0 to 512
[ 3340.298872][T29066] EXT4-fs (loop3): Invalid log block size: 2048
[ 3340.337299][T29083] FAULT_INJECTION: forcing a failure.
[ 3340.337299][T29083] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3340.350773][T29083] CPU: 1 PID: 29083 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3340.359756][T29083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3340.369837][T29083] Call Trace:
[ 3340.373215][T29083]  dump_stack+0x137/0x19d
[ 3340.377640][T29083]  should_fail+0x23c/0x250
[ 3340.382061][T29083]  __alloc_pages+0x102/0x320
[ 3340.386883][T29083]  alloc_pages+0x21d/0x310
[ 3340.391346][T29083]  push_pipe+0x267/0x370
[ 3340.396290][T29083]  iov_iter_get_pages+0xb39/0xcc0
[ 3340.401437][T29083]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3340.407338][T29083]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3340.412811][T29083]  ? __perf_event_task_sched_in+0x471/0x4c0
[ 3340.419082][T29083]  ? blkdev_direct_IO+0x392/0x1060
[ 3340.424307][T29083]  ? __kmalloc+0x23d/0x340
[ 3340.429050][T29083]  ? blkdev_direct_IO+0x392/0x1060
[ 3340.434236][T29083]  blkdev_direct_IO+0x9ec/0x1060
[ 3340.439182][T29083]  ? avc_has_perm+0x59/0x150
[ 3340.443805][T29083]  ? __fsnotify_parent+0x32f/0x430
[ 3340.449042][T29083]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3340.454938][T29083]  ? blkdev_get_block+0x70/0x70
[ 3340.459806][T29083]  ? touch_atime+0xcf/0x240
[ 3340.464318][T29083]  generic_file_read_iter+0x1c5/0x2c0
[ 3340.469760][T29083]  blkdev_read_iter+0xb9/0xf0
[ 3340.474577][T29083]  generic_file_splice_read+0x22a/0x310
[ 3340.480157][T29083]  ? splice_shrink_spd+0x60/0x60
03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000ffffff0f0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:24 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f000076d000/0x2000)=nil, 0x2000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3340.485098][T29083]  splice_direct_to_actor+0x2aa/0x650
[ 3340.490577][T29083]  ? do_splice_direct+0x170/0x170
[ 3340.495713][T29083]  do_splice_direct+0xf5/0x170
[ 3340.500498][T29083]  do_sendfile+0x773/0xda0
[ 3340.505060][T29083]  __x64_sys_sendfile64+0xf2/0x130
[ 3340.510390][T29083]  do_syscall_64+0x4a/0x90
[ 3340.514834][T29083]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3340.521161][T29083] RIP: 0033:0x4665d9
03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000100000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000004100000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3340.525055][T29083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3340.545307][T29083] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3340.554399][T29083] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3340.562842][T29083] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3340.571046][T29083] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3340.579324][T29083] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
[ 3340.587328][T29083] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:24 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, 0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000110000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:24 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0xa, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:24 executing program 5 (fault-call:1 fault-nth:5):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000009000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000120000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3340.825832][T29104] loop3: detected capacity change from 0 to 512
[ 3340.826195][T29105] FAULT_INJECTION: forcing a failure.
[ 3340.826195][T29105] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3340.845768][T29105] CPU: 0 PID: 29105 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3340.847299][T29104] EXT4-fs (loop3): Invalid log block size: 2304
[ 3340.854688][T29105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3340.854703][T29105] Call Trace:
[ 3340.854711][T29105]  dump_stack+0x137/0x19d
[ 3340.879406][T29105]  should_fail+0x23c/0x250
[ 3340.884255][T29105]  __alloc_pages+0x102/0x320
[ 3340.889083][T29105]  alloc_pages+0x21d/0x310
[ 3340.893847][T29105]  push_pipe+0x267/0x370
[ 3340.898107][T29105]  iov_iter_get_pages+0xb39/0xcc0
[ 3340.903120][T29105]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3340.909464][T29105]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3340.915357][T29105]  ? blkdev_direct_IO+0x392/0x1060
[ 3340.920910][T29105]  ? __kmalloc+0x23d/0x340
[ 3340.925426][T29105]  ? blkdev_direct_IO+0x392/0x1060
[ 3340.930671][T29105]  blkdev_direct_IO+0x9ec/0x1060
[ 3340.936073][T29105]  ? avc_has_perm+0x59/0x150
[ 3340.940766][T29105]  ? __fsnotify_parent+0x32f/0x430
[ 3340.946153][T29105]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3340.952064][T29105]  ? blkdev_get_block+0x70/0x70
[ 3340.956930][T29105]  ? __mnt_drop_write+0x12/0x20
[ 3340.961786][T29105]  ? touch_atime+0x1b3/0x240
[ 3340.966411][T29105]  generic_file_read_iter+0x1c5/0x2c0
[ 3340.971891][T29105]  blkdev_read_iter+0xb9/0xf0
[ 3340.976668][T29105]  generic_file_splice_read+0x22a/0x310
[ 3340.982454][T29105]  ? splice_shrink_spd+0x60/0x60
[ 3340.987438][T29105]  splice_direct_to_actor+0x2aa/0x650
[ 3340.992943][T29105]  ? do_splice_direct+0x170/0x170
[ 3340.998171][T29105]  do_splice_direct+0xf5/0x170
[ 3341.002939][T29105]  do_sendfile+0x773/0xda0
[ 3341.007362][T29105]  __x64_sys_sendfile64+0xf2/0x130
[ 3341.012565][T29105]  do_syscall_64+0x4a/0x90
[ 3341.017140][T29105]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3341.023039][T29105] RIP: 0033:0x4665d9
[ 3341.027032][T29105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3341.047024][T29105] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3341.055452][T29105] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3341.063430][T29105] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3341.071538][T29105] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3341.079894][T29105] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
[ 3341.087909][T29105] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:25 executing program 5 (fault-call:1 fault-nth:6):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000140000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000180000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3341.129156][T29104] loop3: detected capacity change from 0 to 512
[ 3341.164727][T29104] EXT4-fs (loop3): Invalid log block size: 2304
[ 3341.193172][T29125] FAULT_INJECTION: forcing a failure.
[ 3341.193172][T29125] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3341.206872][T29125] CPU: 1 PID: 29125 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3341.215929][T29125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3341.226438][T29125] Call Trace:
[ 3341.229894][T29125]  dump_stack+0x137/0x19d
[ 3341.234529][T29125]  should_fail+0x23c/0x250
[ 3341.238953][T29125]  __alloc_pages+0x102/0x320
[ 3341.243651][T29125]  alloc_pages+0x21d/0x310
[ 3341.248149][T29125]  push_pipe+0x267/0x370
[ 3341.252659][T29125]  iov_iter_get_pages+0xb39/0xcc0
[ 3341.257689][T29125]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3341.263742][T29125]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3341.269305][T29125]  ? blkdev_direct_IO+0x392/0x1060
[ 3341.274549][T29125]  ? __kmalloc+0x23d/0x340
[ 3341.279002][T29125]  ? blkdev_direct_IO+0x392/0x1060
[ 3341.284749][T29125]  blkdev_direct_IO+0x9ec/0x1060
[ 3341.289692][T29125]  ? avc_has_perm+0x59/0x150
[ 3341.294300][T29125]  ? __fsnotify_parent+0x32f/0x430
[ 3341.299577][T29125]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3341.305664][T29125]  ? blkdev_get_block+0x70/0x70
[ 3341.311083][T29125]  ? __mnt_drop_write+0x12/0x20
[ 3341.315948][T29125]  ? touch_atime+0x1b3/0x240
[ 3341.320607][T29125]  generic_file_read_iter+0x1c5/0x2c0
[ 3341.326493][T29125]  blkdev_read_iter+0xb9/0xf0
[ 3341.331789][T29125]  generic_file_splice_read+0x22a/0x310
[ 3341.337426][T29125]  ? splice_shrink_spd+0x60/0x60
[ 3341.342721][T29125]  splice_direct_to_actor+0x2aa/0x650
[ 3341.348103][T29125]  ? do_splice_direct+0x170/0x170
[ 3341.353133][T29125]  do_splice_direct+0xf5/0x170
[ 3341.358078][T29125]  do_sendfile+0x773/0xda0
[ 3341.362606][T29125]  __x64_sys_sendfile64+0xf2/0x130
[ 3341.367729][T29125]  do_syscall_64+0x4a/0x90
[ 3341.372151][T29125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3341.378115][T29125] RIP: 0033:0x4665d9
[ 3341.382050][T29125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3341.401945][T29125] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3341.410372][T29125] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3341.418514][T29125] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3341.426651][T29125] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3341.434646][T29125] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
03:13:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000190000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:25 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
write$binfmt_misc(r1, &(0x7f0000001900)={'syz1', "455d7d0c75ec436a5216e7cafd73c77872700bef427c4008c3e68535632f292bf2cf02019fe1b2ad22d3ba721a3342cbc1280b5c6cfab338f22f096454581f08cb01f022174992018d60904e5166a34500a05f86f0dccb8d66c8cbc5bf662fa2491d3db4e67491573e88b48f13ac8cb671da0ae35430b6ea0864f85a0d949f6e4ddf5eba8fc13790e1aea893c4b68a105f6d3752af"}, 0x99)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
ioctl$FIONCLEX(r1, 0x5450)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
connect$inet6(r2, &(0x7f0000000340)={0xa, 0x4e21, 0xa7b1, @private0, 0x7}, 0x1c)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="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"/297, 0xffffffca)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x88040, 0x0)
preadv(r3, &(0x7f0000000200), 0x0, 0xe2, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
lstat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
chown(&(0x7f0000000400)='./file0\x00', r5, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000240)={{{@in=@initdev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@remote}}, &(0x7f00000018c0)=0xe8)
sendmsg$nl_netfilter(r4, &(0x7f0000001880)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001840)={&(0x7f0000000380)=ANY=[@ANYBLOB="a0140000140801032cbd7000ffdbdf2500000008d124884eacd648745aa4818987e5a9bdc6bb4732f9f62af2bb391ef05660ce9e96b93d7ea788f56a6785109525587c83e7371b8c245cc731ea1bd007e1ee5706fbd7fc74687876ebee5b3b8be42ff99585a6132cc47d66beecfa40f5036714193eaaa08409e6dbc401692fb0f9793c9ca841a9e097c66ba646adbde61bd31ee3b623e07a6f7c9108004b00", @ANYRES32=0x0, @ANYBLOB="080006ee", @ANYRES32=r5, @ANYBLOB="9a8942651204913188f9f4b85ccc5bebbd573fc99340de11d2cdd70978fe6648a6adbb6469b2946ee6bff09fe5ce23d43d6a3cd210c8c054997393af52bff195890566722de087a6f65a60059a84c4a501327fc037284273ac55baa12b18a2cb9fa5df132b11e96db52e06de262e4c95a2d5b009a09bc6fceae67b360b728c43488b83e7a7968a4c725669dea43bfd6186563b3205f77acfd8dc4f143b00a0a385d7fc8b6d00cf0d4391e905e39b258cf0afd9072fb2567e59aa357ab84131c783a65d4d30be359854ac9590e43ba7d9b8446ab4195b69df5ef5bbf502bf11d7ba3dd5158a985f1cfe35f387114980d18a099ad14654112b8e91fd34bce4e17b63ba26c6a0553e35945a5e6fa3c5b1ec948e03c7b2fede603f0e15065e7ede5304f1d1f3793b3bcaad96fafdff9904641c66ed20e3097f39c404dda1142c4606a4b1ae6036bf69e48ded0c2ca6b01015f7fd9e20c5d34efe14c4c85368a1d926f70d6509041852c7d7224df2cf8af0f5a1c8d53ed536efd925c1ea744d3bcee99f25f084b8af2fd55dc2c2fbfba96b00946b5375787588bbeaa0f173522d2a8294c6fd610e0541e46b4c73e1167a840173fb2a16a67a8c2dbb1b66d28960ad61bf1892124fd04ffbf7d5d04be5e60ef4ec32f900b25db83897e91843bd1560acda3a056cb81ae8d76ce4b514a0ea29e3b70f21b7178804ded4362d22fc34e74387d9b63b3ed6b55b942a641a5adb700f7df98bbdf14f803a2c209104a5f7ad791fd26c2f62c185fe3ae6911a9cab8020f0713b0486403d7bdcdc905234a5e666b2df7b778d82ea210cd8897cdbe2d285b080b51e547e172f723eab41419df0f1567c912e3abc6c0491e6a980ebf9c5e46e82037f9b6d85deb25c811e5fdb61b87523a359c4168ffdbd8516fc238212b9a0d778a0c45f62293528dc3112f7eecb580ffd3a2dbd1d20b1aa7b6f9d2fe9819f8d27a70d83112c870d2863f1b6a101093dd4c722d090cb6f722426aa4ca593c81ec15c93448358b8f37b705a67439bd7a5ed5a19beee244b49b4903084b78919a7b8ba8b5d44e04081a1b9b7f81912e99aaa47430838dde603e884a056de1dbd401be802c17d12a8c4e89ab3ae87069f62353296aa93eaee457bfbe304ec696e22927e071dfe5a13c47ff0379be174929422da3ffd165b0ec5db62dc3e40b7ac07f0a7061e7f1fddf1ba05df9608982606beebb3afdc87d338ef97d5d0a1b7a3545af16e49d2736310c4fc84ddcab85eaabdcd2d316782dd4b60e53ac6c9819c7fa3dd1dc9f33011e9cb1da1d43173f05f405c2eb26c8ed0e539f1280f960e912c5efc4ff28570885384a167aa94f386b8e0ee7f30d103fb11fd1d05ba8ce0d73f2cadece3bb0519aa410dc5cf3c2a4c784d97ba56067e53615e7c04c6bab8144d2da945bab0617679733724f78219981fe99d26d8d025f7bb06a22db22330b86327d8025f6e0a6646b04a43b8e8f16c8e9016dfd792c9f78ed2dd86e6a888b8fd1a6eca7fc3d7a704a628d61e095922880a6aebebd213fbfe6f3478617f9883b34b3a6344dcea923ce8d896c481c89163422f7dbb7a1449420b14e050a68592b1c3b03b33e908a7653c948e8349c08a1084bdb3f4470c59f42b61a705fdbb2a99ae430d6aad445e6e9e948b202c7c6017f7305f08ea00099b65a7ff735ae1f3a67e94db46e1dfcc7b277b8e1900ec8b235a98b8bcf7165731d36f9a2c8f037589377b5c040e83607c305cf9667301037b99f1c47be1788a30a76490d889dc02c51812f61c803ca730937173f39213c812885b6662da610cf1e911660e7822a6c0c6f620370457321f1ff759cfb42d6d8d2a49a9922add7d8b6d5a96e94cb1102eeb235a62304abc72ff2d44ca81802da657342cb8a40f205c94d6ac8da82301da4395c72fcc13949db7262d917468322dfa8f429c21c2ed7ac0882f75e13e08ac4b45f1fbce22d832dcbfc3685645e8c8e4595bce1dd74e236020987becb8e21d8e8bdab14f5bd1d8e563fd88798f4f4c74ee4124c6bb0a3ad07ad3cbd8d98351befd4fdf27c8f1c4a1453d080b81e7b2913143b7cdb417bc13fd4c2fd1a440e514c9e18a2f5a271c2d574c64e5edae335764acc486eccec0626a23c2e70f80a658b6bab7abf362564d4839c14c793c422246c563aa5021e021bc800901233f260ed84eecd263b5909350bbfa01feda86af4526f13bff68303c25b2e5af8c6d9a3b162d64984488be993229d31399295ec5a57a61e184ac1bef04f3fe8296ce5b509cefdd1a1a889493b8cd2fa64042ea78696e9754c3cf9b40e5d951c22dcc5905fceeb0a688099ec4044117664ecc99c32a1d83c4c5b1ab0f63a56bf00f430236aed81ea6c5dbf44b373ea2d50e41ec877976adc44a59400d5ec47c21fc429b86d7321e0f58f7f213663f54946a3cc6813cb9c9f3710bfdd88196e38e9e32ab62cc652dc0741a5450a28096f05bb4c5a2c7bd2997884f527dd55d491f0f875c7764cf5909e55a6c55ee8b4f3e482677d7b8bfa5b8b58fc7fd4dbb94a33f1fbad7fd8ca64277cc495cafd581f68c469abfc6944603299588ff2d7d4bfe778812010b4935749b7c998d368b25e6b208068bff920fdc23742f232a0bb3b0155f4170bcc1fa9d88b43f8c62f886114aa856b7b7fec93f260c71a5f9c646514c0108e098a172ef87e3ee9299b58e7e30baf7a3ae8f198d241376f85bed8ec8767cb8bc1d8d4dcd8038b1d9542d27ec1eb69a3663677c2dc72170cbf8c4e6c5d6e985824fa842c159e811673af039e5532a3c2ac97354e0fdd3b87b43db21939c16870b723787eccca3e7bc9ce9ed2976671704bd9b82040e977a75e91e6d4fd27843507d790c84696035b57b5ed6d96f5bfb4bb889961513202be728ba6428c29ae5752698e66eaa79300d3a55c7158bf1b1ec1bb55a5b5933df46a8dfa62636725b63a051c3a12a45c2e04b916239acaadf77aecfd021435cdf03b0f87334675961bd46b73e023e79c2785deb572cec588188361f6c4abf69d5fc0d6cfaa95171b72f06a3d12df4b69fc261f4c8452cd3b04e0789dd7258b72013457f641aebcaf60ed112275d16e2ada9222e0128f2d4425d367f6fd2799c27b6cd52afbdba79063725408297b65bb52899276a2707c061eef0e7fd0690f428f7408cb266b1ad2f3919791adcea9b98bdbd5b426f5f35d9b229f5fb4c9d77b34a6108dafc6c789dc6dcdc4148e003e3b2b38bf37b91bf00bdc72b3e57dea96e937af77fd31c0ae2d37ed798ef0d063491267c4ece65891b212ef08b5879a752b1a41de3664836547e514975ce75ae8482c63ecf02dafc152320c9e94bf07cc3973d95b172c00921444708d9b57cafb1cd8f0037bb5adf30197ceb6ff39106760f34f18f974ca6307f15dc62e31608c585d18e6286f0eb307dc34ca6fbc27cb6cd40acf23fcd3fd4bb973cfe78eef145569f6a661722f156f5a0e0ef4ad24506d7b4d5de17873445ff1e311df787b9288aae5364fa661131be36ef7fa9a42800afefdf79b7290fa1fa9063d685ea7f87c2acce0ae221a951dec833073ef06093f3ab4c24b9ec18f2f74077c37c854f50077789f4f8b306af012d590a086a50cedb769a50ca6516414f650aec983fef10a983b3dcd2fd5835ab46d2b896c2c682776d480febe4ec948d58b5dc57fb6064ee9b914759cd5f3a1119d44d8366f0236ea0338ea27b1e4c939d2d4e52ac26323ef6146f20cebb54dacddd1decd6a797d987f329f9553f5456b163591a6dc114b165fb061a88fe924c346f38bc16f64e6e6578b599f94c4ed0cf86eed141855c015ea3e59feaacb7838b685e42d4cdf5f54f129ecd7083ae9cacdee22dc495bd63c30c02cb7009bc7c1f8a7bdc605db535f7a8fcb56b1e403761071d735f44ea62a3b825a68ad95da8846dd62f3c0b93cc4111e9f6ad17b722f1f0901d219d09b622ac74168e2f752976af493d18ad051d5a2747ae72ba3dd541b0f1c0641f796803e1c2588ac705323663117d8c68e6513536198e802d924f2561aea2315b8340d2afb76f20be9ebd82540279cfafaac6f7758eb3d26b2517ee5b1c2e874aa2d7fa93af1f617bdb13bedb842cfb1ab9ac3675e88b2bb08ed3b166cd2af30a39be56d5c18e83716183473dbbd2c1bf73b8cf49624f51dc7ce495a93eae6a9b7815ad357a8f950e6f6f9ab8d1de4e041d9a971015a6a80cf1fe8b641edaf2869b84f686cef9aca19d2b871cd274333aa5f15452a34f72a188d258816e92e525e287c45a2feda09b9b03840802dff016112b0f96f7f2e65f95f5e582e6c42081613237a7280be7030c5702e03b63632775be8c01c4fb4ad42e945a94a6d1f64137b470be21adbfa37873c5c15995e865ce69477d99eb672cc195960de8fbfc142b931f40183a37d10c5a822c9f9f02c54e2e8cf669a48713b6de3446d088c81fb6224feb6d41ba826d5371f864867f552619724a5d1435a3ca411eaa73c41c0cc43d5f1348e6e4615cd5a569fc90f17682a60666c0a67a17feb9382394b73226ae0e4916a22fae8bee96b8e32da59f8e0919483bd7f6aee2a20d9ce90b7e05804313ae0630e361fce7bedca851f481896022781f80243801f84f8fe1363f3647ec0aed5b6d2b4d04edbd42913d85893494470079f32939ee6b6b8972d943644c1870cef535e29f9de3205d43c5bb921677b145d575998f96a0b936e50dfff8218b39ca8ecc340507504d1ed671072eac772e5d6d738cccffdbda7be235b9dad3c772216d2424c4c5d545026c3c25068fe16ca40936c551eff4fd4a134ac13d0c7c71db000df7d3fd3c2d8e7e83e935ce3d1049969adffbf858af0362b9c9a6f9be29fa34a3e8db3ad601a42f27002c035df97379a2c81376b08236540c2eeb74b65556bed6e16519d5810e3b9c6466ddeca684d7c9759bd4a3ddf1d412b4ef416503acf85a397189f660e820150799bf2d798897925c94f0cf9925a9d345ffba47b7f839ad03959a843f8c4ab3f8ffa900bb534faabe08c9e98366813fa8200149417d7b098938a85d06245b51274881e7af80e39bddee909b6e857c1db7412d9a6d3813ce213b2dc227d60859413a9d13e08b6ddd3ed58dd9a9ce8c68562d10333c888c5a1427670360e27ec225cfebfed609195f0a845ababac8e8315ca768c11814cd141ec95e46f6de8676ade8b2cb08739ffc57cc019197c1344f792b6c82aecf6a445a83746b1d705df8a22e756206a7931f0a159dd06c0e8c2a241457967d3a8cb3d99a20d132aed6f30ff43aa3424cbf625ef41bf80ac7dec365831d003c92f11984f7082714d5565b910a155bd74e0a0c90dd3cca140b5ce432135dfc8c8dd07d76bdf1c57502223ac4bc82614e1db8e0281b9453bd622101e61eaeb849d1f67f594af75fa1679426de36291a927c5471b86cdab6faef2fda57a88c9596b6b1c7fcdad64f7717d7709f41a250138cb9380723337c51090c488f8926a8003bf8992b43c34a1c3a0c11f28bc15833b67cb6930393d38cd3bcc22772e75bcccb3ffbfea7677a18fe8da3c3721e1a07ed8a67a4b569177ddbeb856fce73eb95963fd4015e1c4faf6d323b7d26a29bdf1b43f7105a5e4ee700a516d276f6e78473cbb7e4d0eae2d2d84ab231b3f6c43a86705105c98e1e1c45f997311b70ac7e4359b7355b314886894ac8f934c12e49d32cd1147c4fb72b778f1f018ac83f550bf1f3e8cbb33d6e43335d1135715770062f9891ec6d73fcca0f51253972d8b70cf39a4542f11561f9ff8568c40b543c219b6b1b2dedd45175794816209b2dc78bd68ee241623a9e1a05367316d5051d2d480d5bedaa6f7421eb1d70598959484c3abdcda1a772089cbd05483989e1fb50e6b7a2f52c47b19d7ab432f4d502d5afc006ee3c619af7e824e30aa95997dbb0661cea8f42d500941b45e5f10d8c521abcaba2d17791ed86352dbf0de1547703747eaa8f38c51e3cd689688e5ade246c76571e785dbf3165c3cbe5be75ccf19dd2d53b3e8ba5aabb09a7599a750ed9089b8f1b640f85fca2bca680e3e7781f1e40b18337ecc90abbd9c4f365b76ffdb418875589e86d288870314d76edcee6e92bfc08859b1f4bfb6e577268ccef91fcba0933b1bda022d2be1e4560dcb524766e518f603afcdd40bc650985c448e62e3a2063245502aaa8d10b532c7b737bd297676b1e0b7746fbff384ad1136293edaabecb4db22071975bb0d9f2bbd776012c63d862f564d5299da324f6f1d3b3f2d03f019a55ceaf45c459eb5c0f687e2a207873c8f25b8a26c27c8c963eef4e8d7763f7c0debaedd805bb86874220190b52c4cfd54dc99afacec5b7e5b5e28f709da0c26eda54002a4ec8142ae78e94a0220a5ab24cea92ed28eb3dcd1941983099d17ca2b9a3a3385fcd1a78b47cfb636f4044847c8d60e8272c75f4cf7c0f5ff34110a0869c373cf656eb9601968b40ac2908000300", @ANYRES32, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="f6f905a98bbc2408001400", @ANYRES32=r0, @ANYBLOB="ce68d0e7578c9ab7a1825cdb1e8003fb240df0147ba304b528daebbd64d1b6d4caddcc51aae75dcd1ad93917d66a95335dcad385b3826a6344443e7a65923e7a04cb01481d12ea7ddee75f85b064e15bcccdee3ad7b71e24a00bab9e66cf27d6da89ccd30ac6260bf37dee2a05f65e1dd7521a5ea980a8e5048009fb3c4b89ce587fedfd726a7e5208000300", @ANYRES32, @ANYBLOB], 0x14a0}, 0x1, 0x0, 0x0, 0x80}, 0xc90)

03:13:25 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000a000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3341.443068][T29125] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3341.546376][T29142] loop3: detected capacity change from 0 to 512
[ 3341.555605][T29142] EXT4-fs (loop3): Invalid log block size: 2560
03:13:25 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000001b0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:25 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0xb, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:25 executing program 5 (fault-call:1 fault-nth:7):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:25 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
pipe2(&(0x7f0000000200)={<r2=>0xffffffffffffffff}, 0x80000)
r3 = openat(r2, &(0x7f0000000000)='./file0\x00', 0x2a4280, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:25 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000b000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000001f0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000200000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3341.877908][T29161] loop3: detected capacity change from 0 to 512
[ 3341.889585][T29164] FAULT_INJECTION: forcing a failure.
[ 3341.889585][T29164] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3341.891490][T29161] EXT4-fs (loop3): Invalid log block size: 2816
[ 3341.903035][T29164] CPU: 0 PID: 29164 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3341.918298][T29164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3341.928374][T29164] Call Trace:
[ 3341.931646][T29164]  dump_stack+0x137/0x19d
[ 3341.936005][T29164]  should_fail+0x23c/0x250
[ 3341.940408][T29164]  __alloc_pages+0x102/0x320
[ 3341.945106][T29164]  alloc_pages+0x21d/0x310
[ 3341.949667][T29164]  push_pipe+0x267/0x370
[ 3341.953897][T29164]  iov_iter_get_pages+0xb39/0xcc0
[ 3341.959114][T29164]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3341.965013][T29164]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3341.970407][T29164]  ? blkdev_direct_IO+0x392/0x1060
[ 3341.975649][T29164]  ? __kmalloc+0x23d/0x340
[ 3341.980072][T29164]  ? blkdev_direct_IO+0x392/0x1060
[ 3341.985303][T29164]  blkdev_direct_IO+0x9ec/0x1060
[ 3341.990343][T29164]  ? avc_has_perm+0x59/0x150
[ 3341.995027][T29164]  ? __fsnotify_parent+0x32f/0x430
[ 3342.000235][T29164]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3342.006296][T29164]  ? blkdev_get_block+0x70/0x70
[ 3342.011160][T29164]  ? __mnt_drop_write+0x12/0x20
[ 3342.016029][T29164]  ? touch_atime+0x1b3/0x240
[ 3342.020623][T29164]  generic_file_read_iter+0x1c5/0x2c0
[ 3342.026131][T29164]  blkdev_read_iter+0xb9/0xf0
[ 3342.030893][T29164]  generic_file_splice_read+0x22a/0x310
[ 3342.036520][T29164]  ? splice_shrink_spd+0x60/0x60
[ 3342.041574][T29164]  splice_direct_to_actor+0x2aa/0x650
[ 3342.046958][T29164]  ? do_splice_direct+0x170/0x170
[ 3342.052089][T29164]  do_splice_direct+0xf5/0x170
[ 3342.057046][T29164]  do_sendfile+0x773/0xda0
[ 3342.061543][T29164]  __x64_sys_sendfile64+0xf2/0x130
[ 3342.066884][T29164]  do_syscall_64+0x4a/0x90
[ 3342.071356][T29164]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3342.077368][T29164] RIP: 0033:0x4665d9
[ 3342.081289][T29164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3342.101188][T29164] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3342.109623][T29164] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3342.118660][T29164] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3342.126724][T29164] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3342.134861][T29164] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
[ 3342.142862][T29164] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3342.164720][T29161] loop3: detected capacity change from 0 to 512
03:13:26 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000010200000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:26 executing program 5 (fault-call:1 fault-nth:8):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3342.182474][T29161] EXT4-fs (loop3): Invalid log block size: 2816
03:13:26 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000220000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3342.228238][T29182] FAULT_INJECTION: forcing a failure.
[ 3342.228238][T29182] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3342.241611][T29182] CPU: 1 PID: 29182 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3342.250402][T29182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3342.260683][T29182] Call Trace:
[ 3342.263983][T29182]  dump_stack+0x137/0x19d
[ 3342.268399][T29182]  should_fail+0x23c/0x250
[ 3342.272890][T29182]  __alloc_pages+0x102/0x320
03:13:26 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000230000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3342.277481][T29182]  alloc_pages+0x21d/0x310
[ 3342.282092][T29182]  push_pipe+0x267/0x370
[ 3342.286348][T29182]  iov_iter_get_pages+0xb39/0xcc0
[ 3342.291463][T29182]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3342.297579][T29182]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3342.302977][T29182]  ? blkdev_direct_IO+0x392/0x1060
[ 3342.308561][T29182]  ? __kmalloc+0x23d/0x340
[ 3342.313055][T29182]  ? blkdev_direct_IO+0x392/0x1060
[ 3342.318353][T29182]  blkdev_direct_IO+0x9ec/0x1060
[ 3342.323302][T29182]  ? avc_has_perm+0x59/0x150
[ 3342.327965][T29182]  ? __fsnotify_parent+0x32f/0x430
[ 3342.333434][T29182]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3342.339414][T29182]  ? blkdev_get_block+0x70/0x70
[ 3342.344438][T29182]  ? __mnt_drop_write+0x12/0x20
[ 3342.349301][T29182]  ? touch_atime+0x1b3/0x240
[ 3342.354031][T29182]  generic_file_read_iter+0x1c5/0x2c0
[ 3342.359566][T29182]  blkdev_read_iter+0xb9/0xf0
[ 3342.364253][T29182]  generic_file_splice_read+0x22a/0x310
[ 3342.369838][T29182]  ? splice_shrink_spd+0x60/0x60
[ 3342.374955][T29182]  splice_direct_to_actor+0x2aa/0x650
[ 3342.380540][T29182]  ? do_splice_direct+0x170/0x170
[ 3342.385842][T29182]  do_splice_direct+0xf5/0x170
[ 3342.390615][T29182]  do_sendfile+0x773/0xda0
[ 3342.395189][T29182]  __x64_sys_sendfile64+0xf2/0x130
[ 3342.400415][T29182]  do_syscall_64+0x4a/0x90
[ 3342.404945][T29182]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3342.410872][T29182] RIP: 0033:0x4665d9
[ 3342.414964][T29182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3342.434681][T29182] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3342.443445][T29182] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3342.451503][T29182] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3342.459476][T29182] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3342.467746][T29182] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000001
03:13:26 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:26 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000250000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3342.475821][T29182] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:26 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000000)={0x38, 0x1, 0x10, 0x400, 0x7, 0x10000, 0x4, 0xff, 0x9, 0x4}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:26 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000c000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:26 executing program 5 (fault-call:1 fault-nth:9):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:26 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000002a0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:26 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f000062e000/0x4000)=nil, 0x4000, 0x8, 0x13, r2, 0xc7b49000)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r4 = getuid()
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x3f, @private1, 0x401}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000180)={{{@in=@dev={0xac, 0x14, 0x14, 0x1e}, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x4e23, 0x0, 0x4e20, 0x0, 0xa, 0x0, 0x20, 0x2e, 0x0, r4}, {0x8, 0x1000, 0x9, 0xfffffffffffffffe, 0x5, 0x66, 0x80000001, 0x1}, {0x1, 0x1, 0x81, 0x7}, 0xb8, 0x6e6bb9, 0x2, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x1c}, 0x4d6, 0x2b}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x2b}, 0x3504, 0x4, 0x1, 0x3, 0x3, 0x2, 0x6}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)

03:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000002b0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3342.942461][T29204] FAULT_INJECTION: forcing a failure.
[ 3342.942461][T29204] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3342.955840][T29204] CPU: 1 PID: 29204 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3342.957083][T29206] loop3: detected capacity change from 0 to 512
[ 3342.964674][T29204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3342.964690][T29204] Call Trace:
[ 3342.964697][T29204]  dump_stack+0x137/0x19d
03:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000002e0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3342.976317][T29206] EXT4-fs (loop3): Invalid log block size: 3072
[ 3342.981181][T29204]  should_fail+0x23c/0x250
[ 3342.999402][T29204]  __alloc_pages+0x102/0x320
[ 3343.004003][T29204]  alloc_pages+0x21d/0x310
[ 3343.008431][T29204]  push_pipe+0x267/0x370
[ 3343.012678][T29204]  iov_iter_get_pages+0xb39/0xcc0
[ 3343.017729][T29204]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3343.023618][T29204]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3343.029031][T29204]  ? blkdev_direct_IO+0x392/0x1060
[ 3343.034257][T29204]  ? __kmalloc+0x23d/0x340
[ 3343.038782][T29204]  ? blkdev_direct_IO+0x392/0x1060
[ 3343.043914][T29204]  blkdev_direct_IO+0x9ec/0x1060
[ 3343.049117][T29204]  ? avc_has_perm+0x59/0x150
[ 3343.053934][T29204]  ? __fsnotify_parent+0x32f/0x430
[ 3343.059054][T29204]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3343.065143][T29204]  ? blkdev_get_block+0x70/0x70
[ 3343.070230][T29204]  ? __mnt_drop_write+0x12/0x20
[ 3343.075119][T29204]  ? touch_atime+0x1b3/0x240
[ 3343.079800][T29204]  generic_file_read_iter+0x1c5/0x2c0
[ 3343.085710][T29204]  blkdev_read_iter+0xb9/0xf0
[ 3343.090417][T29204]  generic_file_splice_read+0x22a/0x310
[ 3343.095967][T29204]  ? splice_shrink_spd+0x60/0x60
[ 3343.101023][T29204]  splice_direct_to_actor+0x2aa/0x650
[ 3343.106430][T29204]  ? do_splice_direct+0x170/0x170
[ 3343.111758][T29204]  do_splice_direct+0xf5/0x170
[ 3343.116580][T29204]  do_sendfile+0x773/0xda0
[ 3343.121112][T29204]  __x64_sys_sendfile64+0xf2/0x130
[ 3343.126232][T29204]  do_syscall_64+0x4a/0x90
[ 3343.131120][T29204]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3343.137028][T29204] RIP: 0033:0x4665d9
[ 3343.140942][T29204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3343.160831][T29204] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3343.169250][T29204] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3343.177358][T29204] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3343.185466][T29204] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3343.193621][T29204] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3343.201777][T29204] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:27 executing program 5 (fault-call:1 fault-nth:10):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000003f0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3343.281156][T29206] loop3: detected capacity change from 0 to 512
[ 3343.302267][T29206] EXT4-fs (loop3): Invalid log block size: 3072
03:13:27 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000d000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:27 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3343.409277][T29235] FAULT_INJECTION: forcing a failure.
[ 3343.409277][T29235] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3343.422869][T29235] CPU: 0 PID: 29235 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3343.431898][T29235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3343.441984][T29235] Call Trace:
[ 3343.445424][T29235]  dump_stack+0x137/0x19d
[ 3343.449791][T29235]  should_fail+0x23c/0x250
[ 3343.454519][T29235]  __alloc_pages+0x102/0x320
03:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000400000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3343.459209][T29235]  alloc_pages+0x21d/0x310
[ 3343.463721][T29235]  push_pipe+0x267/0x370
[ 3343.468145][T29235]  iov_iter_get_pages+0xb39/0xcc0
[ 3343.473473][T29235]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3343.479408][T29235]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3343.484799][T29235]  ? blkdev_direct_IO+0x392/0x1060
[ 3343.490431][T29235]  ? __kmalloc+0x23d/0x340
[ 3343.494948][T29235]  ? blkdev_direct_IO+0x392/0x1060
[ 3343.500151][T29235]  blkdev_direct_IO+0x9ec/0x1060
[ 3343.505190][T29235]  ? avc_has_perm+0x59/0x150
[ 3343.509948][T29235]  ? __fsnotify_parent+0x32f/0x430
[ 3343.515196][T29235]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3343.521380][T29235]  ? blkdev_get_block+0x70/0x70
[ 3343.526306][T29235]  ? __mnt_drop_write+0x12/0x20
[ 3343.529878][T29236] loop3: detected capacity change from 0 to 512
[ 3343.531348][T29235]  ? touch_atime+0x1b3/0x240
[ 3343.531375][T29235]  generic_file_read_iter+0x1c5/0x2c0
[ 3343.544743][T29236] EXT4-fs (loop3): Invalid log block size: 3328
[ 3343.547801][T29235]  blkdev_read_iter+0xb9/0xf0
[ 3343.547830][T29235]  generic_file_splice_read+0x22a/0x310
[ 3343.547852][T29235]  ? splice_shrink_spd+0x60/0x60
[ 3343.569983][T29235]  splice_direct_to_actor+0x2aa/0x650
[ 3343.575365][T29235]  ? do_splice_direct+0x170/0x170
[ 3343.580656][T29235]  do_splice_direct+0xf5/0x170
[ 3343.585655][T29235]  do_sendfile+0x773/0xda0
[ 3343.590236][T29235]  __x64_sys_sendfile64+0xf2/0x130
[ 3343.595372][T29235]  do_syscall_64+0x4a/0x90
[ 3343.599977][T29235]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3343.606111][T29235] RIP: 0033:0x4665d9
[ 3343.610111][T29235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3343.629909][T29235] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3343.638708][T29235] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3343.646814][T29235] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3343.655667][T29235] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3343.663887][T29235] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3343.672161][T29235] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3343.726639][T29236] loop3: detected capacity change from 0 to 512
[ 3343.735134][T29236] EXT4-fs (loop3): Invalid log block size: 3328
03:13:28 executing program 1:
prlimit64(0xffffffffffffffff, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000800400000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:28 executing program 5 (fault-call:1 fault-nth:11):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:28 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000e000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:28 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000000c0)="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"/297, 0xffffffca)
getpeername$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, &(0x7f00000000c0)=0x1c)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
copy_file_range(r1, &(0x7f0000000540)=0x9fa, r6, &(0x7f00000002c0)=0x2, 0x3, 0x0)
write(r5, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
openat(r5, &(0x7f0000000240)='./file0\x00', 0x40140, 0xe0)
preadv(r4, &(0x7f0000000540), 0x0, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write(r7, &(0x7f00000000c0)="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"/297, 0xffffffca)
writev(r7, &(0x7f0000000500)=[{&(0x7f0000000300)="aca8ebbfa8c316e57b25b65cd0ec67976ff634910c7856db2a225631305ee82f4a", 0x21}, {&(0x7f0000000340)="de9b32001ee4dae6a0c9808f337c42172b0d3543fc6b0b7df052c942bc317b65b20fa7f84829cfbb7104c1e1e7ead33921f1641be50091bc88c5225f19cd91f01912d3a73fa07be792f5576d2b67d791e903e42e096f15a929b8c913d611e05001f0720bc59d291e39bdebf42ce63a0d9f5703dde8edc3c166a15a3f43b14c9acb1fef9c135e50a7006a3fbca4afb4507bd300552560", 0x96}, {&(0x7f0000000400)="58884d72d28c988f1a182d681d43d8bd5c591e852786e295c544da79fac5878812ee7e6111e1dde961e7e96e681cbf28a9eadf88c875890a9d85bbe93237b794258f7dc339a76fbea3f1d510530ab2b72a99a82a5d8f0110eb5baf083d4d4843eb071555d1aef393507279a44457c6ac4b2c630f0a576e45b0ba8cb9f8bc12385900eefb13", 0x85}, {&(0x7f00000004c0)="7b347256253a567da93faa15a44ab8cd749cd2270c49e7f98f129d95ca20952122c5b8e5a5ffdef6e9c52167ec852ee9f00781", 0x33}], 0x4)

[ 3344.006249][T29262] FAULT_INJECTION: forcing a failure.
[ 3344.006249][T29262] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3344.019514][T29262] CPU: 0 PID: 29262 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3344.028404][T29262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3344.033169][T29263] loop3: detected capacity change from 0 to 512
[ 3344.038548][T29262] Call Trace:
[ 3344.038559][T29262]  dump_stack+0x137/0x19d
03:13:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000480000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3344.038588][T29262]  should_fail+0x23c/0x250
[ 3344.050020][T29263] EXT4-fs (loop3): Invalid log block size: 3584
[ 3344.052477][T29262]  __alloc_pages+0x102/0x320
[ 3344.052501][T29262]  alloc_pages+0x21d/0x310
[ 3344.052519][T29262]  push_pipe+0x267/0x370
[ 3344.052536][T29262]  iov_iter_get_pages+0xb39/0xcc0
[ 3344.081512][T29262]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3344.087444][T29262]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3344.092836][T29262]  ? blkdev_direct_IO+0x392/0x1060
[ 3344.097994][T29262]  ? __kmalloc+0x23d/0x340
[ 3344.102547][T29262]  ? blkdev_direct_IO+0x392/0x1060
[ 3344.107791][T29262]  blkdev_direct_IO+0x9ec/0x1060
[ 3344.112742][T29262]  ? avc_has_perm+0x59/0x150
[ 3344.117682][T29262]  ? __fsnotify_parent+0x32f/0x430
[ 3344.123049][T29262]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3344.129021][T29262]  ? blkdev_get_block+0x70/0x70
[ 3344.133910][T29262]  ? __mnt_drop_write+0x12/0x20
[ 3344.138841][T29262]  ? touch_atime+0x1b3/0x240
[ 3344.143450][T29262]  generic_file_read_iter+0x1c5/0x2c0
[ 3344.148832][T29262]  blkdev_read_iter+0xb9/0xf0
[ 3344.153729][T29262]  generic_file_splice_read+0x22a/0x310
[ 3344.159383][T29262]  ? splice_shrink_spd+0x60/0x60
[ 3344.164436][T29262]  splice_direct_to_actor+0x2aa/0x650
[ 3344.170045][T29262]  ? do_splice_direct+0x170/0x170
[ 3344.175112][T29262]  do_splice_direct+0xf5/0x170
[ 3344.179967][T29262]  do_sendfile+0x773/0xda0
[ 3344.184488][T29262]  __x64_sys_sendfile64+0xf2/0x130
[ 3344.189625][T29262]  do_syscall_64+0x4a/0x90
[ 3344.194149][T29262]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3344.200330][T29262] RIP: 0033:0x4665d9
[ 3344.204352][T29262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3344.224127][T29262] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3344.232720][T29262] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3344.240971][T29262] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3344.249226][T29262] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3344.257207][T29262] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3344.265281][T29262] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:28 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000490000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:28 executing program 5 (fault-call:1 fault-nth:12):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3344.325156][T29263] loop3: detected capacity change from 0 to 512
[ 3344.360052][T29263] EXT4-fs (loop3): Invalid log block size: 3584
03:13:28 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000f000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000004c0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000520000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3344.450518][T29287] FAULT_INJECTION: forcing a failure.
[ 3344.450518][T29287] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3344.463788][T29287] CPU: 0 PID: 29287 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3344.472673][T29287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3344.483113][T29287] Call Trace:
[ 3344.486490][T29287]  dump_stack+0x137/0x19d
[ 3344.491038][T29287]  should_fail+0x23c/0x250
[ 3344.495462][T29287]  __alloc_pages+0x102/0x320
[ 3344.500070][T29287]  alloc_pages+0x21d/0x310
[ 3344.504524][T29287]  push_pipe+0x267/0x370
[ 3344.508871][T29287]  iov_iter_get_pages+0xb39/0xcc0
[ 3344.513951][T29287]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3344.520159][T29287]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3344.525653][T29287]  ? blkdev_direct_IO+0x392/0x1060
[ 3344.530780][T29287]  ? __kmalloc+0x23d/0x340
[ 3344.535508][T29287]  ? blkdev_direct_IO+0x392/0x1060
[ 3344.540669][T29287]  blkdev_direct_IO+0x9ec/0x1060
[ 3344.545638][T29287]  ? avc_has_perm+0x59/0x150
[ 3344.550218][T29287]  ? __fsnotify_parent+0x32f/0x430
[ 3344.551084][T29294] loop3: detected capacity change from 0 to 512
[ 3344.555422][T29287]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3344.555452][T29287]  ? blkdev_get_block+0x70/0x70
[ 3344.555475][T29287]  ? __mnt_drop_write+0x12/0x20
[ 3344.572424][T29294] EXT4-fs (loop3): Invalid log block size: 3840
[ 3344.573009][T29287]  ? touch_atime+0x1b3/0x240
[ 3344.573036][T29287]  generic_file_read_iter+0x1c5/0x2c0
[ 3344.595055][T29287]  blkdev_read_iter+0xb9/0xf0
[ 3344.599970][T29287]  generic_file_splice_read+0x22a/0x310
[ 3344.605831][T29287]  ? splice_shrink_spd+0x60/0x60
[ 3344.610935][T29287]  splice_direct_to_actor+0x2aa/0x650
[ 3344.616295][T29287]  ? do_splice_direct+0x170/0x170
[ 3344.621476][T29287]  do_splice_direct+0xf5/0x170
[ 3344.626413][T29287]  do_sendfile+0x773/0xda0
[ 3344.631116][T29287]  __x64_sys_sendfile64+0xf2/0x130
[ 3344.636223][T29287]  do_syscall_64+0x4a/0x90
[ 3344.640679][T29287]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3344.646672][T29287] RIP: 0033:0x4665d9
[ 3344.650591][T29287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3344.670663][T29287] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3344.679413][T29287] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3344.687642][T29287] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3344.696005][T29287] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3344.704186][T29287] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3344.712567][T29287] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3344.763524][T29294] loop3: detected capacity change from 0 to 512
[ 3344.776031][T29294] EXT4-fs (loop3): Invalid log block size: 3840
03:13:29 executing program 5 (fault-call:1 fault-nth:13):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000530000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100ffffff0f000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:29 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = fcntl$getown(r2, 0x9)
sched_setattr(r3, &(0x7f00000001c0)={0x38, 0x2, 0x28, 0x81, 0x254e, 0x2, 0x5, 0x9, 0xacf, 0x5}, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
clock_gettime(0x0, &(0x7f00000000c0)={<r4=>0x0, <r5=>0x0})
r6 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
r7 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, r6)
keyctl$setperm(0x5, r7, 0x202002)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r8, 0x0)
preadv(r8, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
futex(&(0x7f0000000080), 0x0, 0x2, &(0x7f0000000100)={r4, r5+60000000}, &(0x7f0000000180), 0x0)

