= open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_RM_DEV(r3, 0x5000940b, &(0x7f0000000100)={{r4}, "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"})
sendfile(r1, r2, 0x0, 0x80000001)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r5, 0x0, 0x0, 0x0)
fcntl$setlease(r5, 0x400, 0x0)

[  314.791765][   T24] audit: type=1400 audit(1637344329.973:270): avc:  denied  { ioctl } for  pid=11352 comm="syz-executor.5" path="socket:[40733]" dev="sockfs" ino=40733 ioctlcmd=0x940b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
17:52:10 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 18)

[  315.105005][T11357] FAULT_INJECTION: forcing a failure.
[  315.105005][T11357] name failslab, interval 1, probability 0, space 0, times 0
[  315.117832][T11357] CPU: 1 PID: 11357 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  315.126638][T11357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  315.136717][T11357] Call Trace:
[  315.140000][T11357]  <TASK>
[  315.142932][T11357]  dump_stack_lvl+0xd6/0x122
[  315.147529][T11357]  dump_stack+0x11/0x1b
[  315.151688][T11357]  should_fail+0x23c/0x250
[  315.156107][T11357]  ? jbd2__journal_start+0xf7/0x3f0
[  315.161308][T11357]  __should_failslab+0x81/0x90
[  315.166070][T11357]  should_failslab+0x5/0x20
[  315.170572][T11357]  kmem_cache_alloc+0x4f/0x320
[  315.175388][T11357]  jbd2__journal_start+0xf7/0x3f0
[  315.180479][T11357]  __ext4_journal_start_sb+0x159/0x310
[  315.186024][T11357]  ext4_iomap_begin+0x408/0x630
[  315.190884][T11357]  ? ext4_alloc_da_blocks+0x100/0x100
[  315.196288][T11357]  iomap_iter+0x395/0x4a0
[  315.200621][T11357]  __iomap_dio_rw+0xb78/0x1070
[  315.205394][T11357]  iomap_dio_rw+0x38/0x80
[  315.209818][T11357]  ? ext4_file_write_iter+0x451/0x1200
[  315.215345][T11357]  ext4_file_write_iter+0xac3/0x1200
[  315.220647][T11357]  ? ext4_file_write_iter+0x451/0x1200
[  315.226110][T11357]  do_iter_readv_writev+0x2de/0x380
[  315.231352][T11357]  do_iter_write+0x192/0x5c0
[  315.236017][T11357]  ? splice_from_pipe_next+0x34f/0x3b0
[  315.241558][T11357]  ? kmalloc_array+0x2d/0x40
[  315.246148][T11357]  vfs_iter_write+0x4c/0x70
[  315.250663][T11357]  iter_file_splice_write+0x43a/0x790
[  315.256148][T11357]  ? splice_from_pipe+0xd0/0xd0
[  315.261011][T11357]  direct_splice_actor+0x80/0xa0
[  315.265981][T11357]  splice_direct_to_actor+0x345/0x650
[  315.271358][T11357]  ? do_splice_direct+0x190/0x190
[  315.276396][T11357]  do_splice_direct+0x106/0x190
[  315.281256][T11357]  do_sendfile+0x675/0xc40
[  315.285691][T11357]  __x64_sys_sendfile64+0x102/0x140
[  315.291015][T11357]  do_syscall_64+0x44/0xd0
[  315.295433][T11357]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  315.301325][T11357] RIP: 0033:0x7f19f7d40ae9
[  315.305816][T11357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  315.325444][T11357] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  315.333851][T11357] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
[  315.341834][T11357] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
17:52:10 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x80000001)

[  315.349809][T11357] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  315.357777][T11357] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  315.365751][T11357] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  315.373799][T11357]  </TASK>
17:52:10 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x30d8c2, 0x0)
r2 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
open(&(0x7f0000000000)='./bus\x00', 0x10000, 0x10)
r3 = openat(r2, &(0x7f0000000100)='./bus\x00', 0x18b201, 0xd)
sendfile(r1, r3, 0x0, 0x80000001)

17:52:10 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e4)

17:52:10 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000009a)

17:52:10 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
ftruncate(r0, 0xffffffff80000000)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x4100, 0x0)
ioctl$FICLONE(r0, 0x40049409, r2)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r3, 0x4040942c, &(0x7f0000000200)={0x0, 0xe41, [0x9, 0x100000001, 0x7fff, 0x10001, 0x5, 0x5]})
close_range(r1, r3, 0x0)
mkdirat(r2, &(0x7f0000000140)='./bus\x00', 0x158)
ioctl$TUNGETVNETHDRSZ(0xffffffffffffffff, 0x800454d7, &(0x7f00000001c0))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001)
mknodat(0xffffffffffffff9c, &(0x7f0000001680)='./bus\x00', 0x8, 0x7)
preadv(r0, &(0x7f0000001600)=[{&(0x7f0000000180)=""/42, 0x2a}, {&(0x7f0000000240)=""/178, 0xb2}, {&(0x7f0000000300)=""/251, 0xfb}, {&(0x7f0000000400)=""/186, 0xba}, {&(0x7f00000004c0)=""/1, 0x1}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/93, 0x5d}, {&(0x7f0000001580)=""/80, 0x50}], 0x8, 0xffff, 0x6)

17:52:10 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r1, 0x0, 0x80000001)

17:52:10 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x10000, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:10 executing program 5:
recvmsg$unix(0xffffffffffffffff, &(0x7f0000003e80)={&(0x7f0000002c40)=@abs, 0x6e, &(0x7f0000003e00)=[{&(0x7f0000002cc0)=""/105, 0x69}, {&(0x7f0000002d40)=""/179, 0xb3}, {&(0x7f0000002e00)=""/4096, 0x1000}], 0x3, &(0x7f0000003e40)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [<r0=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x2)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
dup2(r2, r1)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000280)={0x3, 0x40, 0xfa04, {{0x6000000, 0x0, 0x0, @remote}, {0xa, 0x0, 0x0, @loopback={0xff00000000000000}}, r3}}, 0x48)
write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f0000003ec0)={0xa, 0x4, 0xfa00, {r3}}, 0xc)
r4 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000040)=0x8)
r5 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r7 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r7, 0x0, 0x0, 0x0)
r8 = pidfd_getfd(r6, r5, 0x0)
r9 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000011c0), 0x10f501, 0x0)
r10 = syz_mount_image$ext4(&(0x7f0000001200)='ext4\x00', &(0x7f00000014c0)='./file0\x00', 0x4, 0x9, &(0x7f0000002a80)=[{&(0x7f0000001500)="6ec7965e619c04f5667e9bd3da95f0c6b51441b6", 0x14, 0xac7}, {&(0x7f0000001540)="a494e8748bdbcae6f69ae5d3e6e633245dedebbdc1109754b6b2881ef52838e34e7fb413f9057ef3f94dcbe00c8086f3ecf9eda31e94fdc7f4ef3b58d0e436154e2a71c241f71ea94ae80375ec54066e5e636e4dae", 0x55, 0x8001}, {&(0x7f00000015c0)="0305aa1ccb0b3cdfe4a378ced841ae2fc50e62dbe85db8b04be77d34dee8bccdd58e2ce83441b412d2dc23c249aa2dc5bd367847d42cfd06411671be8d0df4e8c79022ff61860d98bc7ff799ddf514c8f84730f2904a8486afbeb76fae876a1841f7c6c5fc34b7e385ba1e65a1e9bf895e326f49e1a8858cdfe6bfa7e4e340599c9d0e5a4c3ecf6ea97ffd8d889421ae943c582108fc2faa03662a7652e1fe5c0c7bb95be6be26a5fd3f68a5c52e7bf2b702723837ac822b476f02f85490bf650377faef5b92d7c7", 0xc8, 0x10000}, {&(0x7f00000016c0)="0b809677bdacf402424bb4150fae0d209e8e5f8fcc318d6cc175d026d87f8b2dd7f56b8d1a13473005aa90d2037ea8f1a15a0bae342177d4437a79014c7dfdf2d71dfdef6d33bfdf29d58836361ebfd14db4a78231653cf1065748b7b8de6e3623f87faaba5a78b79f6dca2001796f4d1507fe6f78b85fe61513ecf2f12464f5b50c1f94f46349d6f7d5ead979f6e64768ce20d40112f8129be388822a556ce1fa5a0cac22794080a1ac194be81e7a0b31f705e6e5b971fce1ab6857f19d61332f62557565493878584e4c4d74c0da1a02fa51bdc806de6d2a6567af6dcaa6237f3cbecd5522022a24d0ebbbb6dc6aa88bfc5ee4912e9009bb6986f3", 0xfc, 0x3}, {&(0x7f00000017c0)="a07537a6a05ad3ba49a9c44cb10820ef5e0e1c0e900638b232b0e289a310644374d083ca6f2c6707d91ce83ce0d16bdde018f6de2e279f9064b8eab1cd4f8f45c96f44b8cc8af50297f674b6e04157d110e873b1b3d876a06843b7a5b2bd46a24ba0c66203e5f593a0889d1583844e6942ecb279220187", 0x77}, {&(0x7f0000001840)="79764c1df51e3fcd2ef73c45ba27699fd1d82ad0d347ed4ec5ad2b88a9bcf5a943b67e8db15ddf90d0c1703ff82afb0de38e4e61354b1ca463f5c379aedcb18479cc32e4ecfa886d9f38764bda65f1562fc4dc82fe06b870f12c41613cb8214af58b9b424eb69d249913ef1a860b9ee94539f28538a7bd498971d57b3f3a9c17d4de07691d0d77c8634d6933369b11c361e4b56fe3e1259ee85c4f6b5758890a2928eb8db81f74ba7c8a93", 0xab, 0x4}, {&(0x7f0000001900)="029a758009d8d22c35540e9f3e520aa28963443e4e301ff420241eed29c73eead7a137e77d80e4b267b07371c160d7cf8fbddc75f3fe8c8bb01751d743411cd56f7c2e332479b61c6b2013caec79f0db845534e27fcd925974bfb5472138b727aa6d95c962b9462f44b942adff879cc0465d90b270c2d7fce44a477a0aaa51c5e8e3caa26437d9887a4fad2e4ef38d8e49a8daecea896e84f63ce8fbf1b883e844ea43d3109c5a922a9aafcf1bfd75c3b83fcbd4fd8d5acba538488320f06bca8cae3a615280ad1c3d44876706f8f5f25b6bc5b9486962d55af3f54a6b941cbbc3c0db19ef2231ba3f07946acb7419d649ffa75b3a73ea35d01046715b835be7f1f26c2649da222cf75dd7306e411b39a0249da0a5d9c38ee211bfb72b3bb0ee33b7f44df9b8b713d11f98d3f4c13ede600f47d842503b2d5c2cfd2579e15035ddabcb6c7c2bb0bf3c93a0f4e8a78591a6f2479e608b818f38545df39c5756d1f47a3462091e5df7125e708296b07e8197ef25625458bcde26b97023ee5759ada9b90f448be7623f3f9beffa37504c9c66af46ce885aca7a10176431b39d5dcf7afb22fded71faaf904cbcc6a76a2ecf063a0983a03e9496d7e4c2196fecd6a0948c87b823c33a86544ef53d2c64a7e9573e0c1af222421e5b366f8275e987435390b6e25dac5f254e08d0a6cfe4604f9fb0bb64878f5ba706196d85c1fb38f55947055fcc2ba02c970cc867bc500ff7293fa8094be3ed12467e697519b47a0dbfd9cc5be92f4b9909214b5cceff19b85851c56b165c06204608bbaa9656a5f34e44f16c762bad8a99b4858630a30a3bc396cb4027f8b543f04982a45154f2872b1c72517632b8b6e447f39b46a6fae03438b8839329127e1b314c994ad59b5622cfd7a3e3380b248f9a2b3184c527e86a852f0342177212569073333c5426bb1994e26b483f76359a23e251aaa478e125aedea1ca80cb6f6e4693deff5f92d93c9b046c3de76ed8501a91c1a10bad1cfe253ef87afabf1ed09cc8ffe77e2a8fcd22e17051cbaabc6d0964be760278d0ec2e7da06bcc3055623703c15f52cda439e383cb01e1218541b6e9888337bef035241b03ed26f74564df8fe958271b9ba564a1fb8af8002b57cde66f6e0fa6d679859215c54c04a58dfe6cb7f0ebbadd78346bb48e47174527db73861eb02deef3f6a02be061617d9bdf26e10a8c8bfb2e2fbd151a4a24ada1c87af1e66c8e93acc9bd172b3ac09ac8a4fe1ed6f7952e972886b23b4a3ce49db304415b88b4fc6569a719f41e6668518cc0a513d4fb059436f2ab2ff3d7afa5f7855cdac1e5ccad603342f7c9ceaf89f7177ea900756d5c5911e8c02777ddcedfc92a8f7ee02ac862fe58c4fac59492c03e8019fab956d50d69c9dfdd3affbac0960050331a903e14f069ca1b45bbd3d23a185bd3d2f2cc0f2b6b12667bc1a11ffeaa2c8e21d3df4366240a9578f86a03d058755ad7537cbddd3ec628ac4b935a1dbc4dff1172dab27f931dcd165c61c6505b59f553f9673067f0c1247253ad5da53c9c503b5a8d3498f343e9ef1e5f9561348256a68636f8556c57808ef88a6446e2321984b53bd73908f8085d6b2b0a3e94a5617a4e6c7824a74676d3c9bc1400cd1ef0afee805c949c0f416b83ed595d9b97007c024057d61e45a1a9ff1cd613f1481d10be9b5f761aa3e437c8f9289cd6b1cd4911e920b2a974af80b3f67d935d25a3e1aaa615dca411d2a6920f1a7913002ad402f99f05e191d01f552fbdf2c24540e323dc0410abe152f091902df3d35477ef3325217f38a84151e0deb624e4bcd4b5f7a1aab0f5ebddd6ea0735fdfd09be675e6fe3afa40b786ec813fcc571632276d578bbb5583986467de75c59043a788fde94bb22d15ec8898465c684c65ed1c63f28e4d1d3bcf279d48bb11e048e69f5743d11ff99d4646f30d4481de56b4047dcab51fc43924fc6f2d81a4d9f0a4db52a19dcd2c300f933b439127aaca44b37f3d3ff8de9f34b1c60c829cbf0b9d9cd2822ec1123e42786925f60e07c4bc4ef70f9e183b67fa61f44de43b71e7ed3193fed59749165c892d890731982433f61f5daa638dde334494858f59c6a55bbd279d32cc817ef4eb64346135bd49cb4273a6ca0b9f9fff73870e2f06205974045775acfb03f9fb90195881589ce9439449c945963760277f0dbd8f534cde532411250b292701d62bba4c9d05f8c7beae82fc16d3c749ed10d0088517cdf6b1c794ce3e18594357386013d7e5caa385509cdf38525edeca4835d57a0dee09a30c4934e534fe33a38b31bf3895c4b92b03dd5b8a435092f4c5cda34a4a0923f4394c4998890c36b3f9a594df5d69b9e1bbf8fdc996ff0901755957a896dd3a2f7459e243bf04f0d659fcabd6d656841f4335b5cbbdf540dd345e628c09562d2f14b25694f4dda370d9fa9a82526e9370289541626616d99c233bee3ce08bfe3bd8ece6eff4d7f54b7fe065c58c2ba5a04aa52d568c9d7595ad2a39da3aef3d418b7689142befe9ba9f75546f5e1ab23a7ffe1d6d0e95324d781fbbe24ec3b9cde4b2dbd4702d725822be7586c535a71c6dde7282d57a443c3f5cabe42e35fb750ece1cfc74ecd44be263cbd7b13c21f4e405651f48d67e72504162e3151b02127892fef73bece2e3e8561137b859bb45028663dff493ac11022ba50f1876509fa0facb9674841819d156fd7fa1604b5b5190c7f4ee0c949b2bc82b6a7fa11132dfa544bfe6aceb81a9bbb5bff50cca569366e83f50fac41873a2a7bdc71f4d23769716d5c55b3b87c041a2e45a501a31acdf6776592e02afd0078c3f6c43036ed2da331e9ea6266cd766cd05d7bac0b1bb162cefce840ca7017c72f28497c94272ccd3fe78badfedfed31047d20f9b8c388b04915f93ea5baeed598fe145f7f3ce6ec3a4b624e1cb7af116ed8a7307bfdd425d3f524e60c6fcb83ddf4d6a816433fb014f04547f2fa073bdd1a167f14de8a598288c14ec57c2e082d2080aa0365c59a2501342c20e9bb8c2cb8ffe6ea65c41d8852e9c0451f195e5748486acef5627918d070679d7cb4eb8aaf7d024ff22ad019f5dce7138f9e9ec154d981212f02fcee05e3163cd0b3fa00125133661dfbedda70ec57733c77f25c3adfeafd6afc85c1d2d849e4f5a22eb4d72704a40f0c2115a3658400155738bfcfd8e54437de677f0728fd1fc4574e6e9a92624bf67c093ca0d97b79bc62f1f63e311da350b9d59dbe4bf6a66a3bd53494908a70c78389881e3b988044c615f299dff2eb03e9f1ff97f0314c456497fbbee74b620891fd139cb9fc11507693e077978bee09cb42242174799d0b7527dca0af30adc0961518ddc89ea1c49ea4df8c0deb98cb461c9b41875cf8bcd174fe0ecba45202479c6b0f555903a1e479b019f39bc4359382648b2a0f43710772caaba3ba30abdd8ba67074b32a9247722e6e0f34533cd4f99768c220a53acb5b19d416f9d0628553f17b6ccb3b41e6e22c51c3725bef4cea60983e1b95f99e8b6ee1d6933b25d039840b0d995907aff21f3b3d31feb3bcc5895de4e72115842e33d5d38d9a5e445eb660d172afdc460df568aba690464bc808a66f92951478bef0460bd786dabe3dcaad6b8d7de095b6b2a68863c2d938f0e5ddd1f315845ff45b989b830cb9fa605791771a2e4dbd278dc0ee1e398fabc2e6fdfe1fc987bc46f05b24a2a69f6b993e0d613feab5d2a54f251c4358da8dd5fca48ac67e8ff6a222ff86c6af217c903195802c17e6926a72126e4ae139ef82e8cd5e7210b3b3535158496e99985b66778971377f0ef5e466a154b9fe705cf17bebb766ad32cd258d45ee2413dd95568258b6879dd342f87c9a7f1a5f96fdab5525a88db4f6cd139b2c38aed81f0dd43c4a58843aaf58f5d3b74ba4899e9ee909f472aa160ef23aa29c3d8d232884d5bb6545f776bfb345820d57f5bd9c5a326399760e4263d74720469b12c38b342538f4fde3ce0d07d4f9cf310841825f800fa3f65082200e498ed9ab2d73cffb4e934b61d2086cbd1ec3337de0baeb2079687f8f97de869b2bc11f233a15b699e763bf7977dc2c78b3852279c7f3607509588a0308a9258b073ae0b08c0bdc6316f3373d0b0b44a4e83c02f272c998137c2721c6cc717b7d8d285a5ed1527236021ea1ca6fc2874794cae9e3377864db7f87ec020f42f535d18516d1017a958575ce438a592b4cd7adb19b3087ef5af9319809b5af446f484107473ed21ca63268bbaa7fab2f98707e2c8ec7fce36ba2725f675a9cf6422123a176717c50662945597da89c3c5e8121a9b2d191c9f7221b3d7e85eb31421bcd1a9907275743f04badd064b14f29450399e4b9f6010f7595bd770f93dd6c9876b6cf636c2e12bce48b1c3d505732132d84cb0baae12f9584ab783383e88d9bf1f497c1183efe49d6d939f13f74259490936dc5b381607ea18ed3520f8c55eb69f990f9ffa2b29d40b6c31881e83edb3daec344726644cc49f4c52b52906a380080d885fe2bc3f96a0e9e3bf51a2ea20a4d17789761fd341c001cc193f77fcd38efee8c89d7e4fe198ce92becc5159a85f6a15a2adc086a811a590a08e821eef9ac3861e0a86cea2bc71835cc95d6d9ba5476911f0b0c281b36191c8f5fe3ebc2d676fd61943ed219fbd19ed9aaeb2788c4f5306fecad57a43011e455cf0a830e6697d6e46e5f4ea474f40623be743b97679ab366bd54ee4571555e19a81d3ce02fd19291160fe4b2df16fb4a4235626c2d0174ed0acdfbc6d8fec6545f4a6cb6cac2582ed2660450e9f170a9439cd31efe4b8c7fb59831ad70504834a24b6db4d72f7f883eb586b6958cb6201c942ae4382b993b820132ace3ad139aa2f7886a1759f1b74161926094569833bf4d89fc34feb83fea4c3d61ea9d361a7bb55a642a71528d4dfae597dc79939ec06f32535a68b67fea4ced57a490f1d512501dd566a62e6506401e5eb95764164c8d092bfc9eaa2a79bce8114c8de5a74713640215b248e492420e46bc0089df16a677b5acbaae76c670be5a06fee1e1cfe0bcac9f96f7ab04722226e8bb6a0fa2a6b735a9971ec63f6890e6ad29a44a9207b643dfa66cd00df0bcaaf0f0018db1199c696ff7cd75fdb881441a3ab2f28c645904e39f7ec55333125544809b03b2e06b15699c532226f58242ce6fdca2ec5f69eeb70573e3c2a5e4de7ed501985de74f069890268198b44a442da51f948db50ae0b49c97c84d3fe5bec921fd6accb5240c352203d2e6d7e63ed9c7d980c05b3f7d94f616f63e3323169bdcdcaa400f46eed1f024d3eecc9b736b2e8920f3abd82ce454685831878da41abc12da14ee8dcb98aa1994aad3891324e4aaf480858d8a03819dd6ee7227f6b08883ffd6ea1eb21a8d4aa9e2c65f0f637e94805ee4df66a43844855ac4894b4331eba6f66965b34df9c1d3b36ff43c80f2c3523090a0636e0a77c733299357fee3f539206bc10aba70c678dc350bf3c40d8061719cdb73df6d5862b4cfd27d15b8145cddb3ec1df9130f6b72abd8436628d66a0d36eed1ad3f81c1817499f637d4929b1728f7d0886b6c3038b1eb5634ddeeaab699c77fd72a223c907c672a5a29ef62caf02138e22989a2954905bebc90755cb4396cefce8d50d638eb27cf2f49711d1d94793dc82175cb8f6fe19467e3107ff6adc41d1d51796388758231ff224fa5b41e9011577d8fea5a643470512d57b4d19c58a42589615bf63c341d69bd186a420982c288bcc187222bd311", 0x1000, 0x5}, {&(0x7f0000002900)="48236c1b98a3c75e3b89f71c54f0903839cf5ab82ed2481b2edb3507fdf6133ecc597c5fc713d2cead94e4080fdf3abc9c021835f0831b3ae0e5e38b3d4d856ed7bd025558baeb7cc8f44dec9708", 0x4e, 0x1fd860000000000}, {&(0x7f0000002980)="99e33d9a608bb4f0be13dd95d2c0fed0387810c46c9869cc06c02a115b4720dc1f24a2cd6cd677f53c7921f55bdc47366ba0c352023777a5a01ff512c181640c1c7cc623f404d860efddd6a89f4a3f5793283d204fd58b22b077cbba2ef63f0cec5e7c868231433b043871744e5f6a687c6d6746b35dae43d21117d3b9b0d61fb6dc5abffe45aeef45dd2a4023fd914f98246af6a98dc6285c4832dc7b0ee4423ed9c5818716b89fb2ffbb46426eed7190e30ffc1f203847400a643f3bc96a12170f00c9bd1c8d37b2eab65fec36eaed0f1beb84dfd7767311099b9ce5f3923ed989956dc5c01d9fef2463ab11eb6968e361276b378864", 0xf7, 0xd75f}], 0x1, &(0x7f0000002b80)={[{@jqfmt_vfsv0}, {@usrjquota}, {@data_ordered}, {@debug}, {@barrier_val={'barrier', 0x3d, 0xa6f7}}], [{@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@obj_role={'obj_role', 0x3d, '{+'}}]})
ioctl$EXT4_IOC_MOVE_EXT(r9, 0xc028660f, &(0x7f0000002c00)={0x0, r10, 0x1, 0x5, 0x1, 0x2})
ioctl$EVIOCSREP(r8, 0x40084503, &(0x7f0000001180)=[0x8, 0x80000001])
recvmsg(r7, &(0x7f00000013c0)={&(0x7f0000000100)=@x25={0x9, @remote}, 0x80, &(0x7f0000001340)=[{&(0x7f0000000180)=""/4096, 0xfffffffffffffd8f}, {&(0x7f0000001440)=""/99, 0x63}, {&(0x7f0000001400)=""/12, 0xc}, {&(0x7f0000001240)=""/237, 0xfffffffffffffe34}], 0x3, &(0x7f0000001380)=""/54, 0x36}, 0x20)
sendfile(r5, r6, 0x0, 0x80000001)

[  315.732342][T11388] loop5: detected capacity change from 0 to 225280
[  315.772873][T11388] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
17:52:11 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 19)

[  315.987726][T11392] FAULT_INJECTION: forcing a failure.
[  315.987726][T11392] name failslab, interval 1, probability 0, space 0, times 0
[  316.000518][T11392] CPU: 0 PID: 11392 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  316.009285][T11392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  316.019344][T11392] Call Trace:
[  316.022628][T11392]  <TASK>
[  316.025558][T11392]  dump_stack_lvl+0xd6/0x122
[  316.030160][T11392]  dump_stack+0x11/0x1b
[  316.034319][T11392]  should_fail+0x23c/0x250
[  316.038757][T11392]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  316.044161][T11392]  __should_failslab+0x81/0x90
[  316.048927][T11392]  should_failslab+0x5/0x20
[  316.053518][T11392]  kmem_cache_alloc+0x4f/0x320
[  316.058290][T11392]  ext4_mb_new_blocks+0x328/0x1ee0
[  316.063497][T11392]  ? ext4_get_branch+0x27d/0x2e0
[  316.068502][T11392]  ext4_ind_map_blocks+0xb1c/0x1740
[  316.073751][T11392]  ext4_map_blocks+0x6e3/0xf00
[  316.078670][T11392]  ext4_iomap_begin+0x4b0/0x630
[  316.083529][T11392]  ? ext4_alloc_da_blocks+0x100/0x100
[  316.088989][T11392]  iomap_iter+0x395/0x4a0
[  316.093360][T11392]  __iomap_dio_rw+0xb78/0x1070
[  316.098134][T11392]  iomap_dio_rw+0x38/0x80
[  316.102467][T11392]  ? ext4_file_write_iter+0x451/0x1200
[  316.108025][T11392]  ext4_file_write_iter+0xac3/0x1200
[  316.113317][T11392]  ? ext4_file_write_iter+0x451/0x1200
[  316.118778][T11392]  do_iter_readv_writev+0x2de/0x380
[  316.124031][T11392]  do_iter_write+0x192/0x5c0
[  316.128635][T11392]  ? splice_from_pipe_next+0x34f/0x3b0
[  316.134188][T11392]  ? kmalloc_array+0x2d/0x40
[  316.138780][T11392]  vfs_iter_write+0x4c/0x70
[  316.143303][T11392]  iter_file_splice_write+0x43a/0x790
[  316.148764][T11392]  ? splice_from_pipe+0xd0/0xd0
[  316.153686][T11392]  direct_splice_actor+0x80/0xa0
[  316.158629][T11392]  splice_direct_to_actor+0x345/0x650
[  316.164034][T11392]  ? do_splice_direct+0x190/0x190
[  316.169061][T11392]  do_splice_direct+0x106/0x190
[  316.173966][T11392]  do_sendfile+0x675/0xc40
[  316.178386][T11392]  __x64_sys_sendfile64+0x102/0x140
[  316.183590][T11392]  do_syscall_64+0x44/0xd0
[  316.188013][T11392]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  316.193916][T11392] RIP: 0033:0x7f19f7d40ae9
[  316.198338][T11392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  316.218001][T11392] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  316.226414][T11392] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
17:52:11 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x34d842, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r2=>0x0, ""/256, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {}, {}, {}, {}, {}, {0x0, <r4=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r5=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000047900)={0x0, <r6=>0x0, "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", "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"})
r7 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r8=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {0x0, r4}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r9=>0x0, ""/256, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}], 0x0, "9743ba5586d593"})
r11 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r12=>0x0})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000940)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x4)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r11, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000048900)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {r6, r8}, {r9, r12}], 0x0, "1200fa762f7d2e"})
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x400260, 0x0)
perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x5, 0x3f, 0x2, 0x1f, 0x0, 0x7, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xc9c, 0x4, @perf_config_ext={0x3f, 0x8}, 0x1, 0x10001, 0x9, 0x9, 0x6, 0x3b, 0x1, 0x0, 0x3, 0x0, 0x80000000}, 0x0, 0x7, r1, 0x8)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000480)={&(0x7f0000000140)="391714efe11455304a9fe64f71dc95f1a47fc385f596152c18d1ad85ff4376771667ab0da8be6cee407a0681a83492521e47ee2b0e988deb08bd30a7ce6c4c01497d68735c931bb97825a006530c68f33dadbce52f3c86027ebe7a2fa5b352f1ed75243fbebcdcf410dd05d452691bb73a155cead326aabefad713ba12138d6463b2921aa88c221d02f28260397a077ed92d8981f1", &(0x7f0000000200)=""/218, &(0x7f0000000300)="1b92acc2c0c23c60e2119013ccfcb7729ab3c7720e55f5969bf1a6a5a666f2a970a0d4f4e0f97f12ffb5938b825995ecdfcea294251d55b570f9c5a01f4451ec3bd9a41e2283ad3474db617ceed0ed5715", &(0x7f0000000380)="4f1e0bc8a2a61663d9862990bb1d2e6e0ac84ef9756e0136060f43b51588ffb7e47d076254083d2f7a786f82834b0b3c496a2b6b1136ba7082e719c42ede9b806ebc198965b4f011541c335777a0e6ea89d3c54992e32cc38b727e2ce38040e0fd44912af226b45c5b12715f92f36cbc24d6c49468ec355b952b48c4cf28148110e13cec71c08dba915f4b3799935f", 0xffffff00, 0xffffffffffffffff, 0x4}, 0x38)
socket$caif_seqpacket(0x25, 0x5, 0x1)

17:52:11 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x80000001)

[  316.234401][T11392] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  316.242368][T11392] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  316.250389][T11392] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  316.258410][T11392] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  316.266387][T11392]  </TASK>
17:52:11 executing program 3:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e2)

17:52:11 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e5)

17:52:11 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000113)

17:52:11 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x1a1)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/block/loop6', 0x20000, 0x100)
sendfile(r1, r2, 0x0, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r4=>r3, {0xee00, 0xee00}}, './bus\x00'})
sendmsg$NFT_MSG_GETOBJ(r4, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x13, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x900}, 0x4)
r5 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
close(r5)

[  316.448479][T11389] loop5: detected capacity change from 0 to 225280
[  316.596914][   T24] audit: type=1400 audit(1637344331.773:271): avc:  denied  { create } for  pid=11413 comm="syz-executor.5" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
17:52:11 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 20)