03:13:29 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x35, &(0x7f00000000c0), 0x4)

03:13:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000540000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3345.040650][T29314] FAULT_INJECTION: forcing a failure.
[ 3345.040650][T29314] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3345.051843][T29317] loop3: detected capacity change from 0 to 512
[ 3345.054457][T29314] CPU: 0 PID: 29314 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3345.069570][T29314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3345.077659][T29317] EXT4-fs (loop3): Invalid log block size: 4095
[ 3345.079836][T29314] Call Trace:
[ 3345.079846][T29314]  dump_stack+0x137/0x19d
[ 3345.093767][T29314]  should_fail+0x23c/0x250
[ 3345.098186][T29314]  __alloc_pages+0x102/0x320
[ 3345.102821][T29314]  alloc_pages+0x21d/0x310
[ 3345.107380][T29314]  push_pipe+0x267/0x370
[ 3345.111614][T29314]  iov_iter_get_pages+0xb39/0xcc0
[ 3345.116989][T29314]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3345.122893][T29314]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3345.128376][T29314]  ? blkdev_direct_IO+0x392/0x1060
[ 3345.133496][T29314]  ? __kmalloc+0x23d/0x340
[ 3345.138164][T29314]  ? blkdev_direct_IO+0x392/0x1060
[ 3345.143452][T29314]  blkdev_direct_IO+0x9ec/0x1060
[ 3345.148451][T29314]  ? avc_has_perm+0x59/0x150
[ 3345.153109][T29314]  ? __fsnotify_parent+0x32f/0x430
[ 3345.158244][T29314]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3345.164152][T29314]  ? blkdev_get_block+0x70/0x70
[ 3345.168994][T29314]  ? __mnt_drop_write+0x12/0x20
[ 3345.173856][T29314]  ? touch_atime+0x1b3/0x240
[ 3345.178441][T29314]  generic_file_read_iter+0x1c5/0x2c0
[ 3345.184036][T29314]  blkdev_read_iter+0xb9/0xf0
[ 3345.188991][T29314]  generic_file_splice_read+0x22a/0x310
[ 3345.194632][T29314]  ? splice_shrink_spd+0x60/0x60
[ 3345.199582][T29314]  splice_direct_to_actor+0x2aa/0x650
[ 3345.205234][T29314]  ? do_splice_direct+0x170/0x170
[ 3345.210610][T29314]  do_splice_direct+0xf5/0x170
[ 3345.215630][T29314]  do_sendfile+0x773/0xda0
[ 3345.220160][T29314]  __x64_sys_sendfile64+0xf2/0x130
[ 3345.225357][T29314]  do_syscall_64+0x4a/0x90
[ 3345.230403][T29314]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3345.236497][T29314] RIP: 0033:0x4665d9
[ 3345.240425][T29314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3345.260181][T29314] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3345.268642][T29314] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3345.276708][T29314] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
03:13:29 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3345.285355][T29314] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3345.293358][T29314] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3345.301660][T29314] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3345.330559][T29317] loop3: detected capacity change from 0 to 512
03:13:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000001580000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000010000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:29 executing program 5 (fault-call:1 fault-nth:14):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3345.337969][T29317] EXT4-fs (loop3): Invalid log block size: 4095
03:13:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000600000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3345.400438][T29339] FAULT_INJECTION: forcing a failure.
[ 3345.400438][T29339] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3345.405397][T29338] loop3: detected capacity change from 0 to 512
[ 3345.414160][T29339] CPU: 0 PID: 29339 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3345.426491][T29338] EXT4-fs (loop3): Invalid log block size: 4096
[ 3345.429196][T29339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3345.445749][T29339] Call Trace:
[ 3345.449035][T29339]  dump_stack+0x137/0x19d
[ 3345.453467][T29339]  should_fail+0x23c/0x250
[ 3345.457892][T29339]  __alloc_pages+0x102/0x320
[ 3345.462549][T29339]  alloc_pages+0x21d/0x310
[ 3345.467130][T29339]  push_pipe+0x267/0x370
[ 3345.471660][T29339]  iov_iter_get_pages+0xb39/0xcc0
[ 3345.477004][T29339]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3345.483157][T29339]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3345.488669][T29339]  ? blkdev_direct_IO+0x392/0x1060
[ 3345.493844][T29339]  ? __kmalloc+0x23d/0x340
[ 3345.498302][T29339]  ? blkdev_direct_IO+0x392/0x1060
[ 3345.503434][T29339]  blkdev_direct_IO+0x9ec/0x1060
[ 3345.508377][T29339]  ? avc_has_perm+0x59/0x150
[ 3345.513193][T29339]  ? __fsnotify_parent+0x32f/0x430
[ 3345.518415][T29339]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3345.524321][T29339]  ? blkdev_get_block+0x70/0x70
[ 3345.529277][T29339]  ? __mnt_drop_write+0x12/0x20
[ 3345.534119][T29339]  ? touch_atime+0x1b3/0x240
[ 3345.538812][T29339]  generic_file_read_iter+0x1c5/0x2c0
[ 3345.544305][T29339]  blkdev_read_iter+0xb9/0xf0
[ 3345.548976][T29339]  generic_file_splice_read+0x22a/0x310
[ 3345.554730][T29339]  ? splice_shrink_spd+0x60/0x60
[ 3345.559764][T29339]  splice_direct_to_actor+0x2aa/0x650
[ 3345.565294][T29339]  ? do_splice_direct+0x170/0x170
[ 3345.570364][T29339]  do_splice_direct+0xf5/0x170
[ 3345.575207][T29339]  do_sendfile+0x773/0xda0
[ 3345.579708][T29339]  __x64_sys_sendfile64+0xf2/0x130
[ 3345.584838][T29339]  do_syscall_64+0x4a/0x90
[ 3345.589288][T29339]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3345.595478][T29339] RIP: 0033:0x4665d9
[ 3345.599548][T29339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3345.619360][T29339] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3345.628155][T29339] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3345.637236][T29339] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3345.645307][T29339] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3345.653308][T29339] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3345.661274][T29339] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000680000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:29 executing program 5 (fault-call:1 fault-nth:15):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3345.712082][T29338] loop3: detected capacity change from 0 to 512
[ 3345.720848][T29338] EXT4-fs (loop3): Invalid log block size: 4096
[ 3345.753219][T29356] FAULT_INJECTION: forcing a failure.
[ 3345.753219][T29356] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3345.766550][T29356] CPU: 1 PID: 29356 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3345.775700][T29356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3345.785848][T29356] Call Trace:
[ 3345.789130][T29356]  dump_stack+0x137/0x19d
[ 3345.793518][T29356]  should_fail+0x23c/0x250
[ 3345.797991][T29356]  __alloc_pages+0x102/0x320
03:13:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000006c0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000410000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3345.802599][T29356]  alloc_pages+0x21d/0x310
[ 3345.807128][T29356]  push_pipe+0x267/0x370
[ 3345.811648][T29356]  iov_iter_get_pages+0xb39/0xcc0
[ 3345.816940][T29356]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3345.822448][T29356]  ? blkdev_direct_IO+0x392/0x1060
[ 3345.828021][T29356]  ? __kmalloc+0x23d/0x340
[ 3345.828109][T29361] loop3: detected capacity change from 0 to 512
[ 3345.832596][T29356]  ? blkdev_direct_IO+0x392/0x1060
[ 3345.832626][T29356]  blkdev_direct_IO+0x9ec/0x1060
[ 3345.844438][T29361] EXT4-fs (loop3): Invalid log block size: 4100
[ 3345.849315][T29356]  ? avc_has_perm+0x59/0x150
[ 3345.860409][T29356]  ? __fsnotify_parent+0x32f/0x430
[ 3345.865774][T29356]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3345.872089][T29356]  ? blkdev_get_block+0x70/0x70
[ 3345.876993][T29356]  ? __mnt_drop_write+0x12/0x20
[ 3345.881861][T29356]  ? touch_atime+0x1b3/0x240
[ 3345.886676][T29356]  generic_file_read_iter+0x1c5/0x2c0
[ 3345.892177][T29356]  blkdev_read_iter+0xb9/0xf0
[ 3345.896953][T29356]  generic_file_splice_read+0x22a/0x310
[ 3345.902492][T29356]  ? splice_shrink_spd+0x60/0x60
[ 3345.907999][T29356]  splice_direct_to_actor+0x2aa/0x650
[ 3345.913355][T29356]  ? do_splice_direct+0x170/0x170
[ 3345.918827][T29356]  do_splice_direct+0xf5/0x170
[ 3345.923681][T29356]  do_sendfile+0x773/0xda0
[ 3345.928110][T29356]  __x64_sys_sendfile64+0xf2/0x130
[ 3345.933681][T29356]  do_syscall_64+0x4a/0x90
[ 3345.938281][T29356]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3345.944814][T29356] RIP: 0033:0x4665d9
[ 3345.948714][T29356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3345.968394][T29356] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3345.977425][T29356] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3345.985816][T29356] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3345.993784][T29356] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
03:13:30 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
r3 = gettid()
ptrace(0x4206, r3)
tkill(r3, 0x800000009)
ptrace$getregset(0x4204, r3, 0x202, &(0x7f0000000180)={&(0x7f0000000080)=""/177, 0xb1})
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x44a01, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000900)=ANY=[@ANYBLOB="7f454c4609090206000000000000000003003e0003000000a1010000000000004000000000000000200100000000000006000000a43438000100000a5542ce26070000000300000040000000000000000400000000000000fe0000000000000006000000000000000800000000000000070000000000000081f29455e7a3a8f764d1499c87a796755bf41f05fc31926a267f2f05c492dbb53ca55dc252ea1969bb3fe13d713cb94acc468e8533891552823a00810bd3bb998fe22e3ce7ff7a295269ac477654f7b3648162043cde7ede2056cbcdd89edfbdc97a590932af42f204ca6198b80984ad4b4345257dae93f0789606e8f082dfcefead6e5998dd59218757c5844619cad15da739706a58d20f3d6178a985b7c28ea75947c7fe00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008a121bb8b3ce29a19fac3a"], 0x61d)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:30 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000740000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:30 executing program 5 (fault-call:1 fault-nth:16):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3346.002363][T29356] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3346.010726][T29356] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3346.068833][T29361] loop3: detected capacity change from 0 to 512
[ 3346.071769][T29378] FAULT_INJECTION: forcing a failure.
[ 3346.071769][T29378] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3346.076086][T29361] EXT4-fs (loop3): Invalid log block size: 4100
[ 3346.088777][T29378] CPU: 1 PID: 29378 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3346.104002][T29378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3346.114267][T29378] Call Trace:
[ 3346.117650][T29378]  dump_stack+0x137/0x19d
[ 3346.121973][T29378]  should_fail+0x23c/0x250
[ 3346.126405][T29378]  __alloc_pages+0x102/0x320
[ 3346.131007][T29378]  alloc_pages+0x21d/0x310
[ 3346.135573][T29378]  push_pipe+0x267/0x370
[ 3346.139916][T29378]  iov_iter_get_pages+0xb39/0xcc0
[ 3346.144979][T29378]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3346.151421][T29378]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3346.156802][T29378]  ? blkdev_direct_IO+0x392/0x1060
[ 3346.161921][T29378]  ? __kmalloc+0x23d/0x340
[ 3346.166842][T29378]  ? blkdev_direct_IO+0x392/0x1060
[ 3346.172028][T29378]  blkdev_direct_IO+0x9ec/0x1060
[ 3346.176992][T29378]  ? avc_has_perm+0x59/0x150
[ 3346.181952][T29378]  ? __fsnotify_parent+0x32f/0x430
[ 3346.187141][T29378]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3346.193130][T29378]  ? blkdev_get_block+0x70/0x70
[ 3346.198175][T29378]  ? __mnt_drop_write+0x12/0x20
[ 3346.203054][T29378]  ? touch_atime+0x1b3/0x240
[ 3346.207781][T29378]  generic_file_read_iter+0x1c5/0x2c0
[ 3346.213153][T29378]  blkdev_read_iter+0xb9/0xf0
[ 3346.217919][T29378]  generic_file_splice_read+0x22a/0x310
[ 3346.223585][T29378]  ? splice_shrink_spd+0x60/0x60
[ 3346.228546][T29378]  splice_direct_to_actor+0x2aa/0x650
[ 3346.234109][T29378]  ? do_splice_direct+0x170/0x170
[ 3346.239523][T29378]  do_splice_direct+0xf5/0x170
[ 3346.244315][T29378]  do_sendfile+0x773/0xda0
[ 3346.248750][T29378]  __x64_sys_sendfile64+0xf2/0x130
[ 3346.253993][T29378]  do_syscall_64+0x4a/0x90
[ 3346.258506][T29378]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3346.264978][T29378] RIP: 0033:0x4665d9
[ 3346.268875][T29378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3346.288669][T29378] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3346.297207][T29378] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3346.305457][T29378] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
03:13:30 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:30 executing program 2:
r0 = fsopen(&(0x7f0000000040)='securityfs\x00', 0x1)
r1 = open$dir(&(0x7f0000000140)='./file0\x00', 0x30002, 0x48)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f00000000c0)='\x00', &(0x7f0000000100)='./file0\x00', r1)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r2)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:30 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000007a0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3346.313548][T29378] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3346.321725][T29378] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3346.329695][T29378] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:30 executing program 5 (fault-call:1 fault-nth:17):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:30 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000011000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3346.436048][T29401] FAULT_INJECTION: forcing a failure.
[ 3346.436048][T29401] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3346.449674][T29401] CPU: 0 PID: 29401 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3346.458504][T29401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3346.468684][T29401] Call Trace:
[ 3346.472232][T29401]  dump_stack+0x137/0x19d
[ 3346.476577][T29401]  should_fail+0x23c/0x250
[ 3346.481001][T29401]  __alloc_pages+0x102/0x320
03:13:30 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000ffffff8c0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3346.485683][T29401]  alloc_pages+0x21d/0x310
[ 3346.490186][T29401]  push_pipe+0x267/0x370
[ 3346.494534][T29401]  iov_iter_get_pages+0xb39/0xcc0
[ 3346.499583][T29401]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3346.505512][T29401]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3346.511102][T29401]  ? blkdev_direct_IO+0x392/0x1060
[ 3346.516225][T29401]  ? __kmalloc+0x23d/0x340
[ 3346.520689][T29401]  ? blkdev_direct_IO+0x392/0x1060
[ 3346.525958][T29401]  blkdev_direct_IO+0x9ec/0x1060
[ 3346.530994][T29401]  ? avc_has_perm+0x59/0x150
03:13:30 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
setrlimit(0xc, &(0x7f0000000000)={0x5, 0x51e})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3346.535599][T29401]  ? __fsnotify_parent+0x32f/0x430
[ 3346.540726][T29401]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3346.546698][T29401]  ? blkdev_get_block+0x70/0x70
[ 3346.551648][T29401]  ? __mnt_drop_write+0x12/0x20
[ 3346.556686][T29401]  ? touch_atime+0x1b3/0x240
[ 3346.561278][T29401]  generic_file_read_iter+0x1c5/0x2c0
[ 3346.564520][T29402] loop3: detected capacity change from 0 to 512
[ 3346.566748][T29401]  blkdev_read_iter+0xb9/0xf0
[ 3346.566777][T29401]  generic_file_splice_read+0x22a/0x310
[ 3346.578776][T29402] EXT4-fs (loop3): Invalid log block size: 4352
[ 3346.583238][T29401]  ? splice_shrink_spd+0x60/0x60
[ 3346.583267][T29401]  splice_direct_to_actor+0x2aa/0x650
[ 3346.599867][T29401]  ? do_splice_direct+0x170/0x170
[ 3346.604929][T29401]  do_splice_direct+0xf5/0x170
[ 3346.609729][T29401]  do_sendfile+0x773/0xda0
[ 3346.614291][T29401]  __x64_sys_sendfile64+0xf2/0x130
[ 3346.619419][T29401]  do_syscall_64+0x4a/0x90
[ 3346.624120][T29401]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3346.630026][T29401] RIP: 0033:0x4665d9
[ 3346.633942][T29401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3346.653691][T29401] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3346.662614][T29401] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3346.670803][T29401] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3346.679021][T29401] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3346.687179][T29401] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3346.695201][T29401] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3346.747987][T29402] loop3: detected capacity change from 0 to 512
03:13:30 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000edc00000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3346.797581][T29402] EXT4-fs (loop3): Invalid log block size: 4352
03:13:30 executing program 5 (fault-call:1 fault-nth:18):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:30 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000012000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:30 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000cc0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:31 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000cd0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3346.925662][T29424] FAULT_INJECTION: forcing a failure.
[ 3346.925662][T29424] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3346.939490][T29424] CPU: 0 PID: 29424 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3346.948363][T29424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3346.958692][T29424] Call Trace:
[ 3346.962090][T29424]  dump_stack+0x137/0x19d
[ 3346.966623][T29424]  should_fail+0x23c/0x250
[ 3346.971152][T29424]  __alloc_pages+0x102/0x320
[ 3346.975850][T29424]  alloc_pages+0x21d/0x310
[ 3346.980364][T29424]  push_pipe+0x267/0x370
[ 3346.984686][T29424]  iov_iter_get_pages+0xb39/0xcc0
[ 3346.990446][T29424]  ? _raw_spin_unlock_irqrestore+0x27/0x40
[ 3346.996880][T29424]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3347.002452][T29424]  ? blkdev_direct_IO+0x392/0x1060
[ 3347.007814][T29424]  ? __kmalloc+0x23d/0x340
[ 3347.012391][T29424]  ? blkdev_direct_IO+0x392/0x1060
[ 3347.017557][T29424]  blkdev_direct_IO+0x9ec/0x1060
[ 3347.022618][T29424]  ? avc_has_perm+0x59/0x150
[ 3347.027276][T29424]  ? __fsnotify_parent+0x32f/0x430
[ 3347.032442][T29424]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3347.038594][T29424]  ? blkdev_get_block+0x70/0x70
[ 3347.043460][T29424]  ? __mnt_drop_write+0x12/0x20
[ 3347.048314][T29424]  ? touch_atime+0x1b3/0x240
[ 3347.052909][T29424]  generic_file_read_iter+0x1c5/0x2c0
[ 3347.058335][T29424]  blkdev_read_iter+0xb9/0xf0
[ 3347.063068][T29424]  generic_file_splice_read+0x22a/0x310
[ 3347.068793][T29424]  ? splice_shrink_spd+0x60/0x60
[ 3347.073851][T29424]  splice_direct_to_actor+0x2aa/0x650
[ 3347.079330][T29424]  ? do_splice_direct+0x170/0x170
[ 3347.084532][T29424]  do_splice_direct+0xf5/0x170
[ 3347.089866][T29424]  do_sendfile+0x773/0xda0
[ 3347.094386][T29424]  __x64_sys_sendfile64+0xf2/0x130
[ 3347.099510][T29424]  do_syscall_64+0x4a/0x90
[ 3347.103999][T29424]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3347.109905][T29424] RIP: 0033:0x4665d9
[ 3347.113818][T29424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3347.133910][T29424] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3347.142351][T29424] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3347.150418][T29424] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3347.158543][T29424] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3347.166718][T29424] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:13:31 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040))
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3347.174697][T29424] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:31 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000ce0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:31 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f00000000c0)={0x0, 0x2, 0x49, 0x1})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
dup3(r2, r1, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = accept4(r3, &(0x7f00000004c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, &(0x7f0000000540)=0x80, 0x800)
sendmmsg$inet6(r4, &(0x7f0000002000)=[{{&(0x7f0000000580)={0xa, 0x4e24, 0x6, @mcast1, 0x800}, 0x1c, &(0x7f0000000800)=[{&(0x7f00000005c0)="5394f2a010db274c617191e328b42e11c10a81b7f4e49c7b1d0f8b4d10a1b8", 0x1f}, {&(0x7f0000000600)="397fee234fbf3ccdff13600549017fc98150f0c0a36fbb630c45df7a6380c3fcb425e5e24d01104229431bae3843a8ef7afbf4a4", 0x34}, {&(0x7f0000000640)="dadbc5862a4cdf59a9b961b701661e87c7ac604d14e4f4e04dd1e832ede404135b6e33a468ad4f5fa67b3c6468a8b103be964c381da6498b97d9e546199fed7148d7e17c38d903c2821a888d2d3b7266fcdcd58f6db82f8b4d6fb95e711ebc63bb2d6faef06d31928e1695cda0faaddceabe87d60fbd7ad8b512076629d109c145e3476c179dc9b5d9e8", 0x8a}, {&(0x7f0000000700)="0274ded79362554427ac05db767b5343bcee7d80f0a3343102837b6841281b791ac91485a7ab1e228200785482eeb44a5f5bc796e3e809620aacbb01b5975b3f9c6aefb9e2b35a5988b1fb03d2ce490eb970e20186e5b960e43feb45eae83c76ef8c60c2e4a1275d0377e330914d3506378a4ff8ffd1f43d1e7a82a3b2e232bdb21f978fc2adc28016bf36f0ad0a76554cd002b52821ecc6ce8a15176fff9a8896746a199a6daf92365296592486f87b7506ac3d6a2fdc520dccafb07a9d4c49b408bc7131d90f22d496c9f752e1e10b5cff41de5c2df81dacaac130ce0f0398658b", 0xe2}], 0x4, &(0x7f0000000840)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x4}}, @flowinfo={{0x14, 0x29, 0xb, 0x52}}], 0x30}}, {{&(0x7f0000000880)={0xa, 0x4e22, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}, 0x1c, &(0x7f0000001dc0)=[{&(0x7f00000008c0)="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", 0x1000}, {&(0x7f00000018c0)="136909c51f819f0e092a6e43569374b84e5a1641e92b117f124962e41f26f8b0bb04dc63ffc93427707d4bdc8d1f8334188a75b595cc21ff4c02499729a9baef061a7e8c9396aa8f8aa9cb60abb5425a8dc1d5af3a3bd17c6ac56999704d3c73af1709418f4f7f5394e738ee12506c717808ef6ce383f7564c994bd1c01e719c6e969ca5d4003cde0163f904ad161577f4ae42b06cfb08b8b5d5179cd860edc932427ee0811d95b95fe00a93c6d2ea0d11a88176fd2cc8426ae70abd2ec862240439f94ebb12ad0bcc33253d2f2d040f9f8d334420c06382be9ea4c3c82ccc932da4cb455ba29cd15cb5ced89c", 0xed}, {&(0x7f00000019c0)="ed21a52b0c6977892c8b313ec98ebfb2371a5246dc56dc21f03f317c29488323c91440562a842860", 0x28}, {&(0x7f0000001a00)="ae03a2c76b7cb6c2ec3c4440e089ef13fc455852966a662bbe30ed87594e019adbfcb48c956766ed8f6e3b8973d5e2fb9fd8fdb528e84cd6ff6e5975c7236ddf229c667ed44a3645e849bc726135562da5e4025fa5bb5a2bcd04e02d907260a49e5b86bd22196c394b3d24d30149bd4bff60273d5a768d2c4ca63d27da5d2b26e2a904b824d1b073c64285b3fc5ddd508b715c3a8bb042a47dd710e8d2f7bb9b162828b667ffc3537b298d6dab1c646a1e6f", 0xb2}, {&(0x7f0000001ac0)="539bfc39d75ca917d1bb4a50a21098f1d6e79c7993cba29f8ccc670b2c39c3c863f70514cd1805b87c8cff808cf676c873193b5cdcd0f77106525e14cf09cfbf0f3c90383a322b198d4327d5a9e578df1add63272bdcae1a4232abdb225864e0a8beb2697f3711be995cab5c8979d73a8a3e4c70a7ffb7cdacbbad65f01665341d", 0x81}, {&(0x7f0000001b80)="08c71fdb50fbe1f5b39aebc891f212f5800d677ef292b136b6101fcc2f60782f135a3c84aa983a4dccddb21aa998bd2a9738079d0dbd3d31bedebad6ad8e22ce185f241f04935575a81b174374f419bfe350ccb283288bd297ec5f46e5a65fae0113021ec2", 0x65}, {&(0x7f0000001c00)="d8adcfeaa2b98434cd56647cb930a9ae66949a2f6fef3037fe20e3ba4467352b3de0b6a517f040d139143aab7acac0f767b7878d9f199708749c845875a468406b1a02f50be2d8863263d26598861fc55377048871f4903989a512615910108ddc312dd4f8098b4b4be73df74db2815602adf4176c4e2283e78e5f6db8e7f57408eeec918474030e0b1c086d736734481550a2c45b306959da1e88e358defa77f3b0c89c4e6f8083bce4e9101a81780a3e36bdb4dcd2483c7aa96e918aa440b4d9", 0xc1}, {&(0x7f0000001d00)="82f14cb574533bc574bd957fa51e731d81d556ee181e92569fa89839e54a74223c9a1e900aa1d2fa0100332e735d4300904bf487185917f01f634b283815c1a97c2b8ea86a73743774f06c5cc338528b45ce878915fae6d7dd5ecf043423b7b39ca93a6d5cd2212d77906696527a3a2d32433ce60e61ee97d6a0ac69fb20dc593e13dfd98e2898e236c530d99ca6a5b238b060af961a35c920349c", 0x9b}], 0x8, &(0x7f0000001e40)=[@dstopts={{0x58, 0x29, 0x37, {0xb8, 0x7, '\x00', [@ra={0x5, 0x2, 0x7}, @padn={0x1, 0x1, [0x0]}, @calipso={0x7, 0x30, {0x3, 0xa, 0x1, 0x80, [0x3, 0x0, 0x1ff, 0x6, 0x7]}}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x51dc97e5}}, @hoplimit={{0x14, 0x29, 0x34, 0x2}}, @rthdr_2292={{0x98, 0x29, 0x39, {0x87, 0x10, 0x2, 0x2, 0x0, [@private2={0xfc, 0x2, '\x00', 0x1}, @local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @remote, @mcast1, @empty, @local, @dev={0xfe, 0x80, '\x00', 0x1f}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x9}}, @rthdrdstopts={{0x68, 0x29, 0x37, {0x3c, 0x9, '\x00', [@pad1, @jumbo={0xc2, 0x4, 0x2b7}, @calipso={0x7, 0x40, {0x0, 0xe, 0x1f, 0x690f, [0x101, 0x4, 0x4, 0x7a93, 0x80000001, 0x7fffffff, 0x9]}}]}}}], 0x1a0}}], 0x2, 0x8054)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:31 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000014000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:31 executing program 5 (fault-call:1 fault-nth:19):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3347.222169][T29435] loop3: detected capacity change from 0 to 512
[ 3347.236956][T29435] EXT4-fs (loop3): Invalid log block size: 4608
03:13:31 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000cf0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3347.322027][T29449] FAULT_INJECTION: forcing a failure.
[ 3347.322027][T29449] name failslab, interval 1, probability 0, space 0, times 0
[ 3347.334786][T29449] CPU: 0 PID: 29449 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3347.344141][T29449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3347.354472][T29449] Call Trace:
[ 3347.357753][T29449]  dump_stack+0x137/0x19d
[ 3347.362143][T29449]  should_fail+0x23c/0x250
[ 3347.366551][T29449]  __should_failslab+0x81/0x90
[ 3347.371380][T29449]  should_failslab+0x5/0x20
[ 3347.375927][T29449]  kmem_cache_alloc_node+0x58/0x2b0
[ 3347.381211][T29449]  ? alloc_pages+0x21d/0x310
[ 3347.385539][T29455] loop3: detected capacity change from 0 to 512
[ 3347.385915][T29449]  ? create_task_io_context+0x36/0x210
[ 3347.396232][T29455] EXT4-fs (loop3): Invalid log block size: 5120
[ 3347.397996][T29449]  create_task_io_context+0x36/0x210
[ 3347.398025][T29449]  submit_bio_checks+0x778/0x800
[ 3347.415047][T29449]  submit_bio_noacct+0x33/0x7e0
[ 3347.419895][T29449]  ? bio_iov_iter_get_pages+0xaf7/0xb50
[ 3347.425668][T29449]  submit_bio+0x16d/0x2b0
[ 3347.430316][T29449]  blkdev_direct_IO+0xbec/0x1060
[ 3347.435495][T29449]  ? avc_has_perm+0x59/0x150
[ 3347.440181][T29449]  ? __fsnotify_parent+0x32f/0x430
[ 3347.445281][T29449]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3347.451469][T29449]  ? blkdev_get_block+0x70/0x70
[ 3347.456349][T29449]  ? __mnt_drop_write+0x12/0x20
[ 3347.461367][T29449]  ? touch_atime+0x1b3/0x240
[ 3347.466040][T29449]  generic_file_read_iter+0x1c5/0x2c0
[ 3347.471475][T29449]  blkdev_read_iter+0xb9/0xf0
[ 3347.476164][T29449]  generic_file_splice_read+0x22a/0x310
[ 3347.481699][T29449]  ? splice_shrink_spd+0x60/0x60
[ 3347.486753][T29449]  splice_direct_to_actor+0x2aa/0x650
[ 3347.492119][T29449]  ? do_splice_direct+0x170/0x170
[ 3347.497300][T29449]  do_splice_direct+0xf5/0x170
[ 3347.502139][T29449]  do_sendfile+0x773/0xda0
[ 3347.506625][T29449]  __x64_sys_sendfile64+0xf2/0x130
[ 3347.511772][T29449]  do_syscall_64+0x4a/0x90
[ 3347.516283][T29449]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3347.522275][T29449] RIP: 0033:0x4665d9
[ 3347.526350][T29449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3347.546575][T29449] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3347.555384][T29449] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3347.563723][T29449] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3347.571714][T29449] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3347.579869][T29449] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3347.587935][T29449] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3347.639807][T29455] loop3: detected capacity change from 0 to 512
[ 3347.658911][T29455] EXT4-fs (loop3): Invalid log block size: 5120
03:13:31 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(r0, &(0x7f0000000000)={0x38, 0x2, 0x10000018, 0x76f1296a, 0xfff, 0xecf, 0x81, 0x0, 0x1, 0x8000}, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:31 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0xffffc000)
mkdir(&(0x7f0000000040)='./file0\x00', 0xcf)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = signalfd4(r1, &(0x7f0000000200)={[0x7fffffff]}, 0x8, 0x80000)
setsockopt$inet6_int(r3, 0x29, 0xc9, &(0x7f0000000240)=0x5, 0x4)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="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"/297, 0xffffffca)
accept$unix(r4, &(0x7f0000000100), &(0x7f0000000180)=0x6e)

03:13:31 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000d00000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:31 executing program 5 (fault-call:1 fault-nth:20):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:31 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000018000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:31 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000ffffffda0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3347.791853][T29480] FAULT_INJECTION: forcing a failure.
[ 3347.791853][T29480] name failslab, interval 1, probability 0, space 0, times 0
[ 3347.802228][T29479] loop3: detected capacity change from 0 to 512
[ 3347.804647][T29480] CPU: 1 PID: 29480 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3347.814001][T29479] EXT4-fs (loop3): Invalid log block size: 6144
[ 3347.819705][T29480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3347.819718][T29480] Call Trace:
[ 3347.819726][T29480]  dump_stack+0x137/0x19d
[ 3347.819751][T29480]  should_fail+0x23c/0x250
[ 3347.848254][T29480]  ? kmalloc_array+0x2d/0x40
[ 3347.853066][T29480]  __should_failslab+0x81/0x90
[ 3347.857994][T29480]  should_failslab+0x5/0x20
[ 3347.862523][T29480]  __kmalloc+0x66/0x340
[ 3347.866690][T29480]  ? iov_iter_revert+0x151/0x540
[ 3347.871730][T29480]  ? splice_from_pipe+0xc0/0xc0
[ 3347.876801][T29480]  kmalloc_array+0x2d/0x40
[ 3347.881329][T29480]  iter_file_splice_write+0xc1/0x750
[ 3347.886628][T29480]  ? atime_needs_update+0x2ba/0x390
[ 3347.891915][T29480]  ? generic_file_splice_read+0x284/0x310
[ 3347.897709][T29480]  ? splice_from_pipe+0xc0/0xc0
[ 3347.902595][T29480]  direct_splice_actor+0x80/0xa0
[ 3347.907543][T29480]  splice_direct_to_actor+0x345/0x650
[ 3347.913024][T29480]  ? do_splice_direct+0x170/0x170
[ 3347.918061][T29480]  do_splice_direct+0xf5/0x170
[ 3347.922890][T29480]  do_sendfile+0x773/0xda0
[ 3347.927331][T29480]  __x64_sys_sendfile64+0xf2/0x130
[ 3347.932658][T29480]  do_syscall_64+0x4a/0x90
[ 3347.937086][T29480]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3347.942999][T29480] RIP: 0033:0x4665d9
[ 3347.946918][T29480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3347.966648][T29480] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3347.975284][T29480] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3347.983395][T29480] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3347.991450][T29480] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3347.999500][T29480] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3348.007582][T29480] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3348.036554][T29479] loop3: detected capacity change from 0 to 512
[ 3348.044594][T29479] EXT4-fs (loop3): Invalid log block size: 6144
03:13:32 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000ffffffe20000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:32 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040))
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:32 executing program 2:
r0 = socket$inet6(0xa, 0x5, 0x800)
r1 = syz_open_dev$vcsn(&(0x7f0000000200), 0x3ff, 0x408800)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000240)={0x8000, {{0xa, 0x4e21, 0x7fffffff, @ipv4={'\x00', '\xff\xff', @local}, 0x6}}}, 0x88)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
getsockopt$inet6_buf(r3, 0x29, 0x2b, &(0x7f00000000c0)=""/19, &(0x7f0000000100)=0x13)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:32 executing program 5 (fault-call:1 fault-nth:21):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000019000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3348.189300][T29508] FAULT_INJECTION: forcing a failure.
[ 3348.189300][T29508] name failslab, interval 1, probability 0, space 0, times 0
[ 3348.202129][T29508] CPU: 0 PID: 29508 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3348.210929][T29508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3348.214087][T29509] loop3: detected capacity change from 0 to 512
[ 3348.221012][T29508] Call Trace:
[ 3348.221023][T29508]  dump_stack+0x137/0x19d
[ 3348.221052][T29508]  should_fail+0x23c/0x250
[ 3348.239637][T29508]  ? blkdev_direct_IO+0x392/0x1060
[ 3348.244924][T29508]  __should_failslab+0x81/0x90
[ 3348.249738][T29508]  should_failslab+0x5/0x20
[ 3348.254425][T29508]  __kmalloc+0x66/0x340
[ 3348.258594][T29508]  ? blkdev_write_iter+0x29d/0x2b0
[ 3348.263961][T29508]  blkdev_direct_IO+0x392/0x1060
[ 3348.268908][T29508]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3348.274836][T29508]  ? current_time+0xdb/0x190
[ 3348.279434][T29508]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3348.285422][T29508]  ? __mark_inode_dirty+0x103/0x6c0
[ 3348.290712][T29508]  ? __mnt_drop_write+0x12/0x20
[ 3348.295681][T29508]  ? touch_atime+0x1b3/0x240
[ 3348.300446][T29508]  generic_file_read_iter+0x1c5/0x2c0
[ 3348.306094][T29508]  blkdev_read_iter+0xb9/0xf0
[ 3348.311018][T29508]  generic_file_splice_read+0x22a/0x310
[ 3348.316703][T29508]  ? splice_shrink_spd+0x60/0x60
[ 3348.321659][T29508]  splice_direct_to_actor+0x2aa/0x650
[ 3348.327065][T29508]  ? do_splice_direct+0x170/0x170
[ 3348.332107][T29508]  do_splice_direct+0xf5/0x170
[ 3348.336974][T29508]  do_sendfile+0x773/0xda0
[ 3348.341395][T29508]  __x64_sys_sendfile64+0xf2/0x130
[ 3348.346507][T29508]  do_syscall_64+0x4a/0x90
[ 3348.351019][T29508]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3348.357270][T29508] RIP: 0033:0x4665d9
[ 3348.361167][T29508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3348.381188][T29508] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
03:13:32 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffff40000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3348.389955][T29508] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3348.398074][T29508] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3348.406220][T29508] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3348.414495][T29508] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3348.422466][T29508] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3348.446630][T29509] EXT4-fs (loop3): Invalid log block size: 6400
[ 3348.491658][T29509] loop3: detected capacity change from 0 to 512
[ 3348.498594][T29509] EXT4-fs (loop3): Invalid log block size: 6400
03:13:32 executing program 1:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000080)={'fscrypt:', @desc4}, &(0x7f00000000c0)={0x0, "81234e9a68b607cc5d77b89669d7a93b12ccb12b2d630b6e2cc1ca3f9da86127020dd08fc02c84854fd79c27d06d613c6066172ecce7a39b82d9f98fc49a22ec", 0x23}, 0x48, 0xfffffffffffffffb)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000380)=ANY=[@ANYBLOB="0100000000000000c9eda33b0000000000000000000000000000004000"/46, @ANYRES32=r1, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f40"])
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x8, 0x748, 0x9, 0x20000000, 0x80000000000000, 0x0, 0x0, 0xffffffff}, 0x0)
r3 = gettid()
ptrace(0x4206, r3)
tkill(r3, 0x800000009)
sched_setattr(r3, &(0x7f00000002c0)={0x38, 0x2, 0x10000019, 0x20000004, 0x3}, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="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"/297, 0xffffffca)
write$binfmt_elf32(r5, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0x6, 0x3f, 0x81, 0x6, 0x2, 0x3e, 0xffff, 0x116, 0x38, 0xd9, 0xe11a, 0x9, 0x20, 0x2, 0x5, 0xe79, 0x5}, [{0x0, 0x8, 0xed24, 0x2000, 0x9, 0x80000001, 0x1, 0x3f}, {0xb0000005, 0xe9ed, 0x7, 0x2, 0x0, 0x400, 0xe85}], "e372ae661d361ce4af09aa3ab40120019d0b4296888fd7decfdf8790b077ec9c75e8a3d1e75d1bf81843d5ff282b7f5cd9fc6ad8ed85b8", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xaaf)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000027c0)=[{&(0x7f0000000300)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000f00), 0x0, 0x0, 0x0, 0x40000}, {&(0x7f0000000f40)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000000fc0)="e1d87062110570dafc91fbc64621e1c631b0d8ee3db3ebcb01191d93ce9375280519804cf1ef017b3e5980a595ce6fe6b39c1d8b05dc1c05e2718bf471fed1ac14d090a6d6ed826443af882c3682dede4911245509dcbe89aabf64eae5bdd7cf3694efcaf2b64e1fb7438b56adec3aa658b2623a70e2e1e677f4cb10cf93f7a3cf54470423565d0ec03ce2ac9aa119ca4d4ff35000d61c137a75776736526c8ec11053472b32c3554f6798ed7667014c77c1129a6a6fbd0760d787d38b132c58531971c00c614835561351aacbf72823831d5ad98cdb3b21e70498f68beb8c0786420f5374f6a879506469c239e3d4da2c4b8ec95930a1270ac8e5cedbcad7f9003f1152b08909c57476fe6b6c70dc27aef83a38ddc0f06a69b4a3ff248569520bccb7aa5321523a05f5c60fb4904108158e6eddd414b34fbffb5fde871cab947c18d759ae47f0800dc085fa24961f24a6312654041973e51f3246afd059fa410164a6c83a57e7153707785c44d92abce7fdcf83d164f760119af87a02e6f4021647cc2bec71bf3d7e146d85230cebcabd3fefc457bf082b77097bcb80a7c621faf6f0cdef70ce015093f4dfda701a8ea73c85c7a651d0a80a8640cb83e63487121bbf83724c7b97bae4954353ca3dedfe359a67b3e92641f000dcfd2a94c7c3b5a961e0c62baafa97ca58f35c050609d03f6d7aec013caf697d3c12540850cdc85d98295a61c9921db1d164754c753d7fde397baa50ebc878f24a1615f35c883514da4fe836fb37f5543fdff2580ac6da30b73624b512f862b96d0941b0121ec0cf45c671f95c9aded26c528be26cca36d625c136dc59aaf4e81f2390a28f01fc1693385975f470761af88cd0b11f2cf1da52e37b2622e82e559a46f0ba0130d66749c072d3e036b9913f8d4972cda79e34d3d2080877a1af0a09de83f4b8ff9a4ee6c5b1da244cdb0036b24d5f8510331f4bf9aaadf979c1b57ed99cb14050229606787df47188ec95ddeeb8bd8d8d3a75552f655432f28c85f464d64b6e0c424539bebd11f7e77ed3ad769e435e1513a9f961b7e33f24700f318f45c993c719248698adb0578b16026bb3795654c78fdbf802981869296aa4845d78a1a4c857f19e45dcf28641dcc99c160d3e17e0a68fee672a2358e33c8e4bcaca7e609109ea842b2dcc2f635ccc7ca7ec168b3f694f989ef713216662c3a0481d62dc6d094829d54b40a1ce20f2538c936cc93ef9374f71f849e05d241a1a1d123a032bf9a884a605ce6027def4654ed731c317be44451dd525229f311970c7a9f40649c0768d811af989846135042e75a3185f31c1a2ebdf25c0437e21af060b48a08775d9e7865091c231803a11c3b2c76d284df119d8dc75558322e410e0d5acc0a3d407a142a02492b107f90b1871c2152b4c310a917dc63d6ef0f99e2d1e6565590b0377e9d285e590b864ee0b005f573a039feb2dea7e58611257ceef9aaede66e34e5e6a4f13af230dffe8d828b58fa3fdf158522f03337742b8c6c6aad502cd8a0770b593d41eefad9481a8d0d08831d07664712d697b99e099ded0af3de3539d0178f300c0a53e173428159492a05c4c43c3d32536091ac06b096980f0f5ff53d48638a8f481d5b264f90d751d00de5bb0dea85c17c7c3e14bfda7ffe95084e6040ab61731bf00729e6bfcaa16be3d20e538c45e74a37d6d815895d005a41576c5f9fc60d395375e77ae80b82b759161c8bd63ac737af1861a81017db4f7438f97b28cabbdab0e1561715952a2545fd8a7d9a94b18c641bb11d78e0c29c1af7932f7bb6ba112186f27abec8ca475997957fd2197ccfea745363e8bbd40b079d00a1769225c0644f7ef4586ad273b18dc387dc4bf82063ba90264bf2396c2d1e937b0166326eab14aef2f650a09ea157684692798d2f98fffdf24c6716397a255570f122184f4929b4c4c58270405722f9504110c69e90fe39b92a0b6395af74dea89a0c5ab77e5e45d8116a897d19c8f413bb15c00d7bd63fe2fc38cd6ae0ac8e0db0b748b7a238f5df2eabd8a29b9d37fa302c9389722c412e6895e8684c88549ba84040042c370c10deb0299449e4dc636f1464131b9517894c0bbbc566e3ae66ec2320d9b58e6eb69583341ccb688d5b487b1ce5cdd2785291b4d59ec14d56529f3a2d49c2876c03f4d322589f3701c1ed6e02be591391e2db7352d2beb7261de4db35afd7fe157f9f1522a68fe6beae2f4de77df282907d01a336dcb101f7d7a1ee951330e35b41ad58139c10e03f3c82ddda095dbabe91d4dca7063f619ed6d3bad7d63b2f4eeeb2426c89e9b414185fa907ae507e96a3be706056ae8c18e005325bc8df70fcc74ba5546dc58e9a63db8a4f922ba9dab242bebaa645ba4fff6ce867bf08452e4a6ff9314077f812d510975f0245bbd6d2ea228a1dec7bb4c72a3c26f77af56ec277a1bffe2d00b491ce0ba0e1a022f792a8ddcf7999772d3fedfe6c716e41e4a850addbc9ab21f198ecbdaf9d07ca4e392684283c5b2ba938bcbb971cfce7b9381d3310c960dfa0e298767465209a9ce560f52d63a00b86a187eaa75624308e79fe6e2abbf8db330c48bc02d4b839a625977a54a6ef8951e768eb18a85f48a9a6122bd88cca4b8f826c536af92ef1f0d4327ff43e83a41faae33cfefb8040257d5aaf14009dc4e160f0408ac24a8e83279a864d6426fa659aaa75696bfdcf72ff1e80f421d46203e52bfd52bf836fa748b97501717c59099bda0df8eab6daacc102f35d6c0dadf0d278fa1800aef6376ab18632bb65dd7903f738d6982c0a80ac555a62d140e5cbf5e7f0dac7f5b4be88cdeb376f730bb94eae28c32f3fe60b090d325ad9328d8ad855bdfbd857ae24d0d12e08bc66292fb240356551d60da96ce50f36b3c98315e955504509393e1611ce05ab5d41c56b4922e87a90ac3cab7ba58a9967487c6ef5c5ec0db2fb3bc9da75aa2391af97322f2f7995c86316f03bb8cb87201f6cd49a5285c0e67ac7ab3b5af7caa9ca209e1ecc99ad3d809b05e5a754c893659575fd18f5eb580f223300e0bd71d2b7c3e2c63c25e052b06ffe223ccd2cdd4ad5a884d891e36bfe8e4c74a2556db523cc49b5d3b10093a2deb14490dd012261ab858c79a41756a5656c71ada9f98ccd9c84c49d50c0432fede4e9ad1e002c6f89e5c8ad0ed72716c2ae3f1cb5a1115d59c5c13833b9aa48e27bfa3e22490cfe1d6f84d8edbafec90a984dc7b7e89083727cf7c0bd6cf42d75e894ca026e80b4790e3049af47bb0dacd0939f6f1d132f8e5a40157c47c00ea8009dc38df3d85df6573954c3ca1ac393df544964f422ee65bc5ce4226d6bf4efd42a785173ceb391302edccf069d82a15016bfd0f7d24bc8959155e9a2cdde340fb87e7bb12b797b033685310eddc81d7066ead4c8689efc36fde7b05c1f889d9c316f1b697aadeac03b724f0a989c5695859c91741c66acbd117ff13a42b498246ea07ad227f0a35ea6194eba2f8593b2f3b4951b94d6815668c978af97a6cad2c710b1ba8751af0d751518131ad1a3057f7ffa822716c524803e167ac4f689b1ccc000e77583614ee1be9af34d19e02b357f3fa3c555f7a93992c1d861c975dbab312523f64e8454f5e1e8be0bfa64d0aa1b0cbdd45e2d7d0579104763b59e5935edf2406df8fb743230f0443d84cd20de88faed76d41745055217f30a00ceacdc86a44e36a0694e020adffab51a29b0a548811dd9f7d34380544210ecab3c1e3525e684c16561a1fae1aaf2ec0be445cdce19d8f2e0e4b4262effd1ab0a738925e1843c00e50de1fce9e573474b526811eb82ad0911d009ffa508176dbf9c924e5123b183793b371f9740d7b51a5fc38f566b149c488eb21b4fb67c3aca8b895a587d28713a4c7e7f5eb4c0beb9e9dbc3849284624b347549aaf57ad38adfc5424c9cc7dd0ccf5a0d1221726953430e54122db60b41cd1712a2cf2e962bdb24cc0280520560db8422edaa188dc735e779553aa1e182c348e246b23bdde9ef5e8db81b292d6e33e62a0440475e3663dd75fb9f03adb7ceccbc65fa9a8d2000b76ef0c207eb84339c1df31d06cc14a91c64947f34d1b92d611ecf67d4183af2be8ab7b711c252f6139d2f9bfd2e998bdfada43309b44fbfa1b777297b01840c82094bc1e236f9482e18f9f91a954ed9c7d29ae5a71a76a16ac61f575178372f7cd0635f4150aa41fee6beaba5aa1f0fb3421f58f60d4c1ecc9d094a0eb5e91a1841fb07969e074bc5475c5e8444583af2643f10e5c77d613a663fbac4594c561b3adeee0d224d1b6ff798a59e173a106561e3b0b92e79c9d0c9fe5c6426f187a1aedee455b6bea07320516cfea429decee9511e152896c7444dab8d31cf48aa0cf83b0fb2039090486e0a69dd0d80ff5ece783a424ff282c424308f153dd7f8209d86d314870f06a08b475937b46d5b36369e94875de33d7d2edfdb7ed031e0445d89b86583560e1353077d73de7d1bacc997758b6fffcffb8cad670fb2bce2b1bd9ff4a102bfc3f1d2a7bb66ffceb4eb0b043938b64e3e4d7020ecf32b63ebb65e76d92c5783c4b365a61a0c6b91f7c4c56181393933fdc25328df9850d62d44d938a42a6b6eee19ae480c261aaa3ed7d65bd3fa7772cb71e4473df99eb7e160e3e87b21dac55f6e245ba3021fbba47806bd7bf71f02570b150fa0134da3cc5eb68595343269a0d9780ad6017e76c506f819f3809e3570cbc2e6dd97b93fa3291766899f4f751536a3026c3bfba9146d818abf620d4805d9e363853d57ed5641ab6b40074f0f5c9fe645a2e86880e65c42cb3cee66442629534a65ef539f921748b6f0a9f83967505ac8f8594606196999883ba9f856aef05a05335b6dbdcb9954e4b0a2f9a3d5fa0fdce4b536268a58bd5ca39268c17c8057dd423887008613dbcd0c14bcf9da4c309d37a907c480504addbbaad584f4e372dd8a32476e40728c7c73438c3f578ae1ff260e21dca5dae90c42586a1b00a580d7c30daa172c3813984e0af3bf90e47bdd61c338788fc3fbc99f95a87c20258d7bad1b393f2884eb660edc9151013dc9c0b54a225d571e6e0f8ba28051364de2b2198bfa888f0701ffa09187ea0ac818116b11fff4221768385c410cb0bf7b665dc6c58851c45f3c6f87e1bf28b80d6298f19c776842b8255c147e7108d0268e32b9d9e9f022852b2710e39d06c7468ab0391a19225e7b7866cc2940bf8db4fbe80ac791f0031194993a4f3a889f0d0ab3d240dc5d1c9a119f26f0a58c780a2a8ef2229d2e4727df90712a916f71f7c7b10506a5d236bcb2705469f7ea67092c0c0c07eae818ddda03333f00e39847eaf04158af530b1a09f207e3335c2ae42848fed8cb049e636addbd45083e1ce35d3c4ec2dc6ef2274c4cc10449220d110558d08d37242eee4ac4f5f7196d3f95cb978818ad2103fdf66c9f48008f136466a95906105f9230571229e7016e6ae495eed8243629506562d5fa1804536bef0f461b09c9e155160fd35a27166c2ed3d7095fd6712cc9cb0cb866a6f41623cd0d02ac4f4043c6f94dca9046e821e2483164442850bef71a9f2ea7bf291dc28a3d5857f259cc5b75e1f2061b9e55e630b76813f660b65d849c540b4787405282608ff12a2e329eb7f561a675fff21c5e4fdd776ab3737a89f31c7ed77eb798c5322d90689637f98f63a32a5c936f4ac1c22455520df451a25615ad3b95afd3f24d2e4baf167afc600ecaa4f19719462ab11d0e34ff556d4bc01e70161684b", 0x1000}], 0x1, &(0x7f00000026c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [r4, r0, r0, 0xffffffffffffffff, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}], 0xd0, 0x40000}], 0x2, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r4, 0x400c330d, &(0x7f0000000240)={0x3, 0x5})
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:32 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffff50000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:32 executing program 5 (fault-call:1 fault-nth:22):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000001b000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:32 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r0 = gettid()
ptrace(0x4206, r0)
tkill(r0, 0x800000009)
sched_setattr(r0, &(0x7f0000000000)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
getpid()
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3348.860014][T29536] FAULT_INJECTION: forcing a failure.
[ 3348.860014][T29536] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3348.860382][T29533] loop3: detected capacity change from 0 to 512
[ 3348.873491][T29536] CPU: 1 PID: 29536 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3348.888963][T29536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3348.894324][T29533] EXT4-fs (loop3): Invalid log block size: 6912
[ 3348.899660][T29536] Call Trace:
03:13:32 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
sched_setattr(r0, &(0x7f0000003440)={0x38, 0x5, 0x4, 0xcbf, 0x3, 0x7, 0x48039ce5, 0x6, 0x9, 0x1ff}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f0000003c00)=[{{&(0x7f0000000080)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000000000)=[{&(0x7f00000002c0)=""/199, 0xc7}, {&(0x7f0000000180)=""/85, 0x55}, {&(0x7f00000003c0)=""/245, 0xf5}, {&(0x7f00000004c0)=""/130, 0x82}], 0x4, &(0x7f0000000580)=""/150, 0x96}, 0x1000}, {{&(0x7f0000000640)=@caif=@rfm, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000100)=""/14, 0xe}, {&(0x7f00000006c0)=""/171, 0xab}, {&(0x7f0000000780)=""/246, 0xf6}, {&(0x7f0000000880)=""/97, 0x61}, {&(0x7f0000000900)=""/113, 0x71}, {&(0x7f0000000980)=""/110, 0x6e}], 0x6, &(0x7f0000000a80)=""/184, 0xb8}, 0x1f}, {{&(0x7f0000000b40)=@tipc=@id, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000000bc0)=""/4096, 0x1000}], 0x1, &(0x7f0000001c00)=""/132, 0x84}, 0xe31a}, {{&(0x7f0000001cc0)=@xdp, 0x80, &(0x7f0000001e80)=[{&(0x7f0000001d40)=""/220, 0xdc}, {&(0x7f0000001e40)=""/57, 0x39}], 0x2, &(0x7f0000001ec0)=""/40, 0x28}, 0x3a4}, {{&(0x7f0000001f00)=@rc={0x1f, @none}, 0x80, &(0x7f0000003180)=[{&(0x7f0000001f80)=""/4096, 0x1000}, {&(0x7f0000002f80)=""/196, 0xc4}, {&(0x7f0000003080)=""/247, 0xf7}], 0x3, &(0x7f00000031c0)=""/104, 0x68}, 0x3}, {{&(0x7f0000003240)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000003480)=[{&(0x7f00000032c0)=""/112, 0x70}, {&(0x7f0000003340)=""/251, 0xfb}, {&(0x7f0000003440)}], 0x3}, 0x9}, {{0x0, 0x0, &(0x7f00000039c0)=[{&(0x7f00000034c0)=""/118, 0x76}, {&(0x7f0000003540)=""/236, 0xec}, {&(0x7f0000003640)=""/78, 0x4e}, {&(0x7f00000036c0)=""/14, 0xe}, {&(0x7f0000003700)=""/130, 0x82}, {&(0x7f00000037c0)=""/234, 0xea}, {&(0x7f00000038c0)=""/248, 0xf8}], 0x7}, 0x296}, {{&(0x7f0000003a40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private2}}}, 0x80, &(0x7f0000003b80)=[{&(0x7f0000003ac0)=""/143, 0x8f}], 0x1, &(0x7f0000003bc0)=""/7, 0x7}, 0x80}], 0x8, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffff60000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3348.899671][T29536]  dump_stack+0x137/0x19d
[ 3348.913601][T29536]  should_fail+0x23c/0x250
[ 3348.918219][T29536]  __alloc_pages+0x102/0x320
[ 3348.923058][T29536]  alloc_pages+0x21d/0x310
[ 3348.927510][T29536]  push_pipe+0x267/0x370
[ 3348.931827][T29536]  iov_iter_get_pages+0xb39/0xcc0
[ 3348.936976][T29536]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3348.942368][T29536]  ? blk_flush_plug_list+0x23c/0x260
[ 3348.947665][T29536]  ? blkdev_direct_IO+0x392/0x1060
[ 3348.952962][T29536]  ? __kmalloc+0x23d/0x340
[ 3348.957705][T29536]  ? blkdev_direct_IO+0x392/0x1060
[ 3348.963205][T29536]  blkdev_direct_IO+0x9ec/0x1060
[ 3348.968361][T29536]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3348.974352][T29536]  ? blkdev_get_block+0x70/0x70
[ 3348.979217][T29536]  ? __mnt_drop_write+0x12/0x20
[ 3348.984066][T29536]  ? touch_atime+0x1b3/0x240
[ 3348.988989][T29536]  generic_file_read_iter+0x1c5/0x2c0
[ 3348.995011][T29536]  blkdev_read_iter+0xb9/0xf0
[ 3348.999787][T29536]  generic_file_splice_read+0x22a/0x310
[ 3349.005434][T29536]  ? splice_shrink_spd+0x60/0x60
[ 3349.010546][T29536]  splice_direct_to_actor+0x2aa/0x650
[ 3349.016035][T29536]  ? do_splice_direct+0x170/0x170
[ 3349.021047][T29536]  do_splice_direct+0xf5/0x170
[ 3349.026201][T29536]  do_sendfile+0x773/0xda0
[ 3349.030616][T29536]  __x64_sys_sendfile64+0xf2/0x130
[ 3349.035713][T29536]  do_syscall_64+0x4a/0x90
[ 3349.040178][T29536]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3349.046248][T29536] RIP: 0033:0x4665d9
[ 3349.050158][T29536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3349.070576][T29536] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3349.078985][T29536] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3349.087290][T29536] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3349.095308][T29536] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
03:13:33 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040))
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:33 executing program 5 (fault-call:1 fault-nth:23):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3349.103343][T29536] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3349.111644][T29536] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3349.147271][T29533] loop3: detected capacity change from 0 to 512
03:13:33 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="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"/297, 0xffffffca)
fcntl$setpipe(r5, 0x407, 0x100000001)
fcntl$setlease(r3, 0x400, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
splice(0xffffffffffffffff, &(0x7f0000000480)=0x12b2e3c7, r4, &(0x7f00000004c0)=0x9, 0x0, 0x9)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r6 = syz_mount_image$nfs4(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0xc9af, 0x2, &(0x7f0000000340)=[{&(0x7f0000000240)="8e60620d462f63ae5606bf4d719dcf6cf7443576e5aa561663ec58875f0059b2bc03231fa1edabb1f79430ad4ad3ca6b07509f9fbbac", 0x36, 0x4}, {&(0x7f0000000280)="66e3ffb65a55bd57025ce618dd10486bdb322d37729bf98d20fd89ce73376a32b7bc72c462c9981fbfacc0e93bad532a8d00a56671e49adb88c76f0e3cea82eb7263f909858797a2aa31291a85d9024ff8fc792ee9cbfb26f2f76dc582f58394aefb5f0e064cf0e9504e391535bcc6c4e5fb14cf61c63615cd903f9d39c666cf30fc51a35ca5a0", 0x87, 0x5}], 0x40c07, &(0x7f0000000400)=ANY=[@ANYBLOB='n,&[/#&,):!/F,\x00,\x00,\x00,func=BPRM_CHECK,subj_type=\x00,smackfsfloor=\x00,uid=', @ANYRESDEC=0xee00, @ANYBLOB="2c736d61636b667366010000003d2f7b2a59402c00670f5806d9c28d5f89"])
close(r6)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
utime(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x7c, 0x18ba2997})

03:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffdf90000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3349.168781][T29533] EXT4-fs (loop3): Invalid log block size: 6912
03:13:33 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000001f000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3349.238986][T29559] FAULT_INJECTION: forcing a failure.
[ 3349.238986][T29559] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3349.252645][T29559] CPU: 1 PID: 29559 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3349.261422][T29559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3349.271996][T29559] Call Trace:
[ 3349.275319][T29559]  dump_stack+0x137/0x19d
[ 3349.279684][T29559]  should_fail+0x23c/0x250
[ 3349.284116][T29559]  __alloc_pages+0x102/0x320
03:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffffb0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3349.288717][T29559]  alloc_pages+0x21d/0x310
[ 3349.293236][T29559]  push_pipe+0x267/0x370
[ 3349.297490][T29559]  iov_iter_get_pages+0xb39/0xcc0
[ 3349.302605][T29559]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3349.307990][T29559]  ? blk_flush_plug_list+0x23c/0x260
[ 3349.309202][T29567] loop3: detected capacity change from 0 to 512
[ 3349.313373][T29559]  ? blkdev_direct_IO+0x392/0x1060
[ 3349.313404][T29559]  ? __kmalloc+0x23d/0x340
[ 3349.329192][T29559]  ? blkdev_direct_IO+0x392/0x1060
[ 3349.333751][T29567] EXT4-fs (loop3): Invalid log block size: 7936
[ 3349.334729][T29559]  blkdev_direct_IO+0x9ec/0x1060
[ 3349.334759][T29559]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3349.352058][T29559]  ? blkdev_get_block+0x70/0x70
[ 3349.357111][T29559]  ? __mnt_drop_write+0x12/0x20
[ 3349.362043][T29559]  ? touch_atime+0x1b3/0x240
[ 3349.366904][T29559]  generic_file_read_iter+0x1c5/0x2c0
[ 3349.372455][T29559]  blkdev_read_iter+0xb9/0xf0
[ 3349.377255][T29559]  generic_file_splice_read+0x22a/0x310
[ 3349.382887][T29559]  ? splice_shrink_spd+0x60/0x60
[ 3349.387938][T29559]  splice_direct_to_actor+0x2aa/0x650
[ 3349.393449][T29559]  ? do_splice_direct+0x170/0x170
[ 3349.398465][T29559]  do_splice_direct+0xf5/0x170
[ 3349.403469][T29559]  do_sendfile+0x773/0xda0
[ 3349.407976][T29559]  __x64_sys_sendfile64+0xf2/0x130
[ 3349.413549][T29559]  do_syscall_64+0x4a/0x90
[ 3349.418077][T29559]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3349.424019][T29559] RIP: 0033:0x4665d9
[ 3349.427921][T29559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3349.447801][T29559] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3349.456775][T29559] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3349.464986][T29559] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3349.472965][T29559] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3349.481179][T29559] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3349.489133][T29559] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:33 executing program 5 (fault-call:1 fault-nth:24):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffdfd0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3349.543358][T29567] loop3: detected capacity change from 0 to 512
[ 3349.563956][T29567] EXT4-fs (loop3): Invalid log block size: 7936
[ 3349.584236][T29588] FAULT_INJECTION: forcing a failure.
03:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffffe0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3349.584236][T29588] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3349.597968][T29588] CPU: 1 PID: 29588 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3349.606742][T29588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3349.616897][T29588] Call Trace:
[ 3349.620178][T29588]  dump_stack+0x137/0x19d
[ 3349.624604][T29588]  should_fail+0x23c/0x250
[ 3349.629104][T29588]  __alloc_pages+0x102/0x320
[ 3349.633739][T29588]  alloc_pages+0x21d/0x310
[ 3349.638210][T29588]  push_pipe+0x267/0x370
03:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000ff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3349.642468][T29588]  iov_iter_get_pages+0xb39/0xcc0
[ 3349.647720][T29588]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3349.653330][T29588]  ? blk_flush_plug_list+0x23c/0x260
[ 3349.658636][T29588]  ? blkdev_direct_IO+0x392/0x1060
[ 3349.663964][T29588]  ? __kmalloc+0x23d/0x340
[ 3349.668390][T29588]  ? blkdev_direct_IO+0x392/0x1060
[ 3349.673511][T29588]  blkdev_direct_IO+0x9ec/0x1060
[ 3349.678561][T29588]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3349.684538][T29588]  ? blkdev_get_block+0x70/0x70
[ 3349.689385][T29588]  ? touch_atime+0xcf/0x240
[ 3349.694243][T29588]  generic_file_read_iter+0x1c5/0x2c0
[ 3349.699776][T29588]  blkdev_read_iter+0xb9/0xf0
[ 3349.704739][T29588]  generic_file_splice_read+0x22a/0x310
[ 3349.710436][T29588]  ? splice_shrink_spd+0x60/0x60
[ 3349.715372][T29588]  splice_direct_to_actor+0x2aa/0x650
[ 3349.720757][T29588]  ? do_splice_direct+0x170/0x170
[ 3349.725868][T29588]  do_splice_direct+0xf5/0x170
[ 3349.730798][T29588]  do_sendfile+0x773/0xda0
[ 3349.735617][T29588]  __x64_sys_sendfile64+0xf2/0x130
[ 3349.740734][T29588]  do_syscall_64+0x4a/0x90
[ 3349.745248][T29588]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3349.751384][T29588] RIP: 0033:0x4665d9
[ 3349.755382][T29588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3349.775613][T29588] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3349.784341][T29588] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
03:13:33 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(r0, &(0x7f0000000000)={0x38, 0x0, 0x67, 0xd1, 0x0, 0x3, 0x7, 0x2, 0x5e3, 0x64e}, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000fff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3349.792401][T29588] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3349.800875][T29588] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3349.809056][T29588] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3349.817220][T29588] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:34 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, 0x0, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:34 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000020000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:34 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
write(r3, &(0x7f00000000c0)="93cb3657fa52d304877dc72b4c6930922c750b9b02f6f97f4487055c30f61d6f0d48254b2d088504439242db3477e9e37e202f166e3ed937035e44070976f8bc2ca2", 0x42)

03:13:34 executing program 5 (fault-call:1 fault-nth:25):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:34 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffffbff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:34 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000003ffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3350.070415][T29608] loop3: detected capacity change from 0 to 512
[ 3350.081590][T29608] EXT4-fs (loop3): Invalid log block size: 8192
[ 3350.130190][T29617] FAULT_INJECTION: forcing a failure.
[ 3350.130190][T29617] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3350.144218][T29617] CPU: 0 PID: 29617 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3350.153437][T29617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3350.163594][T29617] Call Trace:
[ 3350.166879][T29617]  dump_stack+0x137/0x19d
[ 3350.171386][T29617]  should_fail+0x23c/0x250
[ 3350.175832][T29617]  __alloc_pages+0x102/0x320
[ 3350.180430][T29617]  alloc_pages+0x21d/0x310
[ 3350.184855][T29617]  push_pipe+0x267/0x370
[ 3350.189331][T29617]  iov_iter_get_pages+0xb39/0xcc0
[ 3350.194723][T29617]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3350.200145][T29617]  ? blk_flush_plug_list+0x23c/0x260
[ 3350.205433][T29617]  ? blkdev_direct_IO+0x392/0x1060
[ 3350.210775][T29617]  ? __kmalloc+0x23d/0x340
[ 3350.215387][T29617]  ? blkdev_direct_IO+0x392/0x1060
[ 3350.220765][T29617]  blkdev_direct_IO+0x9ec/0x1060
[ 3350.225890][T29617]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3350.231803][T29617]  ? blkdev_get_block+0x70/0x70
[ 3350.236671][T29617]  ? touch_atime+0xcf/0x240
[ 3350.241180][T29617]  generic_file_read_iter+0x1c5/0x2c0
[ 3350.246560][T29617]  blkdev_read_iter+0xb9/0xf0
[ 3350.251290][T29617]  generic_file_splice_read+0x22a/0x310
[ 3350.256931][T29617]  ? splice_shrink_spd+0x60/0x60
[ 3350.261871][T29617]  splice_direct_to_actor+0x2aa/0x650
[ 3350.267338][T29617]  ? do_splice_direct+0x170/0x170
[ 3350.272397][T29617]  do_splice_direct+0xf5/0x170
[ 3350.277530][T29617]  do_sendfile+0x773/0xda0
[ 3350.282060][T29617]  __x64_sys_sendfile64+0xf2/0x130
[ 3350.287285][T29617]  do_syscall_64+0x4a/0x90
[ 3350.291733][T29617]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3350.297989][T29617] RIP: 0033:0x4665d9
[ 3350.301985][T29617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3350.321916][T29617] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
03:13:34 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000001020000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:34 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fffbffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3350.330386][T29617] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3350.338367][T29617] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3350.346349][T29617] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3350.354406][T29617] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3350.362624][T29617] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3350.371939][T29608] loop3: detected capacity change from 0 to 512
03:13:34 executing program 5 (fault-call:1 fault-nth:26):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:34 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000f9fdffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3350.494807][T29638] loop3: detected capacity change from 0 to 512
[ 3350.498239][T29640] FAULT_INJECTION: forcing a failure.
[ 3350.498239][T29640] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3350.515037][T29640] CPU: 1 PID: 29640 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3350.523918][T29640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3350.534403][T29640] Call Trace:
[ 3350.537678][T29640]  dump_stack+0x137/0x19d
[ 3350.542572][T29640]  should_fail+0x23c/0x250
[ 3350.546978][T29640]  __alloc_pages+0x102/0x320
[ 3350.551580][T29640]  alloc_pages+0x21d/0x310
[ 3350.555983][T29640]  push_pipe+0x267/0x370
[ 3350.560443][T29640]  iov_iter_get_pages+0xb39/0xcc0
[ 3350.565573][T29640]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3350.571017][T29640]  ? blk_flush_plug_list+0x23c/0x260
[ 3350.576419][T29640]  ? blkdev_direct_IO+0x392/0x1060
[ 3350.581570][T29640]  ? __kmalloc+0x23d/0x340
[ 3350.585996][T29640]  ? blkdev_direct_IO+0x392/0x1060
[ 3350.591520][T29640]  blkdev_direct_IO+0x9ec/0x1060
[ 3350.596553][T29640]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3350.602471][T29640]  ? blkdev_get_block+0x70/0x70
[ 3350.607319][T29640]  ? touch_atime+0xcf/0x240
[ 3350.611909][T29640]  generic_file_read_iter+0x1c5/0x2c0
[ 3350.617271][T29640]  blkdev_read_iter+0xb9/0xf0
[ 3350.622042][T29640]  generic_file_splice_read+0x22a/0x310
[ 3350.627648][T29640]  ? splice_shrink_spd+0x60/0x60
[ 3350.632903][T29640]  splice_direct_to_actor+0x2aa/0x650
[ 3350.638462][T29640]  ? do_splice_direct+0x170/0x170
[ 3350.643616][T29640]  do_splice_direct+0xf5/0x170
[ 3350.648385][T29640]  do_sendfile+0x773/0xda0
[ 3350.653082][T29640]  __x64_sys_sendfile64+0xf2/0x130
[ 3350.658411][T29640]  do_syscall_64+0x4a/0x90
[ 3350.663098][T29640]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3350.669049][T29640] RIP: 0033:0x4665d9
[ 3350.673124][T29640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3350.693743][T29640] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3350.702216][T29640] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3350.710190][T29640] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3350.718159][T29640] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3350.726180][T29640] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3350.734142][T29640] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3350.743066][T29638] EXT4-fs (loop3): Invalid log block size: 8208
03:13:34 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x40000000000000}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
r4 = signalfd4(r3, &(0x7f0000000080)={[0x4]}, 0xfffffffffffffe6f, 0x800)
connect$unix(r4, &(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:34 executing program 5 (fault-call:1 fault-nth:27):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:34 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fdfdffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:34 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000022000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:35 executing program 2:
ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0xaf03a)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:35 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, 0x0, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3350.973861][T29661] FAULT_INJECTION: forcing a failure.
[ 3350.973861][T29661] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3350.984552][T29657] loop3: detected capacity change from 0 to 512
[ 3350.987419][T29661] CPU: 0 PID: 29661 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3350.998994][T29657] EXT4-fs (loop3): Invalid log block size: 8704
[ 3351.002456][T29661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3351.019135][T29661] Call Trace:
03:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000fffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000007fffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3351.022444][T29661]  dump_stack+0x137/0x19d
[ 3351.026871][T29661]  should_fail+0x23c/0x250
[ 3351.031416][T29661]  __alloc_pages+0x102/0x320
[ 3351.036138][T29661]  alloc_pages+0x21d/0x310
[ 3351.040642][T29661]  push_pipe+0x267/0x370
[ 3351.045052][T29661]  iov_iter_get_pages+0xb39/0xcc0
[ 3351.050114][T29661]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3351.055679][T29661]  ? blk_flush_plug_list+0x23c/0x260
[ 3351.061097][T29661]  ? blkdev_direct_IO+0x392/0x1060
[ 3351.066727][T29661]  ? __kmalloc+0x23d/0x340
[ 3351.071274][T29661]  ? blkdev_direct_IO+0x392/0x1060
[ 3351.076448][T29661]  blkdev_direct_IO+0x9ec/0x1060
[ 3351.081432][T29661]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3351.087651][T29661]  ? blkdev_get_block+0x70/0x70
[ 3351.092635][T29661]  ? touch_atime+0xcf/0x240
[ 3351.097293][T29661]  generic_file_read_iter+0x1c5/0x2c0
[ 3351.102736][T29661]  blkdev_read_iter+0xb9/0xf0
[ 3351.107514][T29661]  generic_file_splice_read+0x22a/0x310
[ 3351.113045][T29661]  ? splice_shrink_spd+0x60/0x60
[ 3351.117969][T29661]  splice_direct_to_actor+0x2aa/0x650
[ 3351.123358][T29661]  ? do_splice_direct+0x170/0x170
[ 3351.128754][T29661]  do_splice_direct+0xf5/0x170
[ 3351.133712][T29661]  do_sendfile+0x773/0xda0
[ 3351.138163][T29661]  __x64_sys_sendfile64+0xf2/0x130
[ 3351.143960][T29661]  do_syscall_64+0x4a/0x90
[ 3351.148382][T29661]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3351.154290][T29661] RIP: 0033:0x4665d9
[ 3351.158606][T29661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3351.178429][T29661] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3351.186868][T29661] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3351.194915][T29661] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3351.203124][T29661] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3351.211373][T29661] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3351.219415][T29661] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:35 executing program 5 (fault-call:1 fault-nth:28):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000008cffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000daffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3351.253087][T29657] loop3: detected capacity change from 0 to 512
[ 3351.283688][T29657] EXT4-fs (loop3): Invalid log block size: 8704
[ 3351.317835][T29684] FAULT_INJECTION: forcing a failure.
[ 3351.317835][T29684] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3351.332014][T29684] CPU: 0 PID: 29684 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3351.341039][T29684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3351.351438][T29684] Call Trace:
[ 3351.354716][T29684]  dump_stack+0x137/0x19d
[ 3351.359383][T29684]  should_fail+0x23c/0x250
[ 3351.363931][T29684]  __alloc_pages+0x102/0x320
[ 3351.368684][T29684]  alloc_pages+0x21d/0x310
[ 3351.373085][T29684]  push_pipe+0x267/0x370
[ 3351.377411][T29684]  iov_iter_get_pages+0xb39/0xcc0
[ 3351.382686][T29684]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3351.388371][T29684]  ? blk_flush_plug_list+0x23c/0x260
[ 3351.393894][T29684]  ? blkdev_direct_IO+0x392/0x1060
[ 3351.399101][T29684]  ? __kmalloc+0x23d/0x340
[ 3351.404115][T29684]  ? blkdev_direct_IO+0x392/0x1060
[ 3351.409396][T29684]  blkdev_direct_IO+0x9ec/0x1060
[ 3351.414438][T29684]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3351.420381][T29684]  ? blkdev_get_block+0x70/0x70
[ 3351.425491][T29684]  ? touch_atime+0xcf/0x240
[ 3351.430156][T29684]  generic_file_read_iter+0x1c5/0x2c0
[ 3351.435520][T29684]  blkdev_read_iter+0xb9/0xf0
[ 3351.440432][T29684]  generic_file_splice_read+0x22a/0x310
[ 3351.446393][T29684]  ? splice_shrink_spd+0x60/0x60
[ 3351.451499][T29684]  splice_direct_to_actor+0x2aa/0x650
[ 3351.456895][T29684]  ? do_splice_direct+0x170/0x170
[ 3351.462021][T29684]  do_splice_direct+0xf5/0x170
[ 3351.466927][T29684]  do_sendfile+0x773/0xda0
[ 3351.471820][T29684]  __x64_sys_sendfile64+0xf2/0x130
[ 3351.477472][T29684]  do_syscall_64+0x4a/0x90
[ 3351.481917][T29684]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3351.488120][T29684] RIP: 0033:0x4665d9
[ 3351.492011][T29684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
03:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000e2ffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3351.512203][T29684] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3351.520760][T29684] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3351.528855][T29684] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3351.537336][T29684] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3351.545660][T29684] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3351.553910][T29684] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:35 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:35 executing program 5 (fault-call:1 fault-nth:29):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:35 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000023000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000f4ffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:35 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, 0x0, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:35 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
recvmmsg(r0, &(0x7f0000000a40)=[{{&(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000140)=""/170, 0xaa}], 0x1, &(0x7f0000000200)=""/189, 0xbd}, 0xfffff001}, {{&(0x7f00000002c0)=@pppoe={0x18, 0x0, {0x0, @multicast}}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000340)=""/233, 0xe9}, {&(0x7f0000000440)=""/247, 0xf7}, {&(0x7f0000000540)=""/115, 0x73}], 0x3, &(0x7f0000000600)=""/117, 0x75}, 0x101}, {{&(0x7f0000000680)=@sco, 0x80, &(0x7f0000000980)=[{&(0x7f0000000700)=""/196, 0xc4}, {&(0x7f0000000800)=""/7, 0x7}, {&(0x7f0000000840)=""/84, 0x54}, {&(0x7f00000008c0)=""/162, 0xa2}], 0x4, &(0x7f00000009c0)=""/121, 0x79}, 0x8000}], 0x3, 0x2002, &(0x7f0000000b00)={0x0, 0x989680})
connect$inet6(r1, &(0x7f0000000b40)={0xa, 0x4e20, 0xffffffff, @loopback, 0x3}, 0x1c)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000bc0)={0x3, &(0x7f0000000b80)=[{0x3ff, 0x7, 0x5, 0x5}, {0x5, 0x90, 0x3, 0x3}, {0x80, 0x40, 0xe1, 0x5}]})
ioctl$FS_IOC_SETVERSION(r4, 0x40087602, &(0x7f0000000c00))

03:13:35 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getrlimit(0x5, &(0x7f0000000000))
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000f5ffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3351.927145][T29705] loop3: detected capacity change from 0 to 512
[ 3351.935720][T29707] FAULT_INJECTION: forcing a failure.
[ 3351.935720][T29707] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3351.947261][T29705] EXT4-fs (loop3): Invalid log block size: 8960
[ 3351.948983][T29707] CPU: 1 PID: 29707 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3351.964211][T29707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3351.974492][T29707] Call Trace:
[ 3351.977870][T29707]  dump_stack+0x137/0x19d
[ 3351.982514][T29707]  should_fail+0x23c/0x250
[ 3351.987133][T29707]  __alloc_pages+0x102/0x320
[ 3351.991726][T29707]  alloc_pages+0x21d/0x310
[ 3351.996145][T29707]  push_pipe+0x267/0x370
[ 3352.000601][T29707]  iov_iter_get_pages+0xb39/0xcc0
[ 3352.005890][T29707]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3352.011402][T29707]  ? blk_flush_plug_list+0x23c/0x260
[ 3352.016935][T29707]  ? blkdev_direct_IO+0x392/0x1060
[ 3352.022216][T29707]  ? __kmalloc+0x23d/0x340
[ 3352.026653][T29707]  ? blkdev_direct_IO+0x392/0x1060
[ 3352.031813][T29707]  blkdev_direct_IO+0x9ec/0x1060
[ 3352.036843][T29707]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3352.042850][T29707]  ? blkdev_get_block+0x70/0x70
[ 3352.047706][T29707]  ? __mnt_drop_write+0x12/0x20
[ 3352.052709][T29707]  ? touch_atime+0x1b3/0x240
[ 3352.057345][T29707]  generic_file_read_iter+0x1c5/0x2c0
[ 3352.063042][T29707]  blkdev_read_iter+0xb9/0xf0
[ 3352.067731][T29707]  generic_file_splice_read+0x22a/0x310
[ 3352.073404][T29707]  ? splice_shrink_spd+0x60/0x60
[ 3352.078389][T29707]  splice_direct_to_actor+0x2aa/0x650
[ 3352.083769][T29707]  ? do_splice_direct+0x170/0x170
[ 3352.088806][T29707]  do_splice_direct+0xf5/0x170
[ 3352.093585][T29707]  do_sendfile+0x773/0xda0
[ 3352.098033][T29707]  __x64_sys_sendfile64+0xf2/0x130
[ 3352.103176][T29707]  do_syscall_64+0x4a/0x90
[ 3352.107740][T29707]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3352.113770][T29707] RIP: 0033:0x4665d9
[ 3352.117794][T29707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.137413][T29707] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3352.145923][T29707] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3352.154090][T29707] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3352.162080][T29707] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3352.170143][T29707] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:13:36 executing program 5 (fault-call:1 fault-nth:30):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:36 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000f6ffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3352.178360][T29707] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3352.252316][T29705] loop3: detected capacity change from 0 to 512
[ 3352.259272][T29705] EXT4-fs (loop3): Invalid log block size: 8960
[ 3352.287374][T29728] FAULT_INJECTION: forcing a failure.
[ 3352.287374][T29728] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3352.300874][T29728] CPU: 1 PID: 29728 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3352.309732][T29728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3352.319791][T29728] Call Trace:
[ 3352.323093][T29728]  dump_stack+0x137/0x19d
[ 3352.327566][T29728]  should_fail+0x23c/0x250
[ 3352.332090][T29728]  __alloc_pages+0x102/0x320
[ 3352.336723][T29728]  alloc_pages+0x21d/0x310
[ 3352.341668][T29728]  push_pipe+0x267/0x370
[ 3352.345918][T29728]  iov_iter_get_pages+0xb39/0xcc0
[ 3352.351040][T29728]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3352.356683][T29728]  ? blk_flush_plug_list+0x23c/0x260
[ 3352.362133][T29728]  ? blkdev_direct_IO+0x392/0x1060
[ 3352.367503][T29728]  ? __kmalloc+0x23d/0x340
[ 3352.371926][T29728]  ? blkdev_direct_IO+0x392/0x1060
[ 3352.377065][T29728]  blkdev_direct_IO+0x9ec/0x1060
[ 3352.382106][T29728]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3352.388161][T29728]  ? blkdev_get_block+0x70/0x70
[ 3352.393051][T29728]  ? touch_atime+0xcf/0x240
[ 3352.397732][T29728]  generic_file_read_iter+0x1c5/0x2c0
[ 3352.403117][T29728]  blkdev_read_iter+0xb9/0xf0
[ 3352.407890][T29728]  generic_file_splice_read+0x22a/0x310
[ 3352.413511][T29728]  ? splice_shrink_spd+0x60/0x60
[ 3352.418460][T29728]  splice_direct_to_actor+0x2aa/0x650
[ 3352.423884][T29728]  ? do_splice_direct+0x170/0x170
[ 3352.428998][T29728]  do_splice_direct+0xf5/0x170
[ 3352.433802][T29728]  do_sendfile+0x773/0xda0
[ 3352.438272][T29728]  __x64_sys_sendfile64+0xf2/0x130
[ 3352.443564][T29728]  do_syscall_64+0x4a/0x90
[ 3352.447994][T29728]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3352.453952][T29728] RIP: 0033:0x4665d9
[ 3352.457850][T29728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.477808][T29728] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3352.486605][T29728] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3352.495035][T29728] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
03:13:36 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000fbffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000025000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3352.503011][T29728] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3352.511072][T29728] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3352.519512][T29728] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:36 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000feffffff0000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:36 executing program 5 (fault-call:1 fault-nth:31):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3352.620152][T29735] loop3: detected capacity change from 0 to 512
[ 3352.645922][T29735] EXT4-fs (loop3): Invalid log block size: 9472
[ 3352.686085][T29744] FAULT_INJECTION: forcing a failure.
[ 3352.686085][T29744] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3352.699500][T29744] CPU: 1 PID: 29744 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3352.708277][T29744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3352.718341][T29744] Call Trace:
[ 3352.721620][T29744]  dump_stack+0x137/0x19d
[ 3352.726128][T29744]  should_fail+0x23c/0x250
[ 3352.730802][T29744]  __alloc_pages+0x102/0x320
[ 3352.735470][T29744]  alloc_pages+0x21d/0x310
[ 3352.739922][T29744]  push_pipe+0x267/0x370
[ 3352.744185][T29744]  iov_iter_get_pages+0xb39/0xcc0
[ 3352.749219][T29744]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3352.754622][T29744]  ? blk_flush_plug_list+0x23c/0x260
[ 3352.760059][T29744]  ? blkdev_direct_IO+0x392/0x1060
[ 3352.765392][T29744]  ? __kmalloc+0x23d/0x340
[ 3352.769826][T29744]  ? blkdev_direct_IO+0x392/0x1060
[ 3352.775218][T29744]  blkdev_direct_IO+0x9ec/0x1060
[ 3352.780273][T29744]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3352.786196][T29744]  ? blkdev_get_block+0x70/0x70
[ 3352.791125][T29744]  ? touch_atime+0xcf/0x240
[ 3352.795750][T29744]  generic_file_read_iter+0x1c5/0x2c0
[ 3352.801135][T29744]  blkdev_read_iter+0xb9/0xf0
[ 3352.806074][T29744]  generic_file_splice_read+0x22a/0x310
[ 3352.811770][T29744]  ? splice_shrink_spd+0x60/0x60
[ 3352.816803][T29744]  splice_direct_to_actor+0x2aa/0x650
[ 3352.822238][T29744]  ? do_splice_direct+0x170/0x170
[ 3352.827556][T29744]  do_splice_direct+0xf5/0x170
[ 3352.832394][T29744]  do_sendfile+0x773/0xda0
[ 3352.836895][T29744]  __x64_sys_sendfile64+0xf2/0x130
[ 3352.842162][T29744]  do_syscall_64+0x4a/0x90
[ 3352.846701][T29744]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3352.852846][T29744] RIP: 0033:0x4665d9
[ 3352.856779][T29744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.876733][T29744] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
03:13:36 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002100000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3352.885418][T29744] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3352.893490][T29744] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3352.901554][T29744] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3352.909527][T29744] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3352.917595][T29744] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:37 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4)

03:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002300000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3352.943455][T29735] loop3: detected capacity change from 0 to 512
[ 3352.953853][T29735] EXT4-fs (loop3): Invalid log block size: 9472
03:13:37 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x8, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:37 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
setrlimit(0xd, &(0x7f0000000000)={0x9})
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:37 executing program 5 (fault-call:1 fault-nth:32):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002500000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:37 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000026000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3353.202831][T29773] FAULT_INJECTION: forcing a failure.
[ 3353.202831][T29773] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3353.206981][T29774] loop3: detected capacity change from 0 to 512
[ 3353.216476][T29773] CPU: 0 PID: 29773 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3353.216502][T29773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3353.216513][T29773] Call Trace:
[ 3353.237955][T29774] EXT4-fs (loop3): Invalid log block size: 9728
03:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002900000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000003e00000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3353.241984][T29773]  dump_stack+0x137/0x19d
[ 3353.242013][T29773]  should_fail+0x23c/0x250
[ 3353.260219][T29773]  __alloc_pages+0x102/0x320
[ 3353.264865][T29773]  alloc_pages+0x21d/0x310
[ 3353.269297][T29773]  push_pipe+0x267/0x370
[ 3353.273827][T29773]  iov_iter_get_pages+0xb39/0xcc0
[ 3353.278984][T29773]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3353.284355][T29773]  ? blk_flush_plug_list+0x23c/0x260
[ 3353.289907][T29773]  ? blkdev_direct_IO+0x392/0x1060
[ 3353.295119][T29773]  ? __kmalloc+0x23d/0x340
[ 3353.299953][T29773]  ? blkdev_direct_IO+0x392/0x1060
[ 3353.305072][T29773]  blkdev_direct_IO+0x9ec/0x1060
[ 3353.310144][T29773]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3353.316554][T29773]  ? blkdev_get_block+0x70/0x70
[ 3353.321548][T29773]  ? touch_atime+0xcf/0x240
[ 3353.326039][T29773]  generic_file_read_iter+0x1c5/0x2c0
[ 3353.331438][T29773]  blkdev_read_iter+0xb9/0xf0
[ 3353.336343][T29773]  generic_file_splice_read+0x22a/0x310
[ 3353.342057][T29773]  ? splice_shrink_spd+0x60/0x60
[ 3353.347002][T29773]  splice_direct_to_actor+0x2aa/0x650
[ 3353.352853][T29773]  ? do_splice_direct+0x170/0x170
[ 3353.357874][T29773]  do_splice_direct+0xf5/0x170
[ 3353.362726][T29773]  do_sendfile+0x773/0xda0
[ 3353.367361][T29773]  __x64_sys_sendfile64+0xf2/0x130
[ 3353.372602][T29773]  do_syscall_64+0x4a/0x90
[ 3353.377022][T29773]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3353.382908][T29773] RIP: 0033:0x4665d9
[ 3353.387884][T29773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3353.408459][T29773] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3353.417378][T29773] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3353.425715][T29773] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3353.434030][T29773] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3353.442242][T29773] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3353.450806][T29773] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:37 executing program 5 (fault-call:1 fault-nth:33):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3353.491869][T29774] loop3: detected capacity change from 0 to 512
[ 3353.507007][T29774] EXT4-fs (loop3): Invalid log block size: 9728
03:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000003f00000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3353.555933][T29791] FAULT_INJECTION: forcing a failure.
[ 3353.555933][T29791] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3353.569401][T29791] CPU: 0 PID: 29791 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3353.578367][T29791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3353.588512][T29791] Call Trace:
[ 3353.591971][T29791]  dump_stack+0x137/0x19d
[ 3353.596350][T29791]  should_fail+0x23c/0x250
[ 3353.600889][T29791]  __alloc_pages+0x102/0x320
03:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000007fffffff00000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3353.605587][T29791]  alloc_pages+0x21d/0x310
[ 3353.610046][T29791]  push_pipe+0x267/0x370
[ 3353.614601][T29791]  iov_iter_get_pages+0xb39/0xcc0
[ 3353.619720][T29791]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3353.625229][T29791]  ? blk_flush_plug_list+0x23c/0x260
[ 3353.630613][T29791]  ? blkdev_direct_IO+0x392/0x1060
[ 3353.635886][T29791]  ? __kmalloc+0x23d/0x340
[ 3353.640814][T29791]  ? blkdev_direct_IO+0x392/0x1060
[ 3353.646098][T29791]  blkdev_direct_IO+0x9ec/0x1060
[ 3353.651099][T29791]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3353.657221][T29791]  ? blkdev_get_block+0x70/0x70
[ 3353.662256][T29791]  ? touch_atime+0xcf/0x240
[ 3353.666795][T29791]  generic_file_read_iter+0x1c5/0x2c0
[ 3353.672221][T29791]  blkdev_read_iter+0xb9/0xf0
[ 3353.677160][T29791]  generic_file_splice_read+0x22a/0x310
[ 3353.682814][T29791]  ? splice_shrink_spd+0x60/0x60
[ 3353.687851][T29791]  splice_direct_to_actor+0x2aa/0x650
[ 3353.693226][T29791]  ? do_splice_direct+0x170/0x170
[ 3353.698368][T29791]  do_splice_direct+0xf5/0x170
[ 3353.703190][T29791]  do_sendfile+0x773/0xda0
[ 3353.707790][T29791]  __x64_sys_sendfile64+0xf2/0x130
[ 3353.712911][T29791]  do_syscall_64+0x4a/0x90
[ 3353.717383][T29791]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3353.723459][T29791] RIP: 0033:0x4665d9
[ 3353.727348][T29791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3353.747145][T29791] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3353.755597][T29791] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3353.763570][T29791] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3353.771552][T29791] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3353.779530][T29791] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3353.787510][T29791] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:37 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4)

03:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000000ffffffff00000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:38 executing program 5 (fault-call:1 fault-nth:34):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3353.953961][T29810] FAULT_INJECTION: forcing a failure.
[ 3353.953961][T29810] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3353.967332][T29810] CPU: 0 PID: 29810 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3353.976214][T29810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3353.986394][T29810] Call Trace:
[ 3353.989678][T29810]  dump_stack+0x137/0x19d
[ 3353.994042][T29810]  should_fail+0x23c/0x250
[ 3353.998456][T29810]  __alloc_pages+0x102/0x320
[ 3354.003092][T29810]  alloc_pages+0x21d/0x310
[ 3354.007662][T29810]  push_pipe+0x267/0x370
[ 3354.011953][T29810]  iov_iter_get_pages+0xb39/0xcc0
[ 3354.016963][T29810]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3354.022364][T29810]  ? blk_flush_plug_list+0x23c/0x260
[ 3354.027759][T29810]  ? blkdev_direct_IO+0x392/0x1060
[ 3354.032861][T29810]  ? __kmalloc+0x23d/0x340
[ 3354.037484][T29810]  ? blkdev_direct_IO+0x392/0x1060
[ 3354.042586][T29810]  blkdev_direct_IO+0x9ec/0x1060
[ 3354.047687][T29810]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3354.053569][T29810]  ? blkdev_get_block+0x70/0x70
[ 3354.058484][T29810]  ? __mnt_drop_write+0x12/0x20
[ 3354.063411][T29810]  ? touch_atime+0x1b3/0x240
[ 3354.068010][T29810]  generic_file_read_iter+0x1c5/0x2c0
[ 3354.073478][T29810]  blkdev_read_iter+0xb9/0xf0
[ 3354.078294][T29810]  generic_file_splice_read+0x22a/0x310
[ 3354.083993][T29810]  ? splice_shrink_spd+0x60/0x60
[ 3354.089158][T29810]  splice_direct_to_actor+0x2aa/0x650
[ 3354.094657][T29810]  ? do_splice_direct+0x170/0x170
[ 3354.099776][T29810]  do_splice_direct+0xf5/0x170
[ 3354.104565][T29810]  do_sendfile+0x773/0xda0
[ 3354.109015][T29810]  __x64_sys_sendfile64+0xf2/0x130
[ 3354.114140][T29810]  do_syscall_64+0x4a/0x90
[ 3354.118685][T29810]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3354.124964][T29810] RIP: 0033:0x4665d9
[ 3354.128877][T29810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3354.148810][T29810] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3354.157327][T29810] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3354.165337][T29810] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3354.173346][T29810] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3354.181314][T29810] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3354.189346][T29810] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:38 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
sched_setattr(r0, &(0x7f0000000000)={0x38, 0x1, 0x10000003, 0x1, 0x6, 0x1, 0x0, 0x5, 0x7, 0x3}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:38 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000027000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:38 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:38 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
getsockopt$inet6_buf(r0, 0x29, 0xcd, &(0x7f00000000c0)=""/157, &(0x7f0000000040)=0x9d)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000340)={@dev={0xfe, 0x80, '\x00', 0x17}, 0x57e34c1e, 0x2, 0x3, 0x16, 0x800, 0xfa5}, 0x20)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = perf_event_open$cgroup(&(0x7f00000003c0)={0x1, 0x80, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1416, 0xb, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x5, 0x4, @perf_bp={&(0x7f0000000380), 0xb}, 0x801, 0x5, 0x1000, 0x3, 0x46ed5909, 0x3, 0x1000, 0x0, 0x1ba633e4, 0x0, 0xe000}, r2, 0x2, 0xffffffffffffffff, 0x4)
mmap(&(0x7f0000718000/0x1000)=nil, 0x1000, 0x1800003, 0x4000010, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
socket$inet6(0xa, 0x801, 0x9c)
preadv(r1, &(0x7f0000000300)=[{&(0x7f0000000180)=""/228, 0xe4}, {&(0x7f0000000280)=""/1, 0x1}, {&(0x7f00000002c0)=""/33, 0x21}], 0x3, 0xffffff82, 0x8)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:38 executing program 5 (fault-call:1 fault-nth:35):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:38 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000300000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3354.347282][T29822] FAULT_INJECTION: forcing a failure.
[ 3354.347282][T29822] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3354.351866][T29825] loop3: detected capacity change from 0 to 512
[ 3354.360810][T29822] CPU: 0 PID: 29822 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3354.375889][T29822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3354.385946][T29822] Call Trace:
[ 3354.387860][T29825] EXT4-fs (loop3): Invalid log block size: 9984
[ 3354.389227][T29822]  dump_stack+0x137/0x19d
[ 3354.399822][T29822]  should_fail+0x23c/0x250
[ 3354.404270][T29822]  __alloc_pages+0x102/0x320
[ 3354.408992][T29822]  alloc_pages+0x21d/0x310
[ 3354.413433][T29822]  push_pipe+0x267/0x370
[ 3354.417681][T29822]  iov_iter_get_pages+0xb39/0xcc0
[ 3354.422838][T29822]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3354.428228][T29822]  ? blk_flush_plug_list+0x23c/0x260
[ 3354.433606][T29822]  ? blkdev_direct_IO+0x392/0x1060
[ 3354.438878][T29822]  ? __kmalloc+0x23d/0x340
[ 3354.443302][T29822]  ? blkdev_direct_IO+0x392/0x1060
[ 3354.448565][T29822]  blkdev_direct_IO+0x9ec/0x1060
[ 3354.453601][T29822]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3354.459602][T29822]  ? blkdev_get_block+0x70/0x70
[ 3354.464456][T29822]  ? touch_atime+0xcf/0x240
[ 3354.469107][T29822]  generic_file_read_iter+0x1c5/0x2c0
[ 3354.474551][T29822]  blkdev_read_iter+0xb9/0xf0
[ 3354.479230][T29822]  generic_file_splice_read+0x22a/0x310
[ 3354.484780][T29822]  ? splice_shrink_spd+0x60/0x60
[ 3354.489989][T29822]  splice_direct_to_actor+0x2aa/0x650
[ 3354.495491][T29822]  ? do_splice_direct+0x170/0x170
[ 3354.500603][T29822]  do_splice_direct+0xf5/0x170
[ 3354.505684][T29822]  do_sendfile+0x773/0xda0
[ 3354.510288][T29822]  __x64_sys_sendfile64+0xf2/0x130
[ 3354.515410][T29822]  do_syscall_64+0x4a/0x90
[ 3354.519938][T29822]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3354.525842][T29822] RIP: 0033:0x4665d9
[ 3354.529832][T29822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3354.549647][T29822] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3354.558067][T29822] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3354.566212][T29822] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3354.574278][T29822] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3354.582375][T29822] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3354.590484][T29822] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:38 executing program 5 (fault-call:1 fault-nth:36):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:38 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:38 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000028000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3354.629307][T29825] loop3: detected capacity change from 0 to 512
[ 3354.638402][T29825] EXT4-fs (loop3): Invalid log block size: 9984
[ 3354.680744][T29848] FAULT_INJECTION: forcing a failure.
[ 3354.680744][T29848] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3354.694046][T29848] CPU: 1 PID: 29848 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3354.702983][T29848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3354.713046][T29848] Call Trace:
[ 3354.716467][T29848]  dump_stack+0x137/0x19d
[ 3354.720905][T29848]  should_fail+0x23c/0x250
[ 3354.725422][T29848]  __alloc_pages+0x102/0x320
[ 3354.730014][T29848]  alloc_pages+0x21d/0x310
[ 3354.734435][T29848]  push_pipe+0x267/0x370
[ 3354.738699][T29848]  iov_iter_get_pages+0xb39/0xcc0
[ 3354.744099][T29848]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3354.749519][T29848]  ? blk_flush_plug_list+0x23c/0x260
[ 3354.754836][T29848]  ? blkdev_direct_IO+0x392/0x1060
[ 3354.760042][T29848]  ? __kmalloc+0x23d/0x340
[ 3354.764460][T29848]  ? blkdev_direct_IO+0x392/0x1060
[ 3354.769602][T29848]  blkdev_direct_IO+0x9ec/0x1060
[ 3354.774614][T29848]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3354.780745][T29848]  ? blkdev_get_block+0x70/0x70
[ 3354.785601][T29848]  ? touch_atime+0xcf/0x240
[ 3354.790210][T29848]  generic_file_read_iter+0x1c5/0x2c0
[ 3354.795675][T29848]  blkdev_read_iter+0xb9/0xf0
[ 3354.800363][T29848]  generic_file_splice_read+0x22a/0x310
[ 3354.806018][T29848]  ? splice_shrink_spd+0x60/0x60
[ 3354.810960][T29848]  splice_direct_to_actor+0x2aa/0x650
[ 3354.816339][T29848]  ? do_splice_direct+0x170/0x170
[ 3354.821600][T29848]  do_splice_direct+0xf5/0x170
[ 3354.826576][T29848]  do_sendfile+0x773/0xda0
[ 3354.830999][T29848]  __x64_sys_sendfile64+0xf2/0x130
[ 3354.836140][T29848]  do_syscall_64+0x4a/0x90
[ 3354.840568][T29848]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3354.846473][T29848] RIP: 0033:0x4665d9
[ 3354.850383][T29848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3354.870397][T29848] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
03:13:38 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4)

03:13:38 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000500000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:38 executing program 5 (fault-call:1 fault-nth:37):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3354.878920][T29848] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3354.887117][T29848] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3354.891626][T29854] loop3: detected capacity change from 0 to 512
[ 3354.895104][T29848] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3354.895122][T29848] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3354.895135][T29848] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3354.957385][T29854] EXT4-fs (loop3): Invalid log block size: 10240
[ 3354.987719][T29863] FAULT_INJECTION: forcing a failure.
[ 3354.987719][T29863] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3355.001578][T29863] CPU: 1 PID: 29863 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3355.010695][T29863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3355.020860][T29863] Call Trace:
[ 3355.024137][T29863]  dump_stack+0x137/0x19d
[ 3355.028512][T29863]  should_fail+0x23c/0x250
[ 3355.033014][T29863]  __alloc_pages+0x102/0x320
[ 3355.037607][T29863]  alloc_pages+0x21d/0x310
[ 3355.042091][T29863]  push_pipe+0x267/0x370
[ 3355.046521][T29863]  iov_iter_get_pages+0xb39/0xcc0
[ 3355.051744][T29863]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3355.057256][T29863]  ? blk_flush_plug_list+0x23c/0x260
[ 3355.062744][T29863]  ? blkdev_direct_IO+0x392/0x1060
[ 3355.067878][T29863]  ? __kmalloc+0x23d/0x340
[ 3355.072322][T29863]  ? blkdev_direct_IO+0x392/0x1060
[ 3355.077540][T29863]  blkdev_direct_IO+0x9ec/0x1060
[ 3355.082592][T29863]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3355.088692][T29863]  ? blkdev_get_block+0x70/0x70
[ 3355.093957][T29863]  ? touch_atime+0xcf/0x240
[ 3355.098494][T29863]  generic_file_read_iter+0x1c5/0x2c0
[ 3355.103883][T29863]  blkdev_read_iter+0xb9/0xf0
[ 3355.108692][T29863]  generic_file_splice_read+0x22a/0x310
[ 3355.114333][T29863]  ? splice_shrink_spd+0x60/0x60
[ 3355.119275][T29863]  splice_direct_to_actor+0x2aa/0x650
[ 3355.124753][T29863]  ? do_splice_direct+0x170/0x170
[ 3355.129907][T29863]  do_splice_direct+0xf5/0x170
[ 3355.134799][T29863]  do_sendfile+0x773/0xda0
[ 3355.139209][T29863]  __x64_sys_sendfile64+0xf2/0x130
[ 3355.144961][T29863]  do_syscall_64+0x4a/0x90
[ 3355.149891][T29863]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3355.155892][T29863] RIP: 0033:0x4665d9
[ 3355.159796][T29863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3355.180242][T29863] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3355.188777][T29863] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3355.196786][T29863] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3355.204770][T29863] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3355.212887][T29863] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3355.220969][T29863] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3355.267030][T29854] loop3: detected capacity change from 0 to 512
[ 3355.286094][T29854] EXT4-fs (loop3): Invalid log block size: 10240
03:13:39 executing program 5 (fault-call:1 fault-nth:38):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:39 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000600000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:39 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000040))
preadv(r3, &(0x7f0000000440)=[{&(0x7f00000000c0)=""/28, 0xff34}, {&(0x7f0000000100)=""/139, 0x8b}, {&(0x7f00000001c0)=""/172, 0xac}, {&(0x7f0000000280)=""/143, 0x8f}, {&(0x7f0000000340)=""/1, 0x1}, {&(0x7f0000000380)=""/172, 0xac}], 0x6, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:39 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000029000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:39 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
r1 = getpid()
tkill(r1, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(0xffffffffffffffff, &(0x7f00000000c0)="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"/297, 0xffffffca)
r4 = syz_mount_image$nfs4(&(0x7f0000000a00), &(0x7f0000000a40)='./file0\x00', 0x80, 0x8, &(0x7f0000001d00)=[{&(0x7f0000000980), 0x0, 0x3}, {&(0x7f0000000ac0)="b11f8910f907b62cf105e9d713971f09649810e3fbf97c5ca0d8ee3a08", 0x1d, 0x8}, {&(0x7f0000000b00)="de4e3855694257ac94128ac42b1980751c2cc9330a2ef88441151632c3bef272d464217e2506bcb97ff8c47a7f28badb78c9c0e472ff0df2ce575319ab3bd2a35520e39e5d855b2fb176443d79a1101a9bba56b960c8b2b8281eeb", 0x5b, 0xffffffffffffffff}, {&(0x7f0000000b80)="399851c150c798f51c8248bbf84293008302b6be2a2fed4c58202c19d8423c8b", 0x20, 0x4}, {&(0x7f0000000bc0)="2c4b752c7db1c48864b6b48bcc6482b354b70a1014faa2ce1894ee2a3bd800710acd8b6a2e11ea31474439cd7385b8", 0x2f, 0x107f}, {&(0x7f0000000c00)="64028ad454d87997d9f3515bdf8679981fa5900e56b47364bf71276690fc1e9a49e97f297e9b19c4c6701e7b6ddd7ad8ecf34062b94044b98c106157e7d23328c9e7ee63e0cbadd1d3d6d8b48f8c440e9306b56f54f0517c01ca4cb0304e5d8ab5b9900771063c60f9d4354ad429e49c3d9da3c027b23a288d9f9ebb0fc77a8ecfa4307e5ed581f5dbda576e5c1dd0ba31659271029b8e689885b16f61f0a3de6927bfd775ceacbf0020d48b7d95ef3a1a7b878cec23b9444f90d02865d7e158232bde9263489e020420baea66466a56df93a3dfb83c1bb9252078bc76a55a8c801163a43eea82f50768cd7f7c27ff5adf5f1d835dd6dabdf3e45f78fe49d61b1d75db6017dbf0a930b7225821c2901f95fd93201703dfc6571ff83747acb35561f4a517312fc6855e09f2b60e54f1089129ca18f7e369c0e26a804fa0fbf0558f052addbf179d778acbb1e4d9335a7ffb640563559930451a4d035a64d6a35d12ed98b053ff0b11b45de5294a769bb26c44738196b397247dabf4be5acd319ac92ea38c973a495932f238af9e0bc0f7eb707c1eb867c6a90136eda9c93a6c09109aa8e91d96ad182cc49f31e57e1c6d127455b75bb7e3c3f2c4dfc7fd51fa11b83f8144466c1b7dbfcfb98b04dda1a23c952beb8531a0f21bb05c8c8dbc664ef53c18fe0e69b25ff69fc289d71260b146e0da165d67096e6c5071c2bb410f209378b0ded4246fcfda762c1a7140ddd79f1f2c998b47c83c0151e33b3163ff1c4cc4e7c0f586330b11cc4c75e90c34180c157f727bb4e21b3c691907b1b023099c7f5406f1f754738d6ed5af608a2d3899c8d29e62775ee4866539a67cce06bf818539593ccf3109386ca9e2e1dd6fc303a3fbee65c763ca83dbc476256911e49bec6df11db0775d959c27619bd5a51d8e0a915ccddbf3d669934a2081d2338adfdad35dea66399a7fdaea7d350d49ff0fc50afcd96f13afe37974cf7f4209d126a27cc7be9717dd98270fb3f0e2ee37ae5c00a9f68094a91c5e8bc8527f6c71466d148ac106267bcc731eb8aa5e7698b387ad1a9a9cd14be4a70e24797af0cad905b750e40926098e40dbef58aa7c2a9b1b059d028d69bf60aa9f92f2529900027db290e22a49cd5cbc3b4a829cb9deb0f0a3a0fd103f582c8a89c21b4398b42a6fb9bd5dfeaaea830ae8962fb10a0369ba03b2dccbb44858ece6d4f936a64aae7529ea7952208f9ba8be5a690dee9cbc15a6505c1b96882830a4f08f9532d0b7a8ba2d1d2b4dc2d47692d2cb1671a20e660564d587705ac816ebc75d8c2a3522b9e750746b527ea11b782353dc512fefe43d29f71aab54e783344e53d96b5ceda8755dfbe480c70cc9a2bf461bf476159923137b55bc95898ce56a81217db86651e897e340d9c79c540d2ad3137658e1c28cccf287af28b2ba1ce8f3166786335b70cbb147b5fe0f84d8f4a296e8033f2fbd1207c8cc18ce6e07d94152bb356a1d604b091e0b288f1a36a37093f4d6962e6838c2821c657db949c907e8eaaf1ac8efb209af6f35f7ef1360d47cf4df9404851624666c163af5cda3d73ed19e7b1a99d8d64c9a8fbf84075715d60e456ada0fb431418e22e17fe4efbd68293a60a4d59bd68f26a85575a68dfcc3ad3ee5361b36e200468a2bee7d4382ee200e21636cf65c2afafec89ec54c528bc5c4fdf4574ac8d24fd9e3dbc1f4f15a9bd3b4283d7af82824e4c09166152cc39c6effe996da255faf03a2d13fc72857009062838b41c3f3b35231b0ee813f273e0bc2f7aeb673d717435be6758ffc079e5532b52076322b212f039c3751f63c16774b3d58493ac4f7987783545836ab680ea5bbf67baa1ea66440dd22f7bb2f8a69916ac656cb9ec728871ae28922dc043a43aab92a3fe9fee9d89c72f3277e819e37c8e3894fdafa54dc06138ddbc547cee44b546a204b70fb5615e4254d53696db980b79b65400bfb3a5f17f9aaaed710c21d6af1df7b0febde1dca668c7746da2a0444d2ac16e85332df37c2d09578d7ae9ff478348ceaca941484acf48df28ac8251549c1107252ebae72be83f9d5733926dfd19de961eb82a1362a02dff657e85b799a958eb14d156582f5aa5e935316b917b4067321837934a30ade99f90ff768e760c8344d7c681d784b0e6a5c61c4aa482221c655b85ed40ac86b4e368e3a70de1791de8009b337eb8b2a6199031fc19b542ebb8b036219429a742b227da8c9cf72d167b32ff12647a41938e8f0bb7902aa97a565647d9544b69c9935e6fdcf77abb1ee11b0a3f484660a8f04b4faa79494d105d909d8b5fab523c3c886fda15e5c33ed643e695eee25780888d38b19ccc0b970699a157003878d9f856e3f2b562c74fbe08ca527e6d14f762761a219b64d821c4be042463f0b3fc5750cdb34b619dea0a324bf62b75bebc62b6ea462fdec955ca032d7f2068795913f404e48db11122c0b436a6791f4932c1a56fcbef7502abc3606c2bcf27fb9579d798932eff9b44dfe4d71f67826f9ffa71b72645e438ac332151a2e69cad6d32f5a561cf511f5709f399420c8fc220722ebb777ead740b5c3409a194c174ec6cf98edb69cc1b3debf2dd5a1e16bf274bc8401340b926585b9e5e0dfa786cb5744aae7692f7582afe8c04af22440be3bef679b1e46aad7d31e144ddb467ba2200650f252f1cf58c89d508d2c0e30618bd26e42f31d087ad952a41b8b56aa5502721a3e5270975e8198f0b4f8f9266492dac819f856951573e4b928171b0d4fd0145e2a86a306287d7028e655d41bd186935958309fd7654f9bfa3aa48705af5433e4ee5bfe622ca158da92efecb0366da2025eb93abb8c2218ea6035cd1d6cd906455a4091a366121069e5f97ec315312e4c197eaa24869e179361f5a36cb3ec89704088ad2054fd151dc48cededc4ac47688135ed92fa565c22daca4acbdc185e0b4730127f65f203d8a61d0ff776e21ae652046aa334d561386278acc004eb83b3ede994d3c7b2012202582bb6f128b80955308c513bd767469455ba908ff5c929d77a36d78957dcd14c396671dc3b2426128da6208ae3ccff6ad0c7825c83097b381165ee6f2e0943ca622f6fe23ef22d9440fc083cc4e51585f9af96bf9978d79791a40784272488aead7d259d54850f06be1a740b028749dde00bf7df990c91fbb68dd2c4c98d055829ca000e3828bffeba1cb8d3953b6d4a95767950bbdbe22eb4e6afb66daebd1246061d94933ba95f118e14c0b2f252b02505bd898a3e0a81cf9789c429c3d7f519518e32df5a2ed23e74437df430ed10ca14837e03ed95b15d4600be069ac7896cbeddf7f66f5bca3e813c3c9cf8c594999cc84e145ca41842fd1ff03222d32fda9fa6c0ac07f6174b2c1f96f9c81b506c22028920820e254a4181c2db10fb675d51dd97b1e181a0c251768d4c9877ea9850b538acd411dcae4e59fe4911a1a14c3bb9f718080aaf43a4cb742913e92372e9fbc726e9da97c4b67fb724843007aa3a6dd2ae0114f6dd3b7bdaa23c7263f5282046a3a57761f78d733da8521476eb116c83b1084f8418bf07ac176ea991afd32002805267116f527a396c85f06544bbdb0b2a84f4da844afc229b27d7d52d5455eda9f1652f0217b79131dad9a88440d6441de3973b20a6fdd86023fe7c7c1e01e366c4498ad0a1a0e5d5cfc2dcfc7b4bf021054c4fec18d322d6f0fafc57892ab7fd3cca9c5be2e84f4c05debf135cb1fa7d607522c36684be08c583c9d3465392491c487ec56c811cac178ca83e59e7afd189044413dc3bd81efdebc6b1292ef6f6bc28b1b342b76890243e94fa8fc698529227164752832f6082741a4e0d40a57acbf5f344176b7e754b16414e28db24802f3e0a2315f1561f6b1986c23ac9629cd8d98f2cb5c5d2b77489abca66055c6bc9b7050818185709a8bde53d6e6df08c2d4160ea072e36b55a380cc11fb65ef5aee6a70e778e3e1f810be915da7a7484021b857f8bce244624d5855353f1aa73b8f7244a7722b9187ab8bab37b207051aedf4dc8f36bc666667c28467c2d3a0b25c204a6897436204319575375cb07cb033301359bcf41d194034002741ebdf3a69bdb2a70a29a419fb504c4d1e63c3888e144ba4c2bad82e0ba9d1b617932ec78ef86f309ea764c9a2857bcc1d8ea9c673b618a149b4172e58758848f20246551866733ef7e536155b9d731c2dedaf4f6ab69146743b65134b24eb9f4cdecac71e3412063ae6546909c826450b2fba78f55894ba5d7cd671ad277d8a0d17b441d799be0a342116a2e5f22fb7f9eb1317da6665462166168aa4a0a20f76586f897dc8404b57b574a9e7dabf5bce6dd47cf46ab5d8d2eb3c35089b52482ad297698f8f9c1fa667061b887cbae739a954feb19efb2bdb4cb0c2df1a4cb20ffd179a033f80dd09f82350ff72bfb667fad8d7237315620c3e0bc11a95d122e81f58bbfdeb84b32bd6a68a96931955862c7af59d69df2e201d3751a4739449b15041fd0c302ebb7258cd1805c37bb1d44dff73602c02794eec0450e7724d308b1f9f0e9b6277a5e3672326ce1dee2ae471e602fede2491c3ecb584015cd34e3bc5c3b69186ed098254c7cd5fd85950d871608f4f0a9aea27f5a7dd338dadc4b008385abd46866877df5cb53e084a00696c7386ccf2cdd970bd236a9c359b2c218f0445893eeb8d89177e3dcc49817609ce051ee8b209c7033f1a360dfccd3d0e0670d86da6ac04fe44d1fddd64cefede549014f2724af87cd1de4ea635131b3d0055e07f12107ca15be74ca122f1239108bffba001e003c0754dd6e1bb94ab2c5745c741a45a9e55fe262c7fbbe388da305f7a7455d431956048f3e2ebc848702d57fa77d2015149c1a4e2dd5fab5650b66b2ff1d8cf5577e8bf24da8a3b4e8575005b93aa8499cca0f035f66cb9a9f0f7cfc24eaecc2499f080635ade353006b3ac4fc0b1853ecb7806a0e44d99e1a1ff5e41daed3bbfb46a82c377219e60e3f748ff87ae3b39819ccf5a52bf59bb4369ceac00d5f7c01c9efdb52ab6514c12afc19bfd4021b5ceb6d28f080f51b909c0ce7efc1a755fc8ee3ab952b7e8de44d4851352fac834ad57a813fe3431d86cc88f7620f260f971c4c68f255afecc16929667bea08c7f198374c440c5fd1d0640182056e45841e2c7d68bed4332677bf0923db3e05d47b9451f25b191175318f0c44a21f78d3d8992333ec7d1f41e5b71a9ef0a10757aa8ab7bd1609dc301f1c52c1999630dec9e0a8473fd1a01ab4368406e6f72b5c95dab39bea78a40a3396e4c23ceb90c90c7d8621acbd79fa1b949a3cdbdc351e80b408b27066433cb5c71b939b99fdfa54c02c9bb1478974b31e3fc5a8209a8be1881728896f2e362bee36aa91b8a277a2585edb6ccafefd4dae2786a1e887bdb374fb5cbc318d135bdf8b2c06a21e1e5a2743ad3dbdb4d8d8ecd876005e92407b480bb8a91ac08b14fb553c42dfde4e03a4534eba19c08f1d095133cbcb75ad8c8de89f4977f6b58289a19635a7c8a0d3c4cfe0109dbe21e9c1a95a16f3271d15950f5a2d57ec94c25711f7aefcda76086d37b2d228ede256989c921e0cdfc8b725b8000a386d0d262eb969c614508e24c86fa221673b9001247b59b2bb9efbf38854735a6ee3da2b40353f0704f76763e9b722b7a3c257cfa8f359dd82957628efdf4e1c6bf5069e218c418238204e75854347e12debca3f8b46c211bcaf12966f0e5a70acfcee8019d13ee33416f1096c7b64d12d23178d7bf3f0e439", 0x1000}, {&(0x7f0000004500)="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", 0x13c, 0xfa5}, {&(0x7f0000004480)="767b683a4bae8bb7e07fa2606a37c2248b40edc06105b84fbef6a8981cbe4823acf841a586abe4d0e10aa947275a80244b82ee769615457391de90ffa2451b77e5048eaa55b9242e7650943454cfdb41275c14b3ae80390bf503a780c8f83fbc2771f012488ea6989698931a2d6c955b9a3463117e0dd873fbb5dc133bc819", 0x7f, 0x3}], 0x410, &(0x7f0000001dc0)=ANY=[@ANYBLOB="2d2f8f292f2c3a2c5c5c262c2a212728232c3a023a252e2c2c5e2c7375626a5f726f6c653d7d9a25292c7390626a5f757365723d2a2c736d2b70e04273726f6f000000000000000500"])
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = accept$inet(0xffffffffffffffff, &(0x7f0000001e40)={0x2, 0x0, @multicast1}, &(0x7f0000001e80)=0x10)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write(r7, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000002340)=<r8=>0x0)
sendmmsg$unix(r3, &(0x7f00000023c0)=[{&(0x7f0000000080)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000180)="ef91e302cbf5af3b0391367aeb31c82b87cfe8f434611259177a61475727632ca16d2020693ed1dbacdb07ced64dd6a920053a4b1c9b0d0605cfbbcefaa8671fb7dcc865d27439c84a244bbba35f59b705e585402d744f51de09e49a366ec9ce", 0x60}, {&(0x7f00000002c0)="aff5a7207fcc92a183cad1b0a8591fb8fe33b2026be8110556f5c237ac599d5805c3371fa2be36fbae72566b143ac1ff9ad8eb4202e3aa0f652fd9dd81f472fba4e025943a0e249135bceaee29a4e1e9ef36555e1bc480672a833381a4b37a241a10cb5798c1b50d529bb0e63ee82c306da2726cf7851c469f63cc16936069f3c9aae6922c7ecc53", 0x88}, {&(0x7f0000000380)="01dab057b59126f535e8d44ae473ca1e0ef943c418792526806f9c2d2abca1b76ccf672e95e056162ddf80e85309c5ede8254fbd209814ed88594cefd454b74b6d1f89c374fea066515081ce735f9a6327c09c16a543cf0e0e6fc5caae85bfb73b643d152f295d5a41fabc4b1e48007cfbab29ae42ad0602e914b63e6f779010e1018bd495bc630018274cc40a66f342b1ed54c1102bf8090078e718ea43834d815213b5b4216a15a5667b07a49a4dfb0d879ed90bec14fde80ac7a6cce6dd901576511503279f60dd469c47f2d859ee0e8f11705729d6cc735fe3", 0xdb}, {&(0x7f0000000000)="9f41d057f661e06277e1da19969b", 0xe}], 0x4, &(0x7f0000000480), 0x0, 0x8000}, {&(0x7f00000004c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000880)=[{&(0x7f0000000540)="92f448f887ee2387be85622e329c8d3c8743f85eaae45ee97843f04a954c56c2618516bbee4e39603924d3b1c7a523f4e62b3fdc95d3ed3f54e20f776603ddd31df730501dab9ba4d58551a596e6cfc3c17b5d72", 0x54}, {&(0x7f00000005c0)="c5bc754333456841a51c99a1bdaef3b76f182bf62017fb1e0d96458cf3c60a79c9a7837a11a2770f195b008e1885c79ef43c836eacf5fefb35dbc4035493e1b3c9ebd2f38e0c2dc605100547a3e6e5ebeb6c392fdc1a8695a4ddef8ac6c248faa6b3136c23193861644ec613ab400255a75f3ee3dac5", 0x76}, {&(0x7f0000000640)="e0aad93ecabca90a9768afc96e8adcd8375b70e969ced1d6ed2af44e66a49a978498509249135893e8ee2a7937285049f5d46d734581e7a34483cedcba9f56fc8ea119d92d43d811b063674c1d69f2ec574cc360882e17e08d2bbe1465a618ae5b223b240e8afe1f9e2151041e6a1890ec6c48857bf99f03d2b44b034011e970009bc3842e44879d7e85dd0637bcdb05ac95c642e5dde684be003a5bac6a8ec215b9c7cc7950aa233f805a8b006d114ced162ddffc8cf762eef6419aaab664", 0xbf}, {&(0x7f0000000700)="f0636d3d120c14c646e2aa96654c855c9277b32d45db8a88e898d2db3bd574d5d0f629a69d274faa4e5f0678e1d69e9a3aa80ec3c4f652dcc2afd11f3a4a7805058323d11337a8eb13789629f9e6e72d6fe4a4befe5af8eb29bff56794dc511f745b2ced1b522901dfa96fd1b93ffdff9ff52d970f661a86c735664c253954bd7b39592312fd1a9598d204590034432be80bb28732e7a1c1d3be75f435654c3b5e9b6f286fe837", 0xa7}, {&(0x7f00000007c0)="77dc88f2c8f2bedc26365db28918bfa169265d08534f4c9b9341bb2e5fb3ca0a34a9667c6548944a7252cb4522e1b410a3c5f86248a4f4712644c65ec8ae4bd0a8032df0472c75b51ab3b0e347133121302462f8772cf2c3b2e9cb4c44fe6ea89e888a828fa2f80d0e08e1e792656bddc87a5926c8e3cfa53e2af20250cdbb2d011481586f16927ee9e015b55346cb655a2486771c2a8d01b2888c6c79cdee", 0x9f}], 0x5, &(0x7f0000001ec0)=[@rights={{0x20, 0x1, 0x1, [r2, r3, r2, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xffffffffffffffff, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [r2, 0xffffffffffffffff, r2, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r2, 0xffffffffffffffff, r3, r3]}}, @rights={{0x18, 0x1, 0x1, [r3, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r1}}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, r3, r3, r2, r4, r2, r2, r5, r6, r7]}}], 0x160, 0x8004}, {&(0x7f0000002040)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000002300)=[{&(0x7f00000020c0)="e8f240ec0f93995eb2ccc609e9045793f0f12a8ebdb18b3a5b38afa5b4e220d5dafb6a6f1295fae1f89afbacf11e8acebefb73d5e5074f4bbbfab9e13aee5f1b05c55c47785e4bf3f7bd01c315471c0b2da220ba2b3262a992fb89a356dae0eeae14050901a3c0d41f858ce48b97a9da8cc065202b5eddd1d957d115fa9f264ad102d0fd9449bc59", 0x88}, {&(0x7f0000002180)="2b2f4e1742e03847cbfac576dd290d1aa7e2da6f639980e880efa7c3402c17c1fdcc3a2ec5dc7b6b0229057741ea22e414b0e7ed92a8f77c8f1d7155cfb38acc92b982811ed33d88cebac084f31076bcccbe0108fc65c76b79cc6b71c8dfb124f2739dcef09b734468f15a2137cc1b3e12e829297fe087a511d25ef2790564f646f9a87ae28c86eca18455e93862738a61ad5252e845b0653be2649dfaccbaf3a5343ad76fa91c49", 0xa8}, {&(0x7f0000002240)="7dea63772e1bf889331b8a0566117148d7ca0ccecc25628f967f254eedaaee8a7743787ef35af10a8d5ee30f6aceccdaafee40bbed822641e4ddcedee4226094063ae8b45b404ab1acb8b427721c67f9eab1e112d7e21934eaf0d2830e4d1d1dd944735306fedc0c59e383f49561f132d0c878761e3114e915c2c038ec17d48e00ad5b011b01edbe075ac8", 0x8b}], 0x3, &(0x7f0000002380)=[@cred={{0x1c, 0x1, 0x2, {r8, 0xee00}}}], 0x20, 0x8000}], 0x3, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f0000004340)=[{{&(0x7f0000000900)=@caif=@rfm, 0x80, &(0x7f0000000480)=[{&(0x7f0000002480)=""/216, 0xd8}, {&(0x7f0000002580)=""/194, 0xc2}], 0x2, &(0x7f0000000980)}, 0x800}, {{&(0x7f0000002680)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000002700)=""/243, 0xf3}], 0x1}, 0x333}, {{&(0x7f0000002800)=@tipc=@name, 0x80, &(0x7f00000039c0)=[{&(0x7f0000000a80)=""/15, 0xf}, {&(0x7f0000002880)=""/4096, 0x1000}, {&(0x7f0000003880)=""/74, 0x4a}, {&(0x7f0000003900)=""/110, 0x6e}, {&(0x7f0000003980)=""/24, 0x18}], 0x5, &(0x7f0000003a40)=""/59, 0x3b}, 0x40}, {{&(0x7f0000003a80)=@pppol2tpv3in6, 0x80, &(0x7f0000004000)=[{&(0x7f0000003b00)=""/158, 0x9e}, {&(0x7f0000003bc0)=""/88, 0x58}, {&(0x7f0000003c40)=""/38, 0x26}, {&(0x7f0000003c80)=""/161, 0xa1}, {&(0x7f0000003d40)=""/23, 0x17}, {&(0x7f0000003d80)=""/56, 0x38}, {&(0x7f0000003dc0)=""/183, 0xb7}, {&(0x7f0000003e80)=""/255, 0xff}, {&(0x7f0000003f80)=""/97, 0x61}], 0x9, &(0x7f00000040c0)=""/128, 0x80}, 0x9}, {{&(0x7f0000004140)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000004200)=[{&(0x7f00000041c0)=""/17, 0x11}], 0x1, &(0x7f0000004240)=""/240, 0xf0}, 0x7fff}], 0x5, 0x22, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3355.449659][T29883] loop3: detected capacity change from 0 to 512
[ 3355.462878][T29883] EXT4-fs (loop3): Invalid log block size: 10496
[ 3355.471094][T29886] FAULT_INJECTION: forcing a failure.
[ 3355.471094][T29886] name failslab, interval 1, probability 0, space 0, times 0
[ 3355.483936][T29886] CPU: 0 PID: 29886 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3355.493050][T29886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3355.503113][T29886] Call Trace:
[ 3355.506490][T29886]  dump_stack+0x137/0x19d
[ 3355.510834][T29886]  should_fail+0x23c/0x250
[ 3355.515342][T29886]  ? kmalloc_array+0x2d/0x40
[ 3355.520135][T29886]  __should_failslab+0x81/0x90
[ 3355.524934][T29886]  should_failslab+0x5/0x20
[ 3355.529731][T29886]  __kmalloc+0x66/0x340
[ 3355.533898][T29886]  ? iov_iter_revert+0x151/0x540
[ 3355.538842][T29886]  ? splice_from_pipe+0xc0/0xc0
[ 3355.543751][T29886]  kmalloc_array+0x2d/0x40
03:13:39 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000700000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:39 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
lstat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
chown(&(0x7f0000000400)='./file0\x00', r3, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
r5 = getpid()
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0x0, r7)
sendmsg$netlink(r4, &(0x7f0000001340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r5, 0x0, r7}}}], 0x20}, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000b00)={<r8=>0x0}, &(0x7f0000000b40)=0xc)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000bc0)=[{&(0x7f0000000080)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000000)="adda28a142d4405d72cec513384f2165902efbca656b52a4c6e2fffc", 0x1c}, {&(0x7f0000000180)="a6354866e5b19a1246ffb032d677d1f5f0d5a66d463e36247a72151a505018ea3b8bcaa6847a454235cf894d753d17d2b755c99bfc1ca3ef1c04ac189b5bd3eda1f83f572b624c612232996163e9ecc6dbb5a83234539f079ef0cbb6a1", 0x5d}], 0x2, 0x0, 0x0, 0x24048090}, {&(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000340)="46445fcb8bfede6ab0c1a1d24f9a2d5e0168d36a36049758104c83490230027ba2668f832860c6bc2d9106ae986d8a5a173a61e96cced7bd2c6caa52baffb209144e8609d19ef3e4c68aa6a503c84ff542943fdb837503c33f686ee6135387354c017403cfc899454c4bb10116b087cd2de20e4ce3cf557883a84d87ef394de8e0773c610d0ccfefb8780e560035c7c1e5ca596d640841ad17da61", 0x9b}], 0x1, &(0x7f0000000440), 0x0, 0x42}, {&(0x7f0000000480)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000500)="62cee6beb5eed4459650defaed542c20c0ec21aea4afadf41a3388960a1ebb860d11e8411651ab5604a47162978d4c77b198fd0004b4df7cd1d75d728678bf52343e7e98de26c414823728b8257ff3aec4b2b4fe6545a31f839ac41f78ef43670630a95cc316951f7df9d1d31dbbc45691004252102c1083d1b675b2f83e4b89baae31d32bfe17e3b2af57a6f7da7ca161b4e478688aea7c9b182e364eb7a601a4bae61db48868ad2df2584de76edeabad", 0xb1}, {&(0x7f00000005c0)="f8d8b22d16c7acf1746aef5ce1b1b36b896df4482bc3391598be0f70eb01c464a271ff948a54906dfd5957a8c06a85dc70fccdd58f41fb70b123550b8febf2b10402bce3dcb1681355924f2a53b36f580696e01a51d58a8464ac910901843377edb0b93ab1e8f5a5ddec505c3a1e9257f70b945e8e2c7988463df533580302bee78397ea8d291fe478b2de9d8f9bd388cbaa395ac2140c2dfbd3eefd6906f5d3627a22e1b872542d653d1a4f81b153ac3ebc70056ce4bcf6b8d9522d54cd0b5e05f64be8be8498c19fd35df4b32932bbda17dbc8f5b20c7bcf276e6e07f70bcd3d994918dcf561db05f9d7d5", 0xec}], 0x2, &(0x7f0000000700)=ANY=[@ANYBLOB="100000000000000001000000010000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100010002000000", @ANYRES32=r0, @ANYRES32, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32=r1, @ANYRES32, @ANYBLOB="00000000a1e8f019ed37434b9e5af3cfb86e37ce2c000000000000000300000001000000", @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00'], 0x140, 0x20000000}, {&(0x7f00000009c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000ac0)=[{&(0x7f0000000a40)="67438ec6427807ac3623c50af2a9d2a7c9be86977bb50f184fa9254163a64dfe16bff35b7eed57ca8e2c86683aafb49f2fd0e5435eeddfe4a65691c014fa5c12201d653c89b9439bd4e9f5be59a1c1d6309fdb6aa228bac4011cd70770d872", 0x5f}], 0x1, &(0x7f0000000b80)=[@cred={{0x1c, 0x1, 0x2, {0x0, r3, r7}}}, @cred={{0x1c, 0x1, 0x2, {r8, 0xee00, 0xee01}}}], 0x40, 0x4000}], 0x4, 0x4000)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:39 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3355.548309][T29886]  iter_file_splice_write+0xc1/0x750
[ 3355.553782][T29886]  ? atime_needs_update+0x239/0x390
[ 3355.559011][T29886]  ? generic_file_splice_read+0x284/0x310
[ 3355.564761][T29886]  ? splice_from_pipe+0xc0/0xc0
[ 3355.569656][T29886]  direct_splice_actor+0x80/0xa0
[ 3355.574699][T29886]  splice_direct_to_actor+0x345/0x650
[ 3355.580521][T29886]  ? do_splice_direct+0x170/0x170
[ 3355.585760][T29886]  do_splice_direct+0xf5/0x170
[ 3355.590531][T29886]  do_sendfile+0x773/0xda0
[ 3355.594991][T29886]  __x64_sys_sendfile64+0xf2/0x130
03:13:39 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000900000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3355.600114][T29886]  do_syscall_64+0x4a/0x90
[ 3355.604680][T29886]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3355.610634][T29886] RIP: 0033:0x4665d9
[ 3355.614522][T29886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3355.634487][T29886] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3355.643557][T29886] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3355.651750][T29886] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3355.659762][T29886] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3355.668200][T29886] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3355.676291][T29886] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3355.716957][T29883] loop3: detected capacity change from 0 to 512
[ 3355.729741][T29883] EXT4-fs (loop3): Invalid log block size: 10496
03:13:42 executing program 5 (fault-call:1 fault-nth:39):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000a00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:42 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000002a000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:42 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/exe\x00', 0x0, 0x199)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
rename(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)

03:13:42 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/raw\x00')
r0 = gettid()
ptrace(0x4206, r0)
tkill(r0, 0x800000009)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5, 0x6}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:42 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000b00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3357.991932][T29925] FAULT_INJECTION: forcing a failure.
[ 3357.991932][T29925] name failslab, interval 1, probability 0, space 0, times 0
[ 3358.004735][T29925] CPU: 0 PID: 29925 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3358.013507][T29925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3358.021294][T29921] loop3: detected capacity change from 0 to 512
[ 3358.023568][T29925] Call Trace:
[ 3358.023578][T29925]  dump_stack+0x137/0x19d
[ 3358.023604][T29925]  should_fail+0x23c/0x250
03:13:42 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f0000000040)={0x5c, 0x3, '\x00', [@ra={0x5, 0x2, 0xd144}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @enc_lim]}, 0x20)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000000c0)="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"/297, 0xffffffca)
setsockopt$inet6_opts(r2, 0x29, 0x39, &(0x7f00000000c0)=@hopopts={0x6c, 0x8, '\x00', [@pad1, @jumbo={0xc2, 0x4, 0x1}, @enc_lim={0x4, 0x1, 0x7f}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @remote}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xd}}, @jumbo={0xc2, 0x4, 0x8}, @padn={0x1, 0x1, [0x0]}]}, 0x50)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x22, &(0x7f0000000200)=0xff, 0x4)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r1)
sendmsg$BATADV_CMD_SET_VLAN(r4, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, r5, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x2000c014)

03:13:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000c00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:42 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x80, 0x102)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000080)={0x0, <r3=>0x0})
prlimit64(r3, 0x6, &(0x7f0000000000)={0x3, 0x8}, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[ 3358.023625][T29925]  ? blkdev_direct_IO+0x392/0x1060
[ 3358.039447][T29921] EXT4-fs (loop3): Invalid log block size: 10752
[ 3358.042326][T29925]  __should_failslab+0x81/0x90
[ 3358.042357][T29925]  should_failslab+0x5/0x20
[ 3358.063199][T29925]  __kmalloc+0x66/0x340
[ 3358.067458][T29925]  ? blkdev_write_iter+0x29d/0x2b0
[ 3358.072669][T29925]  blkdev_direct_IO+0x392/0x1060
[ 3358.077794][T29925]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3358.083706][T29925]  ? current_time+0xdb/0x190
[ 3358.088307][T29925]  ? atime_needs_update+0x239/0x390
[ 3358.093520][T29925]  ? touch_atime+0xcf/0x240
[ 3358.098084][T29925]  generic_file_read_iter+0x1c5/0x2c0
[ 3358.103901][T29925]  blkdev_read_iter+0xb9/0xf0
[ 3358.108670][T29925]  generic_file_splice_read+0x22a/0x310
[ 3358.114475][T29925]  ? splice_shrink_spd+0x60/0x60
[ 3358.119496][T29925]  splice_direct_to_actor+0x2aa/0x650
[ 3358.124895][T29925]  ? do_splice_direct+0x170/0x170
[ 3358.130080][T29925]  do_splice_direct+0xf5/0x170
[ 3358.135107][T29925]  do_sendfile+0x773/0xda0
[ 3358.139525][T29925]  __x64_sys_sendfile64+0xf2/0x130
[ 3358.144831][T29925]  do_syscall_64+0x4a/0x90
[ 3358.149374][T29925]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3358.155792][T29925] RIP: 0033:0x4665d9
[ 3358.159802][T29925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3358.180002][T29925] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3358.188714][T29925] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3358.196783][T29925] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3358.204993][T29925] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3358.213148][T29925] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3358.221767][T29925] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:42 executing program 5 (fault-call:1 fault-nth:40):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000d00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3358.305668][T29921] loop3: detected capacity change from 0 to 512
[ 3358.346840][T29921] EXT4-fs (loop3): Invalid log block size: 10752
[ 3358.375773][T29955] FAULT_INJECTION: forcing a failure.
[ 3358.375773][T29955] name fail_page_alloc, interval 1, probability 0, space 0, times 0
03:13:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000e00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3358.389050][T29955] CPU: 0 PID: 29955 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3358.397974][T29955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3358.408284][T29955] Call Trace:
[ 3358.411614][T29955]  dump_stack+0x137/0x19d
[ 3358.416188][T29955]  should_fail+0x23c/0x250
[ 3358.420616][T29955]  __alloc_pages+0x102/0x320
[ 3358.425298][T29955]  alloc_pages+0x21d/0x310
[ 3358.429741][T29955]  push_pipe+0x267/0x370
[ 3358.433991][T29955]  iov_iter_get_pages+0xb39/0xcc0
[ 3358.439050][T29955]  ? current_time+0xdb/0x190
[ 3358.443736][T29955]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3358.449122][T29955]  ? blk_flush_plug_list+0x23c/0x260
[ 3358.454589][T29955]  ? blkdev_direct_IO+0x392/0x1060
[ 3358.459976][T29955]  ? __kmalloc+0x23d/0x340
[ 3358.464424][T29955]  ? blkdev_direct_IO+0x392/0x1060
[ 3358.469700][T29955]  blkdev_direct_IO+0x9ec/0x1060
[ 3358.474735][T29955]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3358.480640][T29955]  ? blkdev_get_block+0x70/0x70
[ 3358.485509][T29955]  ? touch_atime+0xcf/0x240
[ 3358.490221][T29955]  generic_file_read_iter+0x1c5/0x2c0
03:13:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000f00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3358.495961][T29955]  blkdev_read_iter+0xb9/0xf0
[ 3358.501001][T29955]  generic_file_splice_read+0x22a/0x310
[ 3358.506552][T29955]  ? splice_shrink_spd+0x60/0x60
[ 3358.511519][T29955]  splice_direct_to_actor+0x2aa/0x650
[ 3358.516987][T29955]  ? do_splice_direct+0x170/0x170
[ 3358.522056][T29955]  do_splice_direct+0xf5/0x170
[ 3358.526828][T29955]  do_sendfile+0x773/0xda0
[ 3358.531274][T29955]  __x64_sys_sendfile64+0xf2/0x130
[ 3358.536467][T29955]  do_syscall_64+0x4a/0x90
[ 3358.540998][T29955]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3358.547183][T29955] RIP: 0033:0x4665d9
[ 3358.551081][T29955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3358.570787][T29955] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3358.579222][T29955] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3358.587615][T29955] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3358.595712][T29955] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3358.603953][T29955] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3358.611931][T29955] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:42 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000002b000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:42 executing program 5 (fault-call:1 fault-nth:41):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3358.713734][T29970] FAULT_INJECTION: forcing a failure.
[ 3358.713734][T29970] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3358.727100][T29970] CPU: 1 PID: 29970 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3358.728017][T29969] loop3: detected capacity change from 0 to 512
[ 3358.735983][T29970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3358.735999][T29970] Call Trace:
[ 3358.736007][T29970]  dump_stack+0x137/0x19d
[ 3358.756799][T29969] EXT4-fs (loop3): Invalid log block size: 11008
[ 3358.760260][T29970]  should_fail+0x23c/0x250
[ 3358.760296][T29970]  __alloc_pages+0x102/0x320
[ 3358.775651][T29970]  alloc_pages+0x21d/0x310
[ 3358.780158][T29970]  push_pipe+0x267/0x370
[ 3358.784541][T29970]  iov_iter_get_pages+0xb39/0xcc0
[ 3358.789897][T29970]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3358.795360][T29970]  ? blkdev_direct_IO+0x392/0x1060
[ 3358.800588][T29970]  ? __kmalloc+0x23d/0x340
[ 3358.805019][T29970]  ? blkdev_direct_IO+0x392/0x1060
[ 3358.810292][T29970]  blkdev_direct_IO+0x9ec/0x1060
[ 3358.815567][T29970]  ? asm_sysvec_call_function_single+0x12/0x20
[ 3358.821715][T29970]  ? asm_sysvec_reschedule_ipi+0x12/0x20
[ 3358.827433][T29970]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3358.833568][T29970]  ? blkdev_get_block+0x70/0x70
[ 3358.838723][T29970]  ? touch_atime+0xcf/0x240
[ 3358.843312][T29970]  generic_file_read_iter+0x1c5/0x2c0
[ 3358.848705][T29970]  blkdev_read_iter+0xb9/0xf0
[ 3358.853753][T29970]  generic_file_splice_read+0x22a/0x310
[ 3358.859663][T29970]  ? splice_shrink_spd+0x60/0x60
[ 3358.864634][T29970]  splice_direct_to_actor+0x2aa/0x650
[ 3358.870033][T29970]  ? do_splice_direct+0x170/0x170
[ 3358.875215][T29970]  do_splice_direct+0xf5/0x170
[ 3358.880175][T29970]  do_sendfile+0x773/0xda0
[ 3358.884781][T29970]  __x64_sys_sendfile64+0xf2/0x130
[ 3358.889961][T29970]  do_syscall_64+0x4a/0x90
[ 3358.894423][T29970]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3358.900626][T29970] RIP: 0033:0x4665d9
[ 3358.904519][T29970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3358.924527][T29970] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3358.933093][T29970] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3358.941382][T29970] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3358.949368][T29970] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3358.957756][T29970] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3358.965730][T29970] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3358.989374][T29969] loop3: detected capacity change from 0 to 512
[ 3358.996714][T29969] EXT4-fs (loop3): Invalid log block size: 11008
03:13:45 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:45 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setrlimit(0x9, &(0x7f0000000000)={0x100000001, 0x54})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
mq_timedreceive(r3, &(0x7f00000002c0)=""/4096, 0x1000, 0x48aee0f5, &(0x7f0000000080))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:45 executing program 5 (fault-call:1 fault-nth:42):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001100000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:45 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000002e000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:45 executing program 2:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write(r0, &(0x7f00000000c0)="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"/297, 0xffffffca)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={<r1=>0x0}, &(0x7f0000000040)=0xc)
wait4(r1, &(0x7f0000000100), 0x4, 0x0)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r2)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendto$inet6(r2, &(0x7f0000000240)="adb68442898d07ee4025472f9e70d9e7683f0791909f7585bb986bc55b04966e46cfd120ec75262feb1e49f4690d591fcd1e4dab14", 0x35, 0x4000880, &(0x7f0000000280)={0xa, 0x4e20, 0x9, @mcast2, 0xc0000000}, 0x1c)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3360.989376][T29990] loop3: detected capacity change from 0 to 512
[ 3360.999689][T29992] FAULT_INJECTION: forcing a failure.
[ 3360.999689][T29992] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3361.005767][T29990] EXT4-fs (loop3): Invalid log block size: 11776
[ 3361.012946][T29992] CPU: 1 PID: 29992 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3361.028464][T29992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3361.038760][T29992] Call Trace:
[ 3361.042281][T29992]  dump_stack+0x137/0x19d
[ 3361.046800][T29992]  should_fail+0x23c/0x250
[ 3361.051371][T29992]  __alloc_pages+0x102/0x320
[ 3361.056185][T29992]  alloc_pages+0x21d/0x310
[ 3361.060741][T29992]  push_pipe+0x267/0x370
[ 3361.065372][T29992]  iov_iter_get_pages+0xb39/0xcc0
[ 3361.070525][T29992]  ? current_time+0xdb/0x190
[ 3361.075206][T29992]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3361.080734][T29992]  ? blk_flush_plug_list+0x23c/0x260
03:13:45 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$CHAR_RAW_DISCARD(r2, 0x1277, &(0x7f0000000100)=0xce)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000200)={@private1, 0x78, 0x1, 0xff, 0x3, 0x101, 0x4}, 0x20)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x82c3)
socket$inet6(0xa, 0x6, 0xd5)
r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0)
socket$inet6(0xa, 0x0, 0xfffffffc)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f00000001c0)={0x2, 0x2, 0x4, 0x1, 0x8001})
bind$inet6(r5, &(0x7f0000000180)={0xa, 0x4e22, 0x1000, @dev={0xfe, 0x80, '\x00', 0x15}, 0x1}, 0x1c)
lseek(r1, 0x3, 0x3)
poll(&(0x7f00000000c0)=[{r0, 0x20}, {r4, 0x1200}], 0x2, 0x9)

[ 3361.086105][T29992]  ? blkdev_direct_IO+0x392/0x1060
[ 3361.091244][T29992]  ? __kmalloc+0x23d/0x340
[ 3361.095689][T29992]  ? blkdev_direct_IO+0x392/0x1060
[ 3361.100806][T29992]  blkdev_direct_IO+0x9ec/0x1060
[ 3361.105897][T29992]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3361.111810][T29992]  ? blkdev_get_block+0x70/0x70
[ 3361.116764][T29992]  ? touch_atime+0xcf/0x240
[ 3361.121670][T29992]  generic_file_read_iter+0x1c5/0x2c0
[ 3361.127337][T29992]  blkdev_read_iter+0xb9/0xf0
[ 3361.132315][T29992]  generic_file_splice_read+0x22a/0x310
[ 3361.138081][T29992]  ? splice_shrink_spd+0x60/0x60
[ 3361.143207][T29992]  splice_direct_to_actor+0x2aa/0x650
[ 3361.148871][T29992]  ? do_splice_direct+0x170/0x170
[ 3361.153974][T29992]  do_splice_direct+0xf5/0x170
[ 3361.158866][T29992]  do_sendfile+0x773/0xda0
[ 3361.163310][T29992]  __x64_sys_sendfile64+0xf2/0x130
[ 3361.168520][T29992]  do_syscall_64+0x4a/0x90
[ 3361.172983][T29992]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3361.179040][T29992] RIP: 0033:0x4665d9
[ 3361.182919][T29992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3361.202910][T29992] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3361.211332][T29992] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3361.219473][T29992] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3361.227532][T29992] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3361.235515][T29992] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3361.243655][T29992] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:45 executing program 5 (fault-call:1 fault-nth:43):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3361.368471][T29990] loop3: detected capacity change from 0 to 512
[ 3361.386690][T29990] EXT4-fs (loop3): Invalid log block size: 11776
[ 3361.396883][T30015] FAULT_INJECTION: forcing a failure.
[ 3361.396883][T30015] name fail_page_alloc, interval 1, probability 0, space 0, times 0
03:13:45 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000003f000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:45 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3361.410462][T30015] CPU: 1 PID: 30015 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3361.419451][T30015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3361.431798][T30015] Call Trace:
[ 3361.435126][T30015]  dump_stack+0x137/0x19d
[ 3361.439571][T30015]  should_fail+0x23c/0x250
[ 3361.444156][T30015]  __alloc_pages+0x102/0x320
[ 3361.448797][T30015]  alloc_pages+0x21d/0x310
[ 3361.453387][T30015]  push_pipe+0x267/0x370
[ 3361.457742][T30015]  iov_iter_get_pages+0xb39/0xcc0
[ 3361.462871][T30015]  ? current_time+0xdb/0x190
[ 3361.467651][T30015]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3361.473039][T30015]  ? blk_flush_plug_list+0x23c/0x260
[ 3361.478337][T30015]  ? blkdev_direct_IO+0x392/0x1060
[ 3361.483468][T30015]  ? __kmalloc+0x23d/0x340
[ 3361.487950][T30015]  ? blkdev_direct_IO+0x392/0x1060
[ 3361.493071][T30015]  blkdev_direct_IO+0x9ec/0x1060
[ 3361.498057][T30015]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3361.503961][T30015]  ? blkdev_get_block+0x70/0x70
[ 3361.508976][T30015]  ? touch_atime+0xcf/0x240
[ 3361.513513][T30015]  generic_file_read_iter+0x1c5/0x2c0
[ 3361.518944][T30015]  blkdev_read_iter+0xb9/0xf0
[ 3361.523653][T30015]  generic_file_splice_read+0x22a/0x310
[ 3361.529317][T30015]  ? splice_shrink_spd+0x60/0x60
[ 3361.534264][T30015]  splice_direct_to_actor+0x2aa/0x650
[ 3361.539793][T30015]  ? do_splice_direct+0x170/0x170
[ 3361.544990][T30015]  do_splice_direct+0xf5/0x170
[ 3361.549796][T30015]  do_sendfile+0x773/0xda0
[ 3361.554391][T30015]  __x64_sys_sendfile64+0xf2/0x130
[ 3361.559710][T30015]  do_syscall_64+0x4a/0x90
[ 3361.564205][T30015]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3361.570411][T30015] RIP: 0033:0x4665d9
[ 3361.574316][T30015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3361.594111][T30015] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3361.602802][T30015] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3361.610782][T30015] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3361.618838][T30015] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3361.626907][T30015] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3361.634888][T30015] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001900000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000040000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:48 executing program 5 (fault-call:1 fault-nth:44):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:48 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x680, 0x0)
bind$unix(r3, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:48 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = openat(r1, &(0x7f0000000040)='./file0\x00', 0x4302, 0x40)
r3 = syz_open_procfs(0x0, &(0x7f0000004000)='net/ip_mr_cache\x00')
socket$inet6_tcp(0xa, 0x1, 0x0)
symlinkat(&(0x7f0000000240)='./file0\x00', r3, &(0x7f0000000280)='./file0\x00')
connect$inet6(r3, &(0x7f0000004040)={0xa, 0x4e21, 0xffffffff, @rand_addr=' \x01\x00', 0x1f}, 0x1c)
lstat(&(0x7f0000000540)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
chown(&(0x7f0000000400)='./file0\x00', r4, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000000c0)={{{@in=@local, @in6=@dev={0xfe, 0x80, '\x00', 0xd}, 0x4e23, 0x643, 0x4e21, 0x8, 0xa, 0xa0, 0x80, 0x2c622095cb7aee6e, 0x0, r4}, {0x800, 0x7, 0x8001, 0x5, 0x24, 0xfffffffffffffff9, 0x1, 0x1f}, {0x3, 0xd9e, 0x180, 0x200}, 0x7, 0x6e6bb1, 0x2, 0x1, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4d6, 0x3c}, 0xa, @in6=@mcast2, 0x3505, 0x0, 0x0, 0x3, 0x4, 0x9, 0x2}}, 0xe8)

[ 3364.014208][T30036] loop3: detected capacity change from 0 to 512
[ 3364.017419][T30043] FAULT_INJECTION: forcing a failure.
[ 3364.017419][T30043] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3364.023753][T30036] EXT4-fs (loop3): Invalid log block size: 16384
[ 3364.034180][T30043] CPU: 1 PID: 30043 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3364.049752][T30043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3364.059795][T30043] Call Trace:
[ 3364.063239][T30043]  dump_stack+0x137/0x19d
[ 3364.067863][T30043]  should_fail+0x23c/0x250
[ 3364.072269][T30043]  __alloc_pages+0x102/0x320
[ 3364.076857][T30043]  alloc_pages+0x21d/0x310
[ 3364.081285][T30043]  push_pipe+0x267/0x370
[ 3364.085531][T30043]  iov_iter_get_pages+0xb39/0xcc0
[ 3364.090561][T30043]  ? current_time+0xdb/0x190
[ 3364.095279][T30043]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3364.100749][T30043]  ? blk_flush_plug_list+0x23c/0x260
[ 3364.106154][T30043]  ? blkdev_direct_IO+0x392/0x1060
03:13:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001b00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3364.111607][T30043]  ? __kmalloc+0x23d/0x340
[ 3364.116486][T30043]  ? blkdev_direct_IO+0x392/0x1060
[ 3364.121776][T30043]  blkdev_direct_IO+0x9ec/0x1060
[ 3364.126728][T30043]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3364.132743][T30043]  ? blkdev_get_block+0x70/0x70
[ 3364.137857][T30043]  ? touch_atime+0xcf/0x240
[ 3364.142453][T30043]  generic_file_read_iter+0x1c5/0x2c0
[ 3364.148127][T30043]  blkdev_read_iter+0xb9/0xf0
[ 3364.153144][T30043]  generic_file_splice_read+0x22a/0x310
[ 3364.158831][T30043]  ? splice_shrink_spd+0x60/0x60
[ 3364.163839][T30043]  splice_direct_to_actor+0x2aa/0x650
[ 3364.169469][T30043]  ? do_splice_direct+0x170/0x170
[ 3364.174494][T30043]  do_splice_direct+0xf5/0x170
[ 3364.179657][T30043]  do_sendfile+0x773/0xda0
[ 3364.184083][T30043]  __x64_sys_sendfile64+0xf2/0x130
[ 3364.189363][T30043]  do_syscall_64+0x4a/0x90
[ 3364.193775][T30043]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3364.199831][T30043] RIP: 0033:0x4665d9
[ 3364.203722][T30043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3364.223798][T30043] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3364.232251][T30043] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3364.240294][T30043] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3364.248605][T30043] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3364.256877][T30043] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:13:48 executing program 5 (fault-call:1 fault-nth:45):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3364.265127][T30043] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3364.295087][T30036] loop3: detected capacity change from 0 to 512
[ 3364.306098][T30036] EXT4-fs (loop3): Invalid log block size: 16384
03:13:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002300000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002500000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3364.361371][T30062] FAULT_INJECTION: forcing a failure.
[ 3364.361371][T30062] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3364.375146][T30062] CPU: 1 PID: 30062 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3364.384376][T30062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3364.394898][T30062] Call Trace:
[ 3364.398187][T30062]  dump_stack+0x137/0x19d
[ 3364.402908][T30062]  should_fail+0x23c/0x250
03:13:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002a00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3364.407327][T30062]  __alloc_pages+0x102/0x320
[ 3364.411989][T30062]  alloc_pages+0x21d/0x310
[ 3364.416490][T30062]  push_pipe+0x267/0x370
[ 3364.420800][T30062]  iov_iter_get_pages+0xb39/0xcc0
[ 3364.425834][T30062]  ? current_time+0xdb/0x190
[ 3364.430496][T30062]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3364.435880][T30062]  ? blk_flush_plug_list+0x23c/0x260
[ 3364.441193][T30062]  ? blkdev_direct_IO+0x392/0x1060
[ 3364.446338][T30062]  ? __kmalloc+0x23d/0x340
[ 3364.450904][T30062]  ? blkdev_direct_IO+0x392/0x1060
[ 3364.456357][T30062]  blkdev_direct_IO+0x9ec/0x1060
[ 3364.461330][T30062]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3364.467411][T30062]  ? blkdev_get_block+0x70/0x70
[ 3364.472536][T30062]  ? touch_atime+0xcf/0x240
[ 3364.477132][T30062]  generic_file_read_iter+0x1c5/0x2c0
[ 3364.482714][T30062]  blkdev_read_iter+0xb9/0xf0
[ 3364.487479][T30062]  generic_file_splice_read+0x22a/0x310
[ 3364.493274][T30062]  ? splice_shrink_spd+0x60/0x60
[ 3364.498226][T30062]  splice_direct_to_actor+0x2aa/0x650
[ 3364.503624][T30062]  ? do_splice_direct+0x170/0x170
[ 3364.508671][T30062]  do_splice_direct+0xf5/0x170
[ 3364.513567][T30062]  do_sendfile+0x773/0xda0
[ 3364.517991][T30062]  __x64_sys_sendfile64+0xf2/0x130
[ 3364.523219][T30062]  do_syscall_64+0x4a/0x90
[ 3364.527902][T30062]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3364.533897][T30062] RIP: 0033:0x4665d9
[ 3364.537978][T30062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3364.558030][T30062] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3364.566471][T30062] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3364.574454][T30062] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3364.582441][T30062] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3364.590502][T30062] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3364.598583][T30062] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000080040000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002b00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:48 executing program 5 (fault-call:1 fault-nth:46):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3364.866157][T30085] FAULT_INJECTION: forcing a failure.
[ 3364.866157][T30085] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3364.879900][T30085] CPU: 0 PID: 30085 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3364.887172][T30084] loop3: detected capacity change from 0 to 512
[ 3364.888762][T30085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3364.888778][T30085] Call Trace:
[ 3364.888786][T30085]  dump_stack+0x137/0x19d
[ 3364.896651][T30084] EXT4-fs (loop3): Invalid log block size: 16384
[ 3364.905467][T30085]  should_fail+0x23c/0x250
[ 3364.905493][T30085]  __alloc_pages+0x102/0x320
[ 3364.905513][T30085]  alloc_pages+0x21d/0x310
[ 3364.905529][T30085]  push_pipe+0x267/0x370
[ 3364.937703][T30085]  iov_iter_get_pages+0xb39/0xcc0
[ 3364.942761][T30085]  ? current_time+0xdb/0x190
[ 3364.947465][T30085]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3364.953071][T30085]  ? blk_flush_plug_list+0x23c/0x260
[ 3364.958470][T30085]  ? blkdev_direct_IO+0x392/0x1060
[ 3364.963617][T30085]  ? __kmalloc+0x23d/0x340
[ 3364.968159][T30085]  ? blkdev_direct_IO+0x392/0x1060
[ 3364.973354][T30085]  blkdev_direct_IO+0x9ec/0x1060
[ 3364.978303][T30085]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3364.984212][T30085]  ? blkdev_get_block+0x70/0x70
[ 3364.989096][T30085]  ? touch_atime+0xcf/0x240
[ 3364.993755][T30085]  generic_file_read_iter+0x1c5/0x2c0
[ 3364.999519][T30085]  blkdev_read_iter+0xb9/0xf0
[ 3365.004207][T30085]  generic_file_splice_read+0x22a/0x310
[ 3365.009878][T30085]  ? splice_shrink_spd+0x60/0x60
[ 3365.014822][T30085]  splice_direct_to_actor+0x2aa/0x650
[ 3365.020305][T30085]  ? do_splice_direct+0x170/0x170
[ 3365.025338][T30085]  do_splice_direct+0xf5/0x170
[ 3365.030106][T30085]  do_sendfile+0x773/0xda0
[ 3365.034550][T30085]  __x64_sys_sendfile64+0xf2/0x130
[ 3365.039828][T30085]  do_syscall_64+0x4a/0x90
[ 3365.044252][T30085]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3365.050259][T30085] RIP: 0033:0x4665d9
[ 3365.054246][T30085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3365.073880][T30085] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3365.082319][T30085] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3365.090387][T30085] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3365.098448][T30085] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3365.106436][T30085] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:13:49 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002e00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:49 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0xfffffffffffffe37, 0x0, 0x0, 0x8001, 0x5, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffe, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
mq_timedsend(0xffffffffffffffff, &(0x7f0000000080)="a307a1f80e30613b750ed878effbde0264aab0481ec628f609a8927314dfa1def977bd1c7d80d16b0fa9e1fe8c7247bbfc37bf3788b3ad5ee1c08f6e9e076c265504fa86826e56c234dbb2440529270676ab0f8099383f6d4770d47f38a61bc291fcf81525bf62a99aa6eebeb6637402fcd842f606a6e53112ce8edf", 0x7c, 0x8, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:49 executing program 2:
r0 = socket$inet6(0xa, 0xa, 0xfffffffd)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
setsockopt$sock_int(r1, 0x1, 0x2, &(0x7f0000000040)=0x9, 0x4)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x8000, 0x1, @empty}, 0x1c)

03:13:49 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3365.114434][T30085] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:49 executing program 5 (fault-call:1 fault-nth:47):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:49 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:49 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000140000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3365.175740][T30084] loop3: detected capacity change from 0 to 512
[ 3365.190549][T30084] EXT4-fs (loop3): Invalid log block size: 16384
[ 3365.198005][T30107] FAULT_INJECTION: forcing a failure.
[ 3365.198005][T30107] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3365.211444][T30107] CPU: 1 PID: 30107 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
03:13:49 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004900000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3365.220221][T30107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3365.230554][T30107] Call Trace:
[ 3365.234019][T30107]  dump_stack+0x137/0x19d
[ 3365.238611][T30107]  should_fail+0x23c/0x250
[ 3365.243169][T30107]  __alloc_pages+0x102/0x320
[ 3365.247906][T30107]  alloc_pages+0x21d/0x310
[ 3365.252400][T30107]  push_pipe+0x267/0x370
[ 3365.256738][T30107]  iov_iter_get_pages+0xb39/0xcc0
[ 3365.262278][T30107]  ? current_time+0xdb/0x190
[ 3365.267497][T30107]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3365.273054][T30107]  ? blk_flush_plug_list+0x23c/0x260
[ 3365.278654][T30107]  ? blkdev_direct_IO+0x392/0x1060
[ 3365.284131][T30107]  ? __kmalloc+0x23d/0x340
[ 3365.288892][T30107]  ? blkdev_direct_IO+0x392/0x1060
[ 3365.294198][T30107]  blkdev_direct_IO+0x9ec/0x1060
[ 3365.299240][T30107]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3365.305227][T30107]  ? blkdev_get_block+0x70/0x70
[ 3365.310089][T30107]  ? touch_atime+0xcf/0x240
[ 3365.314770][T30107]  generic_file_read_iter+0x1c5/0x2c0
[ 3365.320410][T30107]  blkdev_read_iter+0xb9/0xf0
[ 3365.325076][T30107]  generic_file_splice_read+0x22a/0x310
[ 3365.330753][T30107]  ? splice_shrink_spd+0x60/0x60
[ 3365.336008][T30107]  splice_direct_to_actor+0x2aa/0x650
[ 3365.341781][T30107]  ? do_splice_direct+0x170/0x170
[ 3365.346888][T30107]  do_splice_direct+0xf5/0x170
[ 3365.352003][T30107]  do_sendfile+0x773/0xda0
[ 3365.356517][T30107]  __x64_sys_sendfile64+0xf2/0x130
[ 3365.362017][T30107]  do_syscall_64+0x4a/0x90
[ 3365.367042][T30107]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3365.372926][T30107] RIP: 0033:0x4665d9
[ 3365.377049][T30107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3365.397079][T30107] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3365.405750][T30107] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3365.413778][T30107] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3365.421747][T30107] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3365.429907][T30107] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3365.438206][T30107] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3365.467699][T30118] loop3: detected capacity change from 0 to 512
[ 3365.480975][T30118] EXT4-fs (loop3): Invalid log block size: 16385
[ 3365.523661][T30118] loop3: detected capacity change from 0 to 512
[ 3365.532015][T30118] EXT4-fs (loop3): Invalid log block size: 16385
03:13:51 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004c00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:51 executing program 5 (fault-call:1 fault-nth:48):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:51 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000048000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:51 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
sendmmsg$unix(r3, &(0x7f00000004c0), 0x0, 0x20000001)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000500), 0x80000, 0x0)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendfile(r4, r5, 0x0, 0x81)

03:13:51 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x7fffffff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000000c0)="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"/297, 0xffffffca)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_MPP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000007f280c"], 0x2c}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r4)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="1a000000", @ANYRES16=r5, @ANYBLOB="050300000000000000006b00000004002d80"], 0x18}}, 0x0)
sendmsg$TIPC_NL_MON_SET(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x84, r5, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7fffffff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10001}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4}, 0x4008011)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r6, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:51 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000005200000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3367.886555][T30139] loop3: detected capacity change from 0 to 512
[ 3367.898179][T30139] EXT4-fs (loop3): Invalid log block size: 18432
[ 3367.905785][T30143] FAULT_INJECTION: forcing a failure.
[ 3367.905785][T30143] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3367.919359][T30143] CPU: 1 PID: 30143 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3367.928363][T30143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3367.938631][T30143] Call Trace:
[ 3367.941954][T30143]  dump_stack+0x137/0x19d
[ 3367.946486][T30143]  should_fail+0x23c/0x250
[ 3367.950977][T30143]  __alloc_pages+0x102/0x320
[ 3367.955590][T30143]  alloc_pages+0x21d/0x310
[ 3367.960186][T30143]  push_pipe+0x267/0x370
[ 3367.964436][T30143]  iov_iter_get_pages+0xb39/0xcc0
[ 3367.969582][T30143]  ? current_time+0xdb/0x190
[ 3367.974182][T30143]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3367.979564][T30143]  ? blk_flush_plug_list+0x23c/0x260
[ 3367.984992][T30143]  ? blkdev_direct_IO+0x392/0x1060
[ 3367.990141][T30143]  ? __kmalloc+0x23d/0x340
[ 3367.994646][T30143]  ? blkdev_direct_IO+0x392/0x1060
[ 3367.999855][T30143]  blkdev_direct_IO+0x9ec/0x1060
[ 3368.004966][T30143]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3368.010881][T30143]  ? blkdev_get_block+0x70/0x70
[ 3368.015741][T30143]  ? touch_atime+0xcf/0x240
[ 3368.020255][T30143]  generic_file_read_iter+0x1c5/0x2c0
[ 3368.025647][T30143]  blkdev_read_iter+0xb9/0xf0
[ 3368.030450][T30143]  generic_file_splice_read+0x22a/0x310
[ 3368.036003][T30143]  ? splice_shrink_spd+0x60/0x60
[ 3368.041280][T30143]  splice_direct_to_actor+0x2aa/0x650
[ 3368.046666][T30143]  ? do_splice_direct+0x170/0x170
[ 3368.051700][T30143]  do_splice_direct+0xf5/0x170
[ 3368.056493][T30143]  do_sendfile+0x773/0xda0
[ 3368.061018][T30143]  __x64_sys_sendfile64+0xf2/0x130
[ 3368.066133][T30143]  do_syscall_64+0x4a/0x90
[ 3368.070554][T30143]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3368.076471][T30143] RIP: 0033:0x4665d9
[ 3368.080461][T30143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3368.100092][T30143] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3368.108522][T30143] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3368.116621][T30143] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3368.124693][T30143] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
03:13:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000005300000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:52 executing program 5 (fault-call:1 fault-nth:49):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:52 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000049000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3368.132855][T30143] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3368.140837][T30143] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3368.221197][T30163] FAULT_INJECTION: forcing a failure.
[ 3368.221197][T30163] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3368.234766][T30163] CPU: 1 PID: 30163 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3368.243554][T30163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3368.253698][T30163] Call Trace:
[ 3368.257247][T30163]  dump_stack+0x137/0x19d
[ 3368.261615][T30163]  should_fail+0x23c/0x250
[ 3368.266064][T30163]  __alloc_pages+0x102/0x320
[ 3368.270885][T30163]  alloc_pages+0x21d/0x310
[ 3368.275398][T30163]  push_pipe+0x267/0x370
[ 3368.280092][T30163]  iov_iter_get_pages+0xb39/0xcc0
[ 3368.285217][T30163]  ? current_time+0xdb/0x190
[ 3368.289850][T30163]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3368.295254][T30163]  ? blk_flush_plug_list+0x23c/0x260
[ 3368.300616][T30163]  ? blkdev_direct_IO+0x392/0x1060
[ 3368.305846][T30163]  ? __kmalloc+0x23d/0x340
[ 3368.310357][T30163]  ? blkdev_direct_IO+0x392/0x1060
[ 3368.315482][T30163]  blkdev_direct_IO+0x9ec/0x1060
[ 3368.320840][T30163]  ? do_iter_write+0x41f/0x4c0
[ 3368.325625][T30163]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3368.331672][T30163]  ? blkdev_get_block+0x70/0x70
[ 3368.336730][T30163]  ? __mnt_drop_write+0x12/0x20
[ 3368.341590][T30163]  ? touch_atime+0x1b3/0x240
[ 3368.346375][T30163]  generic_file_read_iter+0x1c5/0x2c0
[ 3368.351802][T30163]  blkdev_read_iter+0xb9/0xf0
[ 3368.356580][T30163]  generic_file_splice_read+0x22a/0x310
[ 3368.362191][T30163]  ? splice_shrink_spd+0x60/0x60
[ 3368.367154][T30163]  splice_direct_to_actor+0x2aa/0x650
[ 3368.372707][T30163]  ? do_splice_direct+0x170/0x170
[ 3368.377926][T30163]  do_splice_direct+0xf5/0x170
[ 3368.382839][T30163]  do_sendfile+0x773/0xda0
[ 3368.387257][T30163]  __x64_sys_sendfile64+0xf2/0x130
[ 3368.392379][T30163]  do_syscall_64+0x4a/0x90
[ 3368.396854][T30163]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3368.402843][T30163] RIP: 0033:0x4665d9
[ 3368.406743][T30163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3368.426471][T30163] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3368.434985][T30163] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3368.443099][T30163] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3368.451271][T30163] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3368.459337][T30163] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:13:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000005400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:52 executing program 5 (fault-call:1 fault-nth:50):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3368.467311][T30163] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3368.486767][T30165] loop3: detected capacity change from 0 to 512
[ 3368.503592][T30165] EXT4-fs (loop3): Invalid log block size: 18688
[ 3368.551811][T30177] FAULT_INJECTION: forcing a failure.
[ 3368.551811][T30177] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3368.565123][T30177] CPU: 1 PID: 30177 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3368.573992][T30177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3368.584050][T30177] Call Trace:
[ 3368.587326][T30177]  dump_stack+0x137/0x19d
[ 3368.591672][T30177]  should_fail+0x23c/0x250
[ 3368.596094][T30177]  __alloc_pages+0x102/0x320
[ 3368.600687][T30177]  alloc_pages+0x21d/0x310
[ 3368.605234][T30177]  push_pipe+0x267/0x370
[ 3368.609485][T30177]  iov_iter_get_pages+0xb39/0xcc0
[ 3368.614587][T30177]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3368.619964][T30177]  ? blk_flush_plug_list+0x23c/0x260
[ 3368.625255][T30177]  ? blkdev_direct_IO+0x392/0x1060
[ 3368.630453][T30177]  ? __kmalloc+0x23d/0x340
[ 3368.635031][T30177]  ? blkdev_direct_IO+0x392/0x1060
[ 3368.640252][T30177]  blkdev_direct_IO+0x9ec/0x1060
[ 3368.645243][T30177]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3368.651169][T30177]  ? blkdev_get_block+0x70/0x70
[ 3368.656035][T30177]  ? touch_atime+0xcf/0x240
[ 3368.660716][T30177]  generic_file_read_iter+0x1c5/0x2c0
[ 3368.666200][T30177]  blkdev_read_iter+0xb9/0xf0
[ 3368.671037][T30177]  generic_file_splice_read+0x22a/0x310
[ 3368.676759][T30177]  ? splice_shrink_spd+0x60/0x60
[ 3368.681698][T30177]  splice_direct_to_actor+0x2aa/0x650
[ 3368.687254][T30177]  ? do_splice_direct+0x170/0x170
[ 3368.692292][T30177]  do_splice_direct+0xf5/0x170
[ 3368.697064][T30177]  do_sendfile+0x773/0xda0
[ 3368.701489][T30177]  __x64_sys_sendfile64+0xf2/0x130
[ 3368.706610][T30177]  do_syscall_64+0x4a/0x90
[ 3368.711110][T30177]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3368.717162][T30177] RIP: 0033:0x4665d9
[ 3368.721167][T30177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3368.741055][T30177] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
03:13:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000006000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:52 executing program 2:
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000240)={'erspan0\x00', &(0x7f0000000200)={'erspan0\x00', 0x0, 0x20, 0x9, 0x7, 0x1, {{0x6, 0x4, 0x3, 0x4, 0x18, 0x67, 0x0, 0x1, 0x4, 0x0, @private=0xa010102, @broadcast, {[@ra={0x94, 0x4, 0x1}]}}}}})
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f00000000c0)=0x2)
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
fcntl$getownex(r3, 0x10, &(0x7f0000000040))
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000340)={@dev={0xfe, 0x80, '\x00', 0xe}, 0x8001, 0x2, 0x1, 0x6, 0x4, 0x400}, 0x20)

03:13:52 executing program 4 (fault-call:9 fault-nth:0):
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:13:52 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000004c000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3368.749572][T30177] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3368.757540][T30177] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3368.765643][T30177] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3368.773616][T30177] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3368.781680][T30177] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:52 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
r3 = gettid()
ptrace(0x4206, r3)
tkill(r3, 0x800000009)
tkill(r3, 0x20)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:52 executing program 5 (fault-call:1 fault-nth:51):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:52 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000006800000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3368.866055][T30186] loop3: detected capacity change from 0 to 512
[ 3368.879790][T30186] EXT4-fs (loop3): Invalid log block size: 19456
[ 3368.890224][T30196] FAULT_INJECTION: forcing a failure.
[ 3368.890224][T30196] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3368.903892][T30196] CPU: 1 PID: 30196 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3368.913125][T30196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3368.923280][T30196] Call Trace:
[ 3368.926562][T30196]  dump_stack+0x137/0x19d
[ 3368.930996][T30196]  should_fail+0x23c/0x250
[ 3368.935613][T30196]  __alloc_pages+0x102/0x320
[ 3368.940374][T30196]  alloc_pages+0x21d/0x310
[ 3368.945085][T30196]  push_pipe+0x267/0x370
[ 3368.949337][T30196]  iov_iter_get_pages+0xb39/0xcc0
[ 3368.954368][T30196]  ? current_time+0xdb/0x190
[ 3368.959051][T30196]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3368.964523][T30196]  ? blk_flush_plug_list+0x23c/0x260
[ 3368.970129][T30196]  ? blkdev_direct_IO+0x392/0x1060
[ 3368.975246][T30196]  ? __kmalloc+0x23d/0x340
[ 3368.979666][T30196]  ? blkdev_direct_IO+0x392/0x1060
[ 3368.984898][T30196]  blkdev_direct_IO+0x9ec/0x1060
[ 3368.990039][T30196]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3368.995938][T30196]  ? blkdev_get_block+0x70/0x70
[ 3369.000805][T30196]  ? touch_atime+0xcf/0x240
[ 3369.005499][T30196]  generic_file_read_iter+0x1c5/0x2c0
[ 3369.011075][T30196]  blkdev_read_iter+0xb9/0xf0
[ 3369.015760][T30196]  generic_file_splice_read+0x22a/0x310
[ 3369.021446][T30196]  ? splice_shrink_spd+0x60/0x60
[ 3369.026387][T30196]  splice_direct_to_actor+0x2aa/0x650
[ 3369.031847][T30196]  ? do_splice_direct+0x170/0x170
[ 3369.036897][T30196]  do_splice_direct+0xf5/0x170
[ 3369.041923][T30196]  do_sendfile+0x773/0xda0
[ 3369.046410][T30196]  __x64_sys_sendfile64+0xf2/0x130
[ 3369.051535][T30196]  do_syscall_64+0x4a/0x90
[ 3369.056063][T30196]  ? irqentry_exit_to_user_mode+0x5/0x20
[ 3369.062067][T30196]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3369.067967][T30196] RIP: 0033:0x4665d9
[ 3369.071863][T30196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3369.092047][T30196] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3369.100738][T30196] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3369.108721][T30196] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
03:13:53 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000006c00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:53 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3369.116735][T30196] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3369.124803][T30196] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3369.132982][T30196] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:53 executing program 5 (fault-call:1 fault-nth:52):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000052000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3369.240945][T30217] FAULT_INJECTION: forcing a failure.
[ 3369.240945][T30217] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3369.254426][T30217] CPU: 1 PID: 30217 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3369.263410][T30217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3369.273794][T30217] Call Trace:
[ 3369.277082][T30217]  dump_stack+0x137/0x19d
[ 3369.281512][T30217]  should_fail+0x23c/0x250
[ 3369.286293][T30217]  __alloc_pages+0x102/0x320
[ 3369.290918][T30217]  alloc_pages+0x21d/0x310
[ 3369.295547][T30217]  push_pipe+0x267/0x370
[ 3369.300019][T30217]  iov_iter_get_pages+0xb39/0xcc0
[ 3369.305163][T30217]  ? current_time+0xdb/0x190
[ 3369.309812][T30217]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3369.315434][T30217]  ? blk_flush_plug_list+0x23c/0x260
[ 3369.320759][T30217]  ? blkdev_direct_IO+0x392/0x1060
[ 3369.326015][T30217]  ? __kmalloc+0x23d/0x340
[ 3369.330531][T30217]  ? blkdev_direct_IO+0x392/0x1060
[ 3369.335710][T30217]  blkdev_direct_IO+0x9ec/0x1060
[ 3369.340657][T30217]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3369.346627][T30217]  ? blkdev_get_block+0x70/0x70
[ 3369.351706][T30217]  ? __mnt_drop_write+0x12/0x20
[ 3369.356613][T30217]  ? touch_atime+0x1b3/0x240
[ 3369.361215][T30217]  generic_file_read_iter+0x1c5/0x2c0
[ 3369.366716][T30217]  blkdev_read_iter+0xb9/0xf0
[ 3369.371494][T30217]  generic_file_splice_read+0x22a/0x310
[ 3369.377171][T30217]  ? splice_shrink_spd+0x60/0x60
[ 3369.382260][T30217]  splice_direct_to_actor+0x2aa/0x650
[ 3369.387718][T30217]  ? do_splice_direct+0x170/0x170
[ 3369.392949][T30217]  do_splice_direct+0xf5/0x170
[ 3369.397796][T30217]  do_sendfile+0x773/0xda0
[ 3369.402225][T30217]  __x64_sys_sendfile64+0xf2/0x130
[ 3369.407428][T30217]  do_syscall_64+0x4a/0x90
[ 3369.411886][T30217]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3369.417895][T30217] RIP: 0033:0x4665d9
[ 3369.421791][T30217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
03:13:53 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000007400000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3369.441410][T30217] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3369.442753][T30219] loop3: detected capacity change from 0 to 512
[ 3369.450345][T30217] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3369.450366][T30217] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3369.450379][T30217] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3369.460527][T30219] EXT4-fs (loop3): Invalid log block size: 20992
03:13:53 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
setrlimit(0xa, &(0x7f00000000c0)={0x2, 0x3})
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
r1 = gettid()
sched_setattr(r1, &(0x7f0000000000)={0x38, 0x2, 0x10000005, 0x0, 0x3, 0x3, 0x2, 0x3, 0x8001, 0x62d4}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setattr(r0, &(0x7f0000000080)={0x38, 0x0, 0x40, 0x6, 0x0, 0x3, 0x200, 0x0, 0x10001, 0x80}, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x8000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="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"/297, 0xffffffca)
r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000bc0), 0x12000, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000d40)=[{&(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000340)="21b723b9629eff9e59b64aa0fb1103f73bf78c543eff7b201c9889c9d56c9696bf38a492a8edc1248c38be16029ef418ca97217762c50dc7ce86671a28b50ecfa4ff77003d78752a2eb6db218541e056d1628cc3de45ef04eff685f8d0dc0fda829feba0db2bf2b97de3d05b0355", 0x6e}, {&(0x7f00000003c0)="0cdd47dbc4af80274d8bbcc58d579c22724edd85586fc620c92142b787159a1fe84ef310162560c73bc233c2f2f63edd256c918849c7233ca59453fb239d2c036f81b2b225937755e3b627a9235e0bebfb19d13b1c37134941a2f78e445debd59aac15c7aa46564570a3d45457a3e4f63eb9bc3eacb68c9709ee4783150d0df5a38039b4e9d0e3f9a421c81ba1df950c010d85517706eb7ff623a47ea43dee15ca086224a115245251e8cf8a80ecea0ffcfe90769157e57fd5dc6b8c6b1cadf05d228e973b07eca78486f8812535bdd6f6c4", 0xd2}, {&(0x7f00000004c0)="8bdb0b77e8336e39edf59ed280cda41010baddbdf9cecda5a4c2302d5a438766280c3398d3a46b909523e2560245eaeac833dc63b0b698f56139644e47ff7c3982be7056bfe751baf1ee7e8508d194b046ee5f93de18447e7e24569b294502ad860cb1528b4aacf0ed606cbfdadd150f52761cb55c263b12510333727eb724a607112988fe9954863b47d4d5cff12cc4acdc7353212402ab14eab5680a2e2bf0", 0xa0}], 0x3, &(0x7f0000000c00)=[@cred={{0x1c, 0x1, 0x2, {r1, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x2c, 0x1, 0x1, [r3, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4, r5, r6]}}], 0x120}], 0x1, 0x4000041)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x6, 0x50, 0x8, 0x1, 0x5, 0x6b38, 0x0, 0x3, 0x1000}, 0x0)

03:13:53 executing program 5 (fault-call:1 fault-nth:53):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3369.464902][T30217] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3369.464920][T30217] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3369.548640][T30235] FAULT_INJECTION: forcing a failure.
[ 3369.548640][T30235] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3369.562007][T30235] CPU: 1 PID: 30235 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3369.571170][T30235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3369.581611][T30235] Call Trace:
[ 3369.584991][T30235]  dump_stack+0x137/0x19d
[ 3369.589332][T30235]  should_fail+0x23c/0x250
[ 3369.593806][T30235]  __alloc_pages+0x102/0x320
[ 3369.598425][T30235]  alloc_pages+0x21d/0x310
[ 3369.603109][T30235]  push_pipe+0x267/0x370
[ 3369.607386][T30235]  iov_iter_get_pages+0xb39/0xcc0
[ 3369.612645][T30235]  ? current_time+0xdb/0x190
[ 3369.617224][T30235]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3369.622918][T30235]  ? blk_flush_plug_list+0x23c/0x260
[ 3369.628387][T30235]  ? blkdev_direct_IO+0x392/0x1060
[ 3369.633871][T30235]  ? __kmalloc+0x23d/0x340
[ 3369.638811][T30235]  ? blkdev_direct_IO+0x392/0x1060
[ 3369.643937][T30235]  blkdev_direct_IO+0x9ec/0x1060
[ 3369.648868][T30235]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3369.654929][T30235]  ? blkdev_get_block+0x70/0x70
[ 3369.659787][T30235]  ? touch_atime+0xcf/0x240
[ 3369.664300][T30235]  generic_file_read_iter+0x1c5/0x2c0
[ 3369.669676][T30235]  blkdev_read_iter+0xb9/0xf0
[ 3369.674420][T30235]  generic_file_splice_read+0x22a/0x310
[ 3369.679951][T30235]  ? splice_shrink_spd+0x60/0x60
[ 3369.684879][T30235]  splice_direct_to_actor+0x2aa/0x650
[ 3369.690264][T30235]  ? do_splice_direct+0x170/0x170
[ 3369.695303][T30235]  do_splice_direct+0xf5/0x170
[ 3369.700147][T30235]  do_sendfile+0x773/0xda0
[ 3369.704640][T30235]  __x64_sys_sendfile64+0xf2/0x130
[ 3369.709907][T30235]  do_syscall_64+0x4a/0x90
[ 3369.714385][T30235]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3369.720268][T30235] RIP: 0033:0x4665d9
[ 3369.724547][T30235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3369.744686][T30235] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3369.753199][T30235] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3369.761440][T30235] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3369.769504][T30235] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3369.777601][T30235] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3369.785716][T30235] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:53 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat$incfs(r1, &(0x7f0000000740)='.log\x00', 0x8000, 0x120)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000780)={0xc0000000})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000700)=[{&(0x7f00000005c0)=""/67, 0x43}, {&(0x7f0000000640)=""/178, 0xb2}], 0x2, 0x4, 0x6)
preadv(r3, &(0x7f0000000500)=[{&(0x7f0000000040)=""/35, 0x23}, {&(0x7f00000000c0)=""/160, 0xa0}, {&(0x7f0000000180)=""/148, 0x94}, {&(0x7f0000000240)=""/163, 0xa3}, {&(0x7f0000000300)=""/141, 0x8d}, {&(0x7f00000003c0)=""/44, 0x2c}, {&(0x7f0000000400)=""/63, 0x3f}, {&(0x7f0000000440)=""/14, 0xe}, {&(0x7f0000000480)=""/110, 0x6e}], 0x9, 0xd9f, 0x5)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:53 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000007a00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000053000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:53 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000cc00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:53 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000cd00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:53 executing program 5 (fault-call:1 fault-nth:54):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3369.874272][T30247] loop3: detected capacity change from 0 to 512
[ 3369.884604][T30247] EXT4-fs (loop3): Invalid log block size: 21248
[ 3369.944774][T30247] loop3: detected capacity change from 0 to 512
[ 3369.951544][T30247] EXT4-fs (loop3): Invalid log block size: 21248
[ 3369.958585][T30262] FAULT_INJECTION: forcing a failure.
[ 3369.958585][T30262] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3369.972006][T30262] CPU: 1 PID: 30262 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3369.980882][T30262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3369.991160][T30262] Call Trace:
[ 3369.994674][T30262]  dump_stack+0x137/0x19d
[ 3369.999007][T30262]  should_fail+0x23c/0x250
[ 3370.003428][T30262]  __alloc_pages+0x102/0x320
[ 3370.008013][T30262]  alloc_pages+0x21d/0x310
[ 3370.012625][T30262]  push_pipe+0x267/0x370
[ 3370.016869][T30262]  iov_iter_get_pages+0xb39/0xcc0
[ 3370.021923][T30262]  ? current_time+0xdb/0x190
[ 3370.026651][T30262]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3370.032074][T30262]  ? blk_flush_plug_list+0x23c/0x260
[ 3370.037431][T30262]  ? blkdev_direct_IO+0x392/0x1060
[ 3370.042806][T30262]  ? __kmalloc+0x23d/0x340
[ 3370.047444][T30262]  ? blkdev_direct_IO+0x392/0x1060
[ 3370.052565][T30262]  blkdev_direct_IO+0x9ec/0x1060
[ 3370.057686][T30262]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3370.063872][T30262]  ? blkdev_get_block+0x70/0x70
[ 3370.068848][T30262]  ? touch_atime+0xcf/0x240
[ 3370.073431][T30262]  generic_file_read_iter+0x1c5/0x2c0
[ 3370.078902][T30262]  blkdev_read_iter+0xb9/0xf0
[ 3370.083673][T30262]  generic_file_splice_read+0x22a/0x310
[ 3370.089364][T30262]  ? splice_shrink_spd+0x60/0x60
[ 3370.094473][T30262]  splice_direct_to_actor+0x2aa/0x650
[ 3370.099931][T30262]  ? do_splice_direct+0x170/0x170
[ 3370.105008][T30262]  do_splice_direct+0xf5/0x170
[ 3370.109775][T30262]  do_sendfile+0x773/0xda0
[ 3370.114251][T30262]  __x64_sys_sendfile64+0xf2/0x130
[ 3370.119664][T30262]  do_syscall_64+0x4a/0x90
[ 3370.124169][T30262]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3370.130073][T30262] RIP: 0033:0x4665d9
[ 3370.134213][T30262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3370.154178][T30262] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3370.162868][T30262] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3370.171245][T30262] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3370.179226][T30262] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3370.187744][T30262] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3370.195802][T30262] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:56 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200)=<r3=>0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)
clock_gettime(0x0, &(0x7f0000000080)={<r5=>0x0, <r6=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000140)={{0x77359400}, {r5, r6+60000000}}, &(0x7f00000001c0))