[  316.795625][T11417] FAULT_INJECTION: forcing a failure.
[  316.795625][T11417] name failslab, interval 1, probability 0, space 0, times 0
[  316.808439][T11417] CPU: 0 PID: 11417 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  316.817285][T11417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  316.827426][T11417] Call Trace:
[  316.830700][T11417]  <TASK>
[  316.833704][T11417]  dump_stack_lvl+0xd6/0x122
[  316.838395][T11417]  dump_stack+0x11/0x1b
[  316.842589][T11417]  should_fail+0x23c/0x250
[  316.847004][T11417]  ? jbd2__journal_start+0xf7/0x3f0
[  316.852206][T11417]  __should_failslab+0x81/0x90
[  316.857162][T11417]  should_failslab+0x5/0x20
[  316.861747][T11417]  kmem_cache_alloc+0x4f/0x320
[  316.866519][T11417]  jbd2__journal_start+0xf7/0x3f0
[  316.871637][T11417]  __ext4_journal_start_sb+0x159/0x310
[  316.877194][T11417]  ext4_iomap_begin+0x408/0x630
[  316.882141][T11417]  ? ext4_alloc_da_blocks+0x100/0x100
[  316.887540][T11417]  iomap_iter+0x395/0x4a0
17:52:12 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x40)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  316.891888][T11417]  __iomap_dio_rw+0xb78/0x1070
[  316.896734][T11417]  iomap_dio_rw+0x38/0x80
[  316.901066][T11417]  ? ext4_file_write_iter+0x451/0x1200
[  316.906533][T11417]  ext4_file_write_iter+0xac3/0x1200
[  316.911887][T11417]  ? ext4_file_write_iter+0x451/0x1200
[  316.917365][T11417]  do_iter_readv_writev+0x2de/0x380
[  316.922635][T11417]  do_iter_write+0x192/0x5c0
[  316.927233][T11417]  ? splice_from_pipe_next+0x34f/0x3b0
[  316.932697][T11417]  ? kmalloc_array+0x2d/0x40
[  316.937338][T11417]  vfs_iter_write+0x4c/0x70
[  316.941872][T11417]  iter_file_splice_write+0x43a/0x790
[  316.947333][T11417]  ? splice_from_pipe+0xd0/0xd0
[  316.952187][T11417]  direct_splice_actor+0x80/0xa0
[  316.957127][T11417]  splice_direct_to_actor+0x345/0x650
[  316.962519][T11417]  ? do_splice_direct+0x190/0x190
[  316.967624][T11417]  do_splice_direct+0x106/0x190
[  316.972482][T11417]  do_sendfile+0x675/0xc40
[  316.976957][T11417]  __x64_sys_sendfile64+0x102/0x140
[  316.982161][T11417]  do_syscall_64+0x44/0xd0
[  316.986631][T11417]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  316.992534][T11417] RIP: 0033:0x7f19f7d40ae9
[  316.997019][T11417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  317.016627][T11417] RSP: 002b:00007f19f5ab7188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  317.025050][T11417] RAX: ffffffffffffffda RBX: 00007f19f7e53f60 RCX: 00007f19f7d40ae9
[  317.033024][T11417] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
17:52:12 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 21)

[  317.040990][T11417] RBP: 00007f19f5ab71d0 R08: 0000000000000000 R09: 0000000000000000
[  317.049056][T11417] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  317.057057][T11417] R13: 00007ffda901d9af R14: 00007f19f5ab7300 R15: 0000000000022000
[  317.065037][T11417]  </TASK>
17:52:12 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x0)

[  317.179261][T11424] FAULT_INJECTION: forcing a failure.
[  317.179261][T11424] name failslab, interval 1, probability 0, space 0, times 0
[  317.191949][T11424] CPU: 0 PID: 11424 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  317.200720][T11424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  317.210780][T11424] Call Trace:
[  317.214059][T11424]  <TASK>
[  317.216987][T11424]  dump_stack_lvl+0xd6/0x122
[  317.221671][T11424]  dump_stack+0x11/0x1b
[  317.225833][T11424]  should_fail+0x23c/0x250
[  317.230290][T11424]  ? jbd2__journal_start+0xf7/0x3f0
[  317.235510][T11424]  __should_failslab+0x81/0x90
[  317.240290][T11424]  should_failslab+0x5/0x20
[  317.244841][T11424]  kmem_cache_alloc+0x4f/0x320
[  317.249615][T11424]  jbd2__journal_start+0xf7/0x3f0
[  317.254654][T11424]  __ext4_journal_start_sb+0x159/0x310
[  317.260283][T11424]  ext4_iomap_begin+0x408/0x630
[  317.265144][T11424]  ? ext4_alloc_da_blocks+0x100/0x100
[  317.270543][T11424]  iomap_iter+0x395/0x4a0
[  317.274885][T11424]  __iomap_dio_rw+0xb78/0x1070
17:52:12 executing program 3:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e0)

[  317.279857][T11424]  iomap_dio_rw+0x38/0x80
[  317.284251][T11424]  ? ext4_file_write_iter+0x451/0x1200
[  317.289764][T11424]  ext4_file_write_iter+0xac3/0x1200
[  317.295076][T11424]  ? ext4_file_write_iter+0x451/0x1200
[  317.300618][T11424]  do_iter_readv_writev+0x2de/0x380
[  317.305815][T11424]  do_iter_write+0x192/0x5c0
[  317.310417][T11424]  vfs_iter_write+0x4c/0x70
[  317.314995][T11424]  iter_file_splice_write+0x43a/0x790
[  317.320376][T11424]  ? splice_from_pipe+0xd0/0xd0
[  317.325268][T11424]  direct_splice_actor+0x80/0xa0
[  317.330281][T11424]  splice_direct_to_actor+0x345/0x650
[  317.335662][T11424]  ? do_splice_direct+0x190/0x190
[  317.340690][T11424]  do_splice_direct+0x106/0x190
[  317.345588][T11424]  do_sendfile+0x675/0xc40
[  317.350021][T11424]  __x64_sys_sendfile64+0x102/0x140
[  317.355248][T11424]  do_syscall_64+0x44/0xd0
[  317.359765][T11424]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  317.365677][T11424] RIP: 0033:0x7f19f7d40ae9
17:52:12 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e6)

[  317.370202][T11424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  317.389808][T11424] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  317.398222][T11424] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
[  317.406188][T11424] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  317.414160][T11424] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  317.422224][T11424] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
17:52:12 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000281)

[  317.430231][T11424] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  317.438204][T11424]  </TASK>
17:52:12 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x800, 0x109)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:13 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x27)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
write$snapshot(r1, &(0x7f0000000140)="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", 0x1000)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

17:52:13 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 22)

[  318.048657][T11450] FAULT_INJECTION: forcing a failure.
[  318.048657][T11450] name failslab, interval 1, probability 0, space 0, times 0
[  318.061405][T11450] CPU: 0 PID: 11450 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  318.070253][T11450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  318.080305][T11450] Call Trace:
[  318.083579][T11450]  <TASK>
[  318.086492][T11450]  dump_stack_lvl+0xd6/0x122
[  318.091158][T11450]  dump_stack+0x11/0x1b
[  318.095326][T11450]  should_fail+0x23c/0x250
[  318.099771][T11450]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  318.105038][T11450]  __should_failslab+0x81/0x90
[  318.109780][T11450]  should_failslab+0x5/0x20
[  318.114267][T11450]  kmem_cache_alloc+0x4f/0x320
[  318.119067][T11450]  ext4_mb_new_blocks+0x328/0x1ee0
[  318.124204][T11450]  ? ext4_get_branch+0x27d/0x2e0
[  318.129174][T11450]  ext4_ind_map_blocks+0xb1c/0x1740
[  318.134368][T11450]  ext4_map_blocks+0x6e3/0xf00
[  318.139113][T11450]  ext4_iomap_begin+0x4b0/0x630
[  318.143957][T11450]  ? ext4_alloc_da_blocks+0x100/0x100
17:52:13 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x0)

[  318.149364][T11450]  iomap_iter+0x395/0x4a0
[  318.153731][T11450]  __iomap_dio_rw+0xb78/0x1070
[  318.158491][T11450]  iomap_dio_rw+0x38/0x80
[  318.162878][T11450]  ? ext4_file_write_iter+0x451/0x1200
[  318.168343][T11450]  ext4_file_write_iter+0xac3/0x1200
[  318.173738][T11450]  ? ext4_file_write_iter+0x451/0x1200
[  318.179201][T11450]  do_iter_readv_writev+0x2de/0x380
[  318.184399][T11450]  do_iter_write+0x192/0x5c0
[  318.188991][T11450]  ? splice_from_pipe_next+0x34f/0x3b0
[  318.194433][T11450]  ? kmalloc_array+0x2d/0x40
[  318.199278][T11450]  vfs_iter_write+0x4c/0x70
[  318.203822][T11450]  iter_file_splice_write+0x43a/0x790
[  318.209239][T11450]  ? splice_from_pipe+0xd0/0xd0
[  318.214156][T11450]  direct_splice_actor+0x80/0xa0
[  318.219138][T11450]  splice_direct_to_actor+0x345/0x650
[  318.224597][T11450]  ? do_splice_direct+0x190/0x190
[  318.229622][T11450]  do_splice_direct+0x106/0x190
[  318.234474][T11450]  do_sendfile+0x675/0xc40
[  318.238869][T11450]  __x64_sys_sendfile64+0x102/0x140
[  318.244102][T11450]  do_syscall_64+0x44/0xd0
[  318.248520][T11450]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  318.254400][T11450] RIP: 0033:0x7f19f7d40ae9
[  318.258793][T11450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  318.278390][T11450] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  318.286796][T11450] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
17:52:13 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003cc)

[  318.294813][T11450] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  318.302774][T11450] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  318.310796][T11450] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  318.318762][T11450] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  318.326817][T11450]  </TASK>
17:52:13 executing program 3:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e5)

17:52:13 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e7)

17:52:13 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x50e940, 0xc0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r2, {0x9}}, './bus\x00'})
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x20000, 0x1000}, 0x18)
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f00000004c0)=0x80, 0x4)
setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f0000000080)=0x2, 0x4)
r5 = socket(0x100000000011, 0x2, 0x0)
bind(r5, &(0x7f0000000940)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836010004b0e0301a4ce875f2e3ff5f163ee340b767950080f5ff000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r5, &(0x7f00000003c0)={0x11, 0x0, <r6=>0x0}, &(0x7f0000000100)=0x14)
setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000140)=0x400, 0x4)
bind$xdp(r4, &(0x7f0000000900)={0x2c, 0xc, r6}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=@delchain={0x44, 0x65, 0x20, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0x2, 0x10}, {0xb, 0xffe0}, {0xf, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x8001}, @TCA_RATE={0x6, 0x5, {0x2}}, @TCA_RATE={0x6, 0x5, {0x4, 0x7e}}, @TCA_RATE={0x6, 0x5, {0x1, 0x20}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000080}, 0x800)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:13 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = accept4$x25(r2, &(0x7f0000000100)={0x9, @remote}, &(0x7f0000000140)=0x12, 0x80000)
ioctl$AUTOFS_IOC_PROTOSUBVER(r3, 0x80049367, &(0x7f0000000180))
sendfile(r1, r2, 0x0, 0x80000001)

17:52:14 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 23)

[  318.908601][T11476] FAULT_INJECTION: forcing a failure.
[  318.908601][T11476] name failslab, interval 1, probability 0, space 0, times 0
[  318.921320][T11476] CPU: 0 PID: 11476 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  318.930082][T11476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  318.940145][T11476] Call Trace:
[  318.943418][T11476]  <TASK>
[  318.946418][T11476]  dump_stack_lvl+0xd6/0x122
[  318.951054][T11476]  dump_stack+0x11/0x1b
[  318.955211][T11476]  should_fail+0x23c/0x250
[  318.959622][T11476]  ? mempool_alloc_slab+0x16/0x20
[  318.964695][T11476]  __should_failslab+0x81/0x90
[  318.969463][T11476]  should_failslab+0x5/0x20
[  318.973978][T11476]  kmem_cache_alloc+0x4f/0x320
[  318.978769][T11476]  mempool_alloc_slab+0x16/0x20
[  318.983677][T11476]  ? mempool_free+0x130/0x130
[  318.988456][T11476]  mempool_alloc+0x9d/0x310
[  318.992974][T11476]  ? preempt_count_add+0x4e/0x90
[  318.997978][T11476]  ? _raw_read_unlock+0x13/0x30
[  319.002906][T11476]  ? jbd2_transaction_committed+0xad/0xc0
[  319.008688][T11476]  bio_alloc_bioset+0xcc/0x560
[  319.013455][T11476]  ? iov_iter_alignment+0x34b/0x370
[  319.018708][T11476]  iomap_dio_bio_iter+0x5ed/0xc70
[  319.023771][T11476]  ? ext4_alloc_da_blocks+0x100/0x100
[  319.029151][T11476]  __iomap_dio_rw+0x8b5/0x1070
[  319.034001][T11476]  iomap_dio_rw+0x38/0x80
[  319.038390][T11476]  ? ext4_file_write_iter+0x451/0x1200
[  319.043906][T11476]  ext4_file_write_iter+0xac3/0x1200
[  319.049231][T11476]  ? ext4_file_write_iter+0x451/0x1200
17:52:14 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(r2, 0xc0389423, &(0x7f0000000140)={0x7fffffff, 0x38, [0x7fffffff, 0xff, 0x5, 0x1], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)

[  319.054700][T11476]  do_iter_readv_writev+0x2de/0x380
[  319.059934][T11476]  do_iter_write+0x192/0x5c0
[  319.064558][T11476]  ? splice_from_pipe_next+0x34f/0x3b0
[  319.070075][T11476]  ? kmalloc_array+0x2d/0x40
[  319.074712][T11476]  vfs_iter_write+0x4c/0x70
[  319.079225][T11476]  iter_file_splice_write+0x43a/0x790
[  319.084604][T11476]  ? splice_from_pipe+0xd0/0xd0
[  319.089462][T11476]  direct_splice_actor+0x80/0xa0
[  319.094485][T11476]  splice_direct_to_actor+0x345/0x650
[  319.099870][T11476]  ? do_splice_direct+0x190/0x190
[  319.105175][T11476]  do_splice_direct+0x106/0x190
[  319.110037][T11476]  do_sendfile+0x675/0xc40
[  319.114459][T11476]  __x64_sys_sendfile64+0x102/0x140
[  319.119658][T11476]  do_syscall_64+0x44/0xd0
[  319.124076][T11476]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  319.130033][T11476] RIP: 0033:0x7f19f7d40ae9
[  319.134446][T11476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:14 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x0)

[  319.154054][T11476] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  319.162501][T11476] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
[  319.170574][T11476] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  319.178541][T11476] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  319.186511][T11476] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  319.194505][T11476] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  319.202488][T11476]  </TASK>
17:52:14 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e8)

17:52:14 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003cd)

17:52:14 executing program 3:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e7)

17:52:14 executing program 5:
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)=0x8)
recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000100)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000180)=""/194, 0xc2}, {&(0x7f0000000280)=""/223, 0xdf}], 0x2, &(0x7f00000003c0)=""/172, 0xac}, 0x40010040)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
writev(r1, &(0x7f00000007c0)=[{&(0x7f0000000600)="3d923c206e41d14541b9c82c7fe2ea9ca59c7df3833fd3ee6d178bdc1e6bece5641fd638fb9df0b67681e59f6ab79ce6cba6306c156027f7020f5b0498aec8c273b0eff272d2a2e177df74c2e23ed4271eb5d3e0c3bea46f87e5363beda0b0ba4681b4558266251ea3c07de527c36a5cd5523e4384527defb483707aee1c7c5e44e72261127f88d1ea9b6c4767ed9dbda99face57a65f2f6ecf12537acc5e751c8f312937281c4bec962e1155474fa51fce05358d46e4a404ad35d2960a1b660b24ceb1b86ce758cff306f640f95739b4f8713bbbb98", 0xd6}, {&(0x7f0000000700)="07afda95e2c0aa16099927530c1ec6dfc086be11058958080cb1c35008de58973fcbf8273708f59c8c8dd1088a6988a3df9eebfd6b5c8d2b3ed4ea7d5cc029c3bfd7ad106a3cc9d3fa8e1a510c1a2631dc3080b39519ca1511e685675980b889a724a940fdf0ee94316024fd974da41d5f04f8148d0a6bfc4f0563fd3b8d26", 0x7f}, {&(0x7f0000000780)}], 0x3)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x3c, 0x0, 0x800, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_BSS_BASIC_RATES={0x4}, @NL80211_ATTR_MCAST_RATE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}], @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x3c}}, 0x4000000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000500)='./bus\x00', 0x800)
sendfile(r0, r3, 0x0, 0x80000001)

[  319.592019][   T24] audit: type=1400 audit(1637344334.773:272): avc:  denied  { write } for  pid=11497 comm="syz-executor.5" name="nvram" dev="devtmpfs" ino=97 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
17:52:14 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 24)

[  319.785371][T11501] FAULT_INJECTION: forcing a failure.
[  319.785371][T11501] name failslab, interval 1, probability 0, space 0, times 0
[  319.798056][T11501] CPU: 0 PID: 11501 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  319.806846][T11501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  319.816935][T11501] Call Trace:
[  319.820211][T11501]  <TASK>
[  319.823142][T11501]  dump_stack_lvl+0xd6/0x122
[  319.827799][T11501]  dump_stack+0x11/0x1b
[  319.832006][T11501]  should_fail+0x23c/0x250
[  319.836423][T11501]  ? jbd2__journal_start+0xf7/0x3f0
[  319.841680][T11501]  __should_failslab+0x81/0x90
[  319.846536][T11501]  should_failslab+0x5/0x20
[  319.851044][T11501]  kmem_cache_alloc+0x4f/0x320
[  319.855815][T11501]  jbd2__journal_start+0xf7/0x3f0
[  319.860850][T11501]  __ext4_journal_start_sb+0x159/0x310
[  319.866437][T11501]  ext4_iomap_begin+0x408/0x630
[  319.871402][T11501]  ? ext4_alloc_da_blocks+0x100/0x100
[  319.876821][T11501]  iomap_iter+0x395/0x4a0
[  319.881159][T11501]  __iomap_dio_rw+0xb78/0x1070
[  319.886004][T11501]  iomap_dio_rw+0x38/0x80
[  319.890342][T11501]  ? ext4_file_write_iter+0x451/0x1200
[  319.895868][T11501]  ext4_file_write_iter+0xac3/0x1200
[  319.901177][T11501]  ? ext4_file_write_iter+0x451/0x1200
[  319.906637][T11501]  do_iter_readv_writev+0x2de/0x380
[  319.911833][T11501]  do_iter_write+0x192/0x5c0
[  319.916532][T11501]  ? splice_from_pipe_next+0x34f/0x3b0
[  319.922021][T11501]  ? kmalloc_array+0x2d/0x40
[  319.926614][T11501]  vfs_iter_write+0x4c/0x70
17:52:15 executing program 5:
r0 = creat(&(0x7f0000000140)='./bus\x00', 0x2)
creat(&(0x7f0000000100)='.\x00', 0x20)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x40, 0x40)
sendfile(r1, r2, 0x0, 0x80000001)

[  319.931129][T11501]  iter_file_splice_write+0x43a/0x790
[  319.936620][T11501]  ? splice_from_pipe+0xd0/0xd0
[  319.941480][T11501]  direct_splice_actor+0x80/0xa0
[  319.946470][T11501]  splice_direct_to_actor+0x345/0x650
[  319.951844][T11501]  ? do_splice_direct+0x190/0x190
[  319.956873][T11501]  do_splice_direct+0x106/0x190
[  319.961745][T11501]  do_sendfile+0x675/0xc40
[  319.966163][T11501]  __x64_sys_sendfile64+0x102/0x140
[  319.971360][T11501]  do_syscall_64+0x44/0xd0
[  319.975819][T11501]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  319.981760][T11501] RIP: 0033:0x7f19f7d40ae9
[  319.986195][T11501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  320.005804][T11501] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  320.014398][T11501] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
[  320.022390][T11501] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  320.030431][T11501] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  320.038431][T11501] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  320.046489][T11501] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  320.054562][T11501]  </TASK>
17:52:15 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = creat(&(0x7f0000000100)='./bus\x00', 0x9)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
pwrite64(r5, 0x0, 0x0, 0x0)
sendfile(r2, r5, &(0x7f0000000180)=0xfff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r4, {0x200}}, './bus\x00'})
sendfile(r1, r2, 0x0, 0x80000001)

17:52:15 executing program 3:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003df)

17:52:15 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e9)

17:52:15 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ce)

17:52:15 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
openat(r2, &(0x7f0000000140)='./bus\x00', 0x1a040, 0x11c)
pwrite64(r1, 0x0, 0x0, 0x0)
write$rfkill(r1, &(0x7f0000000100)={0x5, 0x1, 0x3, 0x0, 0x1}, 0x8)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x80000001)

17:52:15 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000003e)

17:52:15 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 25)

[  320.666571][T11528] FAULT_INJECTION: forcing a failure.
[  320.666571][T11528] name failslab, interval 1, probability 0, space 0, times 0
[  320.679363][T11528] CPU: 1 PID: 11528 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  320.688160][T11528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  320.698246][T11528] Call Trace:
[  320.701578][T11528]  <TASK>
[  320.704519][T11528]  dump_stack_lvl+0xd6/0x122
[  320.709174][T11528]  dump_stack+0x11/0x1b
[  320.713390][T11528]  should_fail+0x23c/0x250
[  320.717790][T11528]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  320.723136][T11528]  __should_failslab+0x81/0x90
[  320.728040][T11528]  should_failslab+0x5/0x20
[  320.732556][T11528]  kmem_cache_alloc+0x4f/0x320
[  320.737393][T11528]  ext4_mb_new_blocks+0x328/0x1ee0
[  320.742501][T11528]  ? ext4_get_branch+0x27d/0x2e0
[  320.747481][T11528]  ext4_ind_map_blocks+0xb1c/0x1740
[  320.752792][T11528]  ext4_map_blocks+0x6e3/0xf00
[  320.757582][T11528]  ext4_iomap_begin+0x4b0/0x630
[  320.762444][T11528]  ? ext4_alloc_da_blocks+0x100/0x100
[  320.767800][T11528]  iomap_iter+0x395/0x4a0
[  320.772117][T11528]  __iomap_dio_rw+0xb78/0x1070
[  320.776996][T11528]  iomap_dio_rw+0x38/0x80
[  320.781329][T11528]  ? ext4_file_write_iter+0x451/0x1200
[  320.786824][T11528]  ext4_file_write_iter+0xac3/0x1200
[  320.792091][T11528]  ? ext4_file_write_iter+0x451/0x1200
[  320.797582][T11528]  do_iter_readv_writev+0x2de/0x380
[  320.802816][T11528]  do_iter_write+0x192/0x5c0
[  320.807398][T11528]  ? splice_from_pipe_next+0x34f/0x3b0
[  320.812912][T11528]  ? kmalloc_array+0x2d/0x40
[  320.817493][T11528]  vfs_iter_write+0x4c/0x70
[  320.822016][T11528]  iter_file_splice_write+0x43a/0x790
[  320.827434][T11528]  ? splice_from_pipe+0xd0/0xd0
[  320.832356][T11528]  direct_splice_actor+0x80/0xa0
[  320.837368][T11528]  splice_direct_to_actor+0x345/0x650
[  320.842766][T11528]  ? do_splice_direct+0x190/0x190
[  320.847784][T11528]  do_splice_direct+0x106/0x190
[  320.852698][T11528]  do_sendfile+0x675/0xc40
[  320.857098][T11528]  __x64_sys_sendfile64+0x102/0x140
[  320.862287][T11528]  do_syscall_64+0x44/0xd0
[  320.866707][T11528]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  320.872597][T11528] RIP: 0033:0x7f19f7d40ae9
[  320.876997][T11528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  320.896698][T11528] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  320.905149][T11528] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
[  320.913100][T11528] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  320.921139][T11528] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  320.929108][T11528] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  320.937062][T11528] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  320.945030][T11528]  </TASK>
17:52:16 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
r3 = openat(r2, &(0x7f0000000140)='./bus\x00', 0x8040, 0x164)
sendfile(r1, r3, 0x0, 0x80000001)

17:52:16 executing program 3:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d7)

17:52:16 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ea)

17:52:16 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003cf)

17:52:16 executing program 5:
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)=0x8)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x460102, 0x144)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080), 0x501, 0x0)
fchmod(r1, 0x8)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r2, 0x0, 0x80000001)

17:52:16 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
open_tree(r1, &(0x7f0000000100)='./bus\x00', 0x100)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

17:52:16 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001) (fail_nth: 26)

17:52:16 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 1)

[  321.551463][T11557] FAULT_INJECTION: forcing a failure.
[  321.551463][T11557] name failslab, interval 1, probability 0, space 0, times 0
[  321.564198][T11557] CPU: 0 PID: 11557 Comm: syz-executor.4 Not tainted 5.16.0-rc1-syzkaller #0
[  321.572982][T11557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  321.583036][T11557] Call Trace:
[  321.586306][T11557]  <TASK>
[  321.589231][T11557]  dump_stack_lvl+0xd6/0x122
[  321.593867][T11557]  dump_stack+0x11/0x1b
[  321.598034][T11557]  should_fail+0x23c/0x250
[  321.602451][T11557]  ? mempool_alloc_slab+0x16/0x20
[  321.607489][T11557]  __should_failslab+0x81/0x90
[  321.610440][T11558] FAULT_INJECTION: forcing a failure.
[  321.610440][T11558] name failslab, interval 1, probability 0, space 0, times 0
[  321.612258][T11557]  should_failslab+0x5/0x20
[  321.629348][T11557]  kmem_cache_alloc+0x4f/0x320
[  321.634140][T11557]  mempool_alloc_slab+0x16/0x20
[  321.639054][T11557]  ? mempool_free+0x130/0x130
[  321.643812][T11557]  mempool_alloc+0x9d/0x310
[  321.648337][T11557]  ? preempt_count_add+0x4e/0x90
[  321.653272][T11557]  ? _raw_read_unlock+0x13/0x30
[  321.658123][T11557]  ? jbd2_transaction_committed+0xad/0xc0
[  321.663864][T11557]  bio_alloc_bioset+0xcc/0x560
[  321.668618][T11557]  ? iov_iter_alignment+0x34b/0x370
[  321.673889][T11557]  iomap_dio_bio_iter+0x5ed/0xc70
[  321.679005][T11557]  ? ext4_alloc_da_blocks+0x100/0x100
[  321.684434][T11557]  __iomap_dio_rw+0x8b5/0x1070
[  321.689197][T11557]  iomap_dio_rw+0x38/0x80
[  321.693529][T11557]  ? ext4_file_write_iter+0x451/0x1200
[  321.699039][T11557]  ext4_file_write_iter+0xac3/0x1200
[  321.704315][T11557]  ? ext4_file_write_iter+0x451/0x1200
[  321.709772][T11557]  do_iter_readv_writev+0x2de/0x380
[  321.714963][T11557]  do_iter_write+0x192/0x5c0
[  321.719665][T11557]  ? splice_from_pipe_next+0x34f/0x3b0
[  321.725112][T11557]  ? kmalloc_array+0x2d/0x40
[  321.729711][T11557]  vfs_iter_write+0x4c/0x70
[  321.734316][T11557]  iter_file_splice_write+0x43a/0x790
[  321.739770][T11557]  ? splice_from_pipe+0xd0/0xd0
[  321.744724][T11557]  direct_splice_actor+0x80/0xa0
[  321.749745][T11557]  splice_direct_to_actor+0x345/0x650
[  321.755106][T11557]  ? do_splice_direct+0x190/0x190
[  321.760178][T11557]  do_splice_direct+0x106/0x190
[  321.765022][T11557]  do_sendfile+0x675/0xc40
[  321.769433][T11557]  __x64_sys_sendfile64+0x102/0x140
[  321.774724][T11557]  do_syscall_64+0x44/0xd0
[  321.779142][T11557]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  321.785031][T11557] RIP: 0033:0x7f19f7d40ae9
[  321.789609][T11557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  321.809219][T11557] RSP: 002b:00007f19f5a96188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  321.817725][T11557] RAX: ffffffffffffffda RBX: 00007f19f7e54020 RCX: 00007f19f7d40ae9
[  321.825723][T11557] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  321.833786][T11557] RBP: 00007f19f5a961d0 R08: 0000000000000000 R09: 0000000000000000
[  321.841746][T11557] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  321.849716][T11557] R13: 00007ffda901d9af R14: 00007f19f5a96300 R15: 0000000000022000
[  321.857702][T11557]  </TASK>
[  321.860758][T11558] CPU: 1 PID: 11558 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  321.869618][T11558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  321.879692][T11558] Call Trace:
[  321.882957][T11558]  <TASK>
[  321.885870][T11558]  dump_stack_lvl+0xd6/0x122
[  321.890446][T11558]  dump_stack+0x11/0x1b
[  321.894660][T11558]  should_fail+0x23c/0x250
[  321.899101][T11558]  ? alloc_pipe_info+0xac/0x350
[  321.904071][T11558]  __should_failslab+0x81/0x90
[  321.908819][T11558]  should_failslab+0x5/0x20
[  321.913321][T11558]  kmem_cache_alloc_trace+0x52/0x350
[  321.918603][T11558]  alloc_pipe_info+0xac/0x350
[  321.923290][T11558]  splice_direct_to_actor+0x5f7/0x650
[  321.928733][T11558]  ? security_file_permission+0x7c/0xa0
[  321.934278][T11558]  ? do_splice_direct+0x190/0x190
[  321.939334][T11558]  ? security_file_permission+0x87/0xa0
[  321.944876][T11558]  do_splice_direct+0x106/0x190
[  321.949715][T11558]  do_sendfile+0x675/0xc40
[  321.954118][T11558]  __x64_sys_sendfile64+0x102/0x140
[  321.959316][T11558]  do_syscall_64+0x44/0xd0
[  321.963755][T11558]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  321.969706][T11558] RIP: 0033:0x7ff4b8299ae9
[  321.974097][T11558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  321.993684][T11558] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  322.002074][T11558] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  322.010065][T11558] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  322.018022][T11558] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  322.026055][T11558] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  322.034132][T11558] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  322.042097][T11558]  </TASK>
17:52:17 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 1)

17:52:17 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003eb)

[  322.146760][T11565] FAULT_INJECTION: forcing a failure.
[  322.146760][T11565] name failslab, interval 1, probability 0, space 0, times 0
[  322.159416][T11565] CPU: 1 PID: 11565 Comm: syz-executor.3 Not tainted 5.16.0-rc1-syzkaller #0
[  322.168281][T11565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  322.178337][T11565] Call Trace:
[  322.181663][T11565]  <TASK>
[  322.184579][T11565]  dump_stack_lvl+0xd6/0x122
[  322.189250][T11565]  dump_stack+0x11/0x1b
[  322.193388][T11565]  should_fail+0x23c/0x250
[  322.197811][T11565]  ? alloc_pipe_info+0xac/0x350
[  322.202720][T11565]  __should_failslab+0x81/0x90
[  322.207621][T11565]  should_failslab+0x5/0x20
[  322.212365][T11565]  kmem_cache_alloc_trace+0x52/0x350
[  322.217666][T11565]  alloc_pipe_info+0xac/0x350
[  322.222391][T11565]  splice_direct_to_actor+0x5f7/0x650
[  322.227830][T11565]  ? security_file_permission+0x7c/0xa0
[  322.233397][T11565]  ? do_splice_direct+0x190/0x190
[  322.238429][T11565]  ? security_file_permission+0x87/0xa0
[  322.243992][T11565]  do_splice_direct+0x106/0x190
[  322.248907][T11565]  do_sendfile+0x675/0xc40
[  322.253383][T11565]  __x64_sys_sendfile64+0x102/0x140
[  322.258634][T11565]  do_syscall_64+0x44/0xd0
[  322.263051][T11565]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  322.268944][T11565] RIP: 0033:0x7fe18b887ae9
[  322.273340][T11565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:17 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 2)

[  322.293041][T11565] RSP: 002b:00007fe1895fe188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  322.301453][T11565] RAX: ffffffffffffffda RBX: 00007fe18b99af60 RCX: 00007fe18b887ae9
[  322.309466][T11565] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  322.317510][T11565] RBP: 00007fe1895fe1d0 R08: 0000000000000000 R09: 0000000000000000
[  322.325475][T11565] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  322.333452][T11565] R13: 00007ffd2b6af26f R14: 00007fe1895fe300 R15: 0000000000022000
[  322.341614][T11565]  </TASK>
17:52:17 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001)

17:52:17 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 2)

17:52:17 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d0)