03:13:56 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x1, 0x1, &(0x7f00000000c0)=[{&(0x7f00000002c0)="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", 0x1000, 0x5}], 0x20000, &(0x7f00000012c0)={[{}, {@mode={'mode', 0x3d, 0x7}}], [{@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@smackfsdef}, {@obj_type}, {@fsuuid={'fsuuid', 0x3d, {[0x32, 0x5, 0x63, 0x35, 0x64, 0x36, 0x31, 0x63], 0x2d, [0x31, 0x35, 0x32, 0x65], 0x2d, [0x39, 0x33, 0x32, 0x61], 0x2d, [0x33, 0x36, 0x64, 0x37], 0x2d, [0x64, 0x62, 0x64, 0x61, 0x39, 0x65, 0x39, 0xc]}}}, {@permit_directio}, {@permit_directio}, {@fsuuid={'fsuuid', 0x3d, {[0x63, 0xca, 0x32, 0x63, 0x39, 0x37, 0x30, 0x65], 0x2d, [0x64, 0x63, 0x65, 0x65], 0x2d, [0x33, 0x34, 0x35, 0x64], 0x2d, [0x51, 0x30, 0x65, 0x36], 0x2d, [0x30, 0x35, 0x53, 0x65, 0x33, 0x37, 0x37, 0x36]}}}]})
preadv(r3, &(0x7f0000000180)=[{&(0x7f00000013c0)=""/4096, 0x1000}, {&(0x7f00000023c0)=""/137, 0x89}, {&(0x7f0000000100)=""/25, 0x19}, {&(0x7f0000002480)=""/156, 0x9c}, {&(0x7f0000002540)=""/4096, 0x1000}], 0x5, 0x2, 0x3)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:56 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:13:56 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000054000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000ce00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:56 executing program 5 (fault-call:1 fault-nth:55):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000cf00000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3372.225050][T30281] loop3: detected capacity change from 0 to 512
[ 3372.225872][T30280] FAULT_INJECTION: forcing a failure.
[ 3372.225872][T30280] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3372.244926][T30280] CPU: 1 PID: 30280 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3372.247217][T30281] EXT4-fs (loop3): Invalid log block size: 21504
[ 3372.253877][T30280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3372.253891][T30280] Call Trace:
[ 3372.253899][T30280]  dump_stack+0x137/0x19d
[ 3372.278464][T30280]  should_fail+0x23c/0x250
[ 3372.282964][T30280]  __alloc_pages+0x102/0x320
[ 3372.287582][T30280]  alloc_pages+0x21d/0x310
[ 3372.292011][T30280]  push_pipe+0x267/0x370
[ 3372.296265][T30280]  iov_iter_get_pages+0xb39/0xcc0
[ 3372.301648][T30280]  ? current_time+0xdb/0x190
[ 3372.306329][T30280]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3372.311833][T30280]  ? blk_flush_plug_list+0x23c/0x260
[ 3372.317202][T30280]  ? blkdev_direct_IO+0x392/0x1060
[ 3372.322457][T30280]  ? __kmalloc+0x23d/0x340
[ 3372.327075][T30280]  ? blkdev_direct_IO+0x392/0x1060
[ 3372.332180][T30280]  blkdev_direct_IO+0x9ec/0x1060
[ 3372.337118][T30280]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3372.343329][T30280]  ? blkdev_get_block+0x70/0x70
[ 3372.348403][T30280]  ? touch_atime+0xcf/0x240
[ 3372.353285][T30280]  generic_file_read_iter+0x1c5/0x2c0
[ 3372.358699][T30280]  blkdev_read_iter+0xb9/0xf0
[ 3372.363509][T30280]  generic_file_splice_read+0x22a/0x310
[ 3372.369683][T30280]  ? splice_shrink_spd+0x60/0x60
[ 3372.374800][T30280]  splice_direct_to_actor+0x2aa/0x650
[ 3372.380357][T30280]  ? do_splice_direct+0x170/0x170
[ 3372.385461][T30280]  do_splice_direct+0xf5/0x170
[ 3372.390343][T30280]  do_sendfile+0x773/0xda0
[ 3372.394764][T30280]  __x64_sys_sendfile64+0xf2/0x130
[ 3372.399865][T30280]  do_syscall_64+0x4a/0x90
[ 3372.404278][T30280]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3372.410421][T30280] RIP: 0033:0x4665d9
[ 3372.414420][T30280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3372.435005][T30280] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3372.443412][T30280] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3372.451870][T30280] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3372.460858][T30280] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3372.469270][T30280] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3372.477409][T30280] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:56 executing program 5 (fault-call:1 fault-nth:56):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000d000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3372.533446][T30281] loop3: detected capacity change from 0 to 512
[ 3372.562864][T30281] EXT4-fs (loop3): Invalid log block size: 21504
[ 3372.614479][T30297] FAULT_INJECTION: forcing a failure.
[ 3372.614479][T30297] name failslab, interval 1, probability 0, space 0, times 0
[ 3372.627424][T30297] CPU: 0 PID: 30297 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3372.636289][T30297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3372.646704][T30297] Call Trace:
[ 3372.649995][T30297]  dump_stack+0x137/0x19d
[ 3372.654332][T30297]  should_fail+0x23c/0x250
[ 3372.658996][T30297]  ? kmalloc_array+0x2d/0x40
[ 3372.663687][T30297]  __should_failslab+0x81/0x90
[ 3372.668608][T30297]  should_failslab+0x5/0x20
[ 3372.673127][T30297]  __kmalloc+0x66/0x340
[ 3372.677376][T30297]  ? iov_iter_revert+0x151/0x540
[ 3372.682371][T30297]  ? splice_from_pipe+0xc0/0xc0
[ 3372.687248][T30297]  kmalloc_array+0x2d/0x40
[ 3372.691719][T30297]  iter_file_splice_write+0xc1/0x750
[ 3372.697242][T30297]  ? atime_needs_update+0x239/0x390
[ 3372.702449][T30297]  ? generic_file_splice_read+0x284/0x310
[ 3372.708489][T30297]  ? splice_from_pipe+0xc0/0xc0
[ 3372.713353][T30297]  direct_splice_actor+0x80/0xa0
[ 3372.718297][T30297]  splice_direct_to_actor+0x345/0x650
[ 3372.723738][T30297]  ? do_splice_direct+0x170/0x170
[ 3372.728933][T30297]  do_splice_direct+0xf5/0x170
[ 3372.733706][T30297]  do_sendfile+0x773/0xda0
[ 3372.738316][T30297]  __x64_sys_sendfile64+0xf2/0x130
[ 3372.743549][T30297]  do_syscall_64+0x4a/0x90
[ 3372.747975][T30297]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3372.754120][T30297] RIP: 0033:0x4665d9
[ 3372.758016][T30297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3372.778066][T30297] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3372.786488][T30297] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3372.794464][T30297] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3372.802460][T30297] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
03:13:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000005801000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:56 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000055000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3372.810536][T30297] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3372.818846][T30297] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000402000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3372.922395][T30306] loop3: detected capacity change from 0 to 512
[ 3372.932828][T30306] EXT4-fs (loop3): Invalid log block size: 21760
03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000003000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:59 executing program 5 (fault-call:1 fault-nth:57):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:59 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000060000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:59 executing program 1:
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x8000, 0x4000)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000080)={0x2, 0x2, {0x1, 0x1, 0x3, 0x1, 0x2}, 0x8})
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x24, 0x0, 0x9, 0x0, 0x0, 0x9, 0x80000000}, 0x0)
sched_setattr(r1, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:13:59 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0xfffe, 0x0, @empty}, 0x1c)

[ 3375.264523][T30328] loop3: detected capacity change from 0 to 512
[ 3375.272149][T30329] FAULT_INJECTION: forcing a failure.
[ 3375.272149][T30329] name failslab, interval 1, probability 0, space 0, times 0
[ 3375.275657][T30328] EXT4-fs (loop3): Invalid log block size: 24576
[ 3375.285046][T30329] CPU: 0 PID: 30329 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3375.300079][T30329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3375.310228][T30329] Call Trace:
[ 3375.313798][T30329]  dump_stack+0x137/0x19d
[ 3375.318178][T30329]  should_fail+0x23c/0x250
[ 3375.322639][T30329]  ? blkdev_direct_IO+0x392/0x1060
[ 3375.327786][T30329]  __should_failslab+0x81/0x90
[ 3375.332660][T30329]  should_failslab+0x5/0x20
[ 3375.337165][T30329]  __kmalloc+0x66/0x340
[ 3375.341469][T30329]  ? blkdev_write_iter+0x29d/0x2b0
[ 3375.346768][T30329]  blkdev_direct_IO+0x392/0x1060
[ 3375.351909][T30329]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3375.357919][T30329]  ? current_time+0xdb/0x190
[ 3375.362718][T30329]  ? atime_needs_update+0x239/0x390
[ 3375.368092][T30329]  ? touch_atime+0xcf/0x240
[ 3375.372689][T30329]  generic_file_read_iter+0x1c5/0x2c0
[ 3375.378164][T30329]  blkdev_read_iter+0xb9/0xf0
[ 3375.382851][T30329]  generic_file_splice_read+0x22a/0x310
[ 3375.388726][T30329]  ? splice_shrink_spd+0x60/0x60
[ 3375.393948][T30329]  splice_direct_to_actor+0x2aa/0x650
[ 3375.399516][T30329]  ? do_splice_direct+0x170/0x170
[ 3375.404631][T30329]  do_splice_direct+0xf5/0x170
[ 3375.409419][T30329]  do_sendfile+0x773/0xda0
[ 3375.413872][T30329]  __x64_sys_sendfile64+0xf2/0x130
[ 3375.419033][T30329]  do_syscall_64+0x4a/0x90
[ 3375.423437][T30329]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3375.429673][T30329] RIP: 0033:0x4665d9
[ 3375.433558][T30329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3375.453476][T30329] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
03:13:59 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
tkill(0x0, 0x800000009)
newfstatat(0xffffffffffffff9c, &(0x7f0000003f00)='./file0\x00', &(0x7f0000003f40)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x1000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write(r6, &(0x7f00000000c0)="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"/297, 0xffffffca)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write(r7, &(0x7f00000000c0)="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"/297, 0xffffffca)
r8 = openat$cgroup_type(r4, &(0x7f0000003fc0), 0x2, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004140)=[{&(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000140)=[{&(0x7f00000002c0)="2c141d91468f693fa162f64347081092b46df837bc072ddf71cef97a56f453cf0f7bfe1bd3501ebe7f901c3bfec8dd52d4023e9ea9b40ec770cf00b128db3fc1f5478d637be749a67be9045cca29770809f5b74d89a39cc1d486ef002ee32aff9dbd1f71f71c6613aa12a9d616829d73b40ef130d34a4e95ec5de53220da2395f42a6fc95f1627052e69c9db3d3825282003d06172c28ff7c436693c62ad0d78f5f7231adb32ea13fb501aaa17a1ed37cf1eade38ce461423c25b7df03d7a9b1a2c4ac961a6bf6c762655073c93ae7fd59b7b56ec65dadffe3b75496fcf726c371030c9485e5a0eafb4a080302f739ec651fdb6e8e3c", 0xf6}], 0x1, &(0x7f0000000e00)=[@rights={{0x24, 0x1, 0x1, [r4, r3, r3, r2, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [r3]}}, @rights={{0x20, 0x1, 0x1, [r4, r1, 0xffffffffffffffff, r1]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r1, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}], 0xe0, 0x8010}, {&(0x7f0000000f00)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000002240)=[{&(0x7f0000000f80)="257d25b5524c392c4b51bb93172990af39eef59f4ff18afdf14e5fe536dcc22bd65a7c9382da09c4dae5a36aaa4918d3c245b96b91c78c093eab63528153d8c4637be0d7e7ded2ab483daf82f321c2ed", 0x50}, {&(0x7f0000001000)="4137dbae5c6be3b28a5d1c45a1676adfc7ac08e6e193e13bb2043615da01b3fd689a6dda6e84627ce23af5073f51", 0x2e}, {&(0x7f0000001040)="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", 0x1000}, {&(0x7f0000002040)="22f5ea0c86f4901ab31b3c8e9ea46b7f77a30061a4ea369f88fc8dd509b77b8c608776e35aaaf3ecf6dc89ad10df0cd1f89837a54bcf731837499e68106f51009f856d3c158856d6021d3898bdd013e5e54c229a5a9710aa3dd4cc4d0a306c87eb9014169da8319d81ddaa494500b913cda6580f04fb246c42194a2fe43ecc694f7e3c6f73a5b59cba9eab1201014ee02c23a4b09ba5ae6717036a20997c7ba7530c1bd7146556d8dc0874011053", 0xae}, {&(0x7f0000002100)="c47072c738c01aee0a58587f46c15fec9cdd10a801f32183113c072fbbdd2b2a7cea98cf8985141f7228ca5a61f567af54cc72c050f06081eb0ed5cea71ea757b7ec45e2bc5c7d3e06ead2346fe03bd7e0bf2087523cfcfc45b4c173ea4e5263aeb07bad12cdb4c931717c597d2f10e1b2ceeaa7e3102b11bf941fa4188b7cd2d9293166efdc8797f4b61fb581ef36e2d0db139254bc7cbb07b8bf8e3fa6ac5fbaa9c0b1c1b8d5f760cd4b3d4c990197eb3315bd1b88f30fff53932c283642ac7a704b326ae0e9a134f7acc523bd6b", 0xcf}, {&(0x7f0000002200)}], 0x6, &(0x7f00000024c0)=[@rights={{0x1c, 0x1, 0x1, [r1, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xffffffffffffffff}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r4, r1, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xee01}}}], 0xa8, 0xc054}, {&(0x7f0000002580)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000002780)=[{&(0x7f0000002600)="bbf0054ac7fa4a59e441c9ef90f186f3884103d00d7731835f0d32ab43ea174596d102c3928d588d834c5a2419c5e6fe0986d9958456aa49bfab4acd80264f32839b87b00b3b651e9b86a7a7e31715fa7e1606c937ae32355a395a1e7aa147bedd", 0x61}, {&(0x7f0000002680)="75ff3c2cafbd014e144bff1c412693a9a822cfd90e20077267806e6bfda1a501f0ad4bf4f41b189a25fbcf165cb7bcceaf31ac6d787ca32cb4732c0552363fceebece26afa0c9fada5b9a032e2f29a67f5930f67c8700c8c130b8cdd67f6261bd340c13fb82ac846c6e3118436e367f662243b1a35dd5adf8b299f09643a6bbc344dbd4259890ff3a93111732e3df2f01119f00c42027574bef33338e3014a65efd4c8dbb4c28dd91ae808fafaf9a9ec952b52575640f105db21549f89929258baf204efa0797d39a1317a496321fc5c8dc853e9ae7d3612573852272553da1f9390d539e577411c9e587872c14f5b8148e493ec96", 0xf5}], 0x2, &(0x7f00000028c0)=[@rights={{0x14, 0x1, 0x1, [r3]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}], 0xb0, 0x20000000}, {&(0x7f0000002980)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000003d40)=[{&(0x7f0000002a00)}, {&(0x7f0000002a40)="f2e4e9997a9ff02a35c450ea73371b90dba3ee1bfd75c32ea2c1dd5723cb8eea0eb84f0cfdfbb015a8fb65d08c5953f73aa11fdfe05f63fb7315ccc20efc543c0de5e3fa6a29465bc3d928b5fd62f4de7c2055da0464f9d0dccdde84b1cbe4fc05a6ae4cc50eb4f00fa21ba1bd10353e972a88", 0x73}, {&(0x7f0000002ac0)="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", 0x1000}, {&(0x7f0000003ac0)="8f455f57799466a273281cbaa6968340d93a8837d36cb021ad514faf3a4990f80ba0fca5cfeb93c32d5aacbcc8ef9acb5fe3612954fa83ecb3e73f3732089c5002ff873f85e4145fae976db1970f6c1576f6dcc2621222d8135cb0b33cca1d1e922f602e0e94232a54b22109365e734a85b78779d690f5f73a7e8dd008c2c41cdc6f09251f5317a3c04ea8b123f38941c61a502f70233772d7126e2bf8b4419825a9785b40aec76fc7bef025b9557d7c8e6023fb77d937644132316a9d01910f1697e40a3fb513e6730196d9e5c394b0a338f2f76b44", 0xd6}, {&(0x7f0000003bc0)="a5ceaa7a612c245852364f26bb87eeda55843ff93e512e272f9cb0357bcfaa1ff96659265039c29422112d531478620344b7d52eb1e5124c25b941263b84fde81814e01ed6409594cc12c8fb89acf395d0c3f3fcab8a258e779ad594a5fbdcf5538d3a708c4cdb367aaf95df63e1ab3acd911a8a6f3d2e08aecf2784dc3aa974d3a7be2081695ef274233881aef60425a570", 0x92}, {&(0x7f0000003c80)="0f2aa339077e5eb963367eec4c12d916973fc6451228e48767b6752b1d24b571a32f2d8c9f17479dc1d4584676457d2015017f20305d08791aee78a327323327cc57dc337885c4baf798b309d6726f7d5c6e0892ac47a1ca40de3491aa5d2a55aad239f0f7d9b9636c65be9618a46c16b4044d51ce1ba991daf4164b90dac3c586f48270c893a2a9e2b2462522", 0x8d}], 0x6, &(0x7f0000004000)=[@rights={{0x14, 0x1, 0x1, [r4]}}, @rights={{0x20, 0x1, 0x1, [r4, r4, 0xffffffffffffffff, r2]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r2, 0xffffffffffffffff, r2, 0xffffffffffffffff, r3]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r5}}}, @rights={{0x2c, 0x1, 0x1, [r6, r4, r4, r2, r3, r7, r8]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff, 0xffffffffffffffff}}}], 0x140, 0x1}], 0x4, 0x40)
splice(r1, 0x0, r4, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r9=>0x0)
fcntl$setpipe(r4, 0x407, 0x8000000000)
timer_settime(r9, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r4, 0x0, 0x4)

03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000204000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3375.462068][T30329] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3375.470038][T30329] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3375.478136][T30329] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3375.486161][T30329] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3375.494230][T30329] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:13:59 executing program 5 (fault-call:1 fault-nth:58):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:13:59 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000068000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000604000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3375.558516][T30328] loop3: detected capacity change from 0 to 512
[ 3375.572657][T30328] EXT4-fs (loop3): Invalid log block size: 24576
03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001004000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3375.602707][T30349] FAULT_INJECTION: forcing a failure.
[ 3375.602707][T30349] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3375.616288][T30349] CPU: 0 PID: 30349 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3375.625122][T30349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3375.635357][T30349] Call Trace:
[ 3375.638841][T30349]  dump_stack+0x137/0x19d
[ 3375.643491][T30349]  should_fail+0x23c/0x250
[ 3375.648041][T30349]  __alloc_pages+0x102/0x320
03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000005000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000006000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3375.652691][T30349]  alloc_pages+0x21d/0x310
[ 3375.657201][T30349]  push_pipe+0x267/0x370
[ 3375.661454][T30349]  iov_iter_get_pages+0xb39/0xcc0
[ 3375.666611][T30349]  ? current_time+0xdb/0x190
[ 3375.671493][T30349]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3375.676876][T30349]  ? blk_flush_plug_list+0x23c/0x260
[ 3375.682250][T30349]  ? blkdev_direct_IO+0x392/0x1060
[ 3375.687401][T30349]  ? __kmalloc+0x23d/0x340
[ 3375.691983][T30349]  ? blkdev_direct_IO+0x392/0x1060
[ 3375.697110][T30349]  blkdev_direct_IO+0x9ec/0x1060
03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000406000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:13:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000007000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3375.702535][T30349]  ? kcsan_setup_watchpoint+0x213/0x380
[ 3375.708109][T30349]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3375.714233][T30349]  ? blkdev_get_block+0x70/0x70
[ 3375.719419][T30349]  ? touch_atime+0xcf/0x240
[ 3375.723936][T30349]  generic_file_read_iter+0x1c5/0x2c0
[ 3375.729334][T30349]  blkdev_read_iter+0xb9/0xf0
[ 3375.734234][T30349]  generic_file_splice_read+0x22a/0x310
[ 3375.740155][T30349]  ? splice_shrink_spd+0x60/0x60
[ 3375.745284][T30349]  splice_direct_to_actor+0x2aa/0x650
[ 3375.751195][T30349]  ? do_splice_direct+0x170/0x170
[ 3375.756220][T30349]  do_splice_direct+0xf5/0x170
[ 3375.761083][T30349]  do_sendfile+0x773/0xda0
[ 3375.765593][T30349]  __x64_sys_sendfile64+0xf2/0x130
[ 3375.770789][T30349]  do_syscall_64+0x4a/0x90
[ 3375.775225][T30349]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3375.781391][T30349] RIP: 0033:0x4665d9
[ 3375.785381][T30349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3375.805577][T30349] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3375.814761][T30349] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3375.822819][T30349] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3375.830904][T30349] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3375.838881][T30349] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3375.847012][T30349] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3375.881821][T30365] loop3: detected capacity change from 0 to 512
[ 3375.891302][T30365] EXT4-fs (loop3): Invalid log block size: 26624
03:14:00 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
r1 = gettid()
ptrace(0x4206, r1)
tkill(r1, 0x800000009)
sched_setattr(r1, &(0x7f0000000000)={0x38, 0x2, 0x4, 0x401, 0xffffffff, 0x3, 0x5, 0x8ee, 0x5, 0xdfe}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:00 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x1)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r3, 0x8982, &(0x7f0000000040)={0x8, 'veth0_to_bridge\x00', {'ip6tnl0\x00'}, 0x1ff})
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:00 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
splice(r4, 0x0, r1, 0x0, 0x9, 0x1f)
timer_create(0x6, &(0x7f0000000500)={0x0, 0x18, 0x1}, &(0x7f0000000200)=<r5=>0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f203fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e43807c028826dfa171a84a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a376cfd9da1b210545f7044002c3b9e01726de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0x129)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(0xffffffffffffffff, 0x942e, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_settime(r5, 0x0, &(0x7f00000001c0)={{0x0, 0x989680}}, &(0x7f0000000240))
timer_create(0x5, &(0x7f0000000000)={0x0, 0x14, 0x1, @tid=r0}, &(0x7f0000000040)=<r6=>0x0)
sched_setattr(r0, &(0x7f0000000080)={0x38, 0x6, 0x10000020, 0x3, 0x8, 0xff, 0x5, 0x1, 0x4, 0x3b80}, 0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r6, 0x1, &(0x7f0000000180)={{0x77359400}, {0x77359400}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:00 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prlimit64(0xffffffffffffffff, 0xc, &(0x7f0000000000)={0x8, 0x1}, &(0x7f0000000080))
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:00 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000009000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:00 executing program 5 (fault-call:1 fault-nth:59):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000006c000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:00 executing program 2:
lstat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@remote, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4e21, 0x0, 0x4e20, 0x5, 0x8, 0x80, 0x80, 0x3a, 0x0, r0}, {0xfffffffffffffff9, 0x1, 0x6, 0x10000, 0x7fff, 0x8, 0x5, 0xfa}, {0xb7d, 0x80, 0xffffffffffffff5b, 0x2}, 0x2, 0x6e6bc0, 0x0, 0x1, 0x1, 0x2}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4d5, 0x2b}, 0xa, @in6=@mcast2, 0x3505, 0x4, 0x0, 0x5, 0x6, 0x81, 0xffe}}, 0xe8)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r1)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0xb)
sendto$inet6(r2, &(0x7f00000000c0)="587de841b57fca6501ccbe142fa463257f0f2195d5ae0e61b842e1798dd58f0b0aee997d5a6681d6eaaca65dd8f2ffb24bb581f357a67fbe2ba9c589a12cefba9fddbc61571544f8b65fa04615e6a40086100a4c9ffe2646fb608d05853a0d545421e6179266c325a75d02a30b68858c504db59e3c02cf44019e00feddc0834fae966d385104c33fb2829c2290060bf59b9cc2e801bfdb5d45a89937793a2231b1aaca5fa7a36c33b1321b468c862ed721c9629670c7e41cf517b5de191bdc632ac551444597991ef24747c95add736c818732030115ad", 0xd7, 0x4800, &(0x7f00000001c0)={0xa, 0x4e20, 0x80, @dev={0xfe, 0x80, '\x00', 0x34}, 0x4}, 0x1c)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f000014f000/0x1000)=nil, 0x1000, 0x1800003, 0x4000010, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3376.232973][T30392] FAULT_INJECTION: forcing a failure.
[ 3376.232973][T30392] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3376.233728][T30396] loop3: detected capacity change from 0 to 512
[ 3376.246259][T30392] CPU: 0 PID: 30392 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3376.246282][T30392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3376.257700][T30396] EXT4-fs (loop3): Invalid log block size: 27648
[ 3376.261482][T30392] Call Trace:
[ 3376.261493][T30392]  dump_stack+0x137/0x19d
[ 3376.261544][T30392]  should_fail+0x23c/0x250
[ 3376.290580][T30392]  __alloc_pages+0x102/0x320
[ 3376.295187][T30392]  alloc_pages+0x21d/0x310
[ 3376.299723][T30392]  push_pipe+0x267/0x370
[ 3376.303973][T30392]  iov_iter_get_pages+0xb39/0xcc0
[ 3376.309092][T30392]  ? current_time+0xdb/0x190
[ 3376.313799][T30392]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3376.319181][T30392]  ? blk_flush_plug_list+0x23c/0x260
[ 3376.324562][T30392]  ? blkdev_direct_IO+0x392/0x1060
[ 3376.329768][T30392]  ? __kmalloc+0x23d/0x340
[ 3376.334220][T30392]  ? blkdev_direct_IO+0x392/0x1060
[ 3376.339531][T30392]  blkdev_direct_IO+0x9ec/0x1060
[ 3376.344475][T30392]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3376.350541][T30392]  ? blkdev_get_block+0x70/0x70
[ 3376.355547][T30392]  ? touch_atime+0xcf/0x240
[ 3376.360149][T30392]  generic_file_read_iter+0x1c5/0x2c0
[ 3376.365738][T30392]  blkdev_read_iter+0xb9/0xf0
[ 3376.370638][T30392]  generic_file_splice_read+0x22a/0x310
[ 3376.376328][T30392]  ? splice_shrink_spd+0x60/0x60
[ 3376.381292][T30392]  splice_direct_to_actor+0x2aa/0x650
[ 3376.386757][T30392]  ? do_splice_direct+0x170/0x170
[ 3376.392076][T30392]  do_splice_direct+0xf5/0x170
[ 3376.396906][T30392]  do_sendfile+0x773/0xda0
[ 3376.401608][T30392]  __x64_sys_sendfile64+0xf2/0x130
[ 3376.406817][T30392]  do_syscall_64+0x4a/0x90
[ 3376.411346][T30392]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3376.417447][T30392] RIP: 0033:0x4665d9
[ 3376.421359][T30392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3376.441175][T30392] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3376.449804][T30392] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3376.457780][T30392] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3376.465791][T30392] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3376.474071][T30392] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:14:00 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000a000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:00 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0xffffffc1, @private0}, 0x1c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000462000/0x13000)=nil, 0x13000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r4, 0x40089413, &(0x7f00000000c0)=0x9)
preadv(r3, &(0x7f0000000280), 0x100000000000027d, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3376.482055][T30392] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:00 executing program 5 (fault-call:1 fault-nth:60):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:00 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000b000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000074000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3376.560835][T30396] loop3: detected capacity change from 0 to 512
[ 3376.590045][T30396] EXT4-fs (loop3): Invalid log block size: 27648
[ 3376.649698][T30419] FAULT_INJECTION: forcing a failure.
[ 3376.649698][T30419] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3376.663356][T30419] CPU: 1 PID: 30419 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3376.672152][T30419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3376.682355][T30419] Call Trace:
[ 3376.685817][T30419]  dump_stack+0x137/0x19d
[ 3376.690255][T30419]  should_fail+0x23c/0x250
[ 3376.694745][T30419]  __alloc_pages+0x102/0x320
[ 3376.699343][T30419]  alloc_pages+0x21d/0x310
[ 3376.703768][T30419]  push_pipe+0x267/0x370
[ 3376.708136][T30419]  iov_iter_get_pages+0xb39/0xcc0
[ 3376.713188][T30419]  ? current_time+0xdb/0x190
[ 3376.717780][T30419]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3376.723161][T30419]  ? blk_flush_plug_list+0x23c/0x260
[ 3376.728462][T30419]  ? blkdev_direct_IO+0x392/0x1060
[ 3376.733577][T30419]  ? __kmalloc+0x23d/0x340
[ 3376.738040][T30419]  ? blkdev_direct_IO+0x392/0x1060
[ 3376.743344][T30419]  blkdev_direct_IO+0x9ec/0x1060
[ 3376.748426][T30419]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3376.754700][T30419]  ? blkdev_get_block+0x70/0x70
[ 3376.756651][T30422] loop3: detected capacity change from 0 to 512
[ 3376.759820][T30419]  ? touch_atime+0xcf/0x240
[ 3376.770661][T30419]  generic_file_read_iter+0x1c5/0x2c0
[ 3376.776039][T30419]  blkdev_read_iter+0xb9/0xf0
[ 3376.781062][T30419]  generic_file_splice_read+0x22a/0x310
[ 3376.786806][T30419]  ? splice_shrink_spd+0x60/0x60
[ 3376.791924][T30419]  splice_direct_to_actor+0x2aa/0x650
[ 3376.797415][T30419]  ? do_splice_direct+0x170/0x170
[ 3376.802472][T30419]  do_splice_direct+0xf5/0x170
[ 3376.807252][T30419]  do_sendfile+0x773/0xda0
[ 3376.811715][T30419]  __x64_sys_sendfile64+0xf2/0x130
[ 3376.816859][T30419]  do_syscall_64+0x4a/0x90
[ 3376.821378][T30419]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3376.827281][T30419] RIP: 0033:0x4665d9
03:14:00 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000c000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3376.831252][T30419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3376.851178][T30419] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3376.859779][T30419] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3376.868006][T30419] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3376.876096][T30419] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3376.884292][T30419] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3376.892273][T30419] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3376.908903][T30422] EXT4-fs (loop3): Invalid log block size: 29696
[ 3376.948879][T30422] loop3: detected capacity change from 0 to 512
[ 3376.955875][T30422] EXT4-fs (loop3): Invalid log block size: 29696
03:14:01 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x77359400}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:01 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x3, 0x800009, 0xfffffffffffffffd, 0x0, 0xfff}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:01 executing program 5 (fault-call:1 fault-nth:61):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000d000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000007a000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000e000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3377.252664][T30446] loop3: detected capacity change from 0 to 512
[ 3377.264027][T30446] EXT4-fs (loop3): Invalid log block size: 31232
[ 3377.272971][T30451] FAULT_INJECTION: forcing a failure.
[ 3377.272971][T30451] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3377.286238][T30451] CPU: 1 PID: 30451 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3377.295366][T30451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3377.305847][T30451] Call Trace:
[ 3377.309119][T30451]  dump_stack+0x137/0x19d
[ 3377.313543][T30451]  should_fail+0x23c/0x250
[ 3377.317970][T30451]  __alloc_pages+0x102/0x320
[ 3377.322862][T30451]  alloc_pages+0x21d/0x310
[ 3377.327473][T30451]  push_pipe+0x267/0x370
[ 3377.331910][T30451]  iov_iter_get_pages+0xb39/0xcc0
[ 3377.337111][T30451]  ? current_time+0xdb/0x190
[ 3377.341808][T30451]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3377.347182][T30451]  ? blk_flush_plug_list+0x23c/0x260
[ 3377.352458][T30451]  ? blkdev_direct_IO+0x392/0x1060
[ 3377.357603][T30451]  ? __kmalloc+0x23d/0x340
[ 3377.362022][T30451]  ? blkdev_direct_IO+0x392/0x1060
[ 3377.367361][T30451]  blkdev_direct_IO+0x9ec/0x1060
[ 3377.372367][T30451]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3377.378483][T30451]  ? blkdev_get_block+0x70/0x70
[ 3377.383476][T30451]  ? touch_atime+0xcf/0x240
[ 3377.388055][T30451]  generic_file_read_iter+0x1c5/0x2c0
[ 3377.393746][T30451]  blkdev_read_iter+0xb9/0xf0
[ 3377.398479][T30451]  generic_file_splice_read+0x22a/0x310
[ 3377.404034][T30451]  ? splice_shrink_spd+0x60/0x60
[ 3377.408974][T30451]  splice_direct_to_actor+0x2aa/0x650
[ 3377.414477][T30451]  ? do_splice_direct+0x170/0x170
[ 3377.419679][T30451]  do_splice_direct+0xf5/0x170
[ 3377.424644][T30451]  do_sendfile+0x773/0xda0
[ 3377.429308][T30451]  __x64_sys_sendfile64+0xf2/0x130
[ 3377.434472][T30451]  do_syscall_64+0x4a/0x90
[ 3377.438892][T30451]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3377.444868][T30451] RIP: 0033:0x4665d9
[ 3377.448770][T30451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3377.468670][T30451] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3377.477285][T30451] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3377.485632][T30451] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3377.494237][T30451] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
03:14:01 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x10, &(0x7f0000000080)=0x400000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x180000d, 0x2010, r2, 0x5d596000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x101180, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:01 executing program 5 (fault-call:1 fault-nth:62):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3377.502228][T30451] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3377.510221][T30451] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000000f000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3377.549895][T30446] loop3: detected capacity change from 0 to 512
[ 3377.560197][T30446] EXT4-fs (loop3): Invalid log block size: 31232
[ 3377.604998][T30466] FAULT_INJECTION: forcing a failure.
[ 3377.604998][T30466] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3377.618701][T30466] CPU: 0 PID: 30466 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3377.627478][T30466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3377.637724][T30466] Call Trace:
[ 3377.641072][T30466]  dump_stack+0x137/0x19d
[ 3377.645465][T30466]  should_fail+0x23c/0x250
[ 3377.649905][T30466]  __alloc_pages+0x102/0x320
03:14:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100ffffff8c000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000410000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3377.654553][T30466]  alloc_pages+0x21d/0x310
[ 3377.659160][T30466]  push_pipe+0x267/0x370
[ 3377.663441][T30466]  iov_iter_get_pages+0xb39/0xcc0
[ 3377.668609][T30466]  ? current_time+0xdb/0x190
[ 3377.673360][T30466]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3377.678745][T30466]  ? blk_flush_plug_list+0x23c/0x260
[ 3377.684136][T30466]  ? blkdev_direct_IO+0x392/0x1060
[ 3377.689301][T30466]  ? __kmalloc+0x23d/0x340
[ 3377.693870][T30466]  ? blkdev_direct_IO+0x392/0x1060
[ 3377.699183][T30466]  blkdev_direct_IO+0x9ec/0x1060
03:14:01 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000002010000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3377.703957][T30476] loop3: detected capacity change from 0 to 512
[ 3377.704164][T30466]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3377.716569][T30466]  ? blkdev_get_block+0x70/0x70
[ 3377.721449][T30466]  ? touch_atime+0xcf/0x240
[ 3377.721823][T30476] EXT4-fs (loop3): Invalid log block size: 36095
[ 3377.725958][T30466]  generic_file_read_iter+0x1c5/0x2c0
[ 3377.725985][T30466]  blkdev_read_iter+0xb9/0xf0
[ 3377.742818][T30466]  generic_file_splice_read+0x22a/0x310
[ 3377.748477][T30466]  ? splice_shrink_spd+0x60/0x60
[ 3377.753420][T30466]  splice_direct_to_actor+0x2aa/0x650
[ 3377.758971][T30466]  ? do_splice_direct+0x170/0x170
[ 3377.764183][T30466]  do_splice_direct+0xf5/0x170
[ 3377.769091][T30466]  do_sendfile+0x773/0xda0
[ 3377.773611][T30466]  __x64_sys_sendfile64+0xf2/0x130
[ 3377.778725][T30466]  do_syscall_64+0x4a/0x90
[ 3377.783290][T30466]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3377.789506][T30466] RIP: 0033:0x4665d9
[ 3377.793616][T30466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3377.813837][T30466] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3377.822352][T30466] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3377.831007][T30466] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3377.839208][T30466] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3377.847880][T30466] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3377.856505][T30466] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3377.928055][T30476] loop3: detected capacity change from 0 to 512
[ 3377.935045][T30476] EXT4-fs (loop3): Invalid log block size: 36095
03:14:04 executing program 5 (fault-call:1 fault-nth:63):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100ffffff97000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000011000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:04 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x6, &(0x7f0000000080))
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_icmp_ICMP_FILTER(r3, 0x1, 0xc, &(0x7f0000000000), 0x4)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0xa, 0x2, 0x7, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r4, 0x8982, &(0x7f00000000c0)={0x0, 'gre0\x00', {0x4}, 0x5})

03:14:04 executing program 2:
r0 = openat2(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x92140, 0x100, 0x10}, 0x18)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="b9f3b9ab", @ANYRES16=r1, @ANYBLOB="000429bd7000fbdbdf25730000000c00990008000000000000000500ee00200000000500ee00200000000800ef00080000000500ee0000000000833e10794e80f7007ba44c727c2db3272c49250024e5cfcf1992611b7b3fcbe1b961e2b717838c124ff0bfdac7989103c405a92a344b48ec0d50d3d2f4f04f5a1c965d7d12de2783d3b466d0d243e6db14f3d19d79313124ba8444ff5913ed8c"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r5 = accept4$inet6(r3, 0x0, &(0x7f0000000040), 0x800)
ioctl$FS_IOC_GETFSLABEL(r5, 0x81009431, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write(r6, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f00000001c0)=0x1, 0x4)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r7, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:04 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
r1 = gettid()
ptrace(0x4206, r1)
tkill(r1, 0x800000009)
sched_setattr(r1, &(0x7f0000000240)={0x38, 0x3, 0x63, 0x2, 0x1, 0x6af, 0x1, 0x9, 0x0, 0x7fff}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r4=>0x0)
fcntl$setpipe(r3, 0x407, 0x8000000000)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$binfmt_misc(r3, 0x0, 0x4)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r6=>0x0, <r7=>0x0})
timer_settime(r5, 0x1, &(0x7f0000000140)={{0x77359400}, {r6, r7+10000000}}, &(0x7f00000001c0))

[ 3380.183927][T30499] loop3: detected capacity change from 0 to 512
[ 3380.185790][T30501] FAULT_INJECTION: forcing a failure.
[ 3380.185790][T30501] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3380.203873][T30501] CPU: 1 PID: 30501 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3380.212638][T30501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3380.221285][T30499] EXT4-fs (loop3): Invalid log block size: 38911
[ 3380.222696][T30501] Call Trace:
03:14:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000012000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:04 executing program 4:
prlimit64(0x0, 0x8, &(0x7f00000000c0)={0x9, 0x100000000}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x3, 0x20000056, 0x287b4ca0, 0x40, 0x0, 0x28000000000, 0x7f, 0x0, 0x4}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r2=>0x0)
fcntl$setpipe(r1, 0x407, 0x8000000000)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r1, 0x0, 0x4)

[ 3380.222707][T30501]  dump_stack+0x137/0x19d
[ 3380.236631][T30501]  should_fail+0x23c/0x250
[ 3380.241147][T30501]  __alloc_pages+0x102/0x320
[ 3380.246020][T30501]  alloc_pages+0x21d/0x310
[ 3380.250453][T30501]  push_pipe+0x267/0x370
[ 3380.254720][T30501]  iov_iter_get_pages+0xb39/0xcc0
[ 3380.259871][T30501]  ? current_time+0xdb/0x190
[ 3380.264471][T30501]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3380.269839][T30501]  ? blk_flush_plug_list+0x23c/0x260
[ 3380.275423][T30501]  ? blkdev_direct_IO+0x392/0x1060
[ 3380.280612][T30501]  ? __kmalloc+0x23d/0x340
[ 3380.285066][T30501]  ? blkdev_direct_IO+0x392/0x1060
[ 3380.290194][T30501]  blkdev_direct_IO+0x9ec/0x1060
[ 3380.295183][T30501]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3380.301239][T30501]  ? blkdev_get_block+0x70/0x70
[ 3380.306288][T30501]  ? touch_atime+0xcf/0x240
[ 3380.311369][T30501]  generic_file_read_iter+0x1c5/0x2c0
[ 3380.317159][T30501]  blkdev_read_iter+0xb9/0xf0
[ 3380.321919][T30501]  generic_file_splice_read+0x22a/0x310
[ 3380.327493][T30501]  ? splice_shrink_spd+0x60/0x60
[ 3380.332497][T30501]  splice_direct_to_actor+0x2aa/0x650
[ 3380.337896][T30501]  ? do_splice_direct+0x170/0x170
[ 3380.342962][T30501]  do_splice_direct+0xf5/0x170
[ 3380.348380][T30501]  do_sendfile+0x773/0xda0
[ 3380.353307][T30501]  __x64_sys_sendfile64+0xf2/0x130
[ 3380.358730][T30501]  do_syscall_64+0x4a/0x90
[ 3380.363476][T30501]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3380.369678][T30501] RIP: 0033:0x4665d9
[ 3380.373704][T30501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3380.393600][T30501] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3380.402090][T30501] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3380.410236][T30501] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3380.418574][T30501] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3380.426654][T30501] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:14:04 executing program 5 (fault-call:1 fault-nth:64):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3380.434942][T30501] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3380.472494][T30499] loop3: detected capacity change from 0 to 512
03:14:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000014000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3380.480181][T30499] EXT4-fs (loop3): Invalid log block size: 38911
[ 3380.502884][T30526] FAULT_INJECTION: forcing a failure.
[ 3380.502884][T30526] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3380.516477][T30526] CPU: 0 PID: 30526 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3380.525349][T30526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
03:14:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000018000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000019000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000001b000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3380.535411][T30526] Call Trace:
[ 3380.538746][T30526]  dump_stack+0x137/0x19d
[ 3380.543279][T30526]  should_fail+0x23c/0x250
[ 3380.547791][T30526]  __alloc_pages+0x102/0x320
[ 3380.552698][T30526]  alloc_pages+0x21d/0x310
[ 3380.557237][T30526]  push_pipe+0x267/0x370
[ 3380.561681][T30526]  iov_iter_get_pages+0xb39/0xcc0
[ 3380.566713][T30526]  ? current_time+0xdb/0x190
[ 3380.571406][T30526]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3380.576798][T30526]  ? blk_flush_plug_list+0x23c/0x260
[ 3380.582145][T30526]  ? blkdev_direct_IO+0x392/0x1060
[ 3380.587279][T30526]  ? __kmalloc+0x23d/0x340
[ 3380.591779][T30526]  ? blkdev_direct_IO+0x392/0x1060
[ 3380.596958][T30526]  blkdev_direct_IO+0x9ec/0x1060
[ 3380.602183][T30526]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3380.608094][T30526]  ? blkdev_get_block+0x70/0x70
[ 3380.613150][T30526]  ? touch_atime+0xcf/0x240
[ 3380.617908][T30526]  generic_file_read_iter+0x1c5/0x2c0
[ 3380.623443][T30526]  blkdev_read_iter+0xb9/0xf0
[ 3380.628129][T30526]  generic_file_splice_read+0x22a/0x310
[ 3380.633732][T30526]  ? splice_shrink_spd+0x60/0x60
[ 3380.638723][T30526]  splice_direct_to_actor+0x2aa/0x650
[ 3380.644088][T30526]  ? do_splice_direct+0x170/0x170
[ 3380.649122][T30526]  do_splice_direct+0xf5/0x170
[ 3380.653886][T30526]  do_sendfile+0x773/0xda0
[ 3380.658293][T30526]  __x64_sys_sendfile64+0xf2/0x130
[ 3380.663464][T30526]  do_syscall_64+0x4a/0x90
[ 3380.667886][T30526]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3380.674125][T30526] RIP: 0033:0x4665d9
[ 3380.678093][T30526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3380.697952][T30526] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3380.706466][T30526] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3380.714543][T30526] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3380.722517][T30526] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
03:14:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000edc0000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:04 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000001f000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3380.730811][T30526] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3380.738858][T30526] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3380.796582][T30541] loop3: detected capacity change from 0 to 512
[ 3380.805754][T30541] EXT4-fs (loop3): Invalid log block size: 49389
03:14:05 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r1=>0x0)
sched_setattr(r1, &(0x7f0000000080)={0x38, 0x1, 0x20, 0x5, 0x3, 0x4, 0x3ff, 0x100, 0x8000, 0x5}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clone(0x1001080, &(0x7f00000000c0)="0b3a42fc493c1a9cfcba5db7bda2c8861cd0cea39fa7673315b791c213b6effc45b3e46f9d9b380ebd063cca1b47e89393625ca652fbf174329f3289a6ca40c71f1e95d8d97b502df2fdb394ec62c73385dfa052d1c1d5da3a3b5aa37a90a49320514a3f454f86cb", &(0x7f0000000180), &(0x7f00000001c0), &(0x7f00000002c0)="fb79cd8c6e7b0373368c9f3ea6c0866bd6e7cfdf7f29fca2d0e5d5065a7050cdf314f99da43e378861485d00f5cf1230906574d4daaad54dd85b5fd45c7d50d08b443e9d77b40e82d0c5e094b7a92984ef99d5491c944a5663cbce14941b173c32718e416bb47e16a135d31fbd0330c5afd6ca42763d181ffc8641596ca69a29481192f0a18f5b414f43b62f6060a59699c1deec90d7626176515cd5dd41477019bd92f15a8e52d5abd8b8cd26892622c077bfff92599b906bea699ce5daa79b3766105b4b224caecd42dd919e3f22")
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:05 executing program 5 (fault-call:1 fault-nth:65):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:05 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000020000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:05 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100ffffffda000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3381.058864][T30559] loop3: detected capacity change from 0 to 512
[ 3381.070145][T30559] EXT4-fs (loop3): Invalid log block size: 56063
[ 3381.071945][T30561] FAULT_INJECTION: forcing a failure.
[ 3381.071945][T30561] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3381.090449][T30561] CPU: 0 PID: 30561 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3381.099462][T30561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3381.109639][T30561] Call Trace:
[ 3381.113110][T30561]  dump_stack+0x137/0x19d
[ 3381.117558][T30561]  should_fail+0x23c/0x250
[ 3381.122012][T30561]  __alloc_pages+0x102/0x320
[ 3381.126678][T30561]  alloc_pages+0x21d/0x310
[ 3381.131200][T30561]  push_pipe+0x267/0x370
[ 3381.135482][T30561]  iov_iter_get_pages+0xb39/0xcc0
[ 3381.140513][T30561]  ? current_time+0xdb/0x190
[ 3381.145758][T30561]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3381.151141][T30561]  ? blk_flush_plug_list+0x23c/0x260
[ 3381.156518][T30561]  ? blkdev_direct_IO+0x392/0x1060
[ 3381.161716][T30561]  ? __kmalloc+0x23d/0x340
[ 3381.166259][T30561]  ? blkdev_direct_IO+0x392/0x1060
[ 3381.171505][T30561]  blkdev_direct_IO+0x9ec/0x1060
[ 3381.176433][T30561]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3381.182510][T30561]  ? blkdev_get_block+0x70/0x70
[ 3381.187502][T30561]  ? touch_atime+0xcf/0x240
[ 3381.192097][T30561]  generic_file_read_iter+0x1c5/0x2c0
[ 3381.197544][T30561]  blkdev_read_iter+0xb9/0xf0
[ 3381.202458][T30561]  generic_file_splice_read+0x22a/0x310
[ 3381.208695][T30561]  ? splice_shrink_spd+0x60/0x60
[ 3381.213720][T30561]  splice_direct_to_actor+0x2aa/0x650
[ 3381.219289][T30561]  ? do_splice_direct+0x170/0x170
[ 3381.224394][T30561]  do_splice_direct+0xf5/0x170
[ 3381.229157][T30561]  do_sendfile+0x773/0xda0
[ 3381.233673][T30561]  __x64_sys_sendfile64+0xf2/0x130
[ 3381.238855][T30561]  do_syscall_64+0x4a/0x90
[ 3381.243278][T30561]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3381.249190][T30561] RIP: 0033:0x4665d9
[ 3381.253297][T30561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3381.273654][T30561] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3381.282504][T30561] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3381.290467][T30561] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3381.298451][T30561] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3381.306422][T30561] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3381.314439][T30561] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3381.351349][T30559] loop3: detected capacity change from 0 to 512
[ 3381.367068][T30559] EXT4-fs (loop3): Invalid log block size: 56063
03:14:07 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
ioctl$F2FS_IOC_SET_PIN_FILE(r1, 0x4004f50d, &(0x7f0000000240)=0x1)
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000080)={0x2000})
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r4=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:07 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
sendmsg$nl_xfrm(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1460200}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=@getspdinfo={0x14, 0x25, 0x0, 0x5f8, 0x25dfdbfb, 0x10000, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000001}, 0x40)

03:14:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000001020000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:07 executing program 5 (fault-call:1 fault-nth:66):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:07 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100ffffffe2000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:07 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x9, 0x0, 0x10000000000000, 0x0, 0x0, 0x3}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000080)={0x0, <r4=>0x0})
sched_setattr(r4, &(0x7f0000000000)={0x38, 0x1, 0x52, 0x8000, 0x6, 0x2, 0x0, 0x0, 0x6, 0x1}, 0x0)

03:14:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000022000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3383.287222][T30585] FAULT_INJECTION: forcing a failure.
[ 3383.287222][T30585] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3383.300643][T30584] loop3: detected capacity change from 0 to 512
[ 3383.300976][T30585] CPU: 0 PID: 30585 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3383.313087][T30584] EXT4-fs (loop3): Invalid log block size: 58111
[ 3383.315931][T30585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3383.333139][T30585] Call Trace:
[ 3383.336453][T30585]  dump_stack+0x137/0x19d
[ 3383.340791][T30585]  should_fail+0x23c/0x250
[ 3383.345348][T30585]  __alloc_pages+0x102/0x320
[ 3383.350190][T30585]  alloc_pages+0x21d/0x310
[ 3383.354852][T30585]  push_pipe+0x267/0x370
[ 3383.359329][T30585]  iov_iter_get_pages+0xb39/0xcc0
[ 3383.364447][T30585]  ? current_time+0xdb/0x190
[ 3383.369139][T30585]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3383.374584][T30585]  ? blk_flush_plug_list+0x23c/0x260
[ 3383.380213][T30585]  ? blkdev_direct_IO+0x392/0x1060
[ 3383.385419][T30585]  ? __kmalloc+0x23d/0x340
[ 3383.390460][T30585]  ? blkdev_direct_IO+0x392/0x1060
[ 3383.395827][T30585]  blkdev_direct_IO+0x9ec/0x1060
[ 3383.400802][T30585]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3383.406991][T30585]  ? blkdev_get_block+0x70/0x70
[ 3383.411977][T30585]  ? touch_atime+0xcf/0x240
[ 3383.416945][T30585]  generic_file_read_iter+0x1c5/0x2c0
[ 3383.422554][T30585]  blkdev_read_iter+0xb9/0xf0
[ 3383.427302][T30585]  generic_file_splice_read+0x22a/0x310
[ 3383.433058][T30585]  ? splice_shrink_spd+0x60/0x60
03:14:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000023000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3383.438002][T30585]  splice_direct_to_actor+0x2aa/0x650
[ 3383.443391][T30585]  ? do_splice_direct+0x170/0x170
[ 3383.448508][T30585]  do_splice_direct+0xf5/0x170
[ 3383.453288][T30585]  do_sendfile+0x773/0xda0
[ 3383.457986][T30585]  __x64_sys_sendfile64+0xf2/0x130
[ 3383.463516][T30585]  do_syscall_64+0x4a/0x90
[ 3383.467945][T30585]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3383.474001][T30585] RIP: 0033:0x4665d9
[ 3383.478181][T30585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3383.497968][T30585] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3383.506382][T30585] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3383.514446][T30585] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3383.522537][T30585] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3383.530741][T30585] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3383.538851][T30585] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:07 executing program 5 (fault-call:1 fault-nth:67):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3383.593239][T30584] loop3: detected capacity change from 0 to 512
[ 3383.627691][T30584] EXT4-fs (loop3): Invalid log block size: 58111
03:14:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000025000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3383.641658][T30606] FAULT_INJECTION: forcing a failure.
[ 3383.641658][T30606] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3383.655296][T30606] CPU: 0 PID: 30606 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3383.664253][T30606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3383.674313][T30606] Call Trace:
[ 3383.677624][T30606]  dump_stack+0x137/0x19d
[ 3383.682042][T30606]  should_fail+0x23c/0x250
[ 3383.686602][T30606]  __alloc_pages+0x102/0x320
[ 3383.691387][T30606]  alloc_pages+0x21d/0x310
[ 3383.695898][T30606]  push_pipe+0x267/0x370
[ 3383.700200][T30606]  iov_iter_get_pages+0xb39/0xcc0
[ 3383.705287][T30606]  ? current_time+0xdb/0x190
[ 3383.709883][T30606]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3383.715381][T30606]  ? blk_flush_plug_list+0x23c/0x260
[ 3383.721032][T30606]  ? blkdev_direct_IO+0x392/0x1060
[ 3383.726196][T30606]  ? __kmalloc+0x23d/0x340
[ 3383.730629][T30606]  ? blkdev_direct_IO+0x392/0x1060
[ 3383.735794][T30606]  blkdev_direct_IO+0x9ec/0x1060
03:14:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000002a000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3383.740773][T30606]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3383.746678][T30606]  ? blkdev_get_block+0x70/0x70
[ 3383.751660][T30606]  ? touch_atime+0xcf/0x240
[ 3383.756233][T30606]  generic_file_read_iter+0x1c5/0x2c0
[ 3383.761651][T30606]  blkdev_read_iter+0xb9/0xf0
[ 3383.766791][T30606]  generic_file_splice_read+0x22a/0x310
[ 3383.772806][T30606]  ? splice_shrink_spd+0x60/0x60
[ 3383.778068][T30606]  splice_direct_to_actor+0x2aa/0x650
[ 3383.783450][T30606]  ? do_splice_direct+0x170/0x170
[ 3383.788718][T30606]  do_splice_direct+0xf5/0x170
[ 3383.793491][T30606]  do_sendfile+0x773/0xda0
[ 3383.797926][T30606]  __x64_sys_sendfile64+0xf2/0x130
[ 3383.803045][T30606]  do_syscall_64+0x4a/0x90
[ 3383.807689][T30606]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3383.813699][T30606] RIP: 0033:0x4665d9
[ 3383.817602][T30606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
03:14:07 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000002b000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3383.837475][T30606] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3383.845988][T30606] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3383.853968][T30606] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3383.862042][T30606] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3383.870450][T30606] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3383.878499][T30606] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:08 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000240)={0x0, 0x2}, 0x8)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0xff, 0x1ff, 0x20000000001c4, 0x7bffffff, 0x6}, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r4=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
clock_gettime(0x0, &(0x7f0000000140)={<r5=>0x0, <r6=>0x0})
clock_gettime(0x0, &(0x7f00000001c0)={<r7=>0x0, <r8=>0x0})
timer_settime(r4, 0x0, &(0x7f0000000180)={{r7, r8+60000000}, {r5, r6+60000000}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:08 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000002e000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fa6e8bf2000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:08 executing program 5 (fault-call:1 fault-nth:68):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:08 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f00000022c0)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
vmsplice(r1, &(0x7f0000002400)=[{&(0x7f00000000c0)="8489afdac04935be2f142394d1aa14d3213395a7241673ff0e4c37691909021e8f01a04c88034857c2c2712ccf074bd6894c6fb7302b8171fc35a1f77dd65daa7c06250a47d88769f30e6e65eef5aa62e86b061273bfa8d6bd6f9903f09f2601448a7e47113df288a8d70ce7d118ef39892aee3229ff421d65681567d408a8db7f99b334ee85062c242dc66283ceeddbf54ff1acb7408deac8ff", 0x9a}, {&(0x7f0000000180)="e738b9a76f792d23afec9219b4fceaa2349fec456d8a432479ce9cf2e36b147927100142ca9f089f2ba3bcacf8e8ff58d22178990d689e6a332b16dbe9f61a86181b6defb032ce2372e7c69ef13ac4e04d5b8293ea", 0x55}, {&(0x7f0000000040)="c5e5d454563e4f84e3882d1ac9137a05b9dc5bda7a2adb2bb891a9d6a82b89bdb8c96c12072bf6fb73c811ea", 0x2c}, {&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001200)="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", 0x1000}, {&(0x7f0000002200)="e8244592b6d262cc7bea1bc5246482524e5eea909b41d0d7f00129b8b4b649a245a5b557ef7d438eb35712f715cb4a1bc45b54b001d05da0d4cb7a9c212ec7dfd909b8893c370e0c0b869b2872357feb9388242c0c604642955cf381e84b77beeef8fc8a35877f0575cc3090170820ee04a66cf00261d23ee9db3fa4e6145e08605ad9349d1e3d575506bf10885a46cc268ded5722f309791b02e8463836", 0x9e}, {&(0x7f00000022c0)}, {&(0x7f0000002300)="7e63c68292903bd46f461a880dc2b4c0cf91a6992cbe98649bddf3ef6e962d9099eff92c73abcb38ed42228426ecd98adbb99c976d4b1b2f7f0682720292b7d40ccb518bc93874d3e8334455118a790f6af231d4431f2b9ce3cd3ef9b4ebd1074228ca6fbda55dc9c86147cb232afcc602109cda831f961f144292de429349a8babb647bde8fcf6b3e66155e62aec9260f48389717b2ca2f115e4132fffbe64e77a03e3c8768ee33cd58d7f96a6cdbe29fc9e5618aab65d5580ebe0321f0384c2672852c8360b9777f18dc2a3555a887", 0xd0}], 0x8, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3384.232718][T30625] loop3: detected capacity change from 0 to 512
[ 3384.239754][T30626] FAULT_INJECTION: forcing a failure.
[ 3384.239754][T30626] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3384.253393][T30626] CPU: 1 PID: 30626 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3384.254822][T30625] EXT4-fs (loop3): Invalid log block size: 62091
[ 3384.262257][T30626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3384.262276][T30626] Call Trace:
[ 3384.262284][T30626]  dump_stack+0x137/0x19d
[ 3384.287487][T30626]  should_fail+0x23c/0x250
[ 3384.292011][T30626]  __alloc_pages+0x102/0x320
[ 3384.297109][T30626]  alloc_pages+0x21d/0x310
[ 3384.301792][T30626]  push_pipe+0x267/0x370
[ 3384.306085][T30626]  iov_iter_get_pages+0xb39/0xcc0
[ 3384.311152][T30626]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3384.316705][T30626]  ? blk_flush_plug_list+0x23c/0x260
[ 3384.321992][T30626]  ? blkdev_direct_IO+0x392/0x1060
[ 3384.327115][T30626]  ? __kmalloc+0x23d/0x340
[ 3384.331540][T30626]  ? blkdev_direct_IO+0x392/0x1060
[ 3384.336657][T30626]  blkdev_direct_IO+0x9ec/0x1060
[ 3384.341619][T30626]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3384.347519][T30626]  ? blkdev_get_block+0x70/0x70
[ 3384.352483][T30626]  ? touch_atime+0xcf/0x240
[ 3384.357134][T30626]  generic_file_read_iter+0x1c5/0x2c0
[ 3384.362764][T30626]  blkdev_read_iter+0xb9/0xf0
[ 3384.367447][T30626]  generic_file_splice_read+0x22a/0x310
[ 3384.373001][T30626]  ? splice_shrink_spd+0x60/0x60
[ 3384.378006][T30626]  splice_direct_to_actor+0x2aa/0x650
[ 3384.383415][T30626]  ? do_splice_direct+0x170/0x170
[ 3384.388447][T30626]  do_splice_direct+0xf5/0x170
[ 3384.393214][T30626]  do_sendfile+0x773/0xda0
[ 3384.397720][T30626]  __x64_sys_sendfile64+0xf2/0x130
[ 3384.403129][T30626]  do_syscall_64+0x4a/0x90
[ 3384.408167][T30626]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3384.414200][T30626] RIP: 0033:0x4665d9
03:14:08 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r1=>0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000000c0)=0xc)
rt_tgsigqueueinfo(r1, r2, 0xd, &(0x7f0000000180)={0x40, 0x3, 0x9})
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:08 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000003f000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3384.418127][T30626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3384.437862][T30626] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3384.446368][T30626] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3384.454554][T30626] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3384.462532][T30626] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3384.470788][T30626] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:14:08 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000040000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:08 executing program 5 (fault-call:1 fault-nth:69):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3384.478844][T30626] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:08 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000048000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffff4000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3384.524239][T30625] loop3: detected capacity change from 0 to 512
[ 3384.538732][T30625] EXT4-fs (loop3): Invalid log block size: 62091
[ 3384.564067][T30650] FAULT_INJECTION: forcing a failure.
[ 3384.564067][T30650] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3384.577691][T30650] CPU: 1 PID: 30650 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3384.587261][T30650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3384.597534][T30650] Call Trace:
[ 3384.601659][T30650]  dump_stack+0x137/0x19d
[ 3384.606187][T30650]  should_fail+0x23c/0x250
[ 3384.610770][T30650]  __alloc_pages+0x102/0x320
[ 3384.615745][T30650]  alloc_pages+0x21d/0x310
[ 3384.620446][T30650]  push_pipe+0x267/0x370
[ 3384.624863][T30650]  iov_iter_get_pages+0xb39/0xcc0
[ 3384.630032][T30650]  ? current_time+0xdb/0x190
[ 3384.634641][T30650]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3384.640174][T30650]  ? blk_flush_plug_list+0x23c/0x260
[ 3384.645601][T30650]  ? blkdev_direct_IO+0x392/0x1060
[ 3384.651021][T30650]  ? __kmalloc+0x23d/0x340
[ 3384.655501][T30650]  ? blkdev_direct_IO+0x392/0x1060
[ 3384.660777][T30650]  blkdev_direct_IO+0x9ec/0x1060
[ 3384.665958][T30650]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3384.671835][T30650]  ? blkdev_get_block+0x70/0x70
[ 3384.676904][T30650]  ? touch_atime+0xcf/0x240
[ 3384.681434][T30650]  generic_file_read_iter+0x1c5/0x2c0
[ 3384.686830][T30650]  blkdev_read_iter+0xb9/0xf0
[ 3384.691695][T30650]  generic_file_splice_read+0x22a/0x310
[ 3384.697282][T30650]  ? splice_shrink_spd+0x60/0x60
[ 3384.702542][T30650]  splice_direct_to_actor+0x2aa/0x650
[ 3384.708009][T30650]  ? do_splice_direct+0x170/0x170
[ 3384.713190][T30650]  do_splice_direct+0xf5/0x170
[ 3384.718257][T30650]  do_sendfile+0x773/0xda0
[ 3384.722716][T30650]  __x64_sys_sendfile64+0xf2/0x130
[ 3384.728074][T30650]  do_syscall_64+0x4a/0x90
[ 3384.732775][T30650]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3384.738985][T30650] RIP: 0033:0x4665d9
[ 3384.743181][T30650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3384.763235][T30650] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3384.772110][T30650] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3384.780346][T30650] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3384.788691][T30650] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3384.797140][T30650] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3384.805137][T30650] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:08 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000049000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3384.843747][T30657] loop3: detected capacity change from 0 to 512
[ 3384.854695][T30657] EXT4-fs (loop3): Invalid log block size: 62719
[ 3384.898695][T30657] loop3: detected capacity change from 0 to 512
[ 3384.920214][T30657] EXT4-fs (loop3): Invalid log block size: 62719
03:14:09 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
r3 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x80, 0xed, 0x20, 0xe0, 0x0, 0xe2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, @perf_config_ext={0x619}, 0x8500, 0xff, 0xff, 0x3, 0x7ff, 0x6, 0x81, 0x0, 0x32d, 0x0, 0x9}, r0, 0x7, 0xffffffffffffffff, 0x1)
write(r3, &(0x7f00000002c0)="fe0397cd6ea6de0643ea7268f14a14dd5aca7bf3a7969e722b505203c308283ff75cd64fea6b4832caf7edabecd6f62fd5c11858f98a4d3d63c728d8c556a721c5d4910f74c61a5f8b0b772202c5627bd05018118f97bd073813b5be0b5361589104ab3126e99f71f1c7b7342291423a80dffaeebf16f359c3643c6b5e816d9d01454fa05d0d13a69d130cb703b866cb44979a3188b6b9053388cd83f1649a393ef448ce5e80698a848e3a808555a210871567c466a740ba16d959541bd78ccc3bb7355dd9c5dae2e0c4f4252e395e79ef8ce1d029711e9411a7500f0ce61cbda494c9ac84e4f4af", 0xe8)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r4=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:09 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000004c000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffff5000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:09 executing program 5 (fault-call:1 fault-nth:70):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:09 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
getsockopt$inet6_int(r1, 0x29, 0xa, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3385.122807][T30683] loop3: detected capacity change from 0 to 512
[ 3385.147432][T30683] EXT4-fs (loop3): Invalid log block size: 62975
[ 3385.154147][T30687] FAULT_INJECTION: forcing a failure.
[ 3385.154147][T30687] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3385.167433][T30687] CPU: 1 PID: 30687 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3385.176199][T30687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3385.186519][T30687] Call Trace:
[ 3385.189917][T30687]  dump_stack+0x137/0x19d
[ 3385.194660][T30687]  should_fail+0x23c/0x250
[ 3385.199143][T30687]  __alloc_pages+0x102/0x320
[ 3385.203964][T30687]  alloc_pages+0x21d/0x310
[ 3385.208494][T30687]  push_pipe+0x267/0x370
[ 3385.213100][T30687]  iov_iter_get_pages+0xb39/0xcc0
[ 3385.218143][T30687]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3385.223646][T30687]  ? blk_flush_plug_list+0x23c/0x260
[ 3385.228968][T30687]  ? blkdev_direct_IO+0x392/0x1060
[ 3385.234088][T30687]  ? __kmalloc+0x23d/0x340
[ 3385.238631][T30687]  ? blkdev_direct_IO+0x392/0x1060
[ 3385.243780][T30687]  blkdev_direct_IO+0x9ec/0x1060
[ 3385.248740][T30687]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3385.254900][T30687]  ? blkdev_get_block+0x70/0x70
[ 3385.259796][T30687]  ? touch_atime+0xcf/0x240
[ 3385.264312][T30687]  generic_file_read_iter+0x1c5/0x2c0
[ 3385.269750][T30687]  blkdev_read_iter+0xb9/0xf0
[ 3385.274544][T30687]  generic_file_splice_read+0x22a/0x310
[ 3385.280124][T30687]  ? splice_shrink_spd+0x60/0x60
[ 3385.285065][T30687]  splice_direct_to_actor+0x2aa/0x650
[ 3385.290721][T30687]  ? do_splice_direct+0x170/0x170
[ 3385.295800][T30687]  do_splice_direct+0xf5/0x170
[ 3385.300681][T30687]  do_sendfile+0x773/0xda0
[ 3385.305110][T30687]  __x64_sys_sendfile64+0xf2/0x130
[ 3385.310236][T30687]  do_syscall_64+0x4a/0x90
[ 3385.314675][T30687]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3385.320644][T30687] RIP: 0033:0x4665d9
[ 3385.324551][T30687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3385.344756][T30687] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3385.353498][T30687] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3385.361489][T30687] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3385.369613][T30687] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3385.377961][T30687] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3385.386122][T30687] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:09 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x5, 0x20, 0x5, 0xffffffff, 0x43, 0x100000001, 0x0, 0x1ff, 0x1}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x1c3781, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, "006d10ffd600"})
r4 = syz_open_pts(r3, 0x68000)
dup3(r4, r3, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f0000004c00)=[{{&(0x7f0000000180)=@xdp, 0x80, &(0x7f00000050c0)=[{&(0x7f00000002c0)=""/129, 0x81}, {&(0x7f0000005180)=""/4084, 0xff4}, {&(0x7f0000000100)=""/35, 0x23}, {&(0x7f0000001380)=""/84, 0x54}, {&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000002400)=""/4096, 0x1000}, {&(0x7f0000004c80)=""/177, 0xb1}, {&(0x7f0000004d40)=""/21, 0x15}, {&(0x7f0000004d80)=""/247, 0xf7}, {&(0x7f0000004e80)=""/77, 0x4d}, {&(0x7f0000004fc0)=""/241, 0xf1}], 0xb}, 0x6}, {{&(0x7f0000003480)=@can, 0x80, &(0x7f0000004a80)=[{&(0x7f0000003500)=""/226, 0xe2}, {&(0x7f0000003600)=""/190, 0xbe}, {&(0x7f00000036c0)=""/97, 0x61}, {&(0x7f0000003740)=""/36, 0x24}, {&(0x7f0000003780)=""/65, 0x41}, {&(0x7f0000003800)=""/185, 0xb9}, {&(0x7f00000038c0)=""/4096, 0x1000}, {&(0x7f00000048c0)=""/186, 0xba}, {&(0x7f0000004980)=""/209, 0xd1}], 0x9, &(0x7f0000004b40)=""/184, 0xb8}, 0x7}], 0x2, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
creat(&(0x7f0000000380)='./file0\x00', 0x13)
readlinkat(r5, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=""/1, 0x1)

03:14:09 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000052000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:09 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@private1, 0x2, 0x0, 0x3, 0x3, 0x681, 0x2}, 0x20)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffff6000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:09 executing program 5 (fault-call:1 fault-nth:71):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3385.598030][T30712] loop3: detected capacity change from 0 to 512
[ 3385.605494][T30711] FAULT_INJECTION: forcing a failure.
[ 3385.605494][T30711] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3385.613906][T30712] EXT4-fs (loop3): Invalid log block size: 63231
[ 3385.619064][T30711] CPU: 0 PID: 30711 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3385.635401][T30711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
03:14:09 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000053000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:09 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x46, &(0x7f0000000080)=0x9, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000540)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000000000220000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000026856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}], 0x0, &(0x7f0000000180))
creat(&(0x7f0000000180)='./file0\x00', 0x80)
setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000200)=0x400000001, 0x4)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8983, &(0x7f0000000040))
getsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x8010, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x4e23, 0x101, @dev={0xfe, 0x80, '\x00', 0x1f}, 0xfffffff7}, 0x1c)
preadv(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e21, 0x9, @empty, 0x8352}, 0x1c)

[ 3385.635416][T30711] Call Trace:
[ 3385.635424][T30711]  dump_stack+0x137/0x19d
[ 3385.635448][T30711]  should_fail+0x23c/0x250
[ 3385.635505][T30711]  __alloc_pages+0x102/0x320
[ 3385.635534][T30711]  alloc_pages+0x21d/0x310
[ 3385.635554][T30711]  push_pipe+0x267/0x370
[ 3385.635573][T30711]  iov_iter_get_pages+0xb39/0xcc0
[ 3385.635589][T30711]  ? current_time+0xdb/0x190
[ 3385.635607][T30711]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3385.635664][T30711]  ? blk_flush_plug_list+0x23c/0x260
[ 3385.635682][T30711]  ? blkdev_direct_IO+0x392/0x1060
[ 3385.635704][T30711]  ? __kmalloc+0x23d/0x340
[ 3385.635797][T30711]  ? blkdev_direct_IO+0x392/0x1060
[ 3385.635820][T30711]  blkdev_direct_IO+0x9ec/0x1060
[ 3385.635843][T30711]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3385.635945][T30711]  ? blkdev_get_block+0x70/0x70
[ 3385.635967][T30711]  ? touch_atime+0xcf/0x240
[ 3385.635986][T30711]  generic_file_read_iter+0x1c5/0x2c0
[ 3385.636020][T30711]  blkdev_read_iter+0xb9/0xf0
[ 3385.636041][T30711]  generic_file_splice_read+0x22a/0x310
[ 3385.743676][T30711]  ? splice_shrink_spd+0x60/0x60
[ 3385.748603][T30711]  splice_direct_to_actor+0x2aa/0x650
[ 3385.754148][T30711]  ? do_splice_direct+0x170/0x170
[ 3385.759237][T30711]  do_splice_direct+0xf5/0x170
[ 3385.763989][T30711]  do_sendfile+0x773/0xda0
[ 3385.768773][T30711]  __x64_sys_sendfile64+0xf2/0x130
[ 3385.773917][T30711]  do_syscall_64+0x4a/0x90
[ 3385.778328][T30711]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3385.784214][T30711] RIP: 0033:0x4665d9
[ 3385.788104][T30711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3385.808000][T30711] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3385.816559][T30711] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3385.824676][T30711] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3385.832636][T30711] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3385.840663][T30711] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3385.849023][T30711] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3385.879495][T30712] loop3: detected capacity change from 0 to 512
[ 3385.893838][T30712] EXT4-fs (loop3): Invalid log block size: 63231
03:14:10 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
r1 = gettid()
ptrace(0x4206, r1)
tkill(r1, 0x800000009)
capget(&(0x7f0000000240)={0x19980330, r1}, &(0x7f0000000280)={0x7fffffff, 0xfffffffc, 0x10000, 0x40, 0x100, 0x6})
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r4=>0x0)
fcntl$setpipe(r3, 0x407, 0x8000000000)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
syz_open_procfs$userns(r0, &(0x7f0000000140))
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="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"/297, 0xffffffca)
write$binfmt_misc(r5, 0x0, 0x2)

03:14:10 executing program 5 (fault-call:1 fault-nth:72):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000054000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffdf9000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3385.998786][T30741] FAULT_INJECTION: forcing a failure.
[ 3385.998786][T30741] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3386.000076][T30739] loop3: detected capacity change from 0 to 512
[ 3386.012181][T30741] CPU: 0 PID: 30741 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3386.012209][T30741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3386.032179][T30739] EXT4-fs (loop3): Invalid log block size: 63997
[ 3386.037918][T30741] Call Trace:
03:14:10 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
ioctl$sock_inet_SIOCSIFPFLAGS(r4, 0x8934, &(0x7f0000000080)={'syzkaller0\x00'})
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

[ 3386.037929][T30741]  dump_stack+0x137/0x19d
[ 3386.052522][T30741]  should_fail+0x23c/0x250
[ 3386.057125][T30741]  __alloc_pages+0x102/0x320
[ 3386.061916][T30741]  alloc_pages+0x21d/0x310
[ 3386.066363][T30741]  push_pipe+0x267/0x370
[ 3386.070635][T30741]  iov_iter_get_pages+0xb39/0xcc0
[ 3386.075971][T30741]  ? current_time+0xdb/0x190
[ 3386.080817][T30741]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3386.086453][T30741]  ? file_update_time+0x1bd/0x3e0
[ 3386.091570][T30741]  ? blkdev_direct_IO+0x392/0x1060
[ 3386.096991][T30741]  ? __kmalloc+0x23d/0x340
[ 3386.101393][T30741]  ? blkdev_direct_IO+0x392/0x1060
[ 3386.106734][T30741]  blkdev_direct_IO+0x9ec/0x1060
[ 3386.111725][T30741]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3386.117747][T30741]  ? blkdev_get_block+0x70/0x70
[ 3386.122854][T30741]  ? touch_atime+0xcf/0x240
[ 3386.127705][T30741]  generic_file_read_iter+0x1c5/0x2c0
[ 3386.133353][T30741]  blkdev_read_iter+0xb9/0xf0
[ 3386.138123][T30741]  generic_file_splice_read+0x22a/0x310
[ 3386.144015][T30741]  ? splice_shrink_spd+0x60/0x60
[ 3386.148940][T30741]  splice_direct_to_actor+0x2aa/0x650
[ 3386.154323][T30741]  ? do_splice_direct+0x170/0x170
[ 3386.159596][T30741]  do_splice_direct+0xf5/0x170
[ 3386.164682][T30741]  do_sendfile+0x773/0xda0
[ 3386.169277][T30741]  __x64_sys_sendfile64+0xf2/0x130
[ 3386.174527][T30741]  do_syscall_64+0x4a/0x90
[ 3386.178953][T30741]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3386.185174][T30741] RIP: 0033:0x4665d9
[ 3386.189087][T30741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3386.208801][T30741] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3386.217404][T30741] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3386.225539][T30741] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3386.233587][T30741] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3386.241694][T30741] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3386.250004][T30741] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3386.316763][T30739] loop3: detected capacity change from 0 to 512
[ 3386.328197][T30739] EXT4-fs (loop3): Invalid log block size: 63997
03:14:10 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
r1 = gettid()
prlimit64(r1, 0x3, &(0x7f0000000000)={0x6, 0x1}, &(0x7f0000000080))
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x6, 0x0, 0x3f, 0x20006, 0x40, 0xfffffffffffffffd, 0x80000000, 0x101, 0xfffffff3}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ptrace$setregset(0x4205, r0, 0x207, &(0x7f00000000c0)={&(0x7f00000002c0)="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", 0x1000})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000158000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:10 executing program 5 (fault-call:1 fault-nth:73):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100f28b6efa000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000060000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000068000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3386.441385][T30766] FAULT_INJECTION: forcing a failure.
[ 3386.441385][T30766] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3386.454966][T30766] CPU: 0 PID: 30766 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3386.463964][T30766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3386.474349][T30766] Call Trace:
[ 3386.477741][T30766]  dump_stack+0x137/0x19d
[ 3386.482171][T30766]  should_fail+0x23c/0x250
[ 3386.486598][T30766]  __alloc_pages+0x102/0x320
[ 3386.491207][T30766]  alloc_pages+0x21d/0x310
[ 3386.495665][T30766]  push_pipe+0x267/0x370
[ 3386.500000][T30766]  iov_iter_get_pages+0xb39/0xcc0
[ 3386.505413][T30766]  ? current_time+0xdb/0x190
[ 3386.510058][T30766]  bio_iov_iter_get_pages+0x4cf/0xb50
[ 3386.515482][T30766]  ? blk_flush_plug_list+0x23c/0x260
[ 3386.520825][T30766]  ? blkdev_direct_IO+0x392/0x1060
[ 3386.525925][T30766]  ? __kmalloc+0x23d/0x340
[ 3386.530430][T30766]  ? blkdev_direct_IO+0x392/0x1060
[ 3386.535973][T30766]  blkdev_direct_IO+0x9ec/0x1060
03:14:10 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="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"/297, 0xffffffca)
getsockopt$SO_TIMESTAMP(r1, 0x1, 0x3f, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000200)={0x6, 0x7ff, 0xd427, 0x1, 0xfffffff7}, 0x14)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000006c000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3386.541172][T30766]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[ 3386.547231][T30766]  ? blkdev_get_block+0x70/0x70
[ 3386.552118][T30766]  ? touch_atime+0xcf/0x240
[ 3386.556743][T30766]  generic_file_read_iter+0x1c5/0x2c0
[ 3386.562129][T30766]  blkdev_read_iter+0xb9/0xf0
[ 3386.567117][T30766]  generic_file_splice_read+0x22a/0x310
[ 3386.569083][T30764] loop3: detected capacity change from 0 to 512
[ 3386.573287][T30766]  ? splice_shrink_spd+0x60/0x60
[ 3386.573315][T30766]  splice_direct_to_actor+0x2aa/0x650
[ 3386.583664][T30764] EXT4-fs (loop3): Invalid log block size: 64110
[ 3386.584500][T30766]  ? do_splice_direct+0x170/0x170
[ 3386.584528][T30766]  do_splice_direct+0xf5/0x170
[ 3386.606296][T30766]  do_sendfile+0x773/0xda0
[ 3386.611088][T30766]  __x64_sys_sendfile64+0xf2/0x130
[ 3386.616642][T30766]  do_syscall_64+0x4a/0x90
[ 3386.621076][T30766]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3386.627024][T30766] RIP: 0033:0x4665d9
03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000074000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000007a000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3386.631003][T30766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3386.650908][T30766] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3386.659535][T30766] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3386.667582][T30766] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3386.675675][T30766] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3386.683648][T30766] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
03:14:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000cc000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3386.691669][T30766] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3386.753379][T30764] loop3: detected capacity change from 0 to 512
[ 3386.763959][T30764] EXT4-fs (loop3): Invalid log block size: 64110
03:14:13 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x9, 0x7, 0x9, 0x7f, 0x0, 0x7f, 0x80000, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x16, 0x4, @perf_bp={&(0x7f0000000240), 0xf}, 0x88, 0x4, 0xffffffc0, 0x0, 0x4, 0x1, 0x3, 0x0, 0x200, 0x0, 0x5}, r0, 0x0, 0xffffffffffffffff, 0x4)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)
clock_gettime(0x0, &(0x7f0000000080)={<r4=>0x0, <r5=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000140)={{0x0, 0x989680}, {r4, r5+60000000}}, &(0x7f00000001c0))

03:14:13 executing program 5 (fault-call:1 fault-nth:74):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000cd000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:13 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffffb000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:13 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpgrp(r0)
sched_setattr(r3, &(0x7f0000000000)={0x38, 0x2, 0x2, 0x1, 0x2, 0x2, 0x124e8971, 0x4, 0x88, 0xd8e}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:13 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, &(0x7f0000000040)="62f46dbbc4cb325c715b19eecb5bbcba", 0x10)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
sendmsg$inet(r2, &(0x7f0000001980)={&(0x7f0000000200)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000001640)=[{&(0x7f0000000240)="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", 0x1000}, {&(0x7f0000001240)="274087ae5d5ad70f28da27621c2fa71f98848db2a969ad405e84549e88f4d9ff8f3c91a88db67105c1cb5ade3a4efd0bfbf8672aeaa5c485f2813a2bf41f0db5d357bf8a3edcfb9f7b6b540de207c73833096dc49072089e5589901c87b064397a9348966c9fe6459bf0f9ffd976a822c1297e2168d9e24c5391", 0x7a}, {&(0x7f00000012c0)="b01a709a3ab0cca3f43401b0b8604dada7a504f8690e94afa38b2ed25120c535c4cb542c32df4e2854bcb35d586036d7b4d32ea08641000974dc9bbd73a0049d4183e90408b14c62a9d4d8c5b3549b0aa71f93452e3f43be16f5f07213f8635ba5f686ae63cd6db9252ecfa886a656ff03f676019dcc8182bd2352f964bce23bf7283fde315a4fc29c4ee4774c5a0e0f71eac2", 0x93}, {&(0x7f0000001380)="6e867ad1eec0544c759be7530b4047a86aff38befa808320cc1d75146df0caa5fd6a2b6608da2209ea972ab3048d942bf70fd61fd61daa241c01b86bc7fb08d8cade5b42d1e82b067c0ebaea1e4322395d552f9031aa61ffc484192c8fa01387cb2f997774332aa6d5d00d42dc28e77fa243f4e02d06b0a8e3c05ba1", 0x7c}, {&(0x7f0000001400)="c348c0983944eb86e56408ec4369297875d4c4fb13ab53b5eeaef8d831e682c17c469ca389a7a9852ce73104a537a3d687a8b1101a6f8636cfe885b1ae953ff0c20dd6dfa1a6b503dbe2fd4604711374bbf7479b99c91916605b350cd3cf653e75331e35d47e444bf9a908", 0x6b}, {&(0x7f0000001480)="a3571714c3f1f1795357ed4ea9fb", 0xe}, {&(0x7f00000014c0)="1b35ae1569b603a0b29e2ea7b96f5cf252b4b99be4634fe48b13161658b48ba086d7e1a50f350cbe69fb3e6a7c91bd17c072032041123f8c66ea503e3260b716ae61dbe513a8c81a9de1d73ea333930782b63525b66a6bac0f8d22acb5da", 0x5e}, {&(0x7f0000001540)="d4e2c60370efb5ffff88b85d18bccb32bb1582a19e383f8e09e024cd183ed590116a480779d2af40db9d03cd11754f3bf50125bc38b5b04093c86cd0257673973d0546cd9a6834e4d2755e5d11ac79ca58e9e683e82597a385055dd926676122f7f081935d6e01d1cc6299a02149d0efbd66020be0525e15508889a24afcda21096a9ad3c96c1b39dc961f0160ff02458d9d87dbe832d7a482d15ddcc32d95e45820899f8dafedf45c8b8f2ce4422d0f679757ea427cb6f54ea9d5c64cb58b329672cf91d4d663ddef6fbb0dde63ee6d", 0xd0}], 0x8, &(0x7f00000016c0)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x38}, @multicast1}}}, @ip_retopts={{0x1c4, 0x0, 0x7, {[@timestamp_addr={0x44, 0x24, 0x4d, 0x1, 0xb, [{@multicast1, 0x200}, {@local, 0x101}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2}, {@rand_addr=0x64010100, 0x10000}]}, @timestamp_prespec={0x44, 0xc, 0x58, 0x3, 0xa, [{@local, 0xddd6c306}]}, @timestamp={0x44, 0x18, 0xe7, 0x0, 0xc, [0x3, 0x401, 0x6, 0x0, 0xfffffffd]}, @cipso={0x86, 0x43, 0x0, [{0x1, 0x2}, {0x0, 0xb, "1ea9b48cbe3a999eb4"}, {0x3, 0x10, "75cc0c747550f6cd66ae7e1d2209"}, {0x5, 0x3, "91"}, {0x6, 0xf, "66031c8c0a31a30f14e5bcdde1"}, {0x7, 0xe, "3e76f990f77f92d74befd938"}]}, @timestamp_prespec={0x44, 0x54, 0xaa, 0x3, 0xd, [{@remote, 0x8}, {@remote, 0x34f}, {@broadcast, 0x1}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1bfe}, {@broadcast, 0x2}, {@private=0xa010101, 0x9}, {@private=0xa010101, 0x8000}, {@remote, 0x40}, {@private=0xa010100, 0x4}, {@multicast2, 0x7f}]}, @ra={0x94, 0x4}, @cipso={0x86, 0x18, 0x0, [{0x0, 0x12, "029c8f335d2b8bc7d439316ed96a575d"}]}, @cipso={0x86, 0x5f, 0x2, [{0x1, 0x4, "60b5"}, {0x0, 0x9, "171829219636aa"}, {0x5, 0xe, "e05f4a0c425e3471a4fa47b7"}, {0x7, 0xa, "5e3a37f2000c6c0c"}, {0x1, 0x9, "553c9a0017b201"}, {0x1, 0xd, "ae196872ac2a371a353d09"}, {0x7, 0xf, "0d0e9d8e1110e5b21f76825e88"}, {0x6, 0x2}, {0x2, 0xb, "3ad6138132b2c4b0d8"}, {0x2, 0x2}]}, @timestamp_addr={0x44, 0x44, 0x93, 0x1, 0xc, [{@empty}, {@remote, 0x5}, {@broadcast, 0x7}, {@dev={0xac, 0x14, 0x14, 0x13}, 0x101}, {@empty, 0x1}, {@broadcast, 0x7fe5}, {@dev={0xac, 0x14, 0x14, 0x18}, 0x8}, {@rand_addr=0x64010102, 0x6}]}, @timestamp_addr={0x44, 0x14, 0x46, 0x1, 0x9, [{@remote}, {@multicast1, 0xffffffff}]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private=0xa010102, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010101, @empty}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x8}}], 0x2a8}, 0x20008014)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000ce000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3389.110036][T30802] loop3: detected capacity change from 0 to 512
[ 3389.121256][T30802] EXT4-fs (loop3): Invalid log block size: 64511
[ 3389.129753][T30804] FAULT_INJECTION: forcing a failure.
[ 3389.129753][T30804] name failslab, interval 1, probability 0, space 0, times 0
[ 3389.143035][T30804] CPU: 0 PID: 30804 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3389.151841][T30804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3389.162511][T30804] Call Trace:
[ 3389.166070][T30804]  dump_stack+0x137/0x19d
[ 3389.170398][T30804]  should_fail+0x23c/0x250
[ 3389.175002][T30804]  ? kmalloc_array+0x2d/0x40
[ 3389.179751][T30804]  __should_failslab+0x81/0x90
[ 3389.185106][T30804]  should_failslab+0x5/0x20
[ 3389.189859][T30804]  __kmalloc+0x66/0x340
[ 3389.194056][T30804]  ? iov_iter_revert+0x151/0x540
[ 3389.199207][T30804]  ? splice_from_pipe+0xc0/0xc0
[ 3389.204057][T30804]  kmalloc_array+0x2d/0x40
[ 3389.209345][T30804]  iter_file_splice_write+0xc1/0x750
[ 3389.214748][T30804]  ? atime_needs_update+0x2ba/0x390
[ 3389.220548][T30804]  ? generic_file_splice_read+0x284/0x310
[ 3389.226656][T30804]  ? splice_from_pipe+0xc0/0xc0
[ 3389.231792][T30804]  direct_splice_actor+0x80/0xa0
[ 3389.236921][T30804]  splice_direct_to_actor+0x345/0x650
[ 3389.242585][T30804]  ? do_splice_direct+0x170/0x170
[ 3389.247800][T30804]  do_splice_direct+0xf5/0x170
[ 3389.252763][T30804]  do_sendfile+0x773/0xda0
[ 3389.257570][T30804]  __x64_sys_sendfile64+0xf2/0x130
[ 3389.262981][T30804]  do_syscall_64+0x4a/0x90
[ 3389.267932][T30804]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3389.274802][T30804] RIP: 0033:0x4665d9
[ 3389.279659][T30804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3389.300213][T30804] RSP: 002b:00007f18fa977188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3389.309001][T30804] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 3389.317272][T30804] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 3389.326516][T30804] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3389.334754][T30804] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3389.343436][T30804] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
[ 3389.505849][T30802] loop3: detected capacity change from 0 to 512
03:14:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000cf000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:13 executing program 5 (fault-call:1 fault-nth:75):
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

[ 3389.548827][T30802] EXT4-fs (loop3): Invalid log block size: 64511
03:14:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000d0000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000c0ed000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3389.637054][T30829] FAULT_INJECTION: forcing a failure.
[ 3389.637054][T30829] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3389.650814][T30829] CPU: 0 PID: 30829 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3389.659683][T30829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3389.669849][T30829] Call Trace:
[ 3389.673248][T30829]  dump_stack+0x137/0x19d
[ 3389.677831][T30829]  should_fail+0x23c/0x250
03:14:13 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000000000ff000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3389.682260][T30829]  should_fail_usercopy+0x16/0x20
[ 3389.687578][T30829]  _copy_to_user+0x1c/0x90
[ 3389.692191][T30829]  simple_read_from_buffer+0xab/0x120
[ 3389.697814][T30829]  proc_fail_nth_read+0xf6/0x140
[ 3389.702901][T30829]  ? rw_verify_area+0x136/0x250
[ 3389.707851][T30829]  ? proc_fault_inject_write+0x200/0x200
[ 3389.713766][T30829]  vfs_read+0x154/0x5d0
[ 3389.717935][T30829]  ? __fget_light+0x21b/0x260
[ 3389.722770][T30829]  ? __cond_resched+0x11/0x40
[ 3389.727465][T30829]  ksys_read+0xce/0x180
[ 3389.731901][T30829]  __x64_sys_read+0x3e/0x50
[ 3389.736579][T30829]  do_syscall_64+0x4a/0x90
[ 3389.741327][T30829]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3389.747534][T30829] RIP: 0033:0x41935c
[ 3389.751837][T30829] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3389.772329][T30829] RSP: 002b:00007f18fa977170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3389.781573][T30829] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 000000000041935c
[ 3389.790351][T30829] RDX: 000000000000000f RSI: 00007f18fa9771e0 RDI: 0000000000000004
[ 3389.799541][T30829] RBP: 00007f18fa9771d0 R08: 0000000000000000 R09: 0000000000000000
[ 3389.807589][T30829] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000002
[ 3389.815819][T30829] R13: 00007ffccab720df R14: 00007f18fa977300 R15: 0000000000022000
03:14:16 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x10000000, 0x0, 0x5, 0x0, 0x0, 0x10000000003ff}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="6d527cd53870164a3a0d4b641e0e7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6eb03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f10b4cee7c74a3816b12950faa20fab5827bc621a2fcc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/284, 0x11c)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000140)={0x3, &(0x7f0000000080)=[{0x6, 0x5, 0x1f, 0x3fd1}, {0x7, 0x81, 0xf7, 0x7ff}, {0x5, 0x3, 0x6, 0x9}]}, 0x10)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x9}}, 0x0)
r6 = syz_open_dev$vcsn(&(0x7f00000003c0), 0x400, 0xc0)
ioctl$RTC_VL_CLR(r6, 0x7014)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000b, 0x84051, r2, 0xe9ee4000)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x10, 0x0, @thr={&(0x7f0000000240)="43e67d859790038d584029e888e9f39a82bf6bc2fc824464aa046db48f23d1dbba80e7a8d27400eefb93b351a4908bc403468ca5b2c8b023253da5db5542c77a25d3b286d50a236725369e2840132d9f1278293c8cc105939a2bc63352b34652da0b59b9b2c80f568927d614b403d0ae8ca0752b1309eefb6c298542e3528992e376481b5c3f4664a68bf8098d9db3f4a1dfba86e4164364317d248347e27314ea9d94438ebba749747610b1e62c14ed97483ba5ad352121", &(0x7f0000000300)="a53a85df3a89b64260edeaf7d1aaf9a8976f088dbcf3d7f2992949322c4d9907952e9b3ae085c933635ebec9819c95f54fcc72dc626c40340b803037601d978056c1ff263ffa885602fd7ef836029b5790e8e7edac8b1c6d58b3be9e5b3535afe489ebce9017f7051a18acbf027a4259a4904ea9bd19d3942bae278fd92a076a865fee7cc1ff3789a685a139168ab86080df9ad993"}}, &(0x7f0000000040)=<r7=>0x0)
r8 = fsmount(r4, 0x1, 0x7e)
getsockopt$inet_opts(r8, 0x0, 0x9, &(0x7f00000003c0), &(0x7f0000000400))
fcntl$setpipe(r2, 0x407, 0x8002000000)
timer_settime(r7, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r3, 0x0, 0x4)