[  322.414351][T11577] FAULT_INJECTION: forcing a failure.
[  322.414351][T11577] name failslab, interval 1, probability 0, space 0, times 0
[  322.427023][T11577] CPU: 1 PID: 11577 Comm: syz-executor.3 Not tainted 5.16.0-rc1-syzkaller #0
[  322.435784][T11577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  322.445860][T11577] Call Trace:
[  322.449126][T11577]  <TASK>
[  322.452043][T11577]  dump_stack_lvl+0xd6/0x122
[  322.456615][T11577]  dump_stack+0x11/0x1b
[  322.460746][T11577]  should_fail+0x23c/0x250
[  322.465138][T11577]  ? kcalloc+0x32/0x40
[  322.469241][T11577]  __should_failslab+0x81/0x90
[  322.473989][T11577]  should_failslab+0x5/0x20
[  322.478471][T11580] FAULT_INJECTION: forcing a failure.
[  322.478471][T11580] name failslab, interval 1, probability 0, space 0, times 0
[  322.478475][T11577]  __kmalloc+0x6f/0x370
[  322.495289][T11577]  ? kmem_cache_alloc_trace+0x24b/0x350
[  322.500897][T11577]  kcalloc+0x32/0x40
[  322.504835][T11577]  alloc_pipe_info+0x1be/0x350
[  322.509592][T11577]  splice_direct_to_actor+0x5f7/0x650
[  322.514955][T11577]  ? security_file_permission+0x7c/0xa0
[  322.520487][T11577]  ? do_splice_direct+0x190/0x190
[  322.525974][T11577]  ? security_file_permission+0x87/0xa0
[  322.531558][T11577]  do_splice_direct+0x106/0x190
[  322.536470][T11577]  do_sendfile+0x675/0xc40
[  322.540903][T11577]  __x64_sys_sendfile64+0x102/0x140
[  322.546104][T11577]  do_syscall_64+0x44/0xd0
[  322.550541][T11577]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  322.556426][T11577] RIP: 0033:0x7fe18b887ae9
[  322.560880][T11577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  322.580481][T11577] RSP: 002b:00007fe1895fe188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  322.588946][T11577] RAX: ffffffffffffffda RBX: 00007fe18b99af60 RCX: 00007fe18b887ae9
[  322.596906][T11577] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  322.604907][T11577] RBP: 00007fe1895fe1d0 R08: 0000000000000000 R09: 0000000000000000
[  322.612891][T11577] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  322.620855][T11577] R13: 00007ffd2b6af26f R14: 00007fe1895fe300 R15: 0000000000022000
[  322.628821][T11577]  </TASK>
[  322.631825][T11580] CPU: 0 PID: 11580 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  322.640592][T11580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  322.650674][T11580] Call Trace:
[  322.653944][T11580]  <TASK>
[  322.656955][T11580]  dump_stack_lvl+0xd6/0x122
[  322.661550][T11580]  dump_stack+0x11/0x1b
[  322.665736][T11580]  should_fail+0x23c/0x250
[  322.669781][T11583] FAULT_INJECTION: forcing a failure.
[  322.669781][T11583] name failslab, interval 1, probability 0, space 0, times 0
[  322.670155][T11580]  ? kcalloc+0x32/0x40
[  322.686772][T11580]  __should_failslab+0x81/0x90
[  322.691533][T11580]  should_failslab+0x5/0x20
[  322.696029][T11580]  __kmalloc+0x6f/0x370
[  322.700192][T11580]  ? kmem_cache_alloc_trace+0x24b/0x350
[  322.705806][T11580]  kcalloc+0x32/0x40
[  322.709773][T11580]  alloc_pipe_info+0x1be/0x350
[  322.714588][T11580]  splice_direct_to_actor+0x5f7/0x650
[  322.720092][T11580]  ? security_file_permission+0x7c/0xa0
[  322.725627][T11580]  ? do_splice_direct+0x190/0x190
[  322.730673][T11580]  ? security_file_permission+0x87/0xa0
[  322.736237][T11580]  do_splice_direct+0x106/0x190
[  322.741260][T11580]  do_sendfile+0x675/0xc40
[  322.745749][T11580]  __x64_sys_sendfile64+0x102/0x140
[  322.751005][T11580]  do_syscall_64+0x44/0xd0
[  322.755409][T11580]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  322.761359][T11580] RIP: 0033:0x7ff4b8299ae9
[  322.765928][T11580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  322.785560][T11580] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  322.793963][T11580] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  322.802098][T11580] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
17:52:17 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 3)

[  322.810074][T11580] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  322.818045][T11580] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  322.826035][T11580] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  322.833995][T11580]  </TASK>
[  322.837030][T11583] CPU: 1 PID: 11583 Comm: syz-executor.3 Not tainted 5.16.0-rc1-syzkaller #0
[  322.845802][T11583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  322.855882][T11583] Call Trace:
[  322.859149][T11583]  <TASK>
[  322.862075][T11583]  dump_stack_lvl+0xd6/0x122
[  322.866656][T11583]  dump_stack+0x11/0x1b
[  322.870792][T11583]  should_fail+0x23c/0x250
[  322.875207][T11583]  ? kmalloc_array+0x2d/0x40
[  322.879805][T11583]  __should_failslab+0x81/0x90
[  322.884557][T11583]  should_failslab+0x5/0x20
[  322.889069][T11583]  __kmalloc+0x6f/0x370
[  322.893222][T11583]  kmalloc_array+0x2d/0x40
[  322.897681][T11583]  iter_file_splice_write+0xd5/0x790
[  322.903014][T11583]  ? atime_needs_update+0x2ba/0x390
[  322.908272][T11583]  ? touch_atime+0x11f/0x2e0
[  322.912868][T11583]  ? generic_file_splice_read+0x2a9/0x330
[  322.918598][T11583]  ? splice_from_pipe+0xd0/0xd0
[  322.923492][T11583]  direct_splice_actor+0x80/0xa0
[  322.928488][T11583]  splice_direct_to_actor+0x345/0x650
[  322.933901][T11583]  ? do_splice_direct+0x190/0x190
[  322.938974][T11583]  do_splice_direct+0x106/0x190
[  322.943866][T11583]  do_sendfile+0x675/0xc40
[  322.948363][T11583]  __x64_sys_sendfile64+0x102/0x140
[  322.953627][T11583]  do_syscall_64+0x44/0xd0
[  322.958028][T11583]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  322.963923][T11583] RIP: 0033:0x7fe18b887ae9
[  322.968325][T11583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  322.987917][T11583] RSP: 002b:00007fe1895fe188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  322.996395][T11583] RAX: ffffffffffffffda RBX: 00007fe18b99af60 RCX: 00007fe18b887ae9
[  323.004348][T11583] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
17:52:18 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 4)

[  323.012404][T11583] RBP: 00007fe1895fe1d0 R08: 0000000000000000 R09: 0000000000000000
[  323.020367][T11583] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  323.028389][T11583] R13: 00007ffd2b6af26f R14: 00007fe1895fe300 R15: 0000000000022000
[  323.036359][T11583]  </TASK>
17:52:18 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r1)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="a3a1d357", @ANYRES16=r3, @ANYBLOB="000129bd7000fbdbdf250f00000004000580"], 0x18}, 0x1, 0x0, 0x0, 0xc0}, 0x8000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r5, 0x0, 0x0, 0x0)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r6, 0x0, 0x0, 0x0)
write$binfmt_elf64(r6, &(0x7f00000004c0)={{0x7f, 0x45, 0x4c, 0x46, 0x6, 0x1, 0x8, 0x2, 0x9, 0x2, 0x6, 0x20, 0x6, 0x40, 0x1e8, 0x2, 0x3, 0x38, 0x2, 0x7, 0xfff}, [{0x7, 0x7, 0x400, 0x4, 0xffffffffffff8001, 0x20, 0x773, 0x8}], "5bed370c8d7eb26d18b7b3c0f07f67a34dec7b6ecda19414a78a6be56ee25c74a05495ac51c53c74021cc3d64c896341b8f8f3b20ec5f5cd5aeeb2848f3b48010156ff49a1c74fb54ce96baa46d21878681ccf8cdf1105c3c5d20e5efa4f", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x6d6)
sendmsg$TIPC_NL_LINK_SET(r5, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)={0x1b4, r3, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_SOCK={0x48, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3ff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf10}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xec}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}]}, @TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4c0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}, @TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xb, 0x1, @l2={'ib', 0x3a, 'wg1\x00'}}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x100}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffffffb}]}, @TIPC_NLA_BEARER={0x44, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x2, @mcast2}}, {0x14, 0x2, @in={0x2, 0x4e20, @multicast2}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1ff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8001}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1000}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x140}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xc62f}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x8080}, 0x4008080)

[  323.082516][T11588] FAULT_INJECTION: forcing a failure.
[  323.082516][T11588] name failslab, interval 1, probability 0, space 0, times 0
[  323.095180][T11588] CPU: 0 PID: 11588 Comm: syz-executor.3 Not tainted 5.16.0-rc1-syzkaller #0
[  323.103944][T11588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  323.114020][T11588] Call Trace:
[  323.117574][T11588]  <TASK>
[  323.120525][T11588]  dump_stack_lvl+0xd6/0x122
[  323.125194][T11588]  dump_stack+0x11/0x1b
[  323.129402][T11588]  should_fail+0x23c/0x250
[  323.133823][T11588]  ? jbd2__journal_start+0xf7/0x3f0
[  323.139071][T11588]  __should_failslab+0x81/0x90
[  323.143876][T11588]  should_failslab+0x5/0x20
[  323.148396][T11588]  kmem_cache_alloc+0x4f/0x320
[  323.153208][T11588]  jbd2__journal_start+0xf7/0x3f0
[  323.158233][T11588]  __ext4_journal_start_sb+0x159/0x310
[  323.164009][T11588]  ? ext4_file_write_iter+0x451/0x1200
[  323.169456][T11588]  ext4_file_write_iter+0x992/0x1200
[  323.174835][T11588]  ? ext4_file_write_iter+0x451/0x1200
[  323.180297][T11588]  ? prandom_u32_state+0xd7/0x100
[  323.185395][T11588]  do_iter_readv_writev+0x2de/0x380
[  323.190593][T11588]  do_iter_write+0x192/0x5c0
[  323.195187][T11588]  ? splice_from_pipe_next+0x34f/0x3b0
[  323.200722][T11588]  ? kmalloc_array+0x2d/0x40
[  323.205355][T11588]  vfs_iter_write+0x4c/0x70
[  323.209866][T11588]  iter_file_splice_write+0x43a/0x790
[  323.215252][T11588]  ? splice_from_pipe+0xd0/0xd0
[  323.220107][T11588]  direct_splice_actor+0x80/0xa0
[  323.225107][T11588]  splice_direct_to_actor+0x345/0x650
[  323.230506][T11588]  ? do_splice_direct+0x190/0x190
[  323.235534][T11588]  do_splice_direct+0x106/0x190
[  323.240444][T11588]  do_sendfile+0x675/0xc40
[  323.244891][T11588]  __x64_sys_sendfile64+0x102/0x140
[  323.250103][T11588]  do_syscall_64+0x44/0xd0
[  323.254527][T11588]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  323.260428][T11588] RIP: 0033:0x7fe18b887ae9
[  323.264908][T11588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  323.284572][T11588] RSP: 002b:00007fe1895fe188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  323.293081][T11588] RAX: ffffffffffffffda RBX: 00007fe18b99af60 RCX: 00007fe18b887ae9
[  323.301066][T11588] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  323.309278][T11588] RBP: 00007fe1895fe1d0 R08: 0000000000000000 R09: 0000000000000000
[  323.317375][T11588] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  323.325347][T11588] R13: 00007ffd2b6af26f R14: 00007fe1895fe300 R15: 0000000000022000
17:52:18 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x7ffff000)

17:52:18 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 3)

[  323.333373][T11588]  </TASK>
17:52:18 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 5)

17:52:18 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ec)

[  323.405342][T11600] FAULT_INJECTION: forcing a failure.
[  323.405342][T11600] name failslab, interval 1, probability 0, space 0, times 0
[  323.418046][T11600] CPU: 0 PID: 11600 Comm: syz-executor.3 Not tainted 5.16.0-rc1-syzkaller #0
[  323.426810][T11600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  323.436965][T11600] Call Trace:
[  323.440241][T11600]  <TASK>
[  323.443174][T11600]  dump_stack_lvl+0xd6/0x122
[  323.447771][T11600]  dump_stack+0x11/0x1b
[  323.452005][T11600]  should_fail+0x23c/0x250
[  323.456428][T11600]  ? __iomap_dio_rw+0x143/0x1070
[  323.461377][T11600]  __should_failslab+0x81/0x90
[  323.466215][T11600]  should_failslab+0x5/0x20
[  323.470723][T11600]  kmem_cache_alloc_trace+0x52/0x350
[  323.476075][T11600]  __iomap_dio_rw+0x143/0x1070
[  323.480839][T11600]  ? __ext4_handle_dirty_metadata+0x17d/0x5a0
[  323.486921][T11600]  ? jbd2_journal_stop+0x592/0x6a0
[  323.492039][T11600]  ? jbd2_journal_stop+0x592/0x6a0
[  323.497151][T11600]  ? ___cache_free+0x46/0x300
[  323.501954][T11600]  iomap_dio_rw+0x38/0x80
[  323.506336][T11600]  ? ext4_file_write_iter+0x451/0x1200
[  323.511848][T11600]  ext4_file_write_iter+0xac3/0x1200
[  323.517189][T11600]  ? ext4_file_write_iter+0x451/0x1200
[  323.522691][T11600]  ? prandom_u32_state+0xd7/0x100
[  323.527727][T11600]  do_iter_readv_writev+0x2de/0x380
[  323.532933][T11600]  do_iter_write+0x192/0x5c0
[  323.537555][T11600]  ? splice_from_pipe_next+0x34f/0x3b0
[  323.543020][T11600]  ? kmalloc_array+0x2d/0x40
[  323.547618][T11600]  vfs_iter_write+0x4c/0x70
[  323.552189][T11600]  iter_file_splice_write+0x43a/0x790
[  323.557605][T11600]  ? splice_from_pipe+0xd0/0xd0
[  323.562535][T11600]  direct_splice_actor+0x80/0xa0
[  323.567488][T11600]  splice_direct_to_actor+0x345/0x650
[  323.572917][T11600]  ? do_splice_direct+0x190/0x190
[  323.577948][T11600]  do_splice_direct+0x106/0x190
[  323.582805][T11600]  do_sendfile+0x675/0xc40
[  323.587278][T11600]  __x64_sys_sendfile64+0x102/0x140
[  323.592501][T11600]  do_syscall_64+0x44/0xd0
[  323.596936][T11600]  entry_SYSCALL_64_after_hwframe+0x44/0xae
17:52:18 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setxattr$incfs_size(&(0x7f0000000280)='./bus\x00', &(0x7f00000002c0), &(0x7f0000000300)=0x8913, 0x8, 0x3)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x400040, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x200000, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [{@audit}, {@obj_type={'obj_type', 0x3d, '/@}+'}}, {@dont_appraise}, {@context={'context', 0x3d, 'staff_u'}}, {@hash}, {@context={'context', 0x3d, 'unconfined_u'}}]}})

[  323.602910][T11600] RIP: 0033:0x7fe18b887ae9
[  323.607316][T11600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  323.627570][T11600] RSP: 002b:00007fe1895fe188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  323.635986][T11600] RAX: ffffffffffffffda RBX: 00007fe18b99af60 RCX: 00007fe18b887ae9
[  323.643975][T11600] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  323.651939][T11600] RBP: 00007fe1895fe1d0 R08: 0000000000000000 R09: 0000000000000000
[  323.659994][T11600] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  323.668000][T11600] R13: 00007ffd2b6af26f R14: 00007fe1895fe300 R15: 0000000000022000
[  323.676004][T11600]  </TASK>
[  323.679712][T11606] FAULT_INJECTION: forcing a failure.
[  323.679712][T11606] name failslab, interval 1, probability 0, space 0, times 0
[  323.692383][T11606] CPU: 0 PID: 11606 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  323.701145][T11606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  323.711228][T11606] Call Trace:
[  323.714507][T11606]  <TASK>
[  323.717436][T11606]  dump_stack_lvl+0xd6/0x122
[  323.722116][T11606]  dump_stack+0x11/0x1b
[  323.726282][T11606]  should_fail+0x23c/0x250
[  323.730708][T11606]  ? kmalloc_array+0x2d/0x40
[  323.735438][T11606]  __should_failslab+0x81/0x90
[  323.740209][T11606]  should_failslab+0x5/0x20
[  323.744769][T11606]  __kmalloc+0x6f/0x370
[  323.748927][T11606]  kmalloc_array+0x2d/0x40
17:52:18 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 6)

[  323.750630][T11608] SELinux:  duplicate or incompatible mount options
[  323.753386][T11606]  iter_file_splice_write+0xd5/0x790
[  323.765307][T11606]  ? atime_needs_update+0x2ba/0x390
[  323.770508][T11606]  ? touch_atime+0x11f/0x2e0
[  323.775124][T11606]  ? generic_file_splice_read+0x2a9/0x330
[  323.780924][T11606]  ? splice_from_pipe+0xd0/0xd0
[  323.785854][T11606]  direct_splice_actor+0x80/0xa0
[  323.790797][T11606]  splice_direct_to_actor+0x345/0x650
[  323.796252][T11606]  ? do_splice_direct+0x190/0x190
[  323.801298][T11606]  do_splice_direct+0x106/0x190
[  323.806161][T11606]  do_sendfile+0x675/0xc40
[  323.810582][T11606]  __x64_sys_sendfile64+0x102/0x140
[  323.815782][T11606]  do_syscall_64+0x44/0xd0
[  323.820253][T11606]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  323.826155][T11606] RIP: 0033:0x7ff4b8299ae9
[  323.830610][T11606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  323.838622][T11610] FAULT_INJECTION: forcing a failure.
[  323.838622][T11610] name failslab, interval 1, probability 0, space 0, times 0
[  323.850214][T11606] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  323.850237][T11606] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  323.850250][T11606] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  323.850263][T11606] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  323.895049][T11606] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  323.903006][T11606] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  323.910991][T11606]  </TASK>
[  323.914003][T11610] CPU: 1 PID: 11610 Comm: syz-executor.3 Not tainted 5.16.0-rc1-syzkaller #0
[  323.922762][T11610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  323.932820][T11610] Call Trace:
[  323.936132][T11610]  <TASK>
[  323.939056][T11610]  dump_stack_lvl+0xd6/0x122
[  323.943655][T11610]  dump_stack+0x11/0x1b
[  323.947821][T11610]  should_fail+0x23c/0x250
[  323.952230][T11610]  ? jbd2__journal_start+0xf7/0x3f0
[  323.957489][T11610]  __should_failslab+0x81/0x90
[  323.962274][T11610]  should_failslab+0x5/0x20
[  323.966780][T11610]  kmem_cache_alloc+0x4f/0x320
[  323.971563][T11610]  jbd2__journal_start+0xf7/0x3f0
[  323.976701][T11610]  __ext4_journal_start_sb+0x159/0x310
[  323.982221][T11610]  ext4_iomap_begin+0x408/0x630
[  323.987130][T11610]  ? ext4_alloc_da_blocks+0x100/0x100
[  323.992489][T11610]  iomap_iter+0x395/0x4a0
[  323.996858][T11610]  __iomap_dio_rw+0x695/0x1070
[  324.001652][T11610]  ? jbd2_journal_stop+0x592/0x6a0
[  324.006795][T11610]  iomap_dio_rw+0x38/0x80
[  324.011176][T11610]  ? ext4_file_write_iter+0x451/0x1200
[  324.016631][T11610]  ext4_file_write_iter+0xac3/0x1200
[  324.021896][T11610]  ? ext4_file_write_iter+0x451/0x1200
[  324.027355][T11610]  ? prandom_u32_state+0xd7/0x100
[  324.032383][T11610]  do_iter_readv_writev+0x2de/0x380
[  324.037562][T11610]  do_iter_write+0x192/0x5c0
[  324.042135][T11610]  ? splice_from_pipe_next+0x34f/0x3b0
[  324.047579][T11610]  ? kmalloc_array+0x2d/0x40
[  324.052229][T11610]  vfs_iter_write+0x4c/0x70
[  324.056760][T11610]  iter_file_splice_write+0x43a/0x790
[  324.062201][T11610]  ? splice_from_pipe+0xd0/0xd0
[  324.067036][T11610]  direct_splice_actor+0x80/0xa0
[  324.071991][T11610]  splice_direct_to_actor+0x345/0x650
[  324.077380][T11610]  ? do_splice_direct+0x190/0x190
[  324.082390][T11610]  do_splice_direct+0x106/0x190
[  324.087230][T11610]  do_sendfile+0x675/0xc40
[  324.091641][T11610]  __x64_sys_sendfile64+0x102/0x140
[  324.096841][T11610]  do_syscall_64+0x44/0xd0
[  324.101337][T11610]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  324.107382][T11610] RIP: 0033:0x7fe18b887ae9
[  324.111780][T11610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  324.131417][T11610] RSP: 002b:00007fe1895fe188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  324.139811][T11610] RAX: ffffffffffffffda RBX: 00007fe18b99af60 RCX: 00007fe18b887ae9
[  324.147849][T11610] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
17:52:19 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 7)

17:52:19 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 4)

[  324.155859][T11610] RBP: 00007fe1895fe1d0 R08: 0000000000000000 R09: 0000000000000000
[  324.163808][T11610] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  324.171760][T11610] R13: 00007ffd2b6af26f R14: 00007fe1895fe300 R15: 0000000000022000
[  324.179735][T11610]  </TASK>
17:52:19 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d1)

[  324.268961][T11621] FAULT_INJECTION: forcing a failure.
[  324.268961][T11621] name failslab, interval 1, probability 0, space 0, times 0
[  324.281595][T11621] CPU: 0 PID: 11621 Comm: syz-executor.3 Not tainted 5.16.0-rc1-syzkaller #0
[  324.290338][T11621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  324.300387][T11621] Call Trace:
[  324.303646][T11621]  <TASK>
[  324.306555][T11621]  dump_stack_lvl+0xd6/0x122
[  324.311132][T11621]  dump_stack+0x11/0x1b
[  324.315348][T11621]  should_fail+0x23c/0x250
[  324.319746][T11621]  ? kcalloc+0x32/0x50
[  324.323819][T11621]  __should_failslab+0x81/0x90
[  324.328566][T11621]  should_failslab+0x5/0x20
[  324.333145][T11621]  __kmalloc+0x6f/0x370
[  324.337283][T11621]  kcalloc+0x32/0x50
[  324.341355][T11621]  ext4_find_extent+0x19f/0x7e0
[  324.346271][T11621]  ext4_ext_map_blocks+0x115/0x2120
[  324.351470][T11621]  ? preempt_count_add+0x4e/0x90
[  324.356456][T11621]  ? _raw_read_unlock+0x13/0x30
[  324.361297][T11621]  ? start_this_handle+0xfa6/0x1050
[  324.366556][T11621]  ? ext4_es_lookup_extent+0x221/0x500
[  324.372007][T11621]  ext4_map_blocks+0x1cf/0xf00
[  324.376761][T11621]  ext4_iomap_begin+0x4b0/0x630
[  324.381644][T11621]  ? ext4_alloc_da_blocks+0x100/0x100
[  324.387022][T11621]  iomap_iter+0x395/0x4a0
[  324.391354][T11621]  __iomap_dio_rw+0x695/0x1070
[  324.396119][T11621]  ? jbd2_journal_stop+0x592/0x6a0
[  324.401336][T11621]  iomap_dio_rw+0x38/0x80
[  324.405648][T11621]  ? ext4_file_write_iter+0x451/0x1200
[  324.411090][T11621]  ext4_file_write_iter+0xac3/0x1200
[  324.416528][T11621]  ? ext4_file_write_iter+0x451/0x1200
[  324.421979][T11621]  ? prandom_u32_state+0xd7/0x100
[  324.426998][T11621]  do_iter_readv_writev+0x2de/0x380
[  324.432175][T11621]  do_iter_write+0x192/0x5c0
[  324.436775][T11621]  ? splice_from_pipe_next+0x34f/0x3b0
[  324.442226][T11621]  ? kmalloc_array+0x2d/0x40
[  324.446796][T11621]  vfs_iter_write+0x4c/0x70
[  324.451297][T11621]  iter_file_splice_write+0x43a/0x790
[  324.456676][T11621]  ? splice_from_pipe+0xd0/0xd0
[  324.461518][T11621]  direct_splice_actor+0x80/0xa0
[  324.466538][T11621]  splice_direct_to_actor+0x345/0x650
[  324.471889][T11621]  ? do_splice_direct+0x190/0x190
[  324.476907][T11621]  do_splice_direct+0x106/0x190
[  324.481739][T11621]  do_sendfile+0x675/0xc40
[  324.486147][T11621]  __x64_sys_sendfile64+0x102/0x140
[  324.491424][T11621]  do_syscall_64+0x44/0xd0
[  324.495842][T11621]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  324.501752][T11621] RIP: 0033:0x7fe18b887ae9
[  324.506151][T11621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  324.525848][T11621] RSP: 002b:00007fe1895fe188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  324.534246][T11621] RAX: ffffffffffffffda RBX: 00007fe18b99af60 RCX: 00007fe18b887ae9
[  324.542208][T11621] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  324.550174][T11621] RBP: 00007fe1895fe1d0 R08: 0000000000000000 R09: 0000000000000000
[  324.558130][T11621] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
17:52:19 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000002)

17:52:19 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ed)

[  324.566094][T11621] R13: 00007ffd2b6af26f R14: 00007fe1895fe300 R15: 0000000000022000
[  324.574105][T11621]  </TASK>
[  324.638880][T11634] FAULT_INJECTION: forcing a failure.
[  324.638880][T11634] name failslab, interval 1, probability 0, space 0, times 0
[  324.651574][T11634] CPU: 1 PID: 11634 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  324.660343][T11634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  324.670407][T11634] Call Trace:
[  324.673668][T11634]  <TASK>
[  324.676584][T11634]  dump_stack_lvl+0xd6/0x122
[  324.681238][T11634]  dump_stack+0x11/0x1b
[  324.685394][T11634]  should_fail+0x23c/0x250
[  324.689804][T11634]  ? jbd2__journal_start+0xf7/0x3f0
[  324.694998][T11634]  __should_failslab+0x81/0x90
[  324.699767][T11634]  should_failslab+0x5/0x20
[  324.704325][T11634]  kmem_cache_alloc+0x4f/0x320
[  324.709125][T11634]  jbd2__journal_start+0xf7/0x3f0
[  324.714140][T11634]  __ext4_journal_start_sb+0x159/0x310
[  324.719649][T11634]  ? ext4_expand_extra_isize+0x560/0x560
[  324.725263][T11634]  ext4_dirty_inode+0x58/0xa0
[  324.730000][T11634]  __mark_inode_dirty+0x72/0x6c0
[  324.734984][T11634]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[  324.740888][T11634]  inode_update_time+0x1b4/0x1d0
[  324.745892][T11634]  file_update_time+0x1f3/0x230
[  324.750804][T11634]  file_modified+0x62/0x80
[  324.755281][T11634]  ext4_file_write_iter+0x795/0x1200
[  324.760553][T11634]  ? ext4_file_write_iter+0x451/0x1200
[  324.765995][T11634]  do_iter_readv_writev+0x2de/0x380
[  324.771178][T11634]  do_iter_write+0x192/0x5c0
[  324.775842][T11634]  ? splice_from_pipe_next+0x34f/0x3b0
[  324.781303][T11634]  ? kmalloc_array+0x2d/0x40
[  324.785981][T11634]  vfs_iter_write+0x4c/0x70
[  324.790538][T11634]  iter_file_splice_write+0x43a/0x790
[  324.795894][T11634]  ? splice_from_pipe+0xd0/0xd0
[  324.800737][T11634]  direct_splice_actor+0x80/0xa0
[  324.805664][T11634]  splice_direct_to_actor+0x345/0x650
[  324.811029][T11634]  ? do_splice_direct+0x190/0x190
[  324.816068][T11634]  do_splice_direct+0x106/0x190
[  324.820916][T11634]  do_sendfile+0x675/0xc40
[  324.825390][T11634]  __x64_sys_sendfile64+0x102/0x140
[  324.830568][T11634]  do_syscall_64+0x44/0xd0
[  324.835063][T11634]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  324.841055][T11634] RIP: 0033:0x7ff4b8299ae9
[  324.845472][T11634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  324.865162][T11634] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  324.873695][T11634] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  324.881676][T11634] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
17:52:20 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x80)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f0000000100)='./bus\x00', 0xd4c42, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  324.889733][T11634] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  324.897804][T11634] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  324.905760][T11634] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  324.913804][T11634]  </TASK>
17:52:20 executing program 5:
r0 = creat(&(0x7f0000000380)='./bus\x00', 0x151)
close(r0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000cc0)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000180)=0xc)
openat(r1, &(0x7f0000000100)='.\x00', 0xa4000, 0x24)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/61, 0x3d}, {&(0x7f0000000200)=""/248, 0xf8}], 0x2, 0x7, 0x9)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000080)={0x0, 0x0, 0x401}, 0x8)
pwrite64(r3, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000002840)=[{{&(0x7f00000003c0)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f0000000740)=[{&(0x7f0000000440)=""/216, 0xd8}, {&(0x7f0000000540)=""/208, 0xd0}, {&(0x7f0000000080)}, {&(0x7f0000000640)=""/253, 0xfd}], 0x4}, 0x1f}, {{&(0x7f0000000780)=@qipcrtr, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000800)=""/123, 0x7b}, {&(0x7f0000000880)=""/131, 0x83}, {&(0x7f0000000940)=""/251, 0xfb}], 0x3, &(0x7f0000000a80)=""/159, 0x9f}, 0x2}, {{&(0x7f0000000b40)=@sco, 0x80, &(0x7f0000000fc0)=[{&(0x7f0000000bc0)=""/233, 0xe9}, {&(0x7f0000000cc0)}, {&(0x7f0000000d00)=""/224, 0xe0}, {&(0x7f0000000e00)=""/195, 0xc3}, {&(0x7f0000000f00)=""/116, 0x74}, {&(0x7f0000000f80)=""/26, 0x1a}], 0x6, &(0x7f0000001040)=""/137, 0x89}, 0x7fffffff}, {{&(0x7f0000001100)=@pppoe={0x18, 0x0, {0x0, @broadcast}}, 0x80, &(0x7f0000002540)=[{&(0x7f0000001180)=""/4096, 0x1000}, {&(0x7f0000002180)=""/197, 0xc5}, {&(0x7f0000002280)}, {&(0x7f00000022c0)=""/73, 0x49}, {&(0x7f0000002340)=""/84, 0x54}, {&(0x7f00000023c0)=""/168, 0xa8}, {&(0x7f0000002480)}, {&(0x7f00000024c0)=""/125, 0x7d}], 0x8, &(0x7f00000025c0)=""/178, 0xb2}, 0x2}, {{&(0x7f0000002680)=@pppol2tp, 0x80, &(0x7f0000002800)=[{&(0x7f0000002700)=""/92, 0x5c}, {&(0x7f0000002780)=""/67, 0x43}], 0x2}, 0x2}], 0x5, 0x0, &(0x7f0000002980)={0x0, 0x3938700})
ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, &(0x7f0000000040))
accept4(r0, 0x0, &(0x7f0000000340), 0x80000)
sendfile(r2, r1, 0x0, 0x80000001)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
bind$xdp(0xffffffffffffffff, &(0x7f0000000900)={0x2c, 0xc}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002a40)={&(0x7f0000002480)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002a00)={&(0x7f00000029c0)=ANY=[@ANYBLOB="320000001a00000228bd700098dbe6251c1d8006fd03fff1ff041f0008000400", @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
ioctl$SG_GET_COMMAND_Q(r4, 0x2270, &(0x7f0000002280))

17:52:20 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x10a)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x8001)
io_cancel(0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x7000, r2, &(0x7f0000000200)="0eb9f9fe74aa421d6b53f619dad5000d8057cdcf30272d42a09b08348c7cd739f250a8e3bf0425ef8ac56b87de918e34744d67213f2207b52ff29915b66bb9a127487bdcf5", 0x45, 0xfffffffffffffffd, 0x0, 0x2, r3}, &(0x7f00000001c0))
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, r3, {0x4, 0x7fff}}, './bus\x00'})

17:52:20 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:20 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d2)

17:52:20 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x7ffff000)

17:52:20 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 5)

17:52:20 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x4000, 0x80)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:20 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ee)

17:52:20 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000003)

[  325.521763][T11665] FAULT_INJECTION: forcing a failure.
[  325.521763][T11665] name failslab, interval 1, probability 0, space 0, times 0
[  325.534438][T11665] CPU: 0 PID: 11665 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  325.543205][T11665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  325.553266][T11665] Call Trace:
[  325.556551][T11665]  <TASK>
[  325.559482][T11665]  dump_stack_lvl+0xd6/0x122
[  325.564147][T11665]  dump_stack+0x11/0x1b
[  325.568307][T11665]  should_fail+0x23c/0x250
[  325.572728][T11665]  ? jbd2__journal_start+0xf7/0x3f0
[  325.578146][T11665]  __should_failslab+0x81/0x90
[  325.582970][T11665]  should_failslab+0x5/0x20
[  325.587482][T11665]  kmem_cache_alloc+0x4f/0x320
[  325.592248][T11665]  jbd2__journal_start+0xf7/0x3f0
[  325.597339][T11665]  __ext4_journal_start_sb+0x159/0x310
[  325.602842][T11665]  ? ext4_file_write_iter+0x451/0x1200
[  325.608372][T11665]  ext4_file_write_iter+0x992/0x1200
[  325.613664][T11665]  ? ext4_file_write_iter+0x451/0x1200
[  325.619143][T11665]  do_iter_readv_writev+0x2de/0x380
[  325.624450][T11665]  do_iter_write+0x192/0x5c0
[  325.629034][T11665]  ? splice_from_pipe_next+0x34f/0x3b0
[  325.634523][T11665]  ? kmalloc_array+0x2d/0x40
[  325.639119][T11665]  vfs_iter_write+0x4c/0x70
[  325.643653][T11665]  iter_file_splice_write+0x43a/0x790
[  325.649108][T11665]  ? splice_from_pipe+0xd0/0xd0
[  325.653980][T11665]  direct_splice_actor+0x80/0xa0
[  325.659012][T11665]  splice_direct_to_actor+0x345/0x650
[  325.664480][T11665]  ? do_splice_direct+0x190/0x190
[  325.669589][T11665]  do_splice_direct+0x106/0x190
[  325.674455][T11665]  do_sendfile+0x675/0xc40
[  325.678877][T11665]  __x64_sys_sendfile64+0x102/0x140
[  325.684144][T11665]  do_syscall_64+0x44/0xd0
[  325.688565][T11665]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  325.694515][T11665] RIP: 0033:0x7ff4b8299ae9
[  325.699111][T11665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:20 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000002)

[  325.718734][T11665] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  325.727259][T11665] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  325.735230][T11665] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  325.743324][T11665] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  325.751294][T11665] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  325.759453][T11665] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  325.767462][T11665]  </TASK>
17:52:21 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000100))
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000300))
sendfile(r1, 0xffffffffffffffff, 0x0, 0x80000001)

17:52:21 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000003)

17:52:21 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x400, 0x80)
openat(r1, &(0x7f0000000140)='./bus\x00', 0x20000, 0x2)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$BLKGETSIZE(r3, 0x1260, &(0x7f0000000180))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r4, 0x0, 0x80000001)

17:52:21 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d3)

17:52:21 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 6)

17:52:21 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000004)

17:52:21 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x1a5201, 0x80, 0x18}, 0x18)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000016c0), 0x581000, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
renameat(r2, &(0x7f0000000100)='./bus\x00', r3, &(0x7f0000000140)='./file0\x00')
openat(r0, &(0x7f0000000280)='./file0\x00', 0xc2800, 0x11)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
sendmsg$kcm(r4, &(0x7f0000001580)={&(0x7f0000000180)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'gcm(cipher_null-generic)\x00'}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000200)="dcecf3e3840bd5335e4364656c1b9b97e578d1b3852aea293c58b49a9ecbd447ab7447559ad21526db473dc40274cae354e6bf37d5def1e45d121ebb94d51cb07604a7a8d947fc5228531e90f2fe844628797681da2af9d68e5a2edb6108c5dcf4ef679b4ab9b57cc7c96bae26cb0837820634891d9906b3878e0d4c9c922efb", 0x80}, {&(0x7f0000000280)}, {&(0x7f00000002c0)="2986e956030c79e488afd5318fde9dd5884761ab8036cbab2f0dc40e6d8de7af49b4c8013049ed9214510de14e71486f2a35ca8aaa5a2ece256a1be1b0c3a7ecc4472b67406e7ec995eff8f3a90ba0d856dc671673b9c5660cd97d13035f56f29854f57535e9ee17ed608e2d938a36a86af621a4179efa9975833aafbd6be3b93366d22b4f99acdeaa580d55952b43261652d17900a30832b29723d2515a", 0x9e}, {&(0x7f0000000380)="645dd1bab05207bd15de4875051469da735c2f0f264266800bdad1911a69f1c958589d0eab73d97e9c410b09e8c70ef4bdc10d98128a2e245dbc615cf38c7e6c180fb63710ceb6ae04ef2fcf9f62e8de39f88cc9a8ffc84d9c85f240b379d123316edc", 0x63}, {&(0x7f00000015c0)="618d2f6ad80964d570887a1c46312d6db271d0b09c235d94c616f0e068116dd926a272082df83284273a60f163ead08bd53ac5a1745b95ec014db37b764c543fdc8f2c88b72b1b0c1943ec00057c0b05e3d4000d3920c04ce9fa2421023ec8e3f9406b967ef5d9c597506e5632c45cb01e73fc741aec7adfc32112bb232e23f063a7321b0d7dd70b6b5255c3509fdc7702f2ea4508cc54118e0dccc34f3cb2e75fc9ffaf7af6057c32ddf6118d881af44e628963f2b13857d62c6d0f40f296921a9b8c3498b4a837021658eaf6bea50c4d18df599b", 0xd5}], 0x5, &(0x7f0000000500)=[{0x1010, 0x109, 0xfff, "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"}, {0x50, 0x115, 0x0, "3b64fb033ec1bc3f78d0659bd916918fd9d145304c6208d783a727ea0c96387d69b9ca75f87107edb44736e310b7c69d04973b81a76e50a2b9ce300f9527301d"}], 0x1060}, 0x24000000)
r5 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x80000001)

[  326.413497][T11700] FAULT_INJECTION: forcing a failure.
[  326.413497][T11700] name failslab, interval 1, probability 0, space 0, times 0
[  326.426197][T11700] CPU: 1 PID: 11700 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  326.434959][T11700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  326.444994][T11700] Call Trace:
[  326.448254][T11700]  <TASK>
[  326.451171][T11700]  dump_stack_lvl+0xd6/0x122
[  326.455744][T11700]  dump_stack+0x11/0x1b
[  326.459901][T11700]  should_fail+0x23c/0x250
[  326.464361][T11700]  ? __iomap_dio_rw+0x143/0x1070
[  326.469620][T11700]  __should_failslab+0x81/0x90
[  326.474550][T11700]  should_failslab+0x5/0x20
[  326.479055][T11700]  kmem_cache_alloc_trace+0x52/0x350
[  326.484401][T11700]  __iomap_dio_rw+0x143/0x1070
[  326.489149][T11700]  ? __ext4_handle_dirty_metadata+0x17d/0x5a0
[  326.495230][T11700]  ? jbd2_journal_stop+0x592/0x6a0
[  326.500387][T11700]  ? jbd2_journal_stop+0x592/0x6a0
[  326.505478][T11700]  ? ___cache_free+0x46/0x300
[  326.510138][T11700]  iomap_dio_rw+0x38/0x80
[  326.514537][T11700]  ? ext4_file_write_iter+0x451/0x1200
[  326.519995][T11700]  ext4_file_write_iter+0xac3/0x1200
[  326.525362][T11700]  ? ext4_file_write_iter+0x451/0x1200
[  326.530823][T11700]  do_iter_readv_writev+0x2de/0x380
[  326.536065][T11700]  do_iter_write+0x192/0x5c0
[  326.540665][T11700]  ? splice_from_pipe_next+0x34f/0x3b0
[  326.546164][T11700]  ? kmalloc_array+0x2d/0x40
[  326.550944][T11700]  vfs_iter_write+0x4c/0x70
[  326.555517][T11700]  iter_file_splice_write+0x43a/0x790
[  326.560891][T11700]  ? splice_from_pipe+0xd0/0xd0
[  326.565750][T11700]  direct_splice_actor+0x80/0xa0
[  326.570670][T11700]  splice_direct_to_actor+0x345/0x650
[  326.576103][T11700]  ? do_splice_direct+0x190/0x190
[  326.581218][T11700]  do_splice_direct+0x106/0x190
[  326.586057][T11700]  do_sendfile+0x675/0xc40
[  326.590482][T11700]  __x64_sys_sendfile64+0x102/0x140
[  326.595664][T11700]  do_syscall_64+0x44/0xd0
[  326.600087][T11700]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  326.606116][T11700] RIP: 0033:0x7ff4b8299ae9
[  326.610585][T11700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  326.630229][T11700] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  326.638628][T11700] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  326.646577][T11700] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  326.654590][T11700] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
17:52:21 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000004)

[  326.662555][T11700] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  326.670512][T11700] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  326.678465][T11700]  </TASK>
17:52:21 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ef)

17:52:22 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000005)

17:52:22 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x28100, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x4dcb82, 0x0)
connect$unix(r3, &(0x7f0000000600)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000040000000000000500000705000100070000000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0xc840)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:22 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d4)

17:52:22 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = syz_open_dev$vcsu(&(0x7f0000000180), 0x7, 0x80)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
r5 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', 0x0, 0x40000, 0x0, &(0x7f0000000200), 0x400, &(0x7f00000000c0)=ANY=[@ANYBLOB="00bfe8a1c17495a3599278acc9b43d69b067bcde9e60dd92", @ANYBLOB="8117b9b286f84c88894667274aebda2b064b94d749880772cc7127bbaeb716dbe794add34839d75b66c82d4fdb130f5e97a1e379e63677ca8c9161a8a0fd701090959572c1966c1a0adcb7b15e87b202a92e4262adab1da0570815506a2abd6772674fe70972ff7c015a380db0490b9452d698ee9354dfb6e79153dafb35a195cb9a66354ff6e971ef59c173a4e5a09460f3a1efc9c724cd490c04215700802ed826c265b961feb144aa697b"])
statx(r5, &(0x7f00000002c0)='./file0\x00', 0x1000, 0x7ff, &(0x7f0000003040)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
lsetxattr$system_posix_acl(0x0, &(0x7f0000000280)='system.posix_acl_access\x00', &(0x7f0000003680)={{}, {0x1, 0xc}, [{0x2, 0x4, 0xee00}, {0x2, 0x5, 0xee00}], {0x4, 0x4}, [{0x8, 0x1, r6}, {0x8, 0x4, 0xffffffffffffffff}, {}, {0x8, 0x3}, {0x8, 0x3, 0xffffffffffffffff}], {0x10, 0x6}}, 0x5c, 0x2)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000080)={0x0, <r8=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r8)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000000080)={0x0, <r10=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r10)
mount$9p_fd(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x800, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@access_any}, {@version_9p2000}, {@nodevmap}, {@dfltgid={'dfltgid', 0x3d, r6}}, {@noextend}], [{@fowner_lt={'fowner<', r8}}, {@smackfshat}, {@dont_appraise}, {@fowner_lt={'fowner<', r10}}, {@measure}]}})

17:52:22 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 7)

17:52:22 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000006)

[  327.191410][T11728] loop5: detected capacity change from 0 to 512
[  327.302057][T11733] FAULT_INJECTION: forcing a failure.
[  327.302057][T11733] name failslab, interval 1, probability 0, space 0, times 0
[  327.314777][T11733] CPU: 0 PID: 11733 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  327.323546][T11733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  327.333691][T11733] Call Trace:
[  327.336990][T11733]  <TASK>
[  327.339986][T11733]  dump_stack_lvl+0xd6/0x122
[  327.344621][T11733]  dump_stack+0x11/0x1b
[  327.348781][T11733]  should_fail+0x23c/0x250
[  327.353201][T11733]  ? jbd2__journal_start+0xf7/0x3f0
[  327.358408][T11733]  __should_failslab+0x81/0x90
[  327.363323][T11733]  should_failslab+0x5/0x20
[  327.367911][T11733]  kmem_cache_alloc+0x4f/0x320
[  327.372678][T11733]  jbd2__journal_start+0xf7/0x3f0
[  327.377809][T11733]  __ext4_journal_start_sb+0x159/0x310
[  327.383356][T11733]  ext4_iomap_begin+0x408/0x630
[  327.388217][T11733]  ? ext4_alloc_da_blocks+0x100/0x100
[  327.393600][T11733]  iomap_iter+0x395/0x4a0
[  327.398001][T11733]  __iomap_dio_rw+0x695/0x1070
[  327.402808][T11733]  ? jbd2_journal_stop+0x592/0x6a0
[  327.407949][T11733]  iomap_dio_rw+0x38/0x80
[  327.412281][T11733]  ? ext4_file_write_iter+0x451/0x1200
[  327.417767][T11733]  ext4_file_write_iter+0xac3/0x1200
[  327.423061][T11733]  ? ext4_file_write_iter+0x451/0x1200
[  327.428569][T11733]  do_iter_readv_writev+0x2de/0x380
[  327.433777][T11733]  do_iter_write+0x192/0x5c0
[  327.438415][T11733]  vfs_iter_write+0x4c/0x70
[  327.442997][T11733]  iter_file_splice_write+0x43a/0x790
[  327.448460][T11733]  ? splice_from_pipe+0xd0/0xd0
[  327.453371][T11733]  direct_splice_actor+0x80/0xa0
[  327.458317][T11733]  splice_direct_to_actor+0x345/0x650
[  327.463726][T11733]  ? do_splice_direct+0x190/0x190
[  327.468814][T11733]  do_splice_direct+0x106/0x190
[  327.473743][T11733]  do_sendfile+0x675/0xc40
[  327.478163][T11733]  __x64_sys_sendfile64+0x102/0x140
[  327.483363][T11733]  do_syscall_64+0x44/0xd0
[  327.487786][T11733]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  327.493695][T11733] RIP: 0033:0x7ff4b8299ae9
[  327.498128][T11733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  327.517967][T11733] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  327.526390][T11733] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  327.534362][T11733] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  327.542332][T11733] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
17:52:22 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000007)

[  327.545176][T11735] loop5: detected capacity change from 0 to 512
[  327.550320][T11733] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  327.550338][T11733] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  327.550384][T11733]  </TASK>
17:52:22 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
truncate(&(0x7f0000000100)='./bus/file0\x00', 0x7f)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x1f)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:22 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000005)

17:52:22 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f0)

17:52:23 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000008)

17:52:23 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d5)

17:52:23 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
open(&(0x7f00000000c0)='./bus\x00', 0x34b142, 0xd1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendfile(r1, r2, 0x0, 0xfff)

17:52:23 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 8)

17:52:23 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
recvmsg(r0, &(0x7f0000001240)={&(0x7f0000000100)=@l2tp={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000180)=""/81, 0x51}], 0x1, &(0x7f0000000240)=""/4096, 0x1000}, 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  328.050425][   T24] audit: type=1400 audit(1637344343.233:273): avc:  denied  { read } for  pid=11761 comm="syz-executor.5" path="socket:[42200]" dev="sockfs" ino=42200 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  328.148634][T11769] FAULT_INJECTION: forcing a failure.
[  328.148634][T11769] name failslab, interval 1, probability 0, space 0, times 0
[  328.161282][T11769] CPU: 0 PID: 11769 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  328.170129][T11769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  328.180184][T11769] Call Trace:
[  328.183522][T11769]  <TASK>
[  328.186440][T11769]  dump_stack_lvl+0xd6/0x122
[  328.191057][T11769]  dump_stack+0x11/0x1b
[  328.195200][T11769]  should_fail+0x23c/0x250
[  328.199613][T11769]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  328.204972][T11769]  __should_failslab+0x81/0x90
[  328.209728][T11769]  should_failslab+0x5/0x20
[  328.214221][T11769]  kmem_cache_alloc+0x4f/0x320
[  328.218973][T11769]  ext4_mb_new_blocks+0x328/0x1ee0
[  328.224071][T11769]  ? ext4_get_branch+0x27d/0x2e0
[  328.228989][T11769]  ? ext4_inode_to_goal_block+0x1bd/0x1d0
[  328.234720][T11769]  ext4_ind_map_blocks+0xb1c/0x1740
[  328.239900][T11769]  ext4_map_blocks+0x6e3/0xf00
[  328.244791][T11769]  ext4_iomap_begin+0x4b0/0x630
[  328.249727][T11769]  ? ext4_alloc_da_blocks+0x100/0x100
[  328.255147][T11769]  iomap_iter+0x395/0x4a0
[  328.259572][T11769]  __iomap_dio_rw+0x695/0x1070
[  328.264319][T11769]  ? jbd2_journal_stop+0x592/0x6a0
[  328.269424][T11769]  iomap_dio_rw+0x38/0x80
[  328.273773][T11769]  ? ext4_file_write_iter+0x451/0x1200
[  328.279211][T11769]  ext4_file_write_iter+0xac3/0x1200
[  328.284541][T11769]  ? ext4_file_write_iter+0x451/0x1200
[  328.290043][T11769]  do_iter_readv_writev+0x2de/0x380
[  328.295257][T11769]  do_iter_write+0x192/0x5c0
[  328.299864][T11769]  ? splice_from_pipe_next+0x34f/0x3b0
[  328.305371][T11769]  ? kmalloc_array+0x2d/0x40
[  328.309940][T11769]  vfs_iter_write+0x4c/0x70
[  328.314428][T11769]  iter_file_splice_write+0x43a/0x790
[  328.320321][T11769]  ? splice_from_pipe+0xd0/0xd0
[  328.325234][T11769]  direct_splice_actor+0x80/0xa0
[  328.330168][T11769]  splice_direct_to_actor+0x345/0x650
[  328.335557][T11769]  ? do_splice_direct+0x190/0x190
[  328.340565][T11769]  do_splice_direct+0x106/0x190
[  328.345401][T11769]  do_sendfile+0x675/0xc40
[  328.349830][T11769]  __x64_sys_sendfile64+0x102/0x140
[  328.355082][T11769]  do_syscall_64+0x44/0xd0
[  328.359559][T11769]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  328.365441][T11769] RIP: 0033:0x7ff4b8299ae9
[  328.369849][T11769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  328.389544][T11769] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:52:23 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000009)

[  328.397948][T11769] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  328.405898][T11769] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  328.413845][T11769] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  328.421802][T11769] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  328.429768][T11769] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  328.437741][T11769]  </TASK>
17:52:23 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000006)

17:52:23 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f1)

17:52:23 executing program 5:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
connect$pppoe(r0, &(0x7f0000000300)={0x18, 0x0, {0x3, @empty, 'wg0\x00'}}, 0x1e)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000100))
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x80000001)

17:52:23 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000000a)

[  328.775245][   T24] audit: type=1400 audit(1637344343.953:274): avc:  denied  { connect } for  pid=11787 comm="syz-executor.5" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
17:52:24 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d6)

17:52:24 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 9)

[  329.024952][T11798] FAULT_INJECTION: forcing a failure.
[  329.024952][T11798] name failslab, interval 1, probability 0, space 0, times 0
[  329.037612][T11798] CPU: 0 PID: 11798 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  329.046373][T11798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  329.056567][T11798] Call Trace:
[  329.059908][T11798]  <TASK>
[  329.062821][T11798]  dump_stack_lvl+0xd6/0x122
[  329.067394][T11798]  dump_stack+0x11/0x1b
[  329.071595][T11798]  should_fail+0x23c/0x250
[  329.076041][T11798]  ? __es_insert_extent+0x546/0xe80
[  329.081226][T11798]  __should_failslab+0x81/0x90
[  329.085987][T11798]  should_failslab+0x5/0x20
[  329.090470][T11798]  kmem_cache_alloc+0x4f/0x320
[  329.095214][T11798]  __es_insert_extent+0x546/0xe80
[  329.100226][T11798]  ext4_es_insert_extent+0x1cb/0x19c0
[  329.105714][T11798]  ext4_map_blocks+0xa5d/0xf00
[  329.110540][T11798]  ext4_iomap_begin+0x4b0/0x630
[  329.115421][T11798]  ? ext4_alloc_da_blocks+0x100/0x100
[  329.120772][T11798]  iomap_iter+0x395/0x4a0
[  329.125118][T11798]  __iomap_dio_rw+0x695/0x1070
[  329.129869][T11798]  ? jbd2_journal_stop+0x592/0x6a0
[  329.135133][T11798]  iomap_dio_rw+0x38/0x80
[  329.139447][T11798]  ? ext4_file_write_iter+0x451/0x1200
[  329.144914][T11798]  ext4_file_write_iter+0xac3/0x1200
[  329.150184][T11798]  ? ext4_file_write_iter+0x451/0x1200
[  329.155858][T11798]  do_iter_readv_writev+0x2de/0x380
[  329.161050][T11798]  do_iter_write+0x192/0x5c0
[  329.165664][T11798]  ? splice_from_pipe_next+0x34f/0x3b0
[  329.171247][T11798]  ? kmalloc_array+0x2d/0x40
[  329.175839][T11798]  vfs_iter_write+0x4c/0x70
[  329.180466][T11798]  iter_file_splice_write+0x43a/0x790
[  329.185819][T11798]  ? splice_from_pipe+0xd0/0xd0
[  329.190652][T11798]  direct_splice_actor+0x80/0xa0
[  329.195566][T11798]  splice_direct_to_actor+0x345/0x650
[  329.200988][T11798]  ? do_splice_direct+0x190/0x190
[  329.205991][T11798]  do_splice_direct+0x106/0x190
[  329.210883][T11798]  do_sendfile+0x675/0xc40
[  329.215310][T11798]  __x64_sys_sendfile64+0x102/0x140
[  329.220837][T11798]  do_syscall_64+0x44/0xd0
[  329.225234][T11798]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  329.231200][T11798] RIP: 0033:0x7ff4b8299ae9
[  329.235625][T11798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  329.255385][T11798] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  329.263883][T11798] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
17:52:24 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000000b)

[  329.271840][T11798] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  329.279820][T11798] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  329.287792][T11798] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  329.295767][T11798] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  329.303896][T11798]  </TASK>
17:52:24 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000007)

17:52:24 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f2)

17:52:24 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = openat(r0, &(0x7f0000000100)='./bus\x00', 0x10040, 0x14f)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000940)={0x0, 0x51, &(0x7f0000000900)={&(0x7f00000009c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000000000000800000000000000325a14000080050007207d008008000d8804000080"], 0x38}}, 0x4009042)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3}, './bus\x00'})
r7 = signalfd4(r0, &(0x7f00000002c0)={[0x3]}, 0x8, 0x80000)
r8 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r8, 0x0, 0x0, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x90, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x24}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8, 0x1, r7}, {0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8, 0x1, r8}]}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x8}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x4}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xa}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x8000}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xfffffffffffffffc}]}, 0x90}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, r5, 0x4, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xff}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x68}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004004}, 0x20000000)

17:52:24 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000000c)

17:52:25 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 10)

17:52:25 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d7)

17:52:25 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000000d)

[  329.942744][T11829] FAULT_INJECTION: forcing a failure.
[  329.942744][T11829] name failslab, interval 1, probability 0, space 0, times 0
[  329.955508][T11829] CPU: 0 PID: 11829 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  329.964288][T11829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  329.974425][T11829] Call Trace:
[  329.977705][T11829]  <TASK>
[  329.980709][T11829]  dump_stack_lvl+0xd6/0x122
[  329.985322][T11829]  dump_stack+0x11/0x1b
[  329.989482][T11829]  should_fail+0x23c/0x250
[  329.993901][T11829]  ? mempool_alloc_slab+0x16/0x20
[  329.998937][T11829]  __should_failslab+0x81/0x90
[  330.003727][T11829]  should_failslab+0x5/0x20
[  330.008323][T11829]  kmem_cache_alloc+0x4f/0x320
[  330.013120][T11829]  mempool_alloc_slab+0x16/0x20
[  330.017988][T11829]  ? mempool_free+0x130/0x130
[  330.022724][T11829]  mempool_alloc+0x9d/0x310
[  330.027273][T11829]  ? preempt_count_add+0x4e/0x90
[  330.032220][T11829]  ? _raw_read_unlock+0x13/0x30
[  330.037154][T11829]  ? jbd2_transaction_committed+0xad/0xc0
[  330.044175][T11829]  bio_alloc_bioset+0xcc/0x560
[  330.049026][T11829]  ? iov_iter_alignment+0x34b/0x370
[  330.054223][T11829]  iomap_dio_bio_iter+0x5ed/0xc70
[  330.059336][T11829]  ? ext4_alloc_da_blocks+0x100/0x100
[  330.064808][T11829]  __iomap_dio_rw+0x8b5/0x1070
[  330.069579][T11829]  iomap_dio_rw+0x38/0x80
[  330.073910][T11829]  ? ext4_file_write_iter+0x451/0x1200
[  330.079368][T11829]  ext4_file_write_iter+0xac3/0x1200
[  330.084657][T11829]  ? ext4_file_write_iter+0x451/0x1200
[  330.090124][T11829]  do_iter_readv_writev+0x2de/0x380
[  330.095396][T11829]  do_iter_write+0x192/0x5c0
[  330.100007][T11829]  ? splice_from_pipe_next+0x34f/0x3b0
[  330.105563][T11829]  ? kmalloc_array+0x2d/0x40
[  330.110159][T11829]  vfs_iter_write+0x4c/0x70
[  330.114670][T11829]  iter_file_splice_write+0x43a/0x790
[  330.120208][T11829]  ? splice_from_pipe+0xd0/0xd0
[  330.125137][T11829]  direct_splice_actor+0x80/0xa0
[  330.130084][T11829]  splice_direct_to_actor+0x345/0x650
[  330.135460][T11829]  ? do_splice_direct+0x190/0x190
[  330.140523][T11829]  do_splice_direct+0x106/0x190
[  330.145384][T11829]  do_sendfile+0x675/0xc40
[  330.149923][T11829]  __x64_sys_sendfile64+0x102/0x140
[  330.155131][T11829]  do_syscall_64+0x44/0xd0
[  330.159642][T11829]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  330.165554][T11829] RIP: 0033:0x7ff4b8299ae9
[  330.169982][T11829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:25 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  330.189605][T11829] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  330.198031][T11829] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  330.206005][T11829] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  330.213970][T11829] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  330.221940][T11829] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  330.229910][T11829] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  330.237947][T11829]  </TASK>
17:52:25 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000000f)

17:52:25 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
setxattr$security_ima(&(0x7f0000000100)='./bus\x00', &(0x7f0000000140), &(0x7f0000000180)=@md5={0x1, "1e7d89d228ba5c2fbaf67787a834b214"}, 0x11, 0x1)

17:52:25 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000008)

17:52:25 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f3)

17:52:25 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000010)

17:52:25 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 11)

[  330.760945][T11856] FAULT_INJECTION: forcing a failure.
[  330.760945][T11856] name failslab, interval 1, probability 0, space 0, times 0
[  330.773629][T11856] CPU: 1 PID: 11856 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  330.782373][T11856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  330.792898][T11856] Call Trace:
[  330.796233][T11856]  <TASK>
[  330.799150][T11856]  dump_stack_lvl+0xd6/0x122
[  330.803741][T11856]  dump_stack+0x11/0x1b
[  330.807953][T11856]  should_fail+0x23c/0x250
[  330.812370][T11856]  __should_failslab+0x81/0x90
[  330.817221][T11856]  should_failslab+0x5/0x20
[  330.821768][T11856]  kmem_cache_alloc_node+0x61/0x2d0
[  330.827013][T11856]  ? create_task_io_context+0x36/0x1e0
[  330.832461][T11856]  create_task_io_context+0x36/0x1e0
[  330.837821][T11856]  submit_bio_checks+0x828/0x8e0
[  330.842789][T11856]  ? __rcu_read_unlock+0x5c/0x290
[  330.847876][T11856]  blk_mq_submit_bio+0x2e8/0x14e0
[  330.852944][T11856]  ? should_fail+0xd6/0x250
[  330.857442][T11856]  ? iov_iter_advance+0x6b6/0x750
[  330.862545][T11856]  ? mempool_alloc_slab+0x16/0x20
[  330.867645][T11856]  __submit_bio+0x131/0x340
[  330.872198][T11856]  ? mempool_alloc+0xaa/0x310
[  330.876871][T11856]  submit_bio_noacct+0x418/0x4e0
[  330.881872][T11856]  submit_bio+0x10c/0x180
[  330.886286][T11856]  iomap_dio_bio_iter+0x9ed/0xc70
[  330.891323][T11856]  __iomap_dio_rw+0x8b5/0x1070
[  330.896082][T11856]  iomap_dio_rw+0x38/0x80
[  330.900519][T11856]  ? ext4_file_write_iter+0x451/0x1200
[  330.905964][T11856]  ext4_file_write_iter+0xac3/0x1200
[  330.911250][T11856]  ? ext4_file_write_iter+0x451/0x1200
[  330.916777][T11856]  do_iter_readv_writev+0x2de/0x380
[  330.922002][T11856]  do_iter_write+0x192/0x5c0
[  330.926592][T11856]  ? splice_from_pipe_next+0x34f/0x3b0
[  330.932176][T11856]  ? kmalloc_array+0x2d/0x40
[  330.936765][T11856]  vfs_iter_write+0x4c/0x70
[  330.941323][T11856]  iter_file_splice_write+0x43a/0x790
[  330.946720][T11856]  ? splice_from_pipe+0xd0/0xd0
[  330.951586][T11856]  direct_splice_actor+0x80/0xa0
[  330.956546][T11856]  splice_direct_to_actor+0x345/0x650
[  330.961991][T11856]  ? do_splice_direct+0x190/0x190
[  330.967050][T11856]  do_splice_direct+0x106/0x190
[  330.972023][T11856]  do_sendfile+0x675/0xc40
[  330.976461][T11856]  __x64_sys_sendfile64+0x102/0x140
[  330.982174][T11856]  do_syscall_64+0x44/0xd0
[  330.986601][T11856]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  330.992528][T11856] RIP: 0033:0x7ff4b8299ae9
[  330.996950][T11856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  331.016813][T11856] RSP: 002b:00007ff4b6010188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  331.025209][T11856] RAX: ffffffffffffffda RBX: 00007ff4b83acf60 RCX: 00007ff4b8299ae9
[  331.033179][T11856] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  331.041139][T11856] RBP: 00007ff4b60101d0 R08: 0000000000000000 R09: 0000000000000000
[  331.049123][T11856] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
17:52:26 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
open(&(0x7f00000000c0)='./bus\x00', 0x48ac2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x16441, 0x0)
sendfile(r2, r1, 0x0, 0x80000001)

17:52:26 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d8)

[  331.057232][T11856] R13: 00007ffca0f1f41f R14: 00007ff4b6010300 R15: 0000000000022000
[  331.065201][T11856]  </TASK>
17:52:26 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:26 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000011)

17:52:26 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000009)

17:52:26 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f4)

17:52:26 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 12)

17:52:26 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000281)

17:52:26 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x190)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x4800, 0x1a0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
close(r3)

[  331.661086][T11887] FAULT_INJECTION: forcing a failure.
[  331.661086][T11887] name failslab, interval 1, probability 0, space 0, times 0
[  331.673747][T11887] CPU: 1 PID: 11887 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  331.682619][T11887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  331.692675][T11887] Call Trace:
[  331.695958][T11887]  <TASK>
[  331.698886][T11887]  dump_stack_lvl+0xd6/0x122
[  331.703467][T11887]  dump_stack+0x11/0x1b
[  331.707686][T11887]  should_fail+0x23c/0x250
[  331.712127][T11887]  ? jbd2__journal_start+0xf7/0x3f0
[  331.717511][T11887]  __should_failslab+0x81/0x90
[  331.722317][T11887]  should_failslab+0x5/0x20
[  331.727066][T11887]  kmem_cache_alloc+0x4f/0x320
[  331.731818][T11887]  jbd2__journal_start+0xf7/0x3f0
[  331.736840][T11887]  __ext4_journal_start_sb+0x159/0x310
[  331.742398][T11887]  ext4_iomap_begin+0x408/0x630
[  331.747294][T11887]  ? ext4_alloc_da_blocks+0x100/0x100
[  331.752679][T11887]  iomap_iter+0x395/0x4a0
[  331.757045][T11887]  __iomap_dio_rw+0xb78/0x1070
[  331.761833][T11887]  iomap_dio_rw+0x38/0x80
[  331.766176][T11887]  ? ext4_file_write_iter+0x451/0x1200
[  331.771616][T11887]  ext4_file_write_iter+0xac3/0x1200
[  331.776937][T11887]  ? ext4_file_write_iter+0x451/0x1200
[  331.782473][T11887]  do_iter_readv_writev+0x2de/0x380
[  331.787661][T11887]  do_iter_write+0x192/0x5c0
[  331.792243][T11887]  ? splice_from_pipe_next+0x34f/0x3b0
[  331.797723][T11887]  ? kmalloc_array+0x2d/0x40
[  331.802297][T11887]  vfs_iter_write+0x4c/0x70
[  331.806911][T11887]  iter_file_splice_write+0x43a/0x790
[  331.812404][T11887]  ? splice_from_pipe+0xd0/0xd0
[  331.817315][T11887]  direct_splice_actor+0x80/0xa0
[  331.822240][T11887]  splice_direct_to_actor+0x345/0x650
[  331.827619][T11887]  ? do_splice_direct+0x190/0x190
[  331.832712][T11887]  do_splice_direct+0x106/0x190
[  331.837552][T11887]  do_sendfile+0x675/0xc40
[  331.841974][T11887]  __x64_sys_sendfile64+0x102/0x140
[  331.847229][T11887]  do_syscall_64+0x44/0xd0
[  331.851651][T11887]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  331.857609][T11887] RIP: 0033:0x7ff4b8299ae9
[  331.862076][T11887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  331.881752][T11887] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  331.890168][T11887] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  331.898123][T11887] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  331.906264][T11887] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  331.914332][T11887] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  331.922844][T11887] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  331.930811][T11887]  </TASK>
17:52:27 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d9)

17:52:27 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000300)

17:52:27 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
ftruncate(r0, 0xf5)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3000000, 0x100010, r0, 0x5a8ae000)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:27 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000000a)

17:52:27 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f5)

17:52:27 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 13)

17:52:27 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x800008c4)

[  332.549016][T11919] FAULT_INJECTION: forcing a failure.
[  332.549016][T11919] name failslab, interval 1, probability 0, space 0, times 0
[  332.561716][T11919] CPU: 1 PID: 11919 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  332.570507][T11919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  332.580582][T11919] Call Trace:
[  332.583914][T11919]  <TASK>
[  332.586837][T11919]  dump_stack_lvl+0xd6/0x122
[  332.591462][T11919]  dump_stack+0x11/0x1b
[  332.595667][T11919]  should_fail+0x23c/0x250
[  332.600080][T11919]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  332.605365][T11919]  __should_failslab+0x81/0x90
[  332.610197][T11919]  should_failslab+0x5/0x20
[  332.614713][T11919]  kmem_cache_alloc+0x4f/0x320
[  332.619513][T11919]  ext4_mb_new_blocks+0x328/0x1ee0
[  332.624689][T11919]  ? __sbitmap_queue_get_shallow+0x37/0x50
[  332.630500][T11919]  ? __blk_mq_get_tag+0xf4/0x280
[  332.635421][T11919]  ? ext4_get_branch+0x27d/0x2e0
[  332.640366][T11919]  ext4_ind_map_blocks+0xb1c/0x1740
[  332.645707][T11919]  ext4_map_blocks+0x6e3/0xf00
[  332.650488][T11919]  ext4_iomap_begin+0x4b0/0x630
[  332.655421][T11919]  ? ext4_alloc_da_blocks+0x100/0x100
[  332.660867][T11919]  iomap_iter+0x395/0x4a0
[  332.665261][T11919]  __iomap_dio_rw+0xb78/0x1070
[  332.670111][T11919]  iomap_dio_rw+0x38/0x80
[  332.674557][T11919]  ? ext4_file_write_iter+0x451/0x1200
[  332.680121][T11919]  ext4_file_write_iter+0xac3/0x1200
[  332.685440][T11919]  ? ext4_file_write_iter+0x451/0x1200
[  332.691038][T11919]  do_iter_readv_writev+0x2de/0x380
[  332.696280][T11919]  do_iter_write+0x192/0x5c0
[  332.700855][T11919]  ? splice_from_pipe_next+0x34f/0x3b0
[  332.706367][T11919]  ? kmalloc_array+0x2d/0x40
[  332.710958][T11919]  vfs_iter_write+0x4c/0x70
[  332.715511][T11919]  iter_file_splice_write+0x43a/0x790
[  332.720963][T11919]  ? splice_from_pipe+0xd0/0xd0
[  332.725801][T11919]  direct_splice_actor+0x80/0xa0
[  332.730723][T11919]  splice_direct_to_actor+0x345/0x650
[  332.736143][T11919]  ? do_splice_direct+0x190/0x190
[  332.741156][T11919]  do_splice_direct+0x106/0x190
[  332.746054][T11919]  do_sendfile+0x675/0xc40
[  332.750471][T11919]  __x64_sys_sendfile64+0x102/0x140
[  332.755659][T11919]  do_syscall_64+0x44/0xd0
[  332.760070][T11919]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  332.766072][T11919] RIP: 0033:0x7ff4b8299ae9
[  332.770482][T11919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  332.790184][T11919] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  332.798609][T11919] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  332.806651][T11919] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  332.814730][T11919] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  332.822736][T11919] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  332.830750][T11919] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  332.838709][T11919]  </TASK>
17:52:28 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003da)

17:52:28 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000d00)

17:52:28 executing program 5:
getpeername$tipc(0xffffffffffffffff, &(0x7f0000003680)=@name, &(0x7f00000036c0)=0x10)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000100)={0x0, 0x507}, 0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r1, {0x0, 0xee00}}, './file0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000003580)=[{{&(0x7f0000000400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001900)=[{&(0x7f0000000480)=""/118, 0x76}, {&(0x7f0000000500)=""/3, 0x3}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/21, 0x15}, {&(0x7f0000001580)=""/73, 0x49}, {&(0x7f0000001600)=""/85, 0x55}, {&(0x7f0000001680)=""/196, 0xc4}, {&(0x7f0000001780)=""/92, 0x5c}, {&(0x7f0000001800)=""/43, 0x2b}, {&(0x7f0000001840)=""/147, 0x93}], 0xa}}, {{&(0x7f00000019c0)=@ax25={{}, [@default, @netrom, @null, @netrom, @null, @rose, @rose, @null]}, 0x80, &(0x7f0000001dc0)=[{&(0x7f0000001a40)=""/251, 0xfb}, {&(0x7f0000001b40)=""/52, 0x34}, {&(0x7f0000001b80)=""/66, 0x42}, {&(0x7f0000001c00)=""/81, 0x51}, {&(0x7f0000001c80)=""/242, 0xf2}, {&(0x7f0000001d80)=""/62, 0x3e}], 0x6, &(0x7f0000001e40)=""/223, 0xdf}, 0x9}, {{&(0x7f0000001f40)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003400)=[{&(0x7f0000001fc0)=""/49, 0x31}, {&(0x7f0000002000)=""/4096, 0x1000}, {&(0x7f0000003000)=""/70, 0x46}, {&(0x7f0000003080)=""/183, 0xb7}, {&(0x7f0000003140)=""/250, 0xfa}, {&(0x7f0000003240)=""/61, 0x3d}, {&(0x7f0000003280)=""/85, 0x55}, {&(0x7f0000003300)=""/191, 0xbf}, {&(0x7f00000033c0)=""/4, 0x4}], 0x9, &(0x7f00000034c0)=""/162, 0xa2}, 0x7f}], 0x3, 0x10002, &(0x7f0000003640)={0x77359400})
sendmsg$NFNL_MSG_CTHELPER_GET(r3, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x190, 0x1, 0x9, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFCTH_TUPLE={0x94, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x26}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x32}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3f}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0xffff}, @NFCTH_TUPLE={0x98, 0x2, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @local}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @remote}}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x5, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xffffffff}}]}, 0x190}, 0x1, 0x0, 0x0, 0x4000880}, 0xc004000)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:28 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f6)

17:52:28 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000000b)

17:52:28 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 14)

17:52:28 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000e00)

[  333.427298][T11948] FAULT_INJECTION: forcing a failure.
[  333.427298][T11948] name failslab, interval 1, probability 0, space 0, times 0
[  333.440075][T11948] CPU: 0 PID: 11948 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  333.448919][T11948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  333.458968][T11948] Call Trace:
[  333.462249][T11948]  <TASK>
[  333.465179][T11948]  dump_stack_lvl+0xd6/0x122
[  333.469777][T11948]  dump_stack+0x11/0x1b
[  333.474002][T11948]  should_fail+0x23c/0x250
[  333.478427][T11948]  ? mempool_alloc_slab+0x16/0x20
[  333.483461][T11948]  __should_failslab+0x81/0x90
[  333.488235][T11948]  should_failslab+0x5/0x20
[  333.492812][T11948]  kmem_cache_alloc+0x4f/0x320
[  333.497605][T11948]  mempool_alloc_slab+0x16/0x20
[  333.502469][T11948]  ? mempool_free+0x130/0x130
[  333.507245][T11948]  mempool_alloc+0x9d/0x310
[  333.511750][T11948]  ? preempt_count_add+0x4e/0x90
[  333.516767][T11948]  ? _raw_read_unlock+0x13/0x30
[  333.521630][T11948]  ? jbd2_transaction_committed+0xad/0xc0
17:52:28 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x88400, 0x10)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
sendfile(r1, r2, 0x0, 0x7fff)

[  333.527361][T11948]  bio_alloc_bioset+0xcc/0x560
[  333.532130][T11948]  ? iov_iter_alignment+0x34b/0x370
[  333.537333][T11948]  iomap_dio_bio_iter+0x5ed/0xc70
[  333.542363][T11948]  ? ext4_alloc_da_blocks+0x100/0x100
[  333.547788][T11948]  __iomap_dio_rw+0x8b5/0x1070
[  333.552583][T11948]  iomap_dio_rw+0x38/0x80
[  333.557072][T11948]  ? ext4_file_write_iter+0x451/0x1200
[  333.562535][T11948]  ext4_file_write_iter+0xac3/0x1200
[  333.567825][T11948]  ? ext4_file_write_iter+0x451/0x1200
[  333.573347][T11948]  do_iter_readv_writev+0x2de/0x380
[  333.578553][T11948]  do_iter_write+0x192/0x5c0
[  333.583158][T11948]  ? splice_from_pipe_next+0x34f/0x3b0
[  333.588627][T11948]  ? kmalloc_array+0x2d/0x40
[  333.593297][T11948]  vfs_iter_write+0x4c/0x70
[  333.597809][T11948]  iter_file_splice_write+0x43a/0x790
[  333.603313][T11948]  ? splice_from_pipe+0xd0/0xd0
[  333.608218][T11948]  direct_splice_actor+0x80/0xa0
[  333.613157][T11948]  splice_direct_to_actor+0x345/0x650
[  333.618535][T11948]  ? do_splice_direct+0x190/0x190
[  333.623577][T11948]  do_splice_direct+0x106/0x190
[  333.628437][T11948]  do_sendfile+0x675/0xc40
[  333.632876][T11948]  __x64_sys_sendfile64+0x102/0x140
[  333.638078][T11948]  do_syscall_64+0x44/0xd0
[  333.642497][T11948]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  333.648393][T11948] RIP: 0033:0x7ff4b8299ae9
[  333.652857][T11948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:28 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000f00)

[  333.672529][T11948] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  333.680996][T11948] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  333.688990][T11948] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  333.696957][T11948] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  333.704931][T11948] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  333.712988][T11948] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  333.721103][T11948]  </TASK>
17:52:28 executing program 5:
r0 = creat(&(0x7f0000000480)='./bus\x00', 0x11c)
execve(&(0x7f0000000100)='./bus\x00', &(0x7f0000000280)=[&(0x7f0000000140)='/\xc6\x00', &(0x7f0000000180)='$.)\x00', &(0x7f00000001c0)='\x83\x00', &(0x7f0000000200)='*^%-[:$(^$\x00', &(0x7f0000000240)='{\x00'], &(0x7f00000003c0)=[&(0x7f00000002c0)=']$-}%^)\\$^\'.\x00', &(0x7f0000000300)='\x00', &(0x7f0000000340)='-@$}\x00', &(0x7f0000000380)=']]]_j\x00'])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={0x0, <r5=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r5)
r6 = getgid()
fchownat(r1, &(0x7f0000000400)='./file0\x00', r5, r6, 0x1000)
ioctl$TUNGETDEVNETNS(r3, 0x54e3, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:29 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003db)

17:52:29 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80001200)

17:52:29 executing program 5:
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)=0x8)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000100)={&(0x7f0000000080)='./bus\x00', r1}, 0x10)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:29 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f7)

17:52:29 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 15)

17:52:29 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000000c)

17:52:29 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80001400)

[  334.310920][T11983] FAULT_INJECTION: forcing a failure.
[  334.310920][T11983] name failslab, interval 1, probability 0, space 0, times 0
[  334.323585][T11983] CPU: 0 PID: 11983 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  334.332472][T11983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  334.342522][T11983] Call Trace:
[  334.345799][T11983]  <TASK>
[  334.348723][T11983]  dump_stack_lvl+0xd6/0x122
[  334.353646][T11983]  dump_stack+0x11/0x1b
[  334.357807][T11983]  should_fail+0x23c/0x250
[  334.362340][T11983]  ? jbd2__journal_start+0xf7/0x3f0
[  334.367544][T11983]  __should_failslab+0x81/0x90
[  334.372375][T11983]  should_failslab+0x5/0x20
[  334.376884][T11983]  kmem_cache_alloc+0x4f/0x320
[  334.381682][T11983]  jbd2__journal_start+0xf7/0x3f0
[  334.386763][T11983]  __ext4_journal_start_sb+0x159/0x310
[  334.392283][T11983]  ext4_iomap_begin+0x408/0x630
[  334.397185][T11983]  ? ext4_alloc_da_blocks+0x100/0x100
[  334.402586][T11983]  iomap_iter+0x395/0x4a0
[  334.406970][T11983]  __iomap_dio_rw+0xb78/0x1070
[  334.411751][T11983]  iomap_dio_rw+0x38/0x80
[  334.416092][T11983]  ? ext4_file_write_iter+0x451/0x1200
[  334.422058][T11983]  ext4_file_write_iter+0xac3/0x1200
[  334.427355][T11983]  ? ext4_file_write_iter+0x451/0x1200
[  334.432851][T11983]  do_iter_readv_writev+0x2de/0x380
[  334.438093][T11983]  do_iter_write+0x192/0x5c0
[  334.442690][T11983]  ? splice_from_pipe_next+0x34f/0x3b0
[  334.448183][T11983]  ? kmalloc_array+0x2d/0x40
[  334.452801][T11983]  vfs_iter_write+0x4c/0x70
[  334.457333][T11983]  iter_file_splice_write+0x43a/0x790
[  334.462763][T11983]  ? splice_from_pipe+0xd0/0xd0
[  334.467646][T11983]  direct_splice_actor+0x80/0xa0
[  334.472659][T11983]  splice_direct_to_actor+0x345/0x650
[  334.478384][T11983]  ? do_splice_direct+0x190/0x190
[  334.483438][T11983]  do_splice_direct+0x106/0x190
[  334.488378][T11983]  do_sendfile+0x675/0xc40
[  334.492801][T11983]  __x64_sys_sendfile64+0x102/0x140
[  334.498050][T11983]  do_syscall_64+0x44/0xd0
[  334.502479][T11983]  entry_SYSCALL_64_after_hwframe+0x44/0xae
17:52:29 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r1, 0x0, 0x80000001)

[  334.508520][T11983] RIP: 0033:0x7ff4b8299ae9
[  334.512932][T11983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  334.532650][T11983] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  334.541123][T11983] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  334.549103][T11983] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
17:52:29 executing program 5:
prctl$PR_GET_IO_FLUSHER(0x3a)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
creat(&(0x7f0000000100)='./bus\x00', 0x0)

[  334.557104][T11983] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  334.565077][T11983] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  334.573049][T11983] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  334.581091][T11983]  </TASK>
17:52:29 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80001c00)

17:52:30 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003dc)

17:52:30 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80001e28)

17:52:30 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 16)

17:52:30 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f8)

17:52:30 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000000d)

[  335.180152][T12016] FAULT_INJECTION: forcing a failure.
[  335.180152][T12016] name failslab, interval 1, probability 0, space 0, times 0
[  335.192814][T12016] CPU: 0 PID: 12016 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  335.201637][T12016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  335.211770][T12016] Call Trace:
[  335.215052][T12016]  <TASK>
[  335.217984][T12016]  dump_stack_lvl+0xd6/0x122
[  335.222625][T12016]  dump_stack+0x11/0x1b
[  335.226797][T12016]  should_fail+0x23c/0x250
[  335.231244][T12016]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  335.236541][T12016]  __should_failslab+0x81/0x90
[  335.241312][T12016]  should_failslab+0x5/0x20
[  335.245846][T12016]  kmem_cache_alloc+0x4f/0x320
[  335.250618][T12016]  ext4_mb_new_blocks+0x328/0x1ee0
[  335.255847][T12016]  ? ext4_get_branch+0x27d/0x2e0
[  335.260787][T12016]  ext4_ind_map_blocks+0xb1c/0x1740
[  335.266061][T12016]  ext4_map_blocks+0x6e3/0xf00
[  335.270833][T12016]  ext4_iomap_begin+0x4b0/0x630
[  335.275715][T12016]  ? ext4_alloc_da_blocks+0x100/0x100
[  335.281103][T12016]  iomap_iter+0x395/0x4a0
[  335.285503][T12016]  __iomap_dio_rw+0xb78/0x1070
[  335.290279][T12016]  iomap_dio_rw+0x38/0x80
[  335.294616][T12016]  ? ext4_file_write_iter+0x451/0x1200
[  335.300081][T12016]  ext4_file_write_iter+0xac3/0x1200
[  335.305373][T12016]  ? ext4_file_write_iter+0x451/0x1200
[  335.310932][T12016]  do_iter_readv_writev+0x2de/0x380
[  335.316138][T12016]  do_iter_write+0x192/0x5c0
[  335.320733][T12016]  ? splice_from_pipe_next+0x34f/0x3b0
[  335.326247][T12016]  ? kmalloc_array+0x2d/0x40
[  335.330887][T12016]  vfs_iter_write+0x4c/0x70
[  335.335400][T12016]  iter_file_splice_write+0x43a/0x790
[  335.340781][T12016]  ? splice_from_pipe+0xd0/0xd0
[  335.345674][T12016]  direct_splice_actor+0x80/0xa0
[  335.350618][T12016]  splice_direct_to_actor+0x345/0x650
[  335.355995][T12016]  ? do_splice_direct+0x190/0x190
[  335.361036][T12016]  do_splice_direct+0x106/0x190
[  335.365983][T12016]  do_sendfile+0x675/0xc40
[  335.370418][T12016]  __x64_sys_sendfile64+0x102/0x140
[  335.375629][T12016]  do_syscall_64+0x44/0xd0
[  335.380120][T12016]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  335.386029][T12016] RIP: 0033:0x7ff4b8299ae9
[  335.390488][T12016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  335.410249][T12016] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  335.418717][T12016] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  335.426690][T12016] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  335.434788][T12016] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  335.442905][T12016] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  335.450972][T12016] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  335.458993][T12016]  </TASK>
17:52:30 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80001e2b)

17:52:30 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003dd)

17:52:31 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80002bd8)

17:52:31 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 17)

[  336.054965][T12038] FAULT_INJECTION: forcing a failure.
[  336.054965][T12038] name failslab, interval 1, probability 0, space 0, times 0
[  336.067611][T12038] CPU: 0 PID: 12038 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  336.076373][T12038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  336.086506][T12038] Call Trace:
[  336.089787][T12038]  <TASK>
[  336.092714][T12038]  dump_stack_lvl+0xd6/0x122
[  336.097311][T12038]  dump_stack+0x11/0x1b
[  336.101620][T12038]  should_fail+0x23c/0x250
[  336.106038][T12038]  ? mempool_alloc_slab+0x16/0x20
[  336.111074][T12038]  __should_failslab+0x81/0x90
[  336.115982][T12038]  should_failslab+0x5/0x20
[  336.120486][T12038]  kmem_cache_alloc+0x4f/0x320
[  336.125250][T12038]  mempool_alloc_slab+0x16/0x20
[  336.130152][T12038]  ? mempool_free+0x130/0x130
[  336.134867][T12038]  mempool_alloc+0x9d/0x310
[  336.139375][T12038]  ? preempt_count_add+0x4e/0x90
[  336.144383][T12038]  ? _raw_read_unlock+0x13/0x30
[  336.149303][T12038]  ? jbd2_transaction_committed+0xad/0xc0
[  336.155147][T12038]  bio_alloc_bioset+0xcc/0x560
[  336.160004][T12038]  ? iov_iter_alignment+0x34b/0x370
[  336.165364][T12038]  iomap_dio_bio_iter+0x5ed/0xc70
[  336.170461][T12038]  ? ext4_alloc_da_blocks+0x100/0x100
[  336.175897][T12038]  __iomap_dio_rw+0x8b5/0x1070
[  336.180684][T12038]  iomap_dio_rw+0x38/0x80
[  336.185079][T12038]  ? ext4_file_write_iter+0x451/0x1200
[  336.190539][T12038]  ext4_file_write_iter+0xac3/0x1200
[  336.195826][T12038]  ? ext4_file_write_iter+0x451/0x1200
[  336.201287][T12038]  do_iter_readv_writev+0x2de/0x380
[  336.206492][T12038]  do_iter_write+0x192/0x5c0
[  336.211089][T12038]  ? splice_from_pipe_next+0x34f/0x3b0
[  336.216614][T12038]  ? kmalloc_array+0x2d/0x40
[  336.221383][T12038]  vfs_iter_write+0x4c/0x70
[  336.226013][T12038]  iter_file_splice_write+0x43a/0x790
[  336.231417][T12038]  ? splice_from_pipe+0xd0/0xd0
[  336.236276][T12038]  direct_splice_actor+0x80/0xa0
[  336.241285][T12038]  splice_direct_to_actor+0x345/0x650
[  336.246678][T12038]  ? do_splice_direct+0x190/0x190
[  336.251710][T12038]  do_splice_direct+0x106/0x190
[  336.256562][T12038]  do_sendfile+0x675/0xc40
[  336.261046][T12038]  __x64_sys_sendfile64+0x102/0x140
[  336.266250][T12038]  do_syscall_64+0x44/0xd0
[  336.270708][T12038]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  336.276626][T12038] RIP: 0033:0x7ff4b8299ae9
[  336.281188][T12038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  336.300995][T12038] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  336.309412][T12038] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  336.317478][T12038] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  336.325453][T12038] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  336.333530][T12038] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  336.341500][T12038] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  336.349472][T12038]  </TASK>
17:52:31 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80002c00)

17:52:31 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000000e)

17:52:31 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f9)

17:52:31 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003de)

17:52:31 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80002e00)

17:52:32 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 18)

[  336.936148][T12058] FAULT_INJECTION: forcing a failure.
[  336.936148][T12058] name failslab, interval 1, probability 0, space 0, times 0
[  336.948818][T12058] CPU: 0 PID: 12058 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  336.957617][T12058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  336.967777][T12058] Call Trace:
[  336.971056][T12058]  <TASK>
[  336.973993][T12058]  dump_stack_lvl+0xd6/0x122
[  336.978645][T12058]  dump_stack+0x11/0x1b
[  336.982801][T12058]  should_fail+0x23c/0x250
[  336.987222][T12058]  ? jbd2__journal_start+0xf7/0x3f0
[  336.992472][T12058]  __should_failslab+0x81/0x90
[  336.997242][T12058]  should_failslab+0x5/0x20
[  337.001807][T12058]  kmem_cache_alloc+0x4f/0x320
[  337.006575][T12058]  jbd2__journal_start+0xf7/0x3f0
[  337.011603][T12058]  __ext4_journal_start_sb+0x159/0x310
[  337.017134][T12058]  ext4_iomap_begin+0x408/0x630
[  337.021994][T12058]  ? ext4_alloc_da_blocks+0x100/0x100
[  337.027421][T12058]  iomap_iter+0x395/0x4a0
[  337.031790][T12058]  __iomap_dio_rw+0xb78/0x1070
[  337.036569][T12058]  iomap_dio_rw+0x38/0x80
[  337.040903][T12058]  ? ext4_file_write_iter+0x451/0x1200
[  337.046416][T12058]  ext4_file_write_iter+0xac3/0x1200
[  337.051702][T12058]  ? ext4_file_write_iter+0x451/0x1200
[  337.057162][T12058]  do_iter_readv_writev+0x2de/0x380
[  337.062365][T12058]  do_iter_write+0x192/0x5c0
[  337.066962][T12058]  ? splice_from_pipe_next+0x34f/0x3b0
[  337.072432][T12058]  ? kmalloc_array+0x2d/0x40
[  337.077068][T12058]  vfs_iter_write+0x4c/0x70
[  337.081595][T12058]  iter_file_splice_write+0x43a/0x790
[  337.086979][T12058]  ? splice_from_pipe+0xd0/0xd0
[  337.091886][T12058]  direct_splice_actor+0x80/0xa0
[  337.096822][T12058]  splice_direct_to_actor+0x345/0x650
[  337.102206][T12058]  ? do_splice_direct+0x190/0x190
[  337.107303][T12058]  do_splice_direct+0x106/0x190
[  337.112182][T12058]  do_sendfile+0x675/0xc40
[  337.116605][T12058]  __x64_sys_sendfile64+0x102/0x140
[  337.121801][T12058]  do_syscall_64+0x44/0xd0
[  337.126263][T12058]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  337.132165][T12058] RIP: 0033:0x7ff4b8299ae9
[  337.136580][T12058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  337.156187][T12058] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  337.164655][T12058] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  337.172688][T12058] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
17:52:32 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80003600)

[  337.180922][T12058] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  337.189023][T12058] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  337.197006][T12058] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  337.204997][T12058]  </TASK>
17:52:32 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003fa)

17:52:32 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000000f)

17:52:32 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80003700)

17:52:32 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003df)

17:52:32 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80003900)

17:52:32 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 19)

[  337.797248][T12083] FAULT_INJECTION: forcing a failure.
[  337.797248][T12083] name failslab, interval 1, probability 0, space 0, times 0
[  337.809968][T12083] CPU: 0 PID: 12083 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  337.818754][T12083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  337.828807][T12083] Call Trace:
[  337.832083][T12083]  <TASK>
[  337.835015][T12083]  dump_stack_lvl+0xd6/0x122
[  337.839612][T12083]  dump_stack+0x11/0x1b
[  337.843814][T12083]  should_fail+0x23c/0x250
[  337.848228][T12083]  ? mempool_alloc_slab+0x16/0x20
[  337.853272][T12083]  __should_failslab+0x81/0x90
[  337.858133][T12083]  should_failslab+0x5/0x20
[  337.862704][T12083]  kmem_cache_alloc+0x4f/0x320
[  337.867506][T12083]  mempool_alloc_slab+0x16/0x20
[  337.872366][T12083]  ? mempool_free+0x130/0x130
[  337.877072][T12083]  mempool_alloc+0x9d/0x310
[  337.881579][T12083]  ? preempt_count_add+0x4e/0x90
[  337.886522][T12083]  ? _raw_read_unlock+0x13/0x30
[  337.891403][T12083]  ? jbd2_transaction_committed+0xad/0xc0
[  337.897163][T12083]  bio_alloc_bioset+0xcc/0x560
[  337.901932][T12083]  ? iov_iter_alignment+0x34b/0x370
[  337.907172][T12083]  iomap_dio_bio_iter+0x5ed/0xc70
[  337.912322][T12083]  ? ext4_alloc_da_blocks+0x100/0x100
[  337.917739][T12083]  __iomap_dio_rw+0x8b5/0x1070
[  337.922514][T12083]  iomap_dio_rw+0x38/0x80
[  337.926917][T12083]  ? ext4_file_write_iter+0x451/0x1200
[  337.932379][T12083]  ext4_file_write_iter+0xac3/0x1200
[  337.937670][T12083]  ? ext4_file_write_iter+0x451/0x1200
[  337.943283][T12083]  do_iter_readv_writev+0x2de/0x380
[  337.948573][T12083]  do_iter_write+0x192/0x5c0
[  337.953227][T12083]  ? splice_from_pipe_next+0x34f/0x3b0
[  337.958691][T12083]  ? kmalloc_array+0x2d/0x40
[  337.963287][T12083]  vfs_iter_write+0x4c/0x70
[  337.967817][T12083]  iter_file_splice_write+0x43a/0x790
[  337.973199][T12083]  ? splice_from_pipe+0xd0/0xd0
[  337.978128][T12083]  direct_splice_actor+0x80/0xa0
[  337.983073][T12083]  splice_direct_to_actor+0x345/0x650
[  337.988455][T12083]  ? do_splice_direct+0x190/0x190
[  337.993485][T12083]  do_splice_direct+0x106/0x190
[  337.998391][T12083]  do_sendfile+0x675/0xc40
[  338.002816][T12083]  __x64_sys_sendfile64+0x102/0x140
[  338.008019][T12083]  do_syscall_64+0x44/0xd0
[  338.012439][T12083]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  338.018340][T12083] RIP: 0033:0x7ff4b8299ae9
[  338.022757][T12083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:33 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80005b70)

[  338.042441][T12083] RSP: 002b:00007ff4b6010188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  338.050922][T12083] RAX: ffffffffffffffda RBX: 00007ff4b83acf60 RCX: 00007ff4b8299ae9
[  338.058988][T12083] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  338.066960][T12083] RBP: 00007ff4b60101d0 R08: 0000000000000000 R09: 0000000000000000
[  338.074938][T12083] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  338.082942][T12083] R13: 00007ffca0f1f41f R14: 00007ff4b6010300 R15: 0000000000022000
[  338.091052][T12083]  </TASK>
17:52:33 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003fb)

17:52:33 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000010)

17:52:33 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80008200)

17:52:33 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 20)

17:52:33 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e0)

[  338.565856][T12107] FAULT_INJECTION: forcing a failure.
[  338.565856][T12107] name failslab, interval 1, probability 0, space 0, times 0
[  338.578636][T12107] CPU: 0 PID: 12107 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  338.587402][T12107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  338.597454][T12107] Call Trace:
[  338.600736][T12107]  <TASK>
[  338.603663][T12107]  dump_stack_lvl+0xd6/0x122
[  338.608369][T12107]  dump_stack+0x11/0x1b
[  338.612524][T12107]  should_fail+0x23c/0x250
[  338.616950][T12107]  ? mempool_alloc_slab+0x16/0x20
[  338.622036][T12107]  __should_failslab+0x81/0x90
[  338.626807][T12107]  should_failslab+0x5/0x20
[  338.631363][T12107]  kmem_cache_alloc+0x4f/0x320
[  338.636147][T12107]  mempool_alloc_slab+0x16/0x20
[  338.641139][T12107]  ? mempool_free+0x130/0x130
[  338.645823][T12107]  mempool_alloc+0x9d/0x310
[  338.650330][T12107]  ? preempt_count_add+0x4e/0x90
[  338.655281][T12107]  ? _raw_read_unlock+0x13/0x30
[  338.660137][T12107]  ? jbd2_transaction_committed+0xad/0xc0
[  338.665952][T12107]  bio_alloc_bioset+0xcc/0x560
[  338.670902][T12107]  ? iov_iter_alignment+0x34b/0x370
[  338.676123][T12107]  iomap_dio_bio_iter+0x5ed/0xc70
[  338.681158][T12107]  ? ext4_alloc_da_blocks+0x100/0x100
[  338.686540][T12107]  __iomap_dio_rw+0x8b5/0x1070
[  338.691361][T12107]  iomap_dio_rw+0x38/0x80
[  338.695702][T12107]  ? ext4_file_write_iter+0x451/0x1200
[  338.701174][T12107]  ext4_file_write_iter+0xac3/0x1200
[  338.706469][T12107]  ? ext4_file_write_iter+0x451/0x1200
[  338.712019][T12107]  do_iter_readv_writev+0x2de/0x380
[  338.717297][T12107]  do_iter_write+0x192/0x5c0
[  338.721902][T12107]  vfs_iter_write+0x4c/0x70
[  338.726426][T12107]  iter_file_splice_write+0x43a/0x790
[  338.731875][T12107]  ? splice_from_pipe+0xd0/0xd0
[  338.736817][T12107]  direct_splice_actor+0x80/0xa0
[  338.741791][T12107]  splice_direct_to_actor+0x345/0x650
[  338.747169][T12107]  ? do_splice_direct+0x190/0x190
[  338.752200][T12107]  do_splice_direct+0x106/0x190
[  338.757066][T12107]  do_sendfile+0x675/0xc40
[  338.761486][T12107]  __x64_sys_sendfile64+0x102/0x140
[  338.766686][T12107]  do_syscall_64+0x44/0xd0
[  338.771150][T12107]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  338.777049][T12107] RIP: 0033:0x7ff4b8299ae9
[  338.781560][T12107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  338.801168][T12107] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  338.809620][T12107] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  338.817600][T12107] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  338.825667][T12107] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  338.833645][T12107] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  338.841690][T12107] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  338.849740][T12107]  </TASK>
17:52:34 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80008700)

17:52:34 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000600)

17:52:34 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80008900)

17:52:34 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000011)

17:52:34 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 21)

17:52:34 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e1)

[  339.450453][T12129] FAULT_INJECTION: forcing a failure.
[  339.450453][T12129] name failslab, interval 1, probability 0, space 0, times 0
[  339.463090][T12129] CPU: 0 PID: 12129 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  339.471906][T12129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  339.482022][T12129] Call Trace:
[  339.485330][T12129]  <TASK>
[  339.488264][T12129]  dump_stack_lvl+0xd6/0x122
[  339.492953][T12129]  dump_stack+0x11/0x1b
[  339.497114][T12129]  should_fail+0x23c/0x250
[  339.501535][T12129]  ? jbd2__journal_start+0xf7/0x3f0
[  339.506819][T12129]  __should_failslab+0x81/0x90
[  339.511765][T12129]  should_failslab+0x5/0x20
[  339.516283][T12129]  kmem_cache_alloc+0x4f/0x320
[  339.521143][T12129]  jbd2__journal_start+0xf7/0x3f0
[  339.526206][T12129]  __ext4_journal_start_sb+0x159/0x310
[  339.531688][T12129]  ext4_iomap_begin+0x408/0x630
[  339.536720][T12129]  ? ext4_alloc_da_blocks+0x100/0x100
[  339.542142][T12129]  iomap_iter+0x395/0x4a0
[  339.546478][T12129]  __iomap_dio_rw+0xb78/0x1070
[  339.551296][T12129]  iomap_dio_rw+0x38/0x80
[  339.555654][T12129]  ? ext4_file_write_iter+0x451/0x1200
[  339.561146][T12129]  ext4_file_write_iter+0xac3/0x1200
[  339.566499][T12129]  ? ext4_file_write_iter+0x451/0x1200
[  339.571992][T12129]  do_iter_readv_writev+0x2de/0x380
[  339.577193][T12129]  do_iter_write+0x192/0x5c0
[  339.581792][T12129]  ? splice_from_pipe_next+0x34f/0x3b0
[  339.587323][T12129]  ? kmalloc_array+0x2d/0x40
[  339.591927][T12129]  vfs_iter_write+0x4c/0x70
[  339.596511][T12129]  iter_file_splice_write+0x43a/0x790
[  339.601897][T12129]  ? splice_from_pipe+0xd0/0xd0
[  339.606751][T12129]  direct_splice_actor+0x80/0xa0
[  339.611695][T12129]  splice_direct_to_actor+0x345/0x650
[  339.617099][T12129]  ? do_splice_direct+0x190/0x190
[  339.622191][T12129]  do_splice_direct+0x106/0x190
[  339.627070][T12129]  do_sendfile+0x675/0xc40
[  339.631514][T12129]  __x64_sys_sendfile64+0x102/0x140
[  339.636722][T12129]  do_syscall_64+0x44/0xd0
[  339.641208][T12129]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  339.647111][T12129] RIP: 0033:0x7ff4b8299ae9
[  339.651849][T12129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  339.671550][T12129] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  339.679975][T12129] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  339.687950][T12129] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
17:52:34 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80008d00)

[  339.695946][T12129] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  339.703920][T12129] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  339.711916][T12129] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  339.720058][T12129]  </TASK>
17:52:35 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80008f00)

17:52:35 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d8c2, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
fstat(r2, &(0x7f0000000100))
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005eb00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r3=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r4=>0x0}], 0xa3, "f811e040ffa04c"})
r5 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r7=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r8=>0x0, ""/256, <r9=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r10=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005fb00)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r11=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}], 0xc, "f8d9b477db7ef6"})
r12 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r12, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r13}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000060b00)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r14=>0x0}], 0x37, "f87faaf7ffc7a3"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000061b00)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4, r6}, {r8, r11}, {}, {}, {0x0, r13}, {0x0, r14}], 0x2, "6d65d051b7167a"})
r15 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r15, 0x0, 0x80000001)

17:52:35 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
io_setup(0x7fff, &(0x7f0000000100)=<r1=>0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000e00)=ANY=[@ANYBLOB="01000000010000ea4ef4280043edc70800786fd5f6271b8c024156bf6bd1acc5e0192c90713d2682eb412406300988f61be22ec9123e2261f5690449cf403d3d08feb1dc5a5321d3174d41d1978bfa86cd0cf9078b6c89abfdccbb12bdd0178d7db2168b50666fbeae899512c9a45199799fc1f068da9c03d5aa9a6106dcb5eac41e56ab3411363befe57428b2c246d165af662c5772fe4b18faa183fe3087af2257ef53d458925d11b3b36b3bdd539ba883ced8a83ad4698879c8442b118763204da4721b41d3dd686e616ef793ee762ee6ce76fe2fccd26174e3b5b25e215f9be5df60960fa30674dfe4c1140e373c998dd9526431512ee3030e7af6357541dc3a041555b7c9ef702f695ec42885c88b0a34cbcfef54a05a96c0b4efd5d5d665accde94520e942dd3f7488", @ANYRES32=<r3=>r0, @ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00./file0\x00'])
io_submit(r1, 0x3, &(0x7f0000000440)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x5, 0x4, r0, &(0x7f0000000140)="f9e5c359eb8c81acd88ac2dd38751173415c687da5dabbff8a9741be82ade9d4d47eb53b561e25d4c1f26e63d53d5868b545cb44d606da624748125577f88134abbd90311567dbc199232b42ca5c1bad9c5c862956fc908946fc2f71c07e7ad0d54c084ad3dd37fd7780097bce11df7706d5620312126e2136a0770c7efe3b524666ee99a81a60ec50bb", 0x8a, 0xfffffffffffffff7, 0x0, 0x1, r0}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x6, 0x9, r2, &(0x7f0000000240)="b5faa0f82d3dd572932a8aa359af5a19864275fdee1c086b1046b673c9ac1fed11aeef9b5dfa268d41edae22cccaf09bc4d7f17577103b618f4cc58f", 0x3c, 0x4, 0x0, 0x0, r4}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0xd, 0x1ff, r0, &(0x7f0000000300)="9d0926d59857a966595a4d7272fdfd09fbad35c73d9fe7bed6b3ed7fa85afeecc32a2001f550ba4458957e5cc4f08fa738a5956575f7bc75a96c15d3f7174dec08ff789dcd64a8e23ce2b9d4c91570d7dff018fca9772db4425d82693eef8614419e618f6cb7063dda208fd8772250f2aca8b197fae287bbc33ce1803ba105a02adec7d307a79b1a6d6c98f348cbc1dcff24b451d9a755f7e7fc164a3fc167ff0da33b046d773d325fd0ac34ba95b6a9bb765d9868cfd9889d7c0a417b42aff0f3ee6ec6a48ceafb2a027ffc20c162b01166703012d50a776e4cdae5728cabb52c0dfe98", 0xe4, 0x6, 0x0, 0x0, r0}])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r5 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r6, 0x0, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000a00), 0x101000, 0x0)
pipe(&(0x7f0000000a80)={<r8=>0xffffffffffffffff})
r9 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r9, 0x0, 0x0, 0x0)
r10 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r10, 0x0, 0x0, 0x0)
io_submit(r1, 0x8, &(0x7f0000000dc0)=[&(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x40, r3, &(0x7f0000000480)="795119ea396a0256b91471451683794d947a59ac42f71d4b934c931f38db4f1d8d338e160f50300a66c32c434d24a95b4dbbd49c4db0d4d90bc095be9c2ea81e7ad4a274", 0x44, 0x1, 0x0, 0x2}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x999facf275085035, 0x4, 0xffffffffffffffff, &(0x7f0000000640)="fa33f6b6dd5caefffd01481019880b64bd32ca70346fdc2fcd58348c7c16d3bc33e9a0f499d65a72c63f85fb7e966d04a9ea1befd9693ae16cea9f4eccef3757236f83a5a8d0a34288225311adfc2e35ae41a656253a3c6dbcb0c07cfed980ed7060ea259bed4e904462306b33f82b39e1f09179203cdfba9a18e70c335a02408ecbacccb9f062554cc9b6c8e63de9d3c17ffd7519686f366e17f16e0f9b4af45e75218669ea4db1baaa4b2483f852b3f252126592047b49bc34f087a83e81b79d81cbb244", 0xc5, 0xc5cb, 0x0, 0x1, r4}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, &(0x7f00000007c0)="cd8729e072104be6352318878b82afe77bd234676551955e7af0235e2936d113e6ced906262db244a59383c7faead17369d1c3dc93360b32541c558df50d259648a530d03cf98202c1dcfed20e0a4a15f9b6ac70e17d86570be6c0380219ff6fa859f9aa4b97800a4f28f83cf09cad4f4a9129a8b3abef0f9029339415a41a1c608334551d6acc00ad7675736de9d2e480e7e6e06ca49543e98c2f7ac4a33edc123cea03375fc33703a2ccb0757e77ac0a74b2b38ccc6071713fa3f1249c0e131fb8f1c39f9b6f6a79a39ded31967cd7f14a251052431a447ec0f931", 0xdc, 0xe7, 0x0, 0x2}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffffff, &(0x7f0000000940)="3b428f8512f4b6c22dc05e5105e2c96bff70b43c27eeedfbe53be971569ac4d46d879b9ad7df7aa24ce77b7a03a26183b6069435538bf9a23134ca0d3881d0", 0x3f, 0x4, 0x0, 0x1, r6}, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x2, 0x3, 0xffffffffffffffff, &(0x7f00000009c0)="a36803c50e3f246de98348a9b560529043e77f56ce3894ea1c7580617bc223339e15280a586a97a32dc5b5", 0x2b, 0x3, 0x0, 0x1, r7}, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x2, 0x917, r8, &(0x7f0000000540)="29d9ec7064044772f36f3ac0deefd5ec5b2b8ad5c2c0321199e9c1ea323a8e2616d94b4f3a044ef9647a14775af3f7f7be6d4d0cc13169da818f06ef27c77ad5e9e652918b71ee0919d6a41dd6a6a62c90775fff", 0x54, 0x3, 0x0, 0x2, r3}, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x5, r3, &(0x7f0000000b80)="eddd79234d28e05a14ea4f8c6978bd325c371e127f3d2644807f62a5768da06020b0fca3f9f3437a8f85c290863019b6d8e68d95351cd3726e4c7fba7320bcb9c5d8b97b5f1e7f1f2bf6d011d2fce41975634586c59a70e9f78b7b2cc2f277540cc78fbbdd183d4f62a644c388d7ccd1dbddf87190d9ae2431fb5f45bf8a7483453fd2a53e007f903f66ccf10b785310bea36948447d72a7a3020aea9db9787afdda97f6ec5740f3cebb165c1010be4e6ee2", 0xb2, 0x1b9, 0x0, 0x1, r9}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x2, 0x3ff, r10, &(0x7f0000000c80)="3e4cd38f5410712c7dc0e83a8d3aa5578743d855b70c033b7a17ee37a2bcceaeaf00786d39668ab49b77e686b10bec00b2ae8991a67c664dd803272d044d52f0886f529ede8280f12225b1f6e5b8777530ebb08da63528c8c98608127d6fb59635b609d3a20c9a9fac82bcc6db50771e58abb413ceacfd34d8e37220993559bf89ecb48efd3f3ed3e63541b4f511271c9c44b4dd2549e9bd29def84bb99dee2ee491e0accd14fcd0e729b47248827c04a08fc4ff04e4879315d87761edacd9556a04dd5db9411fb0b3290f4ab3f3b26a123275bc078b5f15411c1383fcea71953cd3405d8056b62e0a2377242a3b3e9918", 0xf1, 0x1}])
r11 = openat(r6, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r11, 0x0, 0x80000001)

17:52:35 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000063b)

17:52:35 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 22)

17:52:35 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000012)

17:52:35 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80009000)

[  340.326138][T12158] FAULT_INJECTION: forcing a failure.
[  340.326138][T12158] name failslab, interval 1, probability 0, space 0, times 0
[  340.338803][T12158] CPU: 0 PID: 12158 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  340.347626][T12158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  340.357803][T12158] Call Trace:
[  340.361081][T12158]  <TASK>
[  340.364026][T12158]  dump_stack_lvl+0xd6/0x122
[  340.368754][T12158]  dump_stack+0x11/0x1b
[  340.372914][T12158]  should_fail+0x23c/0x250
[  340.377315][T12158]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  340.382689][T12158]  __should_failslab+0x81/0x90
[  340.387508][T12158]  should_failslab+0x5/0x20
[  340.392057][T12158]  kmem_cache_alloc+0x4f/0x320
[  340.396863][T12158]  ext4_mb_new_blocks+0x328/0x1ee0
[  340.401980][T12158]  ? ext4_get_branch+0x27d/0x2e0
[  340.406904][T12158]  ext4_ind_map_blocks+0xb1c/0x1740
[  340.412325][T12158]  ext4_map_blocks+0x6e3/0xf00
[  340.417091][T12158]  ext4_iomap_begin+0x4b0/0x630
[  340.421982][T12158]  ? ext4_alloc_da_blocks+0x100/0x100
[  340.427363][T12158]  iomap_iter+0x395/0x4a0
[  340.431696][T12158]  __iomap_dio_rw+0xb78/0x1070
[  340.436504][T12158]  iomap_dio_rw+0x38/0x80
[  340.440862][T12158]  ? ext4_file_write_iter+0x451/0x1200
[  340.446308][T12158]  ext4_file_write_iter+0xac3/0x1200
[  340.451613][T12158]  ? ext4_file_write_iter+0x451/0x1200
[  340.457086][T12158]  do_iter_readv_writev+0x2de/0x380
[  340.462286][T12158]  do_iter_write+0x192/0x5c0
[  340.466957][T12158]  ? splice_from_pipe_next+0x34f/0x3b0
[  340.472445][T12158]  ? kmalloc_array+0x2d/0x40
[  340.477020][T12158]  vfs_iter_write+0x4c/0x70
[  340.481671][T12158]  iter_file_splice_write+0x43a/0x790
[  340.487072][T12158]  ? splice_from_pipe+0xd0/0xd0
[  340.491924][T12158]  direct_splice_actor+0x80/0xa0
[  340.496857][T12158]  splice_direct_to_actor+0x345/0x650
[  340.502315][T12158]  ? do_splice_direct+0x190/0x190
[  340.507321][T12158]  do_splice_direct+0x106/0x190
[  340.512202][T12158]  do_sendfile+0x675/0xc40
[  340.516619][T12158]  __x64_sys_sendfile64+0x102/0x140
[  340.521802][T12158]  do_syscall_64+0x44/0xd0
[  340.526221][T12158]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  340.532221][T12158] RIP: 0033:0x7ff4b8299ae9
[  340.536626][T12158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  340.556515][T12158] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  340.564922][T12158] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
17:52:35 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e2)

[  340.572874][T12158] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  340.580916][T12158] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  340.588881][T12158] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  340.596895][T12158] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  340.604993][T12158]  </TASK>
17:52:36 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80009500)

17:52:36 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000700)

17:52:36 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 23)

17:52:36 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80009b00)

[  341.199073][T12182] FAULT_INJECTION: forcing a failure.
[  341.199073][T12182] name failslab, interval 1, probability 0, space 0, times 0
[  341.211717][T12182] CPU: 1 PID: 12182 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  341.220509][T12182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  341.230603][T12182] Call Trace:
[  341.233882][T12182]  <TASK>
[  341.236816][T12182]  dump_stack_lvl+0xd6/0x122
[  341.241480][T12182]  dump_stack+0x11/0x1b
[  341.245643][T12182]  should_fail+0x23c/0x250
[  341.250118][T12182]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  341.255413][T12182]  __should_failslab+0x81/0x90
[  341.260211][T12182]  should_failslab+0x5/0x20
[  341.264718][T12182]  kmem_cache_alloc+0x4f/0x320
[  341.269491][T12182]  ext4_mb_new_blocks+0x328/0x1ee0
[  341.274619][T12182]  ? ext4_get_branch+0x27d/0x2e0
[  341.279731][T12182]  ext4_ind_map_blocks+0xb1c/0x1740
[  341.284998][T12182]  ext4_map_blocks+0x6e3/0xf00
[  341.289832][T12182]  ext4_iomap_begin+0x4b0/0x630
[  341.294754][T12182]  ? ext4_alloc_da_blocks+0x100/0x100
[  341.300182][T12182]  iomap_iter+0x395/0x4a0
[  341.304552][T12182]  __iomap_dio_rw+0xb78/0x1070
[  341.309347][T12182]  iomap_dio_rw+0x38/0x80
[  341.313743][T12182]  ? ext4_file_write_iter+0x451/0x1200
[  341.319219][T12182]  ext4_file_write_iter+0xac3/0x1200
[  341.324516][T12182]  ? ext4_file_write_iter+0x451/0x1200
[  341.329987][T12182]  do_iter_readv_writev+0x2de/0x380
[  341.335189][T12182]  do_iter_write+0x192/0x5c0
[  341.339788][T12182]  ? splice_from_pipe_next+0x34f/0x3b0
[  341.345254][T12182]  ? kmalloc_array+0x2d/0x40
17:52:36 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000013)

[  341.349845][T12182]  vfs_iter_write+0x4c/0x70
[  341.354383][T12182]  iter_file_splice_write+0x43a/0x790
[  341.359818][T12182]  ? splice_from_pipe+0xd0/0xd0
[  341.364800][T12182]  direct_splice_actor+0x80/0xa0
[  341.369747][T12182]  splice_direct_to_actor+0x345/0x650
[  341.375194][T12182]  ? do_splice_direct+0x190/0x190
[  341.380302][T12182]  do_splice_direct+0x106/0x190
[  341.385164][T12182]  do_sendfile+0x675/0xc40
[  341.389649][T12182]  __x64_sys_sendfile64+0x102/0x140
[  341.394880][T12182]  do_syscall_64+0x44/0xd0
[  341.399353][T12182]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  341.405304][T12182] RIP: 0033:0x7ff4b8299ae9
[  341.409718][T12182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  341.429404][T12182] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  341.437812][T12182] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  341.445903][T12182] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  341.453875][T12182] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  341.461855][T12182] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  341.469863][T12182] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  341.478016][T12182]  </TASK>
17:52:36 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e3)

17:52:36 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80009e00)

17:52:37 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 24)

17:52:37 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000b00)

[  342.079403][T12202] FAULT_INJECTION: forcing a failure.
[  342.079403][T12202] name failslab, interval 1, probability 0, space 0, times 0
[  342.092152][T12202] CPU: 0 PID: 12202 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  342.100995][T12202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  342.111076][T12202] Call Trace:
[  342.114374][T12202]  <TASK>
[  342.117305][T12202]  dump_stack_lvl+0xd6/0x122
[  342.121906][T12202]  dump_stack+0x11/0x1b
[  342.126094][T12202]  should_fail+0x23c/0x250
[  342.130570][T12202]  ? mempool_alloc_slab+0x16/0x20
[  342.135602][T12202]  __should_failslab+0x81/0x90
[  342.140444][T12202]  should_failslab+0x5/0x20
[  342.144959][T12202]  kmem_cache_alloc+0x4f/0x320
[  342.149724][T12202]  mempool_alloc_slab+0x16/0x20
[  342.154601][T12202]  ? mempool_free+0x130/0x130
[  342.159282][T12202]  mempool_alloc+0x9d/0x310
[  342.163817][T12202]  ? preempt_count_add+0x4e/0x90
[  342.168776][T12202]  ? _raw_read_unlock+0x13/0x30
[  342.173706][T12202]  ? jbd2_transaction_committed+0xad/0xc0
[  342.179466][T12202]  bio_alloc_bioset+0xcc/0x560
[  342.184234][T12202]  ? iov_iter_alignment+0x34b/0x370
[  342.189437][T12202]  iomap_dio_bio_iter+0x5ed/0xc70
[  342.194472][T12202]  ? ext4_alloc_da_blocks+0x100/0x100
[  342.199850][T12202]  __iomap_dio_rw+0x8b5/0x1070
[  342.204627][T12202]  iomap_dio_rw+0x38/0x80
[  342.208972][T12202]  ? ext4_file_write_iter+0x451/0x1200
[  342.214435][T12202]  ext4_file_write_iter+0xac3/0x1200
[  342.219799][T12202]  ? ext4_file_write_iter+0x451/0x1200
[  342.225255][T12202]  do_iter_readv_writev+0x2de/0x380
[  342.230453][T12202]  do_iter_write+0x192/0x5c0
[  342.235111][T12202]  ? splice_from_pipe_next+0x34f/0x3b0
[  342.240579][T12202]  ? kmalloc_array+0x2d/0x40
[  342.245224][T12202]  vfs_iter_write+0x4c/0x70
[  342.249781][T12202]  iter_file_splice_write+0x43a/0x790
[  342.255165][T12202]  ? splice_from_pipe+0xd0/0xd0
[  342.260052][T12202]  direct_splice_actor+0x80/0xa0
[  342.265015][T12202]  splice_direct_to_actor+0x345/0x650
[  342.270456][T12202]  ? do_splice_direct+0x190/0x190
[  342.275484][T12202]  do_splice_direct+0x106/0x190
[  342.280455][T12202]  do_sendfile+0x675/0xc40
[  342.284918][T12202]  __x64_sys_sendfile64+0x102/0x140
[  342.290126][T12202]  do_syscall_64+0x44/0xd0
[  342.294582][T12202]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  342.300484][T12202] RIP: 0033:0x7ff4b8299ae9
[  342.304892][T12202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:37 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000a000)

[  342.324501][T12202] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  342.332915][T12202] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  342.340968][T12202] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  342.348968][T12202] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  342.356942][T12202] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  342.364923][T12202] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  342.372972][T12202]  </TASK>
17:52:37 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000014)

17:52:37 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e4)

17:52:37 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000a100)

17:52:38 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 25)

17:52:38 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001200)

17:52:38 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000a800)

[  342.959622][T12227] FAULT_INJECTION: forcing a failure.
[  342.959622][T12227] name failslab, interval 1, probability 0, space 0, times 0
[  342.972263][T12227] CPU: 1 PID: 12227 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  342.981037][T12227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  342.991091][T12227] Call Trace:
[  342.994468][T12227]  <TASK>
[  342.997394][T12227]  dump_stack_lvl+0xd6/0x122
[  343.002008][T12227]  dump_stack+0x11/0x1b
[  343.006168][T12227]  should_fail+0x23c/0x250
[  343.010652][T12227]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  343.015959][T12227]  __should_failslab+0x81/0x90
[  343.020759][T12227]  should_failslab+0x5/0x20
[  343.025338][T12227]  kmem_cache_alloc+0x4f/0x320
[  343.030105][T12227]  ext4_mb_new_blocks+0x328/0x1ee0
[  343.035287][T12227]  ? ext4_get_branch+0x27d/0x2e0
[  343.040230][T12227]  ext4_ind_map_blocks+0xb1c/0x1740
[  343.045437][T12227]  ext4_map_blocks+0x6e3/0xf00
[  343.050230][T12227]  ext4_iomap_begin+0x4b0/0x630
[  343.055141][T12227]  ? ext4_alloc_da_blocks+0x100/0x100
[  343.060570][T12227]  iomap_iter+0x395/0x4a0
[  343.064956][T12227]  __iomap_dio_rw+0xb78/0x1070
[  343.069751][T12227]  iomap_dio_rw+0x38/0x80
[  343.074156][T12227]  ? ext4_file_write_iter+0x451/0x1200
[  343.079622][T12227]  ext4_file_write_iter+0xac3/0x1200
[  343.084917][T12227]  ? ext4_file_write_iter+0x451/0x1200
[  343.090386][T12227]  do_iter_readv_writev+0x2de/0x380
[  343.095694][T12227]  do_iter_write+0x192/0x5c0
[  343.100301][T12227]  ? splice_from_pipe_next+0x34f/0x3b0
[  343.105769][T12227]  ? kmalloc_array+0x2d/0x40
[  343.110409][T12227]  vfs_iter_write+0x4c/0x70
[  343.115269][T12227]  iter_file_splice_write+0x43a/0x790
[  343.120653][T12227]  ? splice_from_pipe+0xd0/0xd0
[  343.125507][T12227]  direct_splice_actor+0x80/0xa0
[  343.130449][T12227]  splice_direct_to_actor+0x345/0x650
[  343.135824][T12227]  ? do_splice_direct+0x190/0x190
[  343.140848][T12227]  do_splice_direct+0x106/0x190
[  343.145735][T12227]  do_sendfile+0x675/0xc40
[  343.150233][T12227]  __x64_sys_sendfile64+0x102/0x140
[  343.155513][T12227]  do_syscall_64+0x44/0xd0
[  343.159929][T12227]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  343.165909][T12227] RIP: 0033:0x7ff4b8299ae9
[  343.170325][T12227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  343.189940][T12227] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  343.198373][T12227] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  343.206349][T12227] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  343.214345][T12227] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  343.222312][T12227] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  343.230286][T12227] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  343.238332][T12227]  </TASK>
17:52:38 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000015)

17:52:38 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e5)

17:52:38 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000b000)

17:52:38 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 26)

17:52:38 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000b600)

[  343.797346][T12245] FAULT_INJECTION: forcing a failure.
[  343.797346][T12245] name failslab, interval 1, probability 0, space 0, times 0
[  343.810120][T12245] CPU: 0 PID: 12245 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  343.818937][T12245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  343.828988][T12245] Call Trace:
[  343.832268][T12245]  <TASK>
[  343.835198][T12245]  dump_stack_lvl+0xd6/0x122
[  343.839820][T12245]  dump_stack+0x11/0x1b
[  343.843975][T12245]  should_fail+0x23c/0x250
[  343.848390][T12245]  ? mempool_alloc_slab+0x16/0x20
[  343.853481][T12245]  __should_failslab+0x81/0x90
[  343.858252][T12245]  should_failslab+0x5/0x20
[  343.862878][T12245]  kmem_cache_alloc+0x4f/0x320
[  343.867643][T12245]  mempool_alloc_slab+0x16/0x20
[  343.872499][T12245]  ? mempool_free+0x130/0x130
[  343.877241][T12245]  mempool_alloc+0x9d/0x310
[  343.881753][T12245]  ? preempt_count_add+0x4e/0x90
[  343.886773][T12245]  ? _raw_read_unlock+0x13/0x30
[  343.891627][T12245]  ? jbd2_transaction_committed+0xad/0xc0
[  343.897363][T12245]  bio_alloc_bioset+0xcc/0x560
[  343.902137][T12245]  ? iov_iter_alignment+0x34b/0x370
[  343.907341][T12245]  iomap_dio_bio_iter+0x5ed/0xc70
[  343.912368][T12245]  ? ext4_alloc_da_blocks+0x100/0x100
[  343.917787][T12245]  __iomap_dio_rw+0x8b5/0x1070
[  343.922566][T12245]  iomap_dio_rw+0x38/0x80
[  343.927010][T12245]  ? ext4_file_write_iter+0x451/0x1200
[  343.932466][T12245]  ext4_file_write_iter+0xac3/0x1200
[  343.937751][T12245]  ? ext4_file_write_iter+0x451/0x1200
[  343.943217][T12245]  do_iter_readv_writev+0x2de/0x380
[  343.948437][T12245]  do_iter_write+0x192/0x5c0
[  343.953114][T12245]  ? splice_from_pipe_next+0x34f/0x3b0
[  343.958698][T12245]  ? kmalloc_array+0x2d/0x40
[  343.963321][T12245]  vfs_iter_write+0x4c/0x70
[  343.967834][T12245]  iter_file_splice_write+0x43a/0x790
[  343.973222][T12245]  ? splice_from_pipe+0xd0/0xd0
[  343.978075][T12245]  direct_splice_actor+0x80/0xa0
[  343.983019][T12245]  splice_direct_to_actor+0x345/0x650
[  343.988392][T12245]  ? do_splice_direct+0x190/0x190
[  343.993419][T12245]  do_splice_direct+0x106/0x190
[  343.998312][T12245]  do_sendfile+0x675/0xc40
[  344.002745][T12245]  __x64_sys_sendfile64+0x102/0x140
[  344.007944][T12245]  do_syscall_64+0x44/0xd0
[  344.012370][T12245]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  344.018269][T12245] RIP: 0033:0x7ff4b8299ae9
[  344.022776][T12245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:39 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001300)

[  344.042483][T12245] RSP: 002b:00007ff4b6010188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  344.050921][T12245] RAX: ffffffffffffffda RBX: 00007ff4b83acf60 RCX: 00007ff4b8299ae9
[  344.058968][T12245] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  344.066935][T12245] RBP: 00007ff4b60101d0 R08: 0000000000000000 R09: 0000000000000000
[  344.074927][T12245] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  344.082922][T12245] R13: 00007ffca0f1f41f R14: 00007ff4b6010300 R15: 0000000000022000
[  344.090893][T12245]  </TASK>
17:52:39 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000bc00)

17:52:39 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000016)

17:52:39 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e6)

17:52:39 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000c000)

17:52:39 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 27)

[  344.608721][T12272] FAULT_INJECTION: forcing a failure.
[  344.608721][T12272] name failslab, interval 1, probability 0, space 0, times 0
[  344.621397][T12272] CPU: 0 PID: 12272 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  344.630161][T12272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  344.640380][T12272] Call Trace:
[  344.643656][T12272]  <TASK>
[  344.646597][T12272]  dump_stack_lvl+0xd6/0x122
[  344.651245][T12272]  dump_stack+0x11/0x1b
[  344.655495][T12272]  should_fail+0x23c/0x250
[  344.660092][T12272]  ? jbd2__journal_start+0xf7/0x3f0
[  344.665338][T12272]  __should_failslab+0x81/0x90
[  344.670108][T12272]  should_failslab+0x5/0x20
[  344.674614][T12272]  kmem_cache_alloc+0x4f/0x320
[  344.679382][T12272]  jbd2__journal_start+0xf7/0x3f0
[  344.684419][T12272]  __ext4_journal_start_sb+0x159/0x310
[  344.689938][T12272]  ext4_iomap_begin+0x408/0x630
[  344.694880][T12272]  ? ext4_alloc_da_blocks+0x100/0x100
[  344.700316][T12272]  iomap_iter+0x395/0x4a0
[  344.704689][T12272]  __iomap_dio_rw+0xb78/0x1070
[  344.709511][T12272]  iomap_dio_rw+0x38/0x80
[  344.713846][T12272]  ? ext4_file_write_iter+0x451/0x1200
[  344.719312][T12272]  ext4_file_write_iter+0xac3/0x1200
[  344.724601][T12272]  ? ext4_file_write_iter+0x451/0x1200
[  344.730068][T12272]  do_iter_readv_writev+0x2de/0x380
[  344.735277][T12272]  do_iter_write+0x192/0x5c0
[  344.739899][T12272]  ? splice_from_pipe_next+0x34f/0x3b0
[  344.745411][T12272]  ? kmalloc_array+0x2d/0x40
[  344.750012][T12272]  vfs_iter_write+0x4c/0x70
[  344.754575][T12272]  iter_file_splice_write+0x43a/0x790
[  344.759958][T12272]  ? splice_from_pipe+0xd0/0xd0
[  344.764891][T12272]  direct_splice_actor+0x80/0xa0
[  344.769836][T12272]  splice_direct_to_actor+0x345/0x650
[  344.775290][T12272]  ? do_splice_direct+0x190/0x190
[  344.780330][T12272]  do_splice_direct+0x106/0x190
[  344.785417][T12272]  do_sendfile+0x675/0xc40
[  344.789837][T12272]  __x64_sys_sendfile64+0x102/0x140
[  344.795040][T12272]  do_syscall_64+0x44/0xd0
[  344.799461][T12272]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  344.805397][T12272] RIP: 0033:0x7ff4b8299ae9
[  344.809809][T12272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  344.829429][T12272] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  344.837917][T12272] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  344.845894][T12272] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  344.853870][T12272] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  344.861900][T12272] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  344.869908][T12272] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  344.877883][T12272]  </TASK>
17:52:40 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001900)

17:52:40 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000d000)

17:52:40 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000e000)

17:52:40 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000017)

17:52:40 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r2=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r3=>0x0}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000066280)={{<r4=>0x0, 0x9, 0x1f, 0x9, 0x7a8a0000000000, 0x6, 0x7, 0x7ff, 0x5, 0x4, 0xff, 0x401, 0x7fffffff, 0x31, 0x8}})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000067480)={0x0, ""/256, 0x0, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000067680)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r6=>0x0}], 0x9, "195211854f70f5"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000068680)={0xfffffffffffffffe, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r7=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}], 0x1, "b971345317af71"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000069680)={<r8=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f000006a680)={{<r9=>0x0, 0x3f29, 0x6, 0x20, 0x0, 0x8, 0x8, 0x9, 0x8, 0x7, 0x5, 0xc0f8, 0x3ac3958a, 0x7, 0x4}, 0x40, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000006a740)={<r10=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r11=>0x0, ""/256, <r12=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f000006b740)={{<r13=>0x0, 0x8, 0x80000000, 0x14, 0x4, 0x100000000, 0x0, 0x80000000, 0x49f1090a, 0x13c0735, 0x0, 0x4, 0x9, 0x81, 0x2}, 0x38, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
preadv(r0, &(0x7f0000001940)=[{&(0x7f0000000100)=""/241, 0xf1}, {&(0x7f0000000200)=""/29, 0x1d}, {&(0x7f0000000240)=""/228, 0xe4}, {&(0x7f0000000340)=""/15, 0xf}, {&(0x7f0000000380)=""/87, 0x57}, {&(0x7f0000000400)=""/207, 0xcf}, {&(0x7f0000000500)=""/149, 0x95}, {&(0x7f00000005c0)=""/112, 0x70}, {&(0x7f0000000840)=""/217, 0xd9}, {&(0x7f0000000940)=""/4096, 0x1000}], 0xa, 0x9, 0x3)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000006b800)={0x0, ""/256, 0x0, <r14=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000006ba00)={0x0, ""/256, 0x0, <r15=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000006bc00)={0x6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {0x0, r5}, {0x0, r6}, {r7, r8}, {}, {r9, r10}, {r11}, {r13, r14}, {0x0, r15}], 0x7, "9b8ec4af4be66d"})
r16 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r16, 0x0, 0x80000001)

17:52:40 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e7)

17:52:40 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 28)

[  345.493421][T12298] FAULT_INJECTION: forcing a failure.
[  345.493421][T12298] name failslab, interval 1, probability 0, space 0, times 0
[  345.507197][T12298] CPU: 0 PID: 12298 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  345.515946][T12298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  345.526078][T12298] Call Trace:
[  345.529344][T12298]  <TASK>
[  345.532310][T12298]  dump_stack_lvl+0xd6/0x122
[  345.536998][T12298]  dump_stack+0x11/0x1b
[  345.541213][T12298]  should_fail+0x23c/0x250
[  345.546135][T12298]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  345.551407][T12298]  __should_failslab+0x81/0x90
[  345.556205][T12298]  should_failslab+0x5/0x20
[  345.560719][T12298]  kmem_cache_alloc+0x4f/0x320
[  345.565517][T12298]  ext4_mb_new_blocks+0x328/0x1ee0
[  345.570701][T12298]  ? ext4_get_branch+0x27d/0x2e0
[  345.575620][T12298]  ext4_ind_map_blocks+0xb1c/0x1740
[  345.580805][T12298]  ext4_map_blocks+0x6e3/0xf00
[  345.585580][T12298]  ext4_iomap_begin+0x4b0/0x630
[  345.590433][T12298]  ? ext4_alloc_da_blocks+0x100/0x100
[  345.595872][T12298]  iomap_iter+0x395/0x4a0
[  345.600194][T12298]  __iomap_dio_rw+0xb78/0x1070
[  345.604956][T12298]  iomap_dio_rw+0x38/0x80
[  345.609366][T12298]  ? ext4_file_write_iter+0x451/0x1200
[  345.614906][T12298]  ext4_file_write_iter+0xac3/0x1200
[  345.620175][T12298]  ? ext4_file_write_iter+0x451/0x1200
[  345.625685][T12298]  do_iter_readv_writev+0x2de/0x380
[  345.630944][T12298]  do_iter_write+0x192/0x5c0
[  345.635522][T12298]  ? splice_from_pipe_next+0x34f/0x3b0
[  345.640981][T12298]  ? kmalloc_array+0x2d/0x40
[  345.645571][T12298]  vfs_iter_write+0x4c/0x70
[  345.650060][T12298]  iter_file_splice_write+0x43a/0x790
[  345.655434][T12298]  ? splice_from_pipe+0xd0/0xd0
[  345.660307][T12298]  direct_splice_actor+0x80/0xa0
[  345.665352][T12298]  splice_direct_to_actor+0x345/0x650
[  345.670709][T12298]  ? do_splice_direct+0x190/0x190
[  345.675751][T12298]  do_splice_direct+0x106/0x190
[  345.680589][T12298]  do_sendfile+0x675/0xc40
[  345.685004][T12298]  __x64_sys_sendfile64+0x102/0x140
[  345.690356][T12298]  do_syscall_64+0x44/0xd0
[  345.694807][T12298]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  345.700760][T12298] RIP: 0033:0x7ff4b8299ae9
[  345.705155][T12298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  345.724899][T12298] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  345.733306][T12298] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  345.741324][T12298] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  345.749288][T12298] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  345.757265][T12298] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  345.765220][T12298] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  345.773280][T12298]  </TASK>
17:52:41 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f000)

17:52:41 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001b00)

17:52:41 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x20, r2, 0x1, 0x0, 0x0, {0x24}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x20}}, 0x0)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x400, 0x70bd2c, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x84}, 0x48000)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000040)=0x8)
r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000140)='./bus\x00', 0x4200, 0x6)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r6, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_CLAIMINTERFACE(r6, 0x8004550f, &(0x7f0000000100)=0x10000)
sendfile(r4, r5, 0x0, 0x80000001)

17:52:41 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f100)

17:52:41 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000018)

17:52:41 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 29)

17:52:41 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e8)

[  346.439436][T12331] FAULT_INJECTION: forcing a failure.
[  346.439436][T12331] name failslab, interval 1, probability 0, space 0, times 0
[  346.452138][T12331] CPU: 1 PID: 12331 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  346.461054][T12331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  346.471224][T12331] Call Trace:
[  346.474540][T12331]  <TASK>
[  346.477473][T12331]  dump_stack_lvl+0xd6/0x122
[  346.482121][T12331]  dump_stack+0x11/0x1b
17:52:41 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
ioctl$TIOCMGET(r0, 0x5415, &(0x7f0000000100))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  346.486349][T12331]  should_fail+0x23c/0x250
[  346.490777][T12331]  ? mempool_alloc_slab+0x16/0x20
[  346.495803][T12331]  __should_failslab+0x81/0x90
[  346.500639][T12331]  should_failslab+0x5/0x20
[  346.505278][T12331]  kmem_cache_alloc+0x4f/0x320
[  346.510081][T12331]  mempool_alloc_slab+0x16/0x20
[  346.514967][T12331]  ? mempool_free+0x130/0x130
[  346.519688][T12331]  mempool_alloc+0x9d/0x310
[  346.524217][T12331]  ? preempt_count_add+0x4e/0x90
[  346.529227][T12331]  ? _raw_read_unlock+0x13/0x30
[  346.534076][T12331]  ? jbd2_transaction_committed+0xad/0xc0
[  346.539878][T12331]  bio_alloc_bioset+0xcc/0x560
[  346.544666][T12331]  ? iov_iter_alignment+0x34b/0x370
[  346.549866][T12331]  iomap_dio_bio_iter+0x5ed/0xc70
[  346.554958][T12331]  ? ext4_alloc_da_blocks+0x100/0x100
[  346.560339][T12331]  __iomap_dio_rw+0x8b5/0x1070
[  346.565122][T12331]  iomap_dio_rw+0x38/0x80
[  346.569462][T12331]  ? ext4_file_write_iter+0x451/0x1200
[  346.574924][T12331]  ext4_file_write_iter+0xac3/0x1200
[  346.580282][T12331]  ? ext4_file_write_iter+0x451/0x1200
[  346.586002][T12331]  do_iter_readv_writev+0x2de/0x380
[  346.591202][T12331]  do_iter_write+0x192/0x5c0
[  346.595879][T12331]  ? splice_from_pipe_next+0x34f/0x3b0
[  346.601348][T12331]  ? kmalloc_array+0x2d/0x40
[  346.605943][T12331]  vfs_iter_write+0x4c/0x70
[  346.610518][T12331]  iter_file_splice_write+0x43a/0x790
[  346.615937][T12331]  ? splice_from_pipe+0xd0/0xd0
[  346.620791][T12331]  direct_splice_actor+0x80/0xa0
[  346.625745][T12331]  splice_direct_to_actor+0x345/0x650
[  346.631126][T12331]  ? do_splice_direct+0x190/0x190
[  346.636161][T12331]  do_splice_direct+0x106/0x190
[  346.641013][T12331]  do_sendfile+0x675/0xc40
[  346.645504][T12331]  __x64_sys_sendfile64+0x102/0x140
[  346.650700][T12331]  do_syscall_64+0x44/0xd0
[  346.655186][T12331]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  346.661083][T12331] RIP: 0033:0x7ff4b8299ae9
[  346.665496][T12331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  346.685191][T12331] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  346.693607][T12331] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  346.701580][T12331] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  346.709646][T12331] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  346.717620][T12331] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  346.725588][T12331] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  346.733559][T12331]  </TASK>
17:52:41 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f200)

17:52:42 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80002000)

17:52:42 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f300)

17:52:42 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
open(&(0x7f0000000400)='./bus\x00', 0x80000, 0x20)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
recvmsg$can_j1939(r0, &(0x7f00000003c0)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000180)=""/22, 0x16}, {&(0x7f00000001c0)=""/191, 0xbf}], 0x2, &(0x7f00000002c0)=""/201, 0xc9}, 0x2060)

17:52:42 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000019)

17:52:42 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 30)

17:52:42 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003e9)

[  347.310385][T12361] FAULT_INJECTION: forcing a failure.
[  347.310385][T12361] name failslab, interval 1, probability 0, space 0, times 0
[  347.323066][T12361] CPU: 1 PID: 12361 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  347.333121][T12361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  347.343226][T12361] Call Trace:
[  347.346611][T12361]  <TASK>
[  347.349529][T12361]  dump_stack_lvl+0xd6/0x122
[  347.354264][T12361]  dump_stack+0x11/0x1b
[  347.358454][T12361]  should_fail+0x23c/0x250
[  347.362867][T12361]  ? jbd2__journal_start+0xf7/0x3f0
[  347.368072][T12361]  __should_failslab+0x81/0x90
[  347.372988][T12361]  should_failslab+0x5/0x20
[  347.377482][T12361]  kmem_cache_alloc+0x4f/0x320
[  347.382233][T12361]  jbd2__journal_start+0xf7/0x3f0
[  347.387239][T12361]  __ext4_journal_start_sb+0x159/0x310
[  347.392689][T12361]  ext4_iomap_begin+0x408/0x630
[  347.397558][T12361]  ? ext4_alloc_da_blocks+0x100/0x100
[  347.402924][T12361]  iomap_iter+0x395/0x4a0
[  347.407251][T12361]  __iomap_dio_rw+0xb78/0x1070
[  347.412127][T12361]  iomap_dio_rw+0x38/0x80
[  347.416476][T12361]  ? ext4_file_write_iter+0x451/0x1200
[  347.421987][T12361]  ext4_file_write_iter+0xac3/0x1200
[  347.427269][T12361]  ? ext4_file_write_iter+0x451/0x1200
[  347.432735][T12361]  do_iter_readv_writev+0x2de/0x380
[  347.437919][T12361]  do_iter_write+0x192/0x5c0
[  347.442515][T12361]  ? splice_from_pipe_next+0x34f/0x3b0
[  347.447983][T12361]  ? kmalloc_array+0x2d/0x40
[  347.452644][T12361]  vfs_iter_write+0x4c/0x70
[  347.457133][T12361]  iter_file_splice_write+0x43a/0x790
[  347.462500][T12361]  ? splice_from_pipe+0xd0/0xd0
[  347.467450][T12361]  direct_splice_actor+0x80/0xa0
[  347.472408][T12361]  splice_direct_to_actor+0x345/0x650
[  347.477764][T12361]  ? do_splice_direct+0x190/0x190
[  347.482848][T12361]  do_splice_direct+0x106/0x190
[  347.487804][T12361]  do_sendfile+0x675/0xc40
[  347.492294][T12361]  __x64_sys_sendfile64+0x102/0x140
[  347.497490][T12361]  do_syscall_64+0x44/0xd0
[  347.501893][T12361]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  347.507795][T12361] RIP: 0033:0x7ff4b8299ae9
[  347.512505][T12361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  347.532158][T12361] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  347.540557][T12361] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  347.548535][T12361] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  347.556549][T12361] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  347.564508][T12361] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  347.572486][T12361] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  347.580522][T12361]  </TASK>
17:52:42 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f400)

17:52:42 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800027b5)

17:52:43 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = pidfd_getfd(r2, r2, 0x0)
fchmodat(r3, &(0x7f0000000100)='./file0\x00', 0xa2)

17:52:43 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f500)

17:52:43 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 31)

17:52:43 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000001a)

17:52:43 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ea)

[  348.180538][T12386] FAULT_INJECTION: forcing a failure.
[  348.180538][T12386] name failslab, interval 1, probability 0, space 0, times 0
[  348.193213][T12386] CPU: 0 PID: 12386 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  348.201996][T12386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  348.212055][T12386] Call Trace:
[  348.216750][T12386]  <TASK>
[  348.219678][T12386]  dump_stack_lvl+0xd6/0x122
[  348.224320][T12386]  dump_stack+0x11/0x1b
[  348.228523][T12386]  should_fail+0x23c/0x250
[  348.232973][T12386]  ? jbd2__journal_start+0xf7/0x3f0
[  348.238192][T12386]  __should_failslab+0x81/0x90
[  348.242969][T12386]  should_failslab+0x5/0x20
[  348.247528][T12386]  kmem_cache_alloc+0x4f/0x320
[  348.252307][T12386]  jbd2__journal_start+0xf7/0x3f0
[  348.257340][T12386]  __ext4_journal_start_sb+0x159/0x310
[  348.262890][T12386]  ext4_iomap_begin+0x408/0x630
[  348.267830][T12386]  ? ext4_alloc_da_blocks+0x100/0x100
[  348.273243][T12386]  iomap_iter+0x395/0x4a0
[  348.277577][T12386]  __iomap_dio_rw+0xb78/0x1070
[  348.282350][T12386]  iomap_dio_rw+0x38/0x80
[  348.286747][T12386]  ? ext4_file_write_iter+0x451/0x1200
[  348.292250][T12386]  ext4_file_write_iter+0xac3/0x1200
[  348.297568][T12386]  ? ext4_file_write_iter+0x451/0x1200
[  348.303112][T12386]  do_iter_readv_writev+0x2de/0x380
[  348.308320][T12386]  do_iter_write+0x192/0x5c0
[  348.312927][T12386]  ? splice_from_pipe_next+0x34f/0x3b0
[  348.318388][T12386]  ? kmalloc_array+0x2d/0x40
[  348.322978][T12386]  vfs_iter_write+0x4c/0x70
17:52:43 executing program 5:
r0 = creat(&(0x7f0000000140)='./file0/file0\x00', 0x7)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x1ed481, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x3c1403, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
fchdir(r3)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000180)="aedaa410e905d9c94cc19fcece5f3c2c9d7801f5b631cb18129c6bc0b4c3303b6db9fc2eac046c397733d613f615717e956e4073326bfce132b9bf30aef0ae73b7613a95d6c0198db3474a0a99cf9712e9d23d70fddd6dc3bc30297f8c57457d741bab171177d16b12544ce44e54e7ed3120a7731042c03e51ba62f3a928633878217436eed36d508382d607a191d00929a42f748b28d03063ff32747df5049102c7a542f34ed69798920456c6d5ec31a7b950fdc797c0eb383b6c32499893cfc2a709c94c7b18dac2d63420f509e62e8c9df7d7ee44a489f9c44632130914d109d54156e5a0aa535691572a75853a5280196e8a6b", 0xf5}], 0x1, 0x800, 0xe64)
fallocate(r4, 0xc, 0x7fffffff, 0x32)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:43 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f600)

[  348.327519][T12386]  iter_file_splice_write+0x43a/0x790
[  348.332982][T12386]  ? splice_from_pipe+0xd0/0xd0
[  348.337884][T12386]  direct_splice_actor+0x80/0xa0
[  348.342825][T12386]  splice_direct_to_actor+0x345/0x650
[  348.348197][T12386]  ? do_splice_direct+0x190/0x190
[  348.353260][T12386]  do_splice_direct+0x106/0x190
[  348.358217][T12386]  do_sendfile+0x675/0xc40
[  348.362639][T12386]  __x64_sys_sendfile64+0x102/0x140
[  348.367848][T12386]  do_syscall_64+0x44/0xd0
[  348.372265][T12386]  entry_SYSCALL_64_after_hwframe+0x44/0xae
17:52:43 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
open(&(0x7f0000000100)='./bus\x00', 0x0, 0x12)

[  348.378234][T12386] RIP: 0033:0x7ff4b8299ae9
[  348.382642][T12386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  348.402274][T12386] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  348.410732][T12386] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  348.418789][T12386] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  348.426796][T12386] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  348.434764][T12386] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  348.442738][T12386] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  348.450741][T12386]  </TASK>
17:52:43 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f700)

17:52:43 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80002900)

17:52:44 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000004, 0x30, r0, 0x7cb53000)

17:52:44 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f800)

17:52:44 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 32)

17:52:44 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000001b)

[  349.058538][T12420] FAULT_INJECTION: forcing a failure.
[  349.058538][T12420] name failslab, interval 1, probability 0, space 0, times 0
[  349.071521][T12420] CPU: 0 PID: 12420 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  349.080421][T12420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  349.090559][T12420] Call Trace:
[  349.093833][T12420]  <TASK>
[  349.096805][T12420]  dump_stack_lvl+0xd6/0x122
[  349.101401][T12420]  dump_stack+0x11/0x1b
[  349.105571][T12420]  should_fail+0x23c/0x250
[  349.109986][T12420]  ? mempool_alloc_slab+0x16/0x20
[  349.115061][T12420]  __should_failslab+0x81/0x90
[  349.119863][T12420]  should_failslab+0x5/0x20
[  349.124374][T12420]  kmem_cache_alloc+0x4f/0x320
[  349.129175][T12420]  mempool_alloc_slab+0x16/0x20
[  349.134045][T12420]  ? mempool_free+0x130/0x130
[  349.138727][T12420]  mempool_alloc+0x9d/0x310
[  349.143303][T12420]  ? preempt_count_add+0x4e/0x90
[  349.148248][T12420]  ? _raw_read_unlock+0x13/0x30
[  349.153390][T12420]  ? jbd2_transaction_committed+0xad/0xc0
17:52:44 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003eb)

[  349.159120][T12420]  bio_alloc_bioset+0xcc/0x560
[  349.163888][T12420]  ? iov_iter_alignment+0x34b/0x370
[  349.169090][T12420]  iomap_dio_bio_iter+0x5ed/0xc70
[  349.174281][T12420]  ? ext4_alloc_da_blocks+0x100/0x100
[  349.179670][T12420]  __iomap_dio_rw+0x8b5/0x1070
[  349.184453][T12420]  iomap_dio_rw+0x38/0x80
[  349.188884][T12420]  ? ext4_file_write_iter+0x451/0x1200
[  349.194353][T12420]  ext4_file_write_iter+0xac3/0x1200
[  349.199643][T12420]  ? ext4_file_write_iter+0x451/0x1200
[  349.205177][T12420]  do_iter_readv_writev+0x2de/0x380
[  349.210394][T12420]  do_iter_write+0x192/0x5c0
[  349.215002][T12420]  ? splice_from_pipe_next+0x34f/0x3b0
[  349.220463][T12420]  ? kmalloc_array+0x2d/0x40
[  349.225113][T12420]  vfs_iter_write+0x4c/0x70
[  349.229624][T12420]  iter_file_splice_write+0x43a/0x790
[  349.235040][T12420]  ? splice_from_pipe+0xd0/0xd0
[  349.239969][T12420]  direct_splice_actor+0x80/0xa0
[  349.244908][T12420]  splice_direct_to_actor+0x345/0x650
[  349.250316][T12420]  ? do_splice_direct+0x190/0x190
17:52:44 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000f900)

17:52:44 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x20000, 0x1000}, 0x18)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f00000004c0)=0x80, 0x4)
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000000080)=0x2, 0x4)
r3 = socket(0x100000000011, 0x2, 0x0)
bind(r3, &(0x7f0000000940)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836010004b0e0301a4ce875f2e3ff5f163ee340b767950080f5ff000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r3, &(0x7f00000003c0)={0x11, 0x0, <r4=>0x0}, &(0x7f0000000100)=0x14)
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000140)=0x400, 0x4)
bind$xdp(r2, &(0x7f0000000900)={0x2c, 0xc, r4}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@newtclass={0x2c, 0x28, 0x1, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xfff8, 0xe}, {0x10}, {0xb, 0x8}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x20}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
fallocate(r1, 0x4d, 0x7fff, 0x3)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r5 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x80000001)

[  349.255434][T12420]  do_splice_direct+0x106/0x190
[  349.260306][T12420]  do_sendfile+0x675/0xc40
[  349.264753][T12420]  __x64_sys_sendfile64+0x102/0x140
[  349.269959][T12420]  do_syscall_64+0x44/0xd0
[  349.274414][T12420]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  349.280319][T12420] RIP: 0033:0x7ff4b8299ae9
[  349.284731][T12420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  349.304464][T12420] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  349.312933][T12420] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  349.320975][T12420] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  349.328953][T12420] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  349.336942][T12420] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  349.344986][T12420] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  349.352956][T12420]  </TASK>
17:52:44 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000fa00)

17:52:44 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80002b9d)

17:52:44 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ec)

17:52:45 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r5, 0x0, 0x0, 0x0)
sendfile(r5, r4, &(0x7f0000000100)=0x400, 0x3f)

17:52:45 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 33)

17:52:45 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000fb00)

[  349.924185][T12458] FAULT_INJECTION: forcing a failure.
[  349.924185][T12458] name failslab, interval 1, probability 0, space 0, times 0
[  349.936932][T12458] CPU: 1 PID: 12458 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  349.945679][T12458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  349.955715][T12458] Call Trace:
[  349.958979][T12458]  <TASK>
[  349.961918][T12458]  dump_stack_lvl+0xd6/0x122
[  349.966509][T12458]  dump_stack+0x11/0x1b
[  349.970648][T12458]  should_fail+0x23c/0x250
[  349.975133][T12458]  ? jbd2__journal_start+0xf7/0x3f0
[  349.980498][T12458]  __should_failslab+0x81/0x90
[  349.985254][T12458]  should_failslab+0x5/0x20
[  349.989759][T12458]  kmem_cache_alloc+0x4f/0x320
[  349.994560][T12458]  jbd2__journal_start+0xf7/0x3f0
[  349.999570][T12458]  __ext4_journal_start_sb+0x159/0x310
[  350.005013][T12458]  ext4_iomap_begin+0x408/0x630
[  350.010283][T12458]  ? ext4_alloc_da_blocks+0x100/0x100
[  350.015638][T12458]  iomap_iter+0x395/0x4a0
[  350.019972][T12458]  __iomap_dio_rw+0xb78/0x1070
[  350.024798][T12458]  iomap_dio_rw+0x38/0x80
[  350.029301][T12458]  ? ext4_file_write_iter+0x451/0x1200
[  350.034749][T12458]  ext4_file_write_iter+0xac3/0x1200
[  350.042079][T12458]  ? ext4_file_write_iter+0x451/0x1200
[  350.047537][T12458]  do_iter_readv_writev+0x2de/0x380
[  350.052736][T12458]  do_iter_write+0x192/0x5c0
[  350.057327][T12458]  vfs_iter_write+0x4c/0x70
[  350.061814][T12458]  iter_file_splice_write+0x43a/0x790
[  350.067210][T12458]  ? splice_from_pipe+0xd0/0xd0
[  350.072145][T12458]  direct_splice_actor+0x80/0xa0
[  350.077333][T12458]  splice_direct_to_actor+0x345/0x650
[  350.082775][T12458]  ? do_splice_direct+0x190/0x190
[  350.087852][T12458]  do_splice_direct+0x106/0x190
[  350.092826][T12458]  do_sendfile+0x675/0xc40
[  350.097225][T12458]  __x64_sys_sendfile64+0x102/0x140
[  350.102411][T12458]  do_syscall_64+0x44/0xd0
[  350.106812][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  350.112688][T12458] RIP: 0033:0x7ff4b8299ae9
[  350.117087][T12458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  350.136729][T12458] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  350.145129][T12458] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  350.153163][T12458] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  350.161127][T12458] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
17:52:45 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000001c)

[  350.169084][T12458] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  350.177050][T12458] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  350.185008][T12458]  </TASK>
17:52:45 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000fc00)

17:52:45 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x40842, 0x1)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
pwrite64(r3, 0x0, 0x0, 0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:45 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80002d00)

17:52:45 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ed)

17:52:45 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000fd00)

17:52:45 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 34)

17:52:45 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>r0, {0x3}}, './bus\x00'})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000100)=ANY=[@ANYBLOB="d1505519d6cd803e00", @ANYRES16=r0, @ANYBLOB="02000000000000002e2f62757300"])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

[  350.766802][T12483] FAULT_INJECTION: forcing a failure.
[  350.766802][T12483] name failslab, interval 1, probability 0, space 0, times 0
[  350.779535][T12483] CPU: 0 PID: 12483 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  350.788301][T12483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  350.798446][T12483] Call Trace:
[  350.801720][T12483]  <TASK>
[  350.804649][T12483]  dump_stack_lvl+0xd6/0x122
[  350.809245][T12483]  dump_stack+0x11/0x1b
[  350.813403][T12483]  should_fail+0x23c/0x250
[  350.817828][T12483]  ? mempool_alloc_slab+0x16/0x20
[  350.822862][T12483]  __should_failslab+0x81/0x90
[  350.827663][T12483]  should_failslab+0x5/0x20
[  350.832187][T12483]  kmem_cache_alloc+0x4f/0x320
[  350.836990][T12483]  mempool_alloc_slab+0x16/0x20
[  350.841913][T12483]  ? mempool_free+0x130/0x130
[  350.846599][T12483]  mempool_alloc+0x9d/0x310
[  350.851110][T12483]  ? preempt_count_add+0x4e/0x90
[  350.856072][T12483]  ? _raw_read_unlock+0x13/0x30
[  350.860933][T12483]  ? jbd2_transaction_committed+0xad/0xc0
[  350.866658][T12483]  bio_alloc_bioset+0xcc/0x560
[  350.871467][T12483]  ? iov_iter_alignment+0x34b/0x370
[  350.876668][T12483]  iomap_dio_bio_iter+0x5ed/0xc70
[  350.881706][T12483]  ? ext4_alloc_da_blocks+0x100/0x100
[  350.887126][T12483]  __iomap_dio_rw+0x8b5/0x1070
[  350.891925][T12483]  iomap_dio_rw+0x38/0x80
[  350.896283][T12483]  ? ext4_file_write_iter+0x451/0x1200
[  350.901812][T12483]  ext4_file_write_iter+0xac3/0x1200
[  350.907104][T12483]  ? ext4_file_write_iter+0x451/0x1200
[  350.912649][T12483]  do_iter_readv_writev+0x2de/0x380
[  350.917880][T12483]  do_iter_write+0x192/0x5c0
[  350.922503][T12483]  ? splice_from_pipe_next+0x34f/0x3b0
[  350.928008][T12483]  ? kmalloc_array+0x2d/0x40
[  350.932644][T12483]  vfs_iter_write+0x4c/0x70
[  350.937200][T12483]  iter_file_splice_write+0x43a/0x790
[  350.942604][T12483]  ? splice_from_pipe+0xd0/0xd0
[  350.947588][T12483]  direct_splice_actor+0x80/0xa0
[  350.952553][T12483]  splice_direct_to_actor+0x345/0x650
[  350.957981][T12483]  ? do_splice_direct+0x190/0x190
[  350.963015][T12483]  do_splice_direct+0x106/0x190
[  350.967878][T12483]  do_sendfile+0x675/0xc40
[  350.972358][T12483]  __x64_sys_sendfile64+0x102/0x140
[  350.977563][T12483]  do_syscall_64+0x44/0xd0
[  350.981987][T12483]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  350.987940][T12483] RIP: 0033:0x7ff4b8299ae9
[  350.992352][T12483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:46 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000fe00)

[  351.012091][T12483] RSP: 002b:00007ff4b6010188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  351.020504][T12483] RAX: ffffffffffffffda RBX: 00007ff4b83acf60 RCX: 00007ff4b8299ae9
[  351.028474][T12483] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  351.036449][T12483] RBP: 00007ff4b60101d0 R08: 0000000000000000 R09: 0000000000000000
[  351.044477][T12483] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  351.052445][T12483] R13: 00007ffca0f1f41f R14: 00007ff4b6010300 R15: 0000000000022000
[  351.060423][T12483]  </TASK>
17:52:46 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000001d)

17:52:46 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r3, 0xc0096616, &(0x7f0000000100)={0x3, [0x0, 0x0, 0x0]})

17:52:46 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8000ff00)

17:52:46 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 35)

17:52:46 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80002e00)

[  351.492165][T12510] FAULT_INJECTION: forcing a failure.
[  351.492165][T12510] name failslab, interval 1, probability 0, space 0, times 0
[  351.504871][T12510] CPU: 1 PID: 12510 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  351.513616][T12510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  351.523712][T12510] Call Trace:
[  351.526972][T12510]  <TASK>
[  351.529885][T12510]  dump_stack_lvl+0xd6/0x122
[  351.534490][T12510]  dump_stack+0x11/0x1b
[  351.538647][T12510]  should_fail+0x23c/0x250
[  351.543136][T12510]  ? mempool_alloc_slab+0x16/0x20
[  351.548149][T12510]  __should_failslab+0x81/0x90
[  351.552926][T12510]  should_failslab+0x5/0x20
[  351.557420][T12510]  kmem_cache_alloc+0x4f/0x320
[  351.562174][T12510]  mempool_alloc_slab+0x16/0x20
[  351.567177][T12510]  ? mempool_free+0x130/0x130
[  351.571954][T12510]  mempool_alloc+0x9d/0x310
[  351.576445][T12510]  ? preempt_count_add+0x4e/0x90
[  351.581436][T12510]  ? _raw_read_unlock+0x13/0x30
[  351.586371][T12510]  ? jbd2_transaction_committed+0xad/0xc0
[  351.592076][T12510]  bio_alloc_bioset+0xcc/0x560
[  351.596824][T12510]  ? iov_iter_alignment+0x34b/0x370
[  351.602259][T12510]  iomap_dio_bio_iter+0x5ed/0xc70
[  351.607479][T12510]  ? ext4_alloc_da_blocks+0x100/0x100
[  351.612924][T12510]  __iomap_dio_rw+0x8b5/0x1070
[  351.617689][T12510]  iomap_dio_rw+0x38/0x80
[  351.622035][T12510]  ? ext4_file_write_iter+0x451/0x1200
[  351.627500][T12510]  ext4_file_write_iter+0xac3/0x1200
[  351.632837][T12510]  ? ext4_file_write_iter+0x451/0x1200
[  351.638281][T12510]  do_iter_readv_writev+0x2de/0x380
[  351.643484][T12510]  do_iter_write+0x192/0x5c0
[  351.648187][T12510]  vfs_iter_write+0x4c/0x70
[  351.652885][T12510]  iter_file_splice_write+0x43a/0x790
[  351.658256][T12510]  ? splice_from_pipe+0xd0/0xd0
[  351.663108][T12510]  direct_splice_actor+0x80/0xa0
[  351.668051][T12510]  splice_direct_to_actor+0x345/0x650
[  351.673447][T12510]  ? do_splice_direct+0x190/0x190
[  351.678500][T12510]  do_splice_direct+0x106/0x190
[  351.683338][T12510]  do_sendfile+0x675/0xc40
[  351.687743][T12510]  __x64_sys_sendfile64+0x102/0x140
[  351.692961][T12510]  do_syscall_64+0x44/0xd0
[  351.697383][T12510]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  351.703490][T12510] RIP: 0033:0x7ff4b8299ae9
[  351.707890][T12510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  351.727866][T12510] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:52:47 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ee)

[  351.736279][T12510] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  351.744244][T12510] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  351.752364][T12510] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  351.760333][T12510] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  351.768286][T12510] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  351.776255][T12510]  </TASK>
17:52:47 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xffffffffffffffff)

17:52:47 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000040))
sendfile(r0, r1, 0x0, 0x80000001)
r2 = dup2(r1, 0xffffffffffffffff)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
renameat(r2, &(0x7f0000000080)='./bus\x00', r3, &(0x7f0000000100)='./bus\x00')
fallocate(0xffffffffffffffff, 0xe, 0x2, 0xffffffff)

17:52:47 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x8000001e)

17:52:47 executing program 5:
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x41)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='ext4_mb_discard_preallocations\x00', r1}, 0x10)
dup(r3)

17:52:47 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 36)

17:52:47 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0xb)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000002c0)={'geneve1\x00', <r6=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="000000000000000008000400", @ANYRES32=r4], 0x38}}, 0x0)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)
r7 = openat(r0, &(0x7f0000000040)='./bus\x00', 0xc0802, 0x1ac)
r8 = socket(0x100000000011, 0x2, 0x0)
bind(r8, &(0x7f0000000940)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836010004b0e0301a4ce875f2e3ff5f163ee340b767950080f5ff000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r8, &(0x7f00000003c0)={0x11, 0x0, <r9=>0x0}, &(0x7f0000000100)=0x14)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000140)=0x400, 0x4)
bind$xdp(0xffffffffffffffff, &(0x7f0000000900)={0x2c, 0xc, r9}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1016a48defc9453e}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB="24000000520000012dbd7000fedbdf251c08000600e1ffffff08000100", @ANYRES32=r9, @ANYBLOB="d691c8"], 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x20044000)
r10 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x200, 0x12)
renameat(r7, &(0x7f0000000100)='./bus\x00', r10, &(0x7f0000000180)='./bus\x00')
sendfile(r0, r1, 0x0, 0x80000001)

[  352.353926][T12537] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  352.379936][T12538] FAULT_INJECTION: forcing a failure.
[  352.379936][T12538] name failslab, interval 1, probability 0, space 0, times 0
[  352.392603][T12538] CPU: 1 PID: 12538 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  352.401370][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  352.411419][T12538] Call Trace:
[  352.414700][T12538]  <TASK>
[  352.417652][T12538]  dump_stack_lvl+0xd6/0x122
[  352.422316][T12538]  dump_stack+0x11/0x1b
[  352.426522][T12538]  should_fail+0x23c/0x250
[  352.430932][T12538]  ? jbd2__journal_start+0xf7/0x3f0
[  352.436155][T12538]  __should_failslab+0x81/0x90
[  352.440968][T12538]  should_failslab+0x5/0x20
[  352.445614][T12538]  kmem_cache_alloc+0x4f/0x320
[  352.450361][T12538]  jbd2__journal_start+0xf7/0x3f0
[  352.455398][T12538]  __ext4_journal_start_sb+0x159/0x310
[  352.460864][T12538]  ext4_iomap_begin+0x408/0x630
[  352.465802][T12538]  ? ext4_alloc_da_blocks+0x100/0x100
[  352.471261][T12538]  iomap_iter+0x395/0x4a0
[  352.475598][T12538]  __iomap_dio_rw+0xb78/0x1070
[  352.480427][T12538]  iomap_dio_rw+0x38/0x80
[  352.484861][T12538]  ? ext4_file_write_iter+0x451/0x1200
[  352.490377][T12538]  ext4_file_write_iter+0xac3/0x1200
[  352.495647][T12538]  ? ext4_file_write_iter+0x451/0x1200
[  352.501101][T12538]  do_iter_readv_writev+0x2de/0x380
[  352.506291][T12538]  do_iter_write+0x192/0x5c0
[  352.510873][T12538]  ? splice_from_pipe_next+0x34f/0x3b0
[  352.516321][T12538]  ? kmalloc_array+0x2d/0x40
[  352.520933][T12538]  vfs_iter_write+0x4c/0x70
[  352.525421][T12538]  iter_file_splice_write+0x43a/0x790
[  352.530775][T12538]  ? splice_from_pipe+0xd0/0xd0
[  352.535633][T12538]  direct_splice_actor+0x80/0xa0
[  352.540786][T12538]  splice_direct_to_actor+0x345/0x650
[  352.546149][T12538]  ? do_splice_direct+0x190/0x190
[  352.551155][T12538]  do_splice_direct+0x106/0x190
[  352.556000][T12538]  do_sendfile+0x675/0xc40
[  352.560402][T12538]  __x64_sys_sendfile64+0x102/0x140
[  352.565672][T12538]  do_syscall_64+0x44/0xd0
[  352.570088][T12538]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  352.575985][T12538] RIP: 0033:0x7ff4b8299ae9
[  352.580384][T12538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  352.600148][T12538] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  352.608634][T12538] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  352.616606][T12538] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  352.624573][T12538] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  352.632529][T12538] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  352.640485][T12538] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  352.648460][T12538]  </TASK>
17:52:47 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80003000)

17:52:47 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ef)

17:52:48 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x8c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = pidfd_getfd(r2, r2, 0x0)
lseek(r3, 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:48 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000100)={0x0, r2, "e0327427a99757b1d2e1e5b69b2fbab1527ab32444f1630badc9df2cd2d2e9c671232b666c98f6e1528228d1f0dfac3c85bdc75a10e83ea4d119349b6f3baa4aaba4b74948e93a25c9adb5ebe1b5b1d5314ccc186c6757e128f9d9584cb8b95a355e303e8f72b1c1af1f0c3f5d0a6a59e528bf0c30d1088d7888d8661a5c3a2f77a676aee293b17514350f1b0a8961f2854a7f9ad13f142e8e51d696520cfe21bfb2a2160186c1af40c9fb02f32ad25b78bfb071efe5d94db9591e9f7ca8422b49ec4505047d1ab37795f443b222180bf022f6b8be1d1ef6b6778a1bf54620a81153cd7992f9408a2a5c7478ddf115521241c17545df9b58a952860c36660c3a", "e301636a41b8429c127b505c4ef711378910d28f6744bb19cb3448979a039e3cf271b15cc6281ee8f7925a0935fa0d01c94b899142474e571fd080483786b0beef459113827e00aa729b4e63313cda7d5e7a278cdd9bf4aa21f580f11058ae0abb93cc7fa398bd58b2f19feda7319e75b7c62cd33800da4bd7b449e6d408ffedfea840a046a999fa79402559cf8e347db9aec9586098ffa05c0c0eac1dfdf12040e3faaa4907cbd4d4f826bcbeda52c2daa0dd52d7c0d1510bc7feb87285c5ed65810f1c5cc2f917bb11c97f6287b24ddae6d04ec8eb740b9f09bb127b5a74801733de69ab75a769d451dfba7c8c14ad3205417d51fabe538e3644a18871f2e5b6b0e6cb2ec6d06219f63d867d67cfa453670dccee90715a771f0b0c602a3dd3ffe1379c04fd392b96996ae3866d8be8a00a985a5e152f182be2a7123082b38b783df3d7e56311a5941d613c804ad6f265426f197c552bd8c29a874b4364b10227f5d2d85fbf81ab4550b032448a0bd24fadf7d82c6c78e92a84db655fca5d04e150bd0d26ba29ab3bb761866b91d05afde7e7e57160de3569b4ea6f0573467ec6a3e8ee220d4dea8111bde3de6aca098da73adcd342e124208db280f21c0a91524d519f01f6cd10af1532579e9b44d11e36899c94e59b6032174bf8f709fe60306e984663fefa9016296bad97c5da0e5156470cf7fd4b3ebce14f00792f2f2baeb8c7f0be1bf5c146b9099f19472264d49c8a338487e470dec23968d06aadd5a8d181c1438484b40c993716fc8321f5911d002d527c885420dcba13f5da3b047a9a4b2384ba89a8f61cf7f924724329d158d84b8038ea1ddbfa299bdac94fb9f4c9adb1d1bef13e5313f7d642549c3a12f9853a1d1bd84de08de74a36e2c7fe440109bd004a54707c848e10606dcc274f6be100557411487cbbff990d1b50bfa08efa6a63710b51d0b8181cabe0f1a4f9ed2fc68a17b76fe00203cd3b8c75859d5927de74909a9316c07a59b29092c2577e21899fdc42a5c5f9fc065f9e88437a5ed6d0462edf14a057711b872c86b80ff9c7f8de629e569c24d689ab88e61af24c019014c3d11f36e29e0ddbcbf20acb8c0a9eb18f6c008944717c25de3587e6e4b8e7f67e9f9f81a8429bef82b887bc78204aacb89023bec7abb271700338297086aba3f9e65da5ff9737a009876d09bc179d1e430d18df3bbe7f6b1757fadab7230711519a03141881a702aa6da32002959c414219695d5f1f580080279c1c4995893757466fe74a716eb8c1ca6809dd5b67d3306380522397be9214f845644242c764661aa665ddf87fe3e30eb5020fa777bf8e4aceec57035b815de21899ccc58f850bc2fcbf90354858475fc4329432534aec7ac517f126da240f947412158c4844c8877d5c2780689830f8852a62434831256349c98bc7768fcdab4d5bf8e7e9062c4d20685908b4f3759273c22d29d4d3f5e7f2ade863902ae65c44581d2c0c957ea01c16bc9c10176ab053be6f804dcc91ded1b6cda139a5eee3e8f554bf8448a748a64d297543784b7f558f707c7ea9ee38a23ef4001066cf353625d1add6b8130454d1e8dbd8c78d7c2c9665eba78ff6c179c54d805112af7f1575a2c3d920c5f7260295761cdb2276b9b91c77e706c0ac674ca15e6648f3c645025500e0215dd9599c491dbc30d63dca9d3d8ec3ff4e84f5a08f79d349339c037fafc17835b1cc9ee1e42d46b01d97f5111e06e3aa5e59a38aa7db6c2b2045a3c53c52329e9f5cf64aa5018647f037e4e0f415e1bd561004395cc08d84e8ef991325cca7ba3c773402e1a873568172a43a8bbf7200bd9b2e236c27434169fa2fcde90b9d656e88fdb227421520bda8b4c379a7cbe8d723651512c3fcae9fad2bb29440c77caca67f2927e928662ca6f3e2bc4d9ee6e6fee5ca23b320cc5e6671a2900190417a0e6e85dc02dbdc58d901c3306f5e6625148e99436400b7fd1562104f4ce1252e95432107e970d4ca373b8e95ec7092b0e9b5edae48e88ddf5a9f2940c81ae1ec1d5166e3d9fe70d060d0011af21f232f75b8945ac988d488d11881c044a0149a52980e22367c7eb6d6bd05144b02bb4f1a2afe003c2ec6d8b9b33fa7a83e3af0cd40eefc15932ef6884f8021a32663011faf19e264949a40359b2622bb7948d7fc76e232dca370929ef1a9bb9c8b36040a648c053c29d039990b70001a457ec3ba5bbf59b4808aa02e2dc4ff3d568adf33a0eed8026625b532bac94fc2eb947054808c957a5b2ca725d88df6dd71ede0f66f0af09e79f6117902ebc9a653ca3406663fd2d7a6955ed1289fcb65d486296cbb57e86c2cc2399c321eef3d04dd06412a4a35537b6b6751d3d2919c197304004c11c3418e5eb8b32d904d193417db5637df62f1c0340c35e910a6bf7109198f5b4667f43fcea60786a1aff0ab32288347a06f32911650b4677d6d68d396d61417e68f73482cfdcc4b5fc9ee6cc8b2751dbf741d18503c9173d0b78faefee65819e14c635e86f53b8ba48102c5833c5bbbf9379e956bd80ad2d9b4e5bbc7cccd9d055b0625d60d961da16a34d23c03a3eb48ba4bed46672eab2a77e4c5a3d76645029ac5e0a0d044f46a1732dbf5e7d57e45f05e4a565c9912afde317f42a5758edc4c22fe441b4038fd5a9d97ad6514f951b264f4fa68b5b38dab3ca61166622ad366161910908d9f12ab69ca420e261fe399fe8cea6aee60abc5bb26db006c563d0d31021b18930368125919c619832974faeba7bb05ab95e9deeb001b15c0215a9283be1e9a7ed779113701ec178814374943d098a7a7cab6110d57d047b61c8b0470e98e2bb2c4b6c94e8e022b1a351fd000481363395ae14b39801cb26863cb075caaf8abdcbbb498d2719b1b38bffcbb4bd32fe7c63da596a025f4f9f5f016c2bf721d3cf08c931e55f9551a65dbbf3cd884dbadca9b32ed6cef21572da1ec85e812c5001b6d52d3b51eb670175441182ef4d6291fc5150d3d95dd1497ef60aa85f98a8cf8bf346a5879563e1b57c0b9f09391e20de9f49ae5d39bb8c9a0fe8edc342d937426b3a8f0ba6accc1228388e6a1b93ebe519e4f01f4aa76ae15f7e50024421c25b7af6db14f963081f9ebb7685ea940f121f9458346f9bd898e1a1274e2b93407975e9031b634227cfff43239181cf0c21da2dfe6bd2a59d3e0fda476050a35d9c5b9f415ea5d11710052df80db51dfff855553e3c29203772bf8615f5e00c690caa8fa80515b73e947c5bdc890b62d95ec61730adb8b2a777f26f1fa1979366d68ec9642d34e774195604953d6c3d1a46dfafbf2ebd06a314c6b33850482a7f82964205935a19774ec160a9d394f5673eb25e282b3050e89f9a1a476b5e911b4c44718d3c0d239d09026fe3ff1d1955ed2741a26204623dc21b3c7dec6a027ffaf54286d22d63fa4125b4a7b239c5c3f9e9d976d9391d011c3bc48688772fe322868d02bf6db7ff4f406562f5681db2ed496e1edf3f40cbf5e460eb6ac7ae979ee7b97dc31ab0eb6da417e066e4a6fe795429b36431c974c4f660b4b49a9aa8fd4c80ca929cc5078b67afb31606ff895858a741af1ebca67af0d83e19bf4e5e26897ae6ca9db162ceb26e4081a64ab5b7aa894fb9b661c9543da497be72b35050ffe9974f7f3143fafc96ac192c121002479faed121a0494cc9ad133e20176955a374989f516ea9f511c6b7b9967bb02da759ea176e709fa40f473b495e52b122884f7531dcf3ecd86b4ed78a59caf4f5a5be73dc7bac729e652e6715c2ec222f2f0ca147c3aabff9c5e8b4bba746ac3329cc1178f7904e09197445c4023b8ca917253b62303a82552dcea3c3eb091c34836a666080b726f559e8c4fbae2799b623fef5b43311063801736a1478e87d36d89606a78e975afb4681db33401bf959b3e3255a00fdebacfd84cad058767fb2e24ca00549f7a666f9c7a1f737c95af44f33bc4b0226dc3536676e28adbe506dcad1bf5656665a547fe9ac6c24e6c42ba0ada4a30bee31b8a76146198d7ee53a8eee4579e50c6f43c533f6fcbc79be6ba188fe54b238c05e6ac1aac84c101fbebad1b0b1cf88d1698b27cca7c5ff885aad5f5effdead051c0fdbc036bc37a17749b8ed2de4846bef377af06f2dc0a173cf09dbb8c3ffb5c8a2fa6bc342dd2301cede2b5e4e66cf76ad0e48fcd626d942852f6f6b926eef1f69b347dab9797a3ef73f407bc328da1c7f752a0265065560a6009673842db039554dd7e2150414b107d650fa1670e321747f6fd416f8e362895f68341b78e870affe3405090415e3333acc5e67120a2761840d31f03b98f64fe4fc0dcd4946e6dc5ccd1a04eab694626e12fb8bce1cb09611c235c7454d481738a4ca1731c3fe6c60408113136018555411d67c80a328196c25d0b4267c21cb4980d23efc87c6f38859fdfc45d21712f3280d1168b3c136a8db6a169a469929a1ac4e73225793c7dbb962e27bb732d3ed09155197f142c0979a42fa0c889160d1085c5f287f6875d3942c713dc2e9136deafd691d3c8f75b6289beaac32d676577d7cbce86bd14d54b7df789654709c6f46cdec2202ee6694fca63d7a9bf28e6c711d6fbff1456b46ff83cd69fbfb1f29dd021ff6bc1567bc539ace373333cda91e14a4d67aa90a292b071ac32c0d3e9ad86fd46981f1e4e5b2464085bd2d086eacfc98f96737e61557f84b1c702c50a6557cb4f43e90df91586b31aea0da835812460c92061e3400364b2e348c25de2de03361622d1a8047a390ad0c6d23fb7aae22c4582da0bce43c7e5723d95e7e6b4ecad9e563818e958f81c7474a115adf3e3a23ed9dea28a4c1892866f8117ad8f7f2b4cd86c77d7447de59a6a757d0889014f39350a8b406b117b1df47177fa64afd68ce7c449c7cd050963f99747201b2ad26396ba751207e74bbfa5aeda827194cf59e41f6f909fc7dcef0f0f1cffb5f157af14e02ca26dbb8eddef1d5bb6b9a55a1dbaf28b05ba61d447eedbb04eae2a101d5cf5f1fc37fa667e1390211e8f75c7b645d17a75326013de405b13c9df66aceb378eba53cc07bbfbac4a46c48ea70156315d6ad0017bcfea07d262cf729d99a752d83eea7736d7f566fa8a0d45238c6ffb37a8d93e45d4401a7057546520bac49e2cd08b45caca4b2ffa06eb7d91534de7f9f24ba262cb9f02a29436a791c0420dc3fee5baf947c7debac8f6dcaca0840ae340bfada88de65af1f5a1fa30f2488cbe337ce056ae1c9cefcbbf25f0c95a6cb7a04d9d7653e3e010250f08889f9e0856fccf66adc966846bc679a1ec405e9faa2402c8a951ef293848f44758c7f5d3219d2a27ceef97623d4eed910b0ad6c340eaa5479c5c5766052b6b3c7f98e1134150c5478274b1757f12"})

[  352.867228][T12549] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
17:52:48 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x149c43, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
openat(r3, &(0x7f0000000100)='./bus\x00', 0xc00, 0x160)
r4 = socket$phonet(0x23, 0x2, 0x1)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000002, 0x40010, r4, 0x795e9000)

17:52:48 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000060)

17:52:48 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x157c80, 0x4e)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = accept4$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10, 0x1000)
preadv(r2, &(0x7f0000000100)=[{&(0x7f0000000080)=""/24, 0x18}], 0x1, 0x9, 0xeaf5b24)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:48 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 37)

17:52:48 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000100)=""/68, 0x44, 0x6)
sendfile(r0, r1, 0x0, 0x80000001)

[  353.262615][T12575] FAULT_INJECTION: forcing a failure.
[  353.262615][T12575] name failslab, interval 1, probability 0, space 0, times 0
[  353.275417][T12575] CPU: 0 PID: 12575 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  353.284242][T12575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  353.294296][T12575] Call Trace:
[  353.297573][T12575]  <TASK>
[  353.300504][T12575]  dump_stack_lvl+0xd6/0x122
[  353.305178][T12575]  dump_stack+0x11/0x1b
[  353.309336][T12575]  should_fail+0x23c/0x250
[  353.313943][T12575]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  353.319315][T12575]  __should_failslab+0x81/0x90
[  353.324097][T12575]  should_failslab+0x5/0x20
[  353.328661][T12575]  kmem_cache_alloc+0x4f/0x320
[  353.333487][T12575]  ext4_mb_new_blocks+0x328/0x1ee0
[  353.338667][T12575]  ? ext4_get_branch+0x27d/0x2e0
[  353.343617][T12575]  ext4_ind_map_blocks+0xb1c/0x1740
[  353.348891][T12575]  ext4_map_blocks+0x6e3/0xf00
[  353.353724][T12575]  ext4_iomap_begin+0x4b0/0x630
[  353.358740][T12575]  ? ext4_alloc_da_blocks+0x100/0x100
[  353.364178][T12575]  iomap_iter+0x395/0x4a0
[  353.368518][T12575]  __iomap_dio_rw+0xb78/0x1070
[  353.373365][T12575]  iomap_dio_rw+0x38/0x80
[  353.377703][T12575]  ? ext4_file_write_iter+0x451/0x1200
[  353.383163][T12575]  ext4_file_write_iter+0xac3/0x1200
[  353.388515][T12575]  ? ext4_file_write_iter+0x451/0x1200
[  353.393977][T12575]  do_iter_readv_writev+0x2de/0x380
[  353.399250][T12575]  do_iter_write+0x192/0x5c0
[  353.403858][T12575]  ? splice_from_pipe_next+0x34f/0x3b0
[  353.409438][T12575]  ? kmalloc_array+0x2d/0x40
[  353.414036][T12575]  vfs_iter_write+0x4c/0x70
[  353.418645][T12575]  iter_file_splice_write+0x43a/0x790
[  353.424077][T12575]  ? splice_from_pipe+0xd0/0xd0
[  353.428935][T12575]  direct_splice_actor+0x80/0xa0
[  353.433916][T12575]  splice_direct_to_actor+0x345/0x650
[  353.439295][T12575]  ? do_splice_direct+0x190/0x190
[  353.444327][T12575]  do_splice_direct+0x106/0x190
[  353.449261][T12575]  do_sendfile+0x675/0xc40
[  353.453806][T12575]  __x64_sys_sendfile64+0x102/0x140
[  353.459054][T12575]  do_syscall_64+0x44/0xd0
[  353.463478][T12575]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  353.469403][T12575] RIP: 0033:0x7ff4b8299ae9
[  353.473890][T12575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  353.493527][T12575] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  353.501945][T12575] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  353.509918][T12575] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  353.517890][T12575] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  353.525887][T12575] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  353.533953][T12575] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  353.541927][T12575]  </TASK>
17:52:48 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80003300)

17:52:48 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f0)

17:52:48 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = openat(r0, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x45)
sendfile(r0, r2, 0x0, 0x80000001)

17:52:49 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001c3)

17:52:49 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000100)=""/109, 0x6d)
sendfile(r0, r1, 0x0, 0x7fffffff)

17:52:49 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 38)

[  354.149919][T12599] FAULT_INJECTION: forcing a failure.
[  354.149919][T12599] name failslab, interval 1, probability 0, space 0, times 0
[  354.162608][T12599] CPU: 0 PID: 12599 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  354.171372][T12599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  354.181422][T12599] Call Trace:
[  354.184696][T12599]  <TASK>
[  354.187687][T12599]  dump_stack_lvl+0xd6/0x122
[  354.192282][T12599]  dump_stack+0x11/0x1b
[  354.196441][T12599]  should_fail+0x23c/0x250
[  354.200855][T12599]  ? mempool_alloc_slab+0x16/0x20
[  354.205890][T12599]  __should_failslab+0x81/0x90
[  354.210802][T12599]  should_failslab+0x5/0x20
[  354.215354][T12599]  kmem_cache_alloc+0x4f/0x320
[  354.220118][T12599]  mempool_alloc_slab+0x16/0x20
[  354.225069][T12599]  ? mempool_free+0x130/0x130
[  354.229762][T12599]  mempool_alloc+0x9d/0x310
[  354.234324][T12599]  ? preempt_count_add+0x4e/0x90
[  354.239263][T12599]  ? _raw_read_unlock+0x13/0x30
[  354.244120][T12599]  ? jbd2_transaction_committed+0xad/0xc0
[  354.249928][T12599]  bio_alloc_bioset+0xcc/0x560
[  354.254717][T12599]  ? iov_iter_alignment+0x34b/0x370
[  354.259924][T12599]  iomap_dio_bio_iter+0x5ed/0xc70
[  354.264961][T12599]  ? ext4_alloc_da_blocks+0x100/0x100
[  354.270380][T12599]  __iomap_dio_rw+0x8b5/0x1070
[  354.275157][T12599]  iomap_dio_rw+0x38/0x80
[  354.279490][T12599]  ? ext4_file_write_iter+0x451/0x1200
[  354.284948][T12599]  ext4_file_write_iter+0xac3/0x1200
[  354.290288][T12599]  ? ext4_file_write_iter+0x451/0x1200
[  354.295784][T12599]  do_iter_readv_writev+0x2de/0x380
[  354.300988][T12599]  do_iter_write+0x192/0x5c0
[  354.305649][T12599]  ? splice_from_pipe_next+0x34f/0x3b0
[  354.311112][T12599]  ? kmalloc_array+0x2d/0x40
[  354.315702][T12599]  vfs_iter_write+0x4c/0x70
[  354.320224][T12599]  iter_file_splice_write+0x43a/0x790
[  354.325606][T12599]  ? splice_from_pipe+0xd0/0xd0
[  354.330651][T12599]  direct_splice_actor+0x80/0xa0
[  354.335671][T12599]  splice_direct_to_actor+0x345/0x650
[  354.341047][T12599]  ? do_splice_direct+0x190/0x190
[  354.346109][T12599]  do_splice_direct+0x106/0x190
[  354.351037][T12599]  do_sendfile+0x675/0xc40
[  354.355536][T12599]  __x64_sys_sendfile64+0x102/0x140
[  354.360737][T12599]  do_syscall_64+0x44/0xd0
[  354.365157][T12599]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  354.371105][T12599] RIP: 0033:0x7ff4b8299ae9
[  354.375657][T12599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  354.395274][T12599] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  354.403761][T12599] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  354.411729][T12599] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  354.419762][T12599] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  354.427820][T12599] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  354.435890][T12599] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  354.443874][T12599]  </TASK>
17:52:49 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80003800)

17:52:49 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000100)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r2=>0x0}, {0x0, @struct}})
ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000500)={r2, 0x8a, 0x7})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80000001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x3a6, 0x3, 0xfff, 0x1})

17:52:49 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f1)

17:52:50 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x111002, 0x0)
r2 = openat(r1, &(0x7f0000000000)='./bus\x00', 0x80, 0xcf)
sendfile(r0, r2, 0x0, 0x80000001)

17:52:50 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x4, 0x7)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r3, 0xc0105303, &(0x7f0000000040)={0x5, 0x80, 0x28})
sendfile(r2, r1, 0x0, 0x6)

17:52:50 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001c4)

17:52:50 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 39)

17:52:50 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(r0, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

[  355.063287][T12634] FAULT_INJECTION: forcing a failure.
[  355.063287][T12634] name failslab, interval 1, probability 0, space 0, times 0
[  355.075931][T12634] CPU: 1 PID: 12634 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  355.084706][T12634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  355.094757][T12634] Call Trace:
[  355.098030][T12634]  <TASK>
[  355.100958][T12634]  dump_stack_lvl+0xd6/0x122
[  355.105678][T12634]  dump_stack+0x11/0x1b
[  355.109863][T12634]  should_fail+0x23c/0x250
[  355.114291][T12634]  ? jbd2__journal_start+0xf7/0x3f0
[  355.119489][T12634]  __should_failslab+0x81/0x90
[  355.124354][T12634]  should_failslab+0x5/0x20
[  355.128864][T12634]  kmem_cache_alloc+0x4f/0x320
[  355.133631][T12634]  jbd2__journal_start+0xf7/0x3f0
[  355.138659][T12634]  __ext4_journal_start_sb+0x159/0x310
[  355.144167][T12634]  ext4_iomap_begin+0x408/0x630
[  355.149035][T12634]  ? ext4_alloc_da_blocks+0x100/0x100
[  355.154415][T12634]  iomap_iter+0x395/0x4a0
[  355.158874][T12634]  __iomap_dio_rw+0xb78/0x1070
[  355.163696][T12634]  iomap_dio_rw+0x38/0x80
[  355.168030][T12634]  ? ext4_file_write_iter+0x451/0x1200
[  355.173490][T12634]  ext4_file_write_iter+0xac3/0x1200
[  355.178779][T12634]  ? ext4_file_write_iter+0x451/0x1200
[  355.184282][T12634]  do_iter_readv_writev+0x2de/0x380
[  355.189484][T12634]  do_iter_write+0x192/0x5c0
[  355.194085][T12634]  ? splice_from_pipe_next+0x34f/0x3b0
[  355.199565][T12634]  ? kmalloc_array+0x2d/0x40
[  355.204193][T12634]  vfs_iter_write+0x4c/0x70
[  355.208706][T12634]  iter_file_splice_write+0x43a/0x790
[  355.214102][T12634]  ? splice_from_pipe+0xd0/0xd0
[  355.218956][T12634]  direct_splice_actor+0x80/0xa0
[  355.223917][T12634]  splice_direct_to_actor+0x345/0x650
[  355.229297][T12634]  ? do_splice_direct+0x190/0x190
[  355.234362][T12634]  do_splice_direct+0x106/0x190
[  355.239283][T12634]  do_sendfile+0x675/0xc40
[  355.243722][T12634]  __x64_sys_sendfile64+0x102/0x140
[  355.248941][T12634]  do_syscall_64+0x44/0xd0
[  355.253423][T12634]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  355.259385][T12634] RIP: 0033:0x7ff4b8299ae9
[  355.263798][T12634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  355.283584][T12634] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  355.292094][T12634] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  355.300067][T12634] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  355.308039][T12634] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  355.316008][T12634] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  355.324017][T12634] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  355.332038][T12634]  </TASK>
17:52:50 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80003f00)

17:52:50 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f2)

17:52:50 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(r0, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:51 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 40)

17:52:51 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001c5)

17:52:51 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
sync_file_range(r2, 0x1, 0x132, 0x3)
sendfile(r0, r1, 0x0, 0x80000001)

[  355.970091][T12657] FAULT_INJECTION: forcing a failure.
[  355.970091][T12657] name failslab, interval 1, probability 0, space 0, times 0
[  355.982749][T12657] CPU: 1 PID: 12657 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  355.991533][T12657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  356.001647][T12657] Call Trace:
[  356.004921][T12657]  <TASK>
[  356.007930][T12657]  dump_stack_lvl+0xd6/0x122
[  356.012539][T12657]  dump_stack+0x11/0x1b
[  356.016695][T12657]  should_fail+0x23c/0x250
[  356.021119][T12657]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  356.026408][T12657]  __should_failslab+0x81/0x90
[  356.031201][T12657]  should_failslab+0x5/0x20
[  356.035783][T12657]  kmem_cache_alloc+0x4f/0x320
[  356.040558][T12657]  ext4_mb_new_blocks+0x328/0x1ee0
[  356.045704][T12657]  ? ext4_get_branch+0x27d/0x2e0
[  356.050675][T12657]  ext4_ind_map_blocks+0xb1c/0x1740
[  356.055906][T12657]  ext4_map_blocks+0x6e3/0xf00
[  356.060700][T12657]  ext4_iomap_begin+0x4b0/0x630
[  356.065555][T12657]  ? ext4_alloc_da_blocks+0x100/0x100
[  356.070929][T12657]  iomap_iter+0x395/0x4a0
[  356.075263][T12657]  __iomap_dio_rw+0xb78/0x1070
[  356.080080][T12657]  iomap_dio_rw+0x38/0x80
[  356.084483][T12657]  ? ext4_file_write_iter+0x451/0x1200
[  356.089944][T12657]  ext4_file_write_iter+0xac3/0x1200
[  356.095233][T12657]  ? ext4_file_write_iter+0x451/0x1200
[  356.100718][T12657]  do_iter_readv_writev+0x2de/0x380
[  356.105959][T12657]  do_iter_write+0x192/0x5c0
[  356.110555][T12657]  ? splice_from_pipe_next+0x34f/0x3b0
[  356.116039][T12657]  ? kmalloc_array+0x2d/0x40
[  356.120752][T12657]  vfs_iter_write+0x4c/0x70
[  356.125381][T12657]  iter_file_splice_write+0x43a/0x790
[  356.130760][T12657]  ? splice_from_pipe+0xd0/0xd0
[  356.135632][T12657]  direct_splice_actor+0x80/0xa0
[  356.140571][T12657]  splice_direct_to_actor+0x345/0x650
[  356.145953][T12657]  ? do