03:14:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000fff000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffdfd000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:16 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x9661, @rand_addr=' \x01\x00', 0xff}, 0x1c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:16 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000000)

03:14:16 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f000000b980)=[{{&(0x7f0000000080)=@nfc_llcp, 0x80, &(0x7f0000001840)=[{&(0x7f00000002c0)=""/200, 0xc8}, {&(0x7f00000003c0)=""/195, 0xc3}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f0000000000)=""/2, 0x2}, {&(0x7f0000000180)=""/108, 0x6c}, {&(0x7f00000014c0)=""/215, 0xd7}, {&(0x7f00000015c0)=""/131, 0x83}, {&(0x7f0000001680)=""/130, 0x82}, {&(0x7f0000001740)=""/227, 0xe3}], 0x9, &(0x7f0000001900)=""/75, 0x4b}, 0x8}, {{&(0x7f0000001980)=@pppol2tpv3in6, 0x80, &(0x7f0000002cc0)=[{&(0x7f0000000100)=""/24, 0x18}, {&(0x7f0000001a00)=""/153, 0x99}, {&(0x7f0000001ac0)=""/197, 0xc5}, {&(0x7f0000001bc0)=""/56, 0x38}, {&(0x7f0000001c00)=""/4096, 0x1000}, {&(0x7f0000002c00)=""/158, 0x9e}], 0x6, &(0x7f0000002d40)=""/4096, 0x1000}, 0x6}, {{&(0x7f0000003d40)=@x25={0x9, @remote}, 0x80, &(0x7f0000003ec0)=[{&(0x7f0000003dc0)=""/224, 0xe0}], 0x1, &(0x7f0000003f00)=""/233, 0xe9}, 0x80000001}, {{&(0x7f0000004000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x80, &(0x7f0000005240)=[{&(0x7f0000004080)=""/4096, 0x1000}, {&(0x7f0000005080)=""/200, 0xc8}, {&(0x7f0000005180)=""/177, 0xb1}], 0x3, &(0x7f0000005280)=""/110, 0x6e}, 0x80000000}, {{&(0x7f0000005300)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000006880)=[{&(0x7f0000005380)=""/86, 0x56}, {&(0x7f0000005400)=""/134, 0x86}, {&(0x7f00000054c0)=""/4096, 0x1000}, {&(0x7f00000064c0)=""/227, 0xe3}, {&(0x7f00000065c0)=""/95, 0x5f}, {&(0x7f0000006640)=""/100, 0x64}, {&(0x7f00000066c0)=""/225, 0xe1}, {&(0x7f00000067c0)=""/192, 0xc0}], 0x8, &(0x7f0000006900)=""/104, 0x68}, 0x59f}, {{&(0x7f0000006980)=@xdp, 0x80, &(0x7f0000006bc0)=[{&(0x7f0000006a00)=""/49, 0x31}, {&(0x7f0000006a40)=""/193, 0xc1}, {&(0x7f0000006b40)=""/112, 0x70}], 0x3}}, {{0x0, 0x0, &(0x7f0000007c00)=[{&(0x7f0000006c00)=""/4096, 0x1000}], 0x1, &(0x7f0000007c40)=""/182, 0xb6}, 0x625}, {{0x0, 0x0, &(0x7f0000009040)=[{&(0x7f0000007d00)=""/34, 0x22}, {&(0x7f0000007d40)=""/184, 0xb8}, {&(0x7f0000007e00)=""/181, 0xb5}, {&(0x7f0000007ec0)=""/5, 0x5}, {&(0x7f0000007f00)=""/1, 0x1}, {&(0x7f0000007f40)=""/4096, 0x1000}, {&(0x7f0000008f40)=""/248, 0xf8}], 0x7}}, {{&(0x7f00000090c0)=@hci, 0x80, &(0x7f000000a580)=[{&(0x7f0000009140)=""/211, 0xd3}, {&(0x7f0000009240)=""/129, 0x81}, {&(0x7f0000009300)=""/177, 0xb1}, {&(0x7f00000093c0)=""/4096, 0x1000}, {&(0x7f000000a3c0)=""/223, 0xdf}, {&(0x7f000000a4c0)=""/61, 0x3d}, {&(0x7f000000a500)=""/98, 0x62}], 0x7, &(0x7f000000a600)=""/23, 0x17}, 0x1ff}, {{&(0x7f000000a640)=@generic, 0x80, &(0x7f000000b8c0)=[{&(0x7f000000a6c0)=""/59, 0x3b}, {&(0x7f000000a700)=""/4096, 0x1000}, {&(0x7f000000b700)=""/202, 0xca}, {&(0x7f000000b800)=""/131, 0x83}], 0x4, &(0x7f000000b900)=""/74, 0x4a}, 0x79fad537}], 0xa, 0x40000042, &(0x7f000000bc00)={0x0, 0x989680})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:16 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000002)

03:14:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000ffff030000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:16 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000003)

[ 3392.139412][T30851] loop3: detected capacity change from 0 to 512
[ 3392.160692][T30851] EXT4-fs (loop3): Invalid log block size: 65021
03:14:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000040000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:16 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200)=<r3=>0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r4=>0x0, <r5=>0x0})
timer_settime(r3, 0x1, &(0x7f000006b000)={{r4, r5+10000000}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r6=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r6, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:14:16 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000005)

[ 3392.204272][T30851] loop3: detected capacity change from 0 to 512
[ 3392.217726][T30851] EXT4-fs (loop3): Invalid log block size: 65021
03:14:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffffd000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:16 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000007)

03:14:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000080000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3392.295338][T30884] loop3: detected capacity change from 0 to 512
[ 3392.316960][T30884] EXT4-fs (loop3): Invalid log block size: 65023
[ 3392.347845][T30884] loop3: detected capacity change from 0 to 512
[ 3392.354978][T30884] EXT4-fs (loop3): Invalid log block size: 65023
03:14:17 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
getsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000100), &(0x7f0000000140)=0x4)
preadv(r2, &(0x7f0000000280), 0x0, 0xd9f, 0x20)
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x40400, 0x0)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @private0}, 0x1c)

03:14:17 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000009)

03:14:17 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_getattr(r0, &(0x7f0000000080)={0x38}, 0x38, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setattr(r0, &(0x7f0000000000)={0x38, 0x1, 0x59, 0xfff, 0x5, 0x5, 0x4, 0x6, 0x1, 0xd4d}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000080), 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x2, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:17 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000004000080000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffffe000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:17 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000180000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:17 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x4a)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3393.017750][T30915] loop3: detected capacity change from 0 to 512
[ 3393.049364][T30915] EXT4-fs (loop3): Invalid log block size: 65279
[ 3393.094494][T30915] loop3: detected capacity change from 0 to 512
[ 3393.102278][T30915] EXT4-fs (loop3): Invalid log block size: 65279
03:14:19 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:19 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x2400000a)

03:14:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000100002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:19 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100000000ff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x8, &(0x7f0000001700)=[{&(0x7f00000000c0)="9d3a67bc38e2ea2ae9176737cbf991502fd3fc704d5ccce16448fa127ef71ee56f41d3ff6a38f7401a60d58c9542eae6647ff8e0e6a669ccb8c73d36f3f0dca40c2e4f2e35ea474ca674c3a42eb191a90d93595d", 0x54, 0x9}, {&(0x7f00000002c0)="1979c5bc113b3e08fe41f8b7ef14d48a70193c848cbadb9ab26ed24caa73a8f05a34dc9b7e432dd4fc908fe3c82fc98a0ab5341a5ebf50724a956e09037e003b4373817c462e6a36b3a391be48a5e0a888ba2f85696c2d112718d1a6ac42a29b8b367a7167b897c2058d1dc2e1422910406b4907b5970ce8ffbcf98eec954252edb7aa814dd3d710c8b2b1af8b45970ec58ddf786b66fd82b55a80e74dfe15ef286acd215a4aabb1debfa9a7a8408bdb8f23de30dd9c7d5a54", 0xb9, 0x80000001}, {&(0x7f0000000180)="2fa7cf6ca83e2b598522ecaea4a150ea777d6b8f0f5966e2a1555653dcc417057671baa771e8df49", 0x28, 0x8}, {&(0x7f0000000380)="558e8bb6ab25208178e6accf4917135f84c649c156a791bfd8f83fbba3225c50377877f08c034878c564f133a707223f85ee42814ebb3ea1b9e24644c62c1dd2eddae08b9a00ac43d0312c6545537b484958c73f3d523baf52ddd03df02717a1894e73607cf503fa1b41f405e36472e405488d09d1371f4aab95f618f62335b2c5", 0x81, 0x20}, {&(0x7f0000000440)="b43d7cc429c763748282107991cb4b12194226831c391b08f2ea2cfcfbac0f1e8ccbef8a3e2a359752feb4ef9f90f769ff4276879e932d3bfce11be0b50de21e83c1d44e19d84c39a477ce6f6adbb7234bd01b942b84a7dc4dc21b0bf9b7dc655d8f88d5ed3e210a965734dcdf6fb7da13d6f99a32b2eed22633652e92bdf1c345ac8179abf210e2e328f012e25863621195e6b04e", 0x95, 0x7fff}, {&(0x7f0000000500)="1ca4d9a3049e34da47565ee6325f03b3b1bca40c937d94b78170d4a700469c254822aeff0c036211c3ca7eecbae92ee12d177dd3d908f8aaf9da02d5d296b060ae12cb3294aa419166465fae9e84f445f2d23109da6ed48c208ad548e46bea8d1df83f69c1e77d698f6064611eaa7f0a07e25ee40707cedffb7dd242d383c3263a5415974362c690bb974f205462b09e3dce6632ac9813f85aba00be2bc517b7619d1541e41112d50e9ea2b479dee6422ba4ffc6ebe58f852154ef3b83b66f27d54610e0136e82e32f292a219a2bd4ac698bf0a326979a7b1e9975fc55b7", 0xde, 0x10000}, {&(0x7f0000000600)="9d7f0f2c70df170d5167996c85385d08ced041bf80a64a67684e9cfe9f227c86760e00e48321d37e72633e908847a5ee1e52c5c1eef68cc6e5540712f8e85894992df32b7c18e926e5734ced9bab7e85b8a04e802a12da6aa7c8d9e7c6eaec687c70439c587d63568858edce6f54f1fa7809dd37ecb2e7fdb9a9e405d911fcad5a7a630b2304230ca370643d0696dfb96b446fecfe62caed4f3b3447a33883501738c3bd10940e3316040a9106bf5a034fde2ef8cb16585dcbe032d44a961f7c1841e7", 0xc3, 0x6f}, {&(0x7f0000000700)="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", 0x1000, 0x401}], 0x2a80483, &(0x7f00000017c0)={[{@journal_dev={'journal_dev', 0x3d, 0x1}}, {@noload}, {@nobh}, {@noload}], [{@appraise}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@subj_role={'subj_role', 0x3d, '*\\'}}, {@fowner_gt}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@subj_user}, {@smackfsfloor}, {@euid_gt={'euid>', 0xee00}}]})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:19 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x12, &(0x7f0000000080)=0x20009, 0x66)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r3 = openat$incfs(r1, &(0x7f0000000040)='.log\x00', 0x400400, 0x8)
setsockopt$inet6_tcp_int(r3, 0x6, 0x9, &(0x7f00000000c0)=0x80000006, 0x4)
r4 = socket$inet6(0xa, 0x5, 0x6)
dup2(r1, r4)
fcntl$setstatus(r1, 0x4, 0x2000)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={<r6=>0x0, @local, @local}, &(0x7f0000000080)=0xc)
sendto$packet(0xffffffffffffffff, &(0x7f0000000240)="b23d921378e9a83f1254ccf05513784c88a8ff2a0806", 0x16, 0x0, &(0x7f0000000040)={0x11, 0x8100, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@mcast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@initdev}, 0x0, @in6=@empty}}, &(0x7f00000002c0)=0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000300)={{{@in=@multicast1, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4e23, 0x1ff, 0x4e22, 0x1, 0x2, 0x80, 0x0, 0x6, r6, r7}, {0x9, 0xd93f, 0x16, 0x0, 0xfffffffffffff494, 0x8, 0x4, 0x18}, {0x401, 0x10000, 0xe5a4, 0x8}, 0x400, 0x6e6bbd, 0x1, 0x1, 0x2, 0x1}, {{@in=@remote, 0x4d4, 0x2b}, 0x2, @in6=@empty, 0x3506, 0x2, 0x2, 0x6, 0x2, 0x9, 0x1f}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000200002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:19 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x2400000b)

03:14:19 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x2400000c)

03:14:19 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000040200002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3395.299725][T30948] loop3: detected capacity change from 0 to 512
[ 3395.315400][T30948] EXT4-fs (loop3): Invalid log block size: 65280
[ 3395.359290][T30963] ==================================================================
[ 3395.367683][T30963] BUG: KCSAN: data-race in capable_wrt_inode_uidgid / mm_update_next_owner
[ 3395.376446][T30963] 
[ 3395.378860][T30963] write to 0xffff88813dcf806c of 4 bytes by task 30961 on cpu 0:
[ 3395.386787][T30963]  capable_wrt_inode_uidgid+0xa5/0x140
[ 3395.392555][T30963]  generic_permission+0x1b7/0x420
[ 3395.397579][T30963]  inode_permission+0x6b/0x290
[ 3395.402336][T30963]  may_open+0x1a7/0x2f0
[ 3395.406493][T30963]  path_openat+0x17b3/0x20b0
[ 3395.411078][T30963]  do_filp_open+0xd9/0x1f0
[ 3395.415489][T30963]  do_sys_openat2+0xa3/0x250
[ 3395.420190][T30963]  __x64_sys_open+0xe2/0x110
[ 3395.424779][T30963]  do_syscall_64+0x4a/0x90
[ 3395.429415][T30963]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3395.435328][T30963] 
[ 3395.437652][T30963] read to 0xffff88813dcf806c of 4 bytes by task 30963 on cpu 1:
[ 3395.445300][T30963]  mm_update_next_owner+0x1d9/0x520
[ 3395.450633][T30963]  exit_mm+0x358/0x450
[ 3395.454783][T30963]  do_exit+0x3ff/0x1560
[ 3395.458938][T30963]  do_group_exit+0x19b/0x1a0
[ 3395.463560][T30963]  __do_sys_exit_group+0xb/0x10
[ 3395.468495][T30963]  __se_sys_exit_group+0x5/0x10
[ 3395.473453][T30963]  __x64_sys_exit_group+0x16/0x20
[ 3395.478545][T30963]  do_syscall_64+0x4a/0x90
[ 3395.483067][T30963]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3395.489160][T30963] 
[ 3395.491489][T30963] value changed: 0x00404040 -> 0x00404140
[ 3395.497304][T30963] 
[ 3395.499630][T30963] Reported by Kernel Concurrency Sanitizer on:
03:14:19 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000fff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:19 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x2400000d)

[ 3395.505869][T30963] CPU: 1 PID: 30963 Comm: syz-executor.5 Not tainted 5.13.0-rc3-syzkaller #0
[ 3395.514726][T30963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3395.524973][T30963] ==================================================================
[ 3395.575495][T30971] loop3: detected capacity change from 0 to 512
[ 3395.586296][T30971] EXT4-fs (loop3): Invalid log block size: 65295
[ 3395.629910][T30971] loop3: detected capacity change from 0 to 512
[ 3395.643181][T30971] EXT4-fs (loop3): Invalid log block size: 65295
03:14:20 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x2400000f)

03:14:20 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
connect$unix(r4, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e)

03:14:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffffbff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:20 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
sched_setattr(r0, &(0x7f0000000000)={0x38, 0x2, 0x20, 0x4f, 0x8, 0x80, 0x1, 0xffffffffffff1956, 0x855, 0x2}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:20 executing program 2:
r0 = socket$inet6(0xa, 0x80000, 0xfffffffd)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000300002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000400002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000003ffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3396.173194][T31000] loop3: detected capacity change from 0 to 512
[ 3396.188801][T31000] EXT4-fs (loop3): Invalid log block size: 65531
03:14:20 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
r3 = open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x801)
sendfile(r2, r3, &(0x7f00000000c0)=0x8, 0x5f5900b7)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000500002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:20 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000010)

03:14:20 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000011)

03:14:20 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000600002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3396.293914][T31024] loop3: detected capacity change from 0 to 512
[ 3396.303881][T31024] EXT4-fs (loop3): Invalid log block size: 65535
[ 3396.369706][T31024] loop3: detected capacity change from 0 to 512
[ 3396.376910][T31024] EXT4-fs (loop3): Invalid log block size: 65535
03:14:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000040600002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:21 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000180)

03:14:21 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))

03:14:21 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
sched_setattr(r0, &(0x7f0000000080)={0x38, 0x6, 0x28, 0x9, 0x67a, 0x100000001, 0x8000, 0x7f, 0x6, 0xce}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x20000014}, &(0x7f0000000040)=<r3=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fffbffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000700002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:21 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000300)

03:14:21 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1800003, 0x4010, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000800002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:21 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000500)

03:14:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000900002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3397.222940][T31059] loop3: detected capacity change from 0 to 512
[ 3397.231748][T31059] EXT4-fs (loop3): Invalid log block size: 65535
03:14:21 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000700)

03:14:21 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000a00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3397.289289][T31059] loop3: detected capacity change from 0 to 512
[ 3397.302287][T31059] EXT4-fs (loop3): Invalid log block size: 65535
03:14:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100f9fdffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3397.407630][T31091] loop3: detected capacity change from 0 to 512
[ 3397.430771][T31091] EXT4-fs (loop3): Invalid log block size: 65535
[ 3397.471352][T31091] loop3: detected capacity change from 0 to 512
[ 3397.478709][T31091] EXT4-fs (loop3): Invalid log block size: 65535
03:14:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000b00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:22 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000900)

03:14:22 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100fdfdffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:22 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:22 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r3 = gettid()
ptrace(0x4206, r3)
tkill(r3, 0x800000009)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x20, 0x1, @thr={&(0x7f0000000240)="1e801d4973eb9ac62daf300b914616775ca173ee87bc4b65e24189307e0b", &(0x7f0000000280)="13a500316286f5287f1c8d81fe793d5115f20e46528d5a61453ea770c29e6f1bbff9592e43d4dbba1869e8b2556abf1c94f6b52ac9bf5c79874b136fd6728a166924d3f29b09a96e4ebff70e125b"}}, &(0x7f0000000080)=<r4=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="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"/297, 0xffffffca)
write$binfmt_elf64(r5, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"/1769], 0x6bf)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:22 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f00000004c0)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000000)=ANY=[@ANYBLOB="40040000", @ANYRES16=r6, @ANYBLOB="0100009e707acf58f1801a"], 0x448}}, 0x0)
sendfile(r5, r4, 0x0, 0x100000002)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write(r7, &(0x7f00000000c0)="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"/297, 0xffffffca)

03:14:22 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000a00)

03:14:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000c00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3398.259548][T31111] loop3: detected capacity change from 0 to 512
[ 3398.282771][T31111] EXT4-fs (loop3): Invalid log block size: 65535
03:14:22 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r1, 0x0, r4, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
splice(r2, &(0x7f0000000240)=0xffffffff, r3, &(0x7f0000000280)=0x6, 0x2, 0xa)
clock_gettime(0x0, &(0x7f0000000080)={<r5=>0x0, <r6=>0x0})
timer_settime(0x0, 0x1, &(0x7f0000000140)={{0x77359400}, {r5, r6+10000000}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r7=>0x0)
fcntl$setpipe(r4, 0x407, 0x8000000000)
timer_settime(r7, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
setrlimit(0xc, &(0x7f00000001c0)={0x7fffffff, 0x7})
write$binfmt_misc(r4, 0x0, 0x4)

03:14:22 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000b00)

03:14:22 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000fffffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3398.312539][T31106] netlink: 1068 bytes leftover after parsing attributes in process `syz-executor.2'.
03:14:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000d00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:22 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000c00)

03:14:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000e00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:22 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000d00)

[ 3398.408509][T31136] loop3: detected capacity change from 0 to 512
[ 3398.439307][T31136] EXT4-fs (loop3): Invalid log block size: 65535
[ 3398.497255][T31136] loop3: detected capacity change from 0 to 512
[ 3398.507686][T31136] EXT4-fs (loop3): Invalid log block size: 65535
03:14:23 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sched_setattr(r0, &(0x7f0000000000)={0x38, 0x5, 0x7, 0x9, 0xa8, 0x100000001, 0x2, 0x1, 0x1000}, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:23 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24000f00)

03:14:23 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000f00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001007fffffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:23 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
write$binfmt_misc(r0, &(0x7f0000000180)={'syz0', "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"}, 0x100)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f00000000c0)={0x10001, {{0xa, 0x4e22, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x30}}}, 0x88)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

[ 3399.283976][T31169] loop3: detected capacity change from 0 to 512
[ 3399.299614][T31169] EXT4-fs (loop3): Invalid log block size: 65535
[ 3399.358072][T31169] loop3: detected capacity change from 0 to 512
[ 3399.379032][T31169] EXT4-fs (loop3): Invalid log block size: 65535
03:14:25 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_create(0x0, &(0x7f0000000080)={0x0, 0x33, 0x1, @tid=r0}, &(0x7f0000000140)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x77359400}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r4=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f0000000240)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf1dffffff7f5cff10867f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197cd3b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600000000000000000000000000000000000000000000000000000000cb5b29af471e574a2856cda26de40500cb742eaca4bf38c14657fd054b7490cc2ff38bca0b0000000000003c2befad145dba17e72c24e70b0857e8221e796e34f658b4b3f5622b381447edc8f9e18079d601d41558d3e99ac69a761683ced8136ac08f31a51388e67452d8fce2d9c39e85316bc762199b8e3ec703386724ed147f9fcb8f6d843e50b27119bade8b56627f6c9015bff3ce8c785b0da2bccc616a5eedfc6146fc875b90f773a7cf2a0d6d32153a3ace7150784448b8e2643eeba8e16f398bf1d87c2686110eccdb33f91993baa7a4a520b208446b63ebb2185aee686d3fad7af929c2cf18eedfbaa3da2e8ea5ad5cbdadc09df8750000000047f63935e044ac9f540ef91cdf601dee7aa06b05b64013587465d19770a6c33a9a58feea4fac3f1b4f6acd93202e969a2b66a4fcb5550a685855e1747fb8a3fee132951207ef83a116acf47eaedb6790d26f41919d2289aff94d5782fc34108582d4b20b86e114b57ae300"/661, 0x295)
fcntl$setstatus(r5, 0x4, 0x44400)

03:14:25 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$FIONCLEX(r0, 0x5450)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
mmap(&(0x7f0000758000/0x4000)=nil, 0x4000, 0x2, 0x50, r1, 0x4df11000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/179, 0xb3}], 0x1, 0xddf, 0x80)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:25 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24001100)

03:14:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001000000000000ffffff0f00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:25 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f00000001008cffffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:25 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x9, 0x9, 0x100000000000000, 0x0, 0x0, 0x40}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:25 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24002000)

03:14:25 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x24004000)

03:14:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000041000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3401.379853][T31198] loop3: detected capacity change from 0 to 512
[ 3401.408999][T31198] EXT4-fs (loop3): Invalid log block size: 65535
03:14:25 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x30000000)

03:14:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001100002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3401.466160][T31198] loop3: detected capacity change from 0 to 512
[ 3401.481091][T31198] EXT4-fs (loop3): Invalid log block size: 65535
03:14:28 executing program 4:
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0xff}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000000c0)="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"/297, 0xffffffca)
ioctl$EVIOCSABS20(r3, 0x401845e0, &(0x7f0000000080)={0x3, 0x273, 0x8, 0x8, 0x3f, 0x1})
splice(r1, 0x0, r2, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x6, &(0x7f0000000240)={0x0, 0x14, 0x0, @thr={&(0x7f0000000280)="6ed519bbdaf78e013f5f861539a9067f81bb285108fc9e0bbac7d5794e038408a5fac72bfdef7721974d68b61eea9f2309e3594e16a47c984135237caa2c45b10c9afc45c0cc7e8dbf2fd7a5a474bd8548575c78eb1abd5751451dece50a78b4f607f0cf5c63e3ecab1e8e16e9bcf0a2e036078b4bdec1b64c6e0017d37e0b1c3624c5549b734a7744c1a934460591bd18c30937aa3790f85c64da550fcd1dc46eaf037b4d5c3b88271c28e05f5ca7c8c90bf5be94e61e3467e299c5157efb8d20cb731185807db0be04a8bc23fcaa3fad45266b1e9a96744611", &(0x7f0000000380)="a761190e72872eaf690069cb1ed6693269fb10b02ffc58994ec21e481a836e1f411a4515743d0986cd21e84753cfd691fe04fd1f4b300be0adeb50bb951bd6794ca3ac3c5ae45474126dcfc2c3c373047bff48f15f276dcc42dd03cd9ad779f42abf2705e66e321ced479a376a1b8d41becc5cc9e8ff257b87cc19e4f4bee8b256adff5f07d6ed42c1a22ad81e96e0f0eff4a7e0240c"}}, &(0x7f0000000040)=<r4=>0x0)
fcntl$setpipe(r2, 0x407, 0x8000000000)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_misc(r2, 0x0, 0x4)

03:14:28 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010097ffffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:28 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x7ffff000)

03:14:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001200002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:28 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
r3 = socket(0x10, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @rand_addr=0x640100fd}, 0x8, 0x2, 0xff, 0x6, 0x9, 0x8000}, 0x20)
write(r3, &(0x7f0000000100)="1c0000005e001f3814584707f9f4ffffff0000000102000025f80000", 0x37)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

03:14:28 executing program 1:
prlimit64(0x0, 0x1, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000640))
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
r3 = getpgrp(r0)
ptrace$setregs(0xf, r3, 0x4, &(0x7f0000000080)="e82e77d72f6b6b406fb9546641f3cc7862864e2105f1e3e3b389a59be03fc9a54586f37c3a14666b3b76dfc5c028c014436086c6421cc7a924")
r4 = gettid()
ptrace(0x4206, r4)
tkill(r4, 0x800000009)
sched_setattr(r4, &(0x7f00000001c0)={0x38, 0x1, 0x0, 0x1, 0x7ff8, 0x2, 0x4, 0x38e, 0x1000, 0x9}, 0x0)
preadv(r1, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/11, 0xb}, {&(0x7f0000000300)=""/194, 0xc2}, {&(0x7f0000000400)=""/229, 0xe5}, {&(0x7f0000000500)=""/226, 0xe2}], 0x4, 0x1ff, 0x8)
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r6 = openat$incfs(r5, &(0x7f0000000000)='.log\x00', 0x240101, 0x3d)
preadv(r6, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xffffffffffffff22}], 0x1, 0x2, 0x3)

03:14:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001400002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:28 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0x7fffffffffffffff)

03:14:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001800002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3404.416809][T31246] loop3: detected capacity change from 0 to 512
[ 3404.447598][T31246] EXT4-fs (loop3): Invalid log block size: 65535
03:14:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001900002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:28 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
sendfile(r0, r0, 0x0, 0xffffffffffffffff)

03:14:28 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100daffffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3404.513879][T31246] loop3: detected capacity change from 0 to 512
[ 3404.520861][T31246] EXT4-fs (loop3): Invalid log block size: 65535
[ 3404.598309][T31278] loop3: detected capacity change from 0 to 512
[ 3404.608559][T31278] EXT4-fs (loop3): Invalid log block size: 65535
03:14:29 executing program 4:
prlimit64(0x0, 0x4, &(0x7f00000000c0)={0xddf, 0x2000000000ff}, 0x0)
r0 = getpid()
clone3(&(0x7f0000002940)={0x40000000, &(0x7f0000000080), &(0x7f0000000140), &(0x7f00000001c0)=<r1=>0x0, {0x1c}, &(0x7f0000000240)=""/228, 0xe4, &(0x7f0000000340)=""/181, &(0x7f0000002900)=[r0, r0, 0x0, r0, r0, r0, 0x0, 0x0], 0x8}, 0x58)
sched_setattr(r1, &(0x7f0000000040)={0xfffffffffffffe7f, 0x2, 0x0, 0x1, 0x5, 0x0, 0x0, 0x7ffffffd, 0x1, 0xfffffffe}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f00000005c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r2, 0x0, r4, 0x0, 0x8ec3, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r5=>0x0)
fcntl$setpipe(r4, 0x407, 0x8000000000)
r6 = fork()
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write(r7, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
preadv(r7, &(0x7f00000028c0)=[{&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)=""/134, 0x86}, {&(0x7f0000000580)=""/2, 0x2}], 0x4, 0x3, 0x9)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f0000000540)={<r8=>r3, 0x400, 0xffffffffffffffe0, 0x5})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r8, 0x81f8943c, &(0x7f0000000600))
sched_setattr(r6, &(0x7f00000004c0)={0x38, 0x1, 0x3, 0x7da7, 0x1, 0x8b, 0x9, 0x3, 0x6}, 0x0)
timer_settime(r5, 0x0, &(0x7f0000000400)={{0x0, 0x989680}}, 0x0)
write$binfmt_misc(r4, 0x0, 0x4)

03:14:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001b00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100e2ffffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:29 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
setrlimit(0x6, &(0x7f0000000000)={0x1, 0xfff})
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0xffffffffffffff0d, 0x2, 0x0, 0x0, 0x200}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
tkill(0x0, 0x800000009)
getresgid(&(0x7f00000006c0), &(0x7f0000000700), &(0x7f0000000740)=<r3=>0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000000c0)="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"/297, 0xffffffca)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000002580)={<r6=>0x0}, &(0x7f00000025c0)=0xc)
newfstatat(0xffffffffffffff9c, &(0x7f0000002600)='./file0\x00', &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000003940)=[{&(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000640)=[{&(0x7f00000002c0)="f033d3aeeedec94b0a452f5920f87fe6b937813c9fc9fdee9ce96de9a24b460d2c46c74b4d2a68f344e465491e37d9b3c992a53e58170c9038a94739e7a7a52ad72f0b463c2679385360ee4b589800bea5cf2e52600c1759a06faa5f9d8ed721d583f6f3a5f5b9a07c14684693705266b131fb47aa0ac1d9501714c0337ed4ea6f3b3ca6b21cb8153054ecc2088cc037749d895c41db7c7b3fa134340f499be59bd6a65e0819aa23de0145d2f03f73c46e8a30c21d2846a041174cfe78bb735cc619ecb3a5558a3e6f3630baf1aa130695d0f659fd73962da636716763b501f17343a3c5f182c15dbe850977b3", 0xed}, {&(0x7f0000000180)="779a5a9a5682b241ec5ed7db99c8cdf79d5237c8aae803082390b16c0ffd622387544cc6e9b115fd3d6407bfbf0d2961ee60964744a784c746efd33e6f122b57b25cf93d4752775ccf1ba70c1aef9a9bbc880759", 0x54}, {&(0x7f00000003c0)="a2434f3a4a46c327ee61ff39d2f741ce2d76d77f487f0c8cabc6580e3ebe99d2574e999d8c529e2fdf3295ce9f0b5706367ea5b193fcaabff2b9ee974ba6f8166034134678a5985ab7ce12d147b5898d60eed0124bc1ade4c8e6c65d839c", 0x5e}, {&(0x7f0000000440)="a5a739175e213028b0463b5b39be55169c8dde76ed9c1d8b0e740f38b758b7b16d87f6de02b9e2e70a4af718e6c255073469836aa22021ea35003c37c9b7c7fc6f9902eacaea0323f7652786797a275d3dfd4eafbd39910f8e8c00c6d6cd617801151feb1ffa4f943ab91ae0ede0510d9ef6e3267a28e752f21f21ad18a3d2d80b8b5f8bc54c37203cc9a8b4c19d2c7700edb5bbcb9e2a3a28c303881a9af4602f7f00dd6cd03c2bae6f5fb122eba66e88a33fd16cfeb1172135ae28b0c08cd873a630a041fff246e34795ae07bb886f41bb8340d798ab5c25fae11bca744b4b1ae3efd0cbd55d89845e2cf062b3884e097b4c2d1f", 0xf5}, {&(0x7f0000000540)="e6da580e6d2fc2e1c0dd1b6be3c16b8a981519bd8fb328d1644f07d7a6364206aba63ae150f35fd22b05d471e74002cebc", 0x31}, {&(0x7f0000000580)="43783208c982472a5cd7a3522346f1a9349fd7865b212c8bf663579687be5d7d124533069ea3ce113365cf9ffa9ec430a0239d065e82d03fef30fe0099bf4f1eee1d6da38f4d1497a6925615ad276dc036781fc044ceb1d4d08d2e7d22e9791e21aed1780e7df2c241c73eab64df8f993783faeafc0a6569595ef2a2d4835e5a0acddbe1bf065b9aa639c8d97de6380a9a25f3c9fe3a0f4ecfcf21396c6efc97d9c6bec93c7a66f0ad6b60e0a6798fd9558c82ce5e14faf35203", 0xba}], 0x6, &(0x7f0000000780)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, r3}}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xee01, 0xee00}}}], 0x58, 0x10}, {&(0x7f0000000800)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000b40)=[{&(0x7f0000000880)="62825a1cc8c815e230927aa5711c6b92a52242914190a6bfc4710ca4344ed671b4074e470cd675c01abc411d6dfbb2caba919118afa9051c5d8ff7a676333114cdfa71ed", 0x44}, {&(0x7f0000000900)="265ce7c928bb5e1094bcbd43a30360c24d56700ea0d5184158acd6d13e8168b0995498aa09f19ebdfd8cc105ab2fd6b1940dfdd655e34817111233418e25ee063ed2f685bed940ec3202b2d5df65eda7bc7912774368308f3870fd59", 0x5c}, {&(0x7f0000000980)="b087aa53cb8c6c7e2729fb4b92239d17cf1f14e979582919bf5901624264a7fa59081303c999979fbe7783075363601a2589e893ba2709a1b14aae520154163e69a13675ad9fc35451fbf7c5dc637f128363c6ce16dc240bed99e215c22f1d658d26e914fd402368aa8c18bb10303dfa674c363692ec64473959da49a6ba8c6aeb763ae836b7100144f4e50831d85167d5a91b93368bcfe2", 0x98}, {&(0x7f0000000a40)="c3be9627aa83366250989a35950789dc1d86ccb66cb95794510df526760b9c0fc3e2950dfa0dabba350ec30fefdfe002b5a5fddf189f79a9977cd1dadd4350b1f4a641c6d06248774091ec6b9cd95d814b3df838bef016f83ca42e541bb58107acad6c80097fb7a227b816bcddf7e8ec33a18d291f5e5d317c0340b7a17f198d27d5addfa17921f714d74c7eb70e27f8b22a38db8a01b9ee6562c204f0df9046c36f649a287eb0f1b7f206858d831161401b1250e39cda07c8f3bf", 0xbb}, {&(0x7f0000000b00)="ee482691a7991fef0769cf79e7", 0xd}], 0x5, 0x0, 0x0, 0x40}, {&(0x7f0000000bc0)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000000c40), 0x0, &(0x7f0000000c80)=[@rights={{0x18, 0x1, 0x1, [r4, r5]}}], 0x18, 0x8000}, {&(0x7f0000000cc0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000000d40)="9c1fb2e4114ffb426cc8117b407605dd2702c112817eb98352ee008d8e53fbdfe975716bc26e8658d1d4482ed60d2e6abe8394aa27327289c999ee2192e26f70fb5693c1c91f5a1792b6d07cb39ed8290a485a14", 0x54}, {&(0x7f0000000dc0)="1e157b154c962c8a8318763143c52a3d81b681409d92af7453727944fd6f7e1267b4023fb56c7542fb2eedf446f123b23945cfb6368a83bd27bb29e60edba76beeb7d6272dfee1ce850251be7cbec7fb9aba014cfee787fc55c203edc580f04632a699b97ab1a5985d4f1b7845e49c0707a3016e8fbcaf1295de7400c4f30dc7580532214052dbf2d59348b23ab9640d99aa5a16827eac643e34d7200185bd534da745c540a324095fa37de777f88c", 0xaf}, {&(0x7f0000000e80)="53c1620b6fc46d35e4b9c757f03162c7b4d3b800e9737b556695b36b2e17abbeb6c34eaa57d09618de9250e3cedf12e4c3811721c7d198b1093b10c28e976c8bf2889123753d2701f23b1422064c08847707f7f7cb286b4204da6d7e89eb98fed3e1", 0x62}, {&(0x7f0000000f00)="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", 0x1000}, {&(0x7f0000001f00)="b4853cb86425b86f2ec8c68e237ef71a76740a6a0e7e00a978de6ab76305b9cc622c8d1496885de7a536b7f9a27686a15096707a7f2eaf91d4c780f7dd40cecefdaab0d807a6d9fe4da85b8461f93a2e56e404ef550cce1ec21664ee1f983c718c38818e4056b025c014fdaad68dfe0cd875fe9fe21b0c5e8990563e5ee03202ef302cc17f8612bbce5155f15b1cb4da7af02acf6b9ab3d1e212", 0x9a}], 0x5, 0x0, 0x0, 0x811}, {&(0x7f0000002040)=@abs={0x0, 0x0, 0x27}, 0x6e, &(0x7f0000002500)=[{&(0x7f00000020c0)="cb8561674e91d4d1852e84fadad43218bb89584f6f6e058895f0e4ffc7ce6a0e7dab819ef3e4451b7208d1a7094b296f0a79d06feaa4dbc6419c8893aef81889cd5259e1f2470cd76b55b1a949787def94a623daf0dbbf2c427ac8532c0ff8dc66b2e78f5f264fd10be7ad633b5f35e814b1b2969b7bba414dd24ed3c7151e770b11", 0x82}, {&(0x7f0000002180)="0be183720d12f80b3fcbcca73fad32c07d7913ee9919742e7f8645afbda1e8dc4955289c0d2cd3705d9a62e1da80481d3533e8deb2549ea82d23340db903e9785c3cddd23027de010475f2ea5ea3f7e679d690b1a573c805aeafb97e4ffeec91377176237d81699c8eba24359f53b0f0c15debd07fa5ada3a5ae3c23effdce312484c96327", 0x85}, {&(0x7f0000002240)="7141fe0b0ba8aa64cf308d13b6a4f6", 0xf}, {&(0x7f0000002280)="f5b7e9e97dd4916bbaf268bcf4ec8a0df0d2f31767b3a959f63d9cce1c1a24398aff807f4eb3d36af8f0d0b7172a5b3ed91418c737545b6caa74bb049d18c34cfadec25ac68a1db5d3be0237f6eaff57f109c35b5ab20045cc68b1b648aaa3770c14283a5fe9325cb113422d8ae5dff1bb82b5ea59ca0734a23772096300e0e465802d7c6697e636e841b75fa797ac", 0x8f}, {&(0x7f0000002340)="23c80bf65a4affa17b77e437751767c40e6794dea5931a8d14694d401fb4c584a32a7e69a70bceb299b11fbc41d343f0940f7cfe8d52d4de5900f72afee9de106253ee419d05903839e26f8934cb2bb06d20e1f0477283ace47d4f8331a3bb1498ee9db04c31e352f37d7930f0a344ed3c376a29eae2ec5b650c965120bc696fa813b8e86e443c9d042fe74dbbca62747bd1ba1afc95b5fce54276c94d5d6444f4d6b705f65b923c84c59869c7de0a5f768015c8282df2d9f8b6de", 0xbb}, {&(0x7f0000002400)="08843711ca358fa54bc4a201ffc5540ed59c8a624e3ff71bb8d43958bf94d3128186e5972503c5f99d4e9bd6db82fd68bf0edc96dda1d7dea0f7e81c53db7ecf790ca4076c41561278630a0a8bb69089dd53a2b22732462c55e64fdeb3446d5e2c1976a4031099e7e1ecdbe830635f97bfd7ed66af8a4b2b7edbc492bc5e870e7a839ec7d0f977a0416df7ce2e77b043989bb14a2f3897c6a29d650d52cd2396ac0531b63d17232f50350083267da765b174178267f9ec2a03137ad27f7ea5e38da391331de3007b9391cf2d114401da3ab86e94a4f05ae568ba1e", 0xdb}], 0x6, &(0x7f00000026c0)=[@cred={{0x1c, 0x1, 0x2, {r6, 0x0, r7}}}], 0x20, 0x8c0}, {&(0x7f0000002700)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000003900)=[{&(0x7f0000002780)="b38196ed89d345e1c8b4f116f799ee5955a35673e4cd5d120205344bf96dbdea6e06b30037c1d77dd8d513ea380e81535bfc8535162878ae3b676a928af72ad07b9a01f48b0e8192a1aefd6427781294079c988857bb79735453d58e356c4afa241a66cd10551a1975c14631b7bfed62f1e428939c43ed8fa7ff045eb62f60e2f8cd9f65dbed50ffbb63bd418a8296671d154a45c7e48b", 0x97}, {&(0x7f0000002840)="c595e3ab3ebd659f4ec445326ce9549e95eb0e05badc9cc49a8fc152e9d422b20d31aa35d45aed92c7570f2ddfea9c0c5cd642f6ea1da29d8df7004132906e22a91c0aeffb944ab3f11617c0339e1942de73540d6d12b237f286c6adefb4264c724bcfc7e611a6b51340dba16a", 0x6d}, {&(0x7f00000028c0)="279d54a0dd", 0x5}, {&(0x7f0000002900)="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", 0x1000}], 0x4, 0x0, 0x0, 0x1}], 0x6, 0x44)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x3, &(0x7f0000000040))
dup2(0xffffffffffffffff, 0xffffffffffffffff)

03:14:29 executing program 2:
unshare(0x10000000)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f0000000540)={0x73, 0x1, '\x00', [@ra={0x5, 0x2, 0x1}, @jumbo={0xc2, 0x4, 0x1f}, @padn={0x1, 0x1, [0x0]}]}, 0x18)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x7b3300, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f00000000c0)={@in={{0x2, 0x4e22, @broadcast}}, 0x0, 0x0, 0x17, 0x0, "d06d70dc7fe9b633d6502dd04b913b8b2aa16c8b3206c2ba35a71033d9921afc699cb045df0b86daeb677c380f05c21f73f455938bcbc30950eacb7a8641e089992aa6098b21270f60ca66ab6b7c03cd"}, 0xd8)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
preadv(r4, &(0x7f00000004c0)=[{&(0x7f00000001c0)=""/226, 0xe2}, {&(0x7f00000002c0)=""/104, 0x68}, {&(0x7f0000000340)=""/59, 0x3b}, {&(0x7f0000000380)=""/9, 0x9}, {&(0x7f00000003c0)=""/206, 0xce}], 0x5, 0x7ff0, 0xdee)

03:14:29 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000880), 0x0, 0x4182)
signalfd4(r0, &(0x7f0000000000)={[0xbe]}, 0x8, 0x80000)
sendfile(r0, r0, 0x0, 0x24000000)
pwritev(r0, &(0x7f0000000300)=[{&(0x7f0000000040)="c5fb433197712af1cbf9fd245f2cd38fac746fab0a76ea47746c0bf86824d9a203b7f2cc7be3605bf07d423721de2a71c6e99069abdf13076832f417027c9668214bf1e825e9fa945cf29642af5948656f24c78cb20a02691f61b576a22d3155ee31b6dd994cc94250f58030c29f317d48e0ba1601be86ea3d4ffb59e9710edad91acd372e13d9e1af73a27dc2e5623e4850148b7c0ff751398bb3d5cbb0c20bc1aabffeaf1a6257e2e267046f7e41947da2e90f962f72efabc588bf", 0xbc}, {&(0x7f0000000100)="1989964556b2982bbcd23d0d99accf59744931bd8671b122ddaee02e2d6f2b5280d5722a2ec7b9f4bfe8de47edc9b47f7353ae605f547d0e5ea4", 0x3a}, {&(0x7f0000000140)="3e74d6a7097112cc20f63e4fd1007e99c38e2ac30fed3ff761f9426b65e8aa7f7f0ffd3b2f56e9e512dfa14f928eb5aa6d8931953a06be8a6810a4b23bf6ee85732700b1a508c1457230ffefb22c0f57a393836c54751c869d6e23e242dba0d9ffa45934dfe122", 0x67}, {&(0x7f00000001c0)="ce26d4a9e7e1e8f53f1b91ca54c071f99676605f2bab6886a7a40fe83602660655a53c2cbf2924c6b8dbb07704c9278e738863fe41c628ab97f4e223dc8a987bfa016d77bcdbac0ddd", 0x49}, {&(0x7f0000000240)="98f3ea92bf832396a84a136a49be4fa72fe0cff1e328d1540b1dd89e516a0f9617aecf5c6d5999ee19ef0f129544a881b5f11b3223e48d2cc9ca50f2c0125ea7e61ec0041f59d1e35233784c2ba72d6d6b45df7025d2347e6ffc5dd04389f02f8462759039f5c69a45281eaad95947d118b5b7c2e803914b396ffbfdb5f6f8c4be7c2210bbb4bab433af54370ef0151c94b65fb1e7875163439ea4ac818e07e83ec8a5303696826779eb66c04f486798a7b3f8c75feedc3f000005", 0xbb}], 0x5, 0x1f8d, 0xcf61)
r1 = gettid()
ptrace(0x4206, r1)
tkill(r1, 0x800000009)
r2 = getpid()
syz_open_procfs$userns(r2, &(0x7f0000000380))
r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
timer_create(0x6, &(0x7f00000003c0)={0x0, 0x20, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x14, 0x0, @thr={&(0x7f0000000240), &(0x7f0000000600)}}, &(0x7f0000000300)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x2010050, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000200)=<r5=>0x0)
timer_settime(r5, 0x0, 0x0, 0x0)
creat(&(0x7f0000000080)='./file0/file0\x00', 0xbc9dc8fbd81cb4a1)

03:14:29 executing program 5:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000000c0)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f62077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db5b189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d3779e13b27a15beaf488ea843600"/297, 0xffffffca)
r2 = accept4$inet(r1, &(0x7f0000000200)={0x2, 0x0, @dev}, &(0x7f0000000080)=0x10, 0x100800)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={<r3=>r0, 0x0, 0x7, 0x7})
finit_module(r2, &(0x7f0000000280)='-%^[,\x00', 0x2)
openat(r3, &(0x7f0000000240)='./file0\x00', 0x400, 0x3)
syz_open_dev$loop(&(0x7f0000000000), 0x802, 0x4340)

03:14:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000001f00002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f0000000100f4ffffff000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052470000620100"/120, 0x78, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="03000000130000002300", 0xa, 0x800}, {0x0}, {0x0}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dffd7f4", 0xa, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a", 0xa, 0x4800}, {&(0x7f0000012100)}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400"/98, 0x62, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000002000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

03:14:29 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000102000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {0x0}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {0x0}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000011700)="111fc0d901", 0x5, 0x4800}, {0x0}, {0x0}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d7f4655fd7f4655fd7f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001200000001000000010000001800000002000000040000001400", 0x56, 0x8d00}], 0x0, &(0x7f0000013800))

[ 3405.313907][T31298] loop3: detected capacity change from 0 to 512
[ 3405.334682][T31298] EXT4-fs (loop3): Invalid log block size: 65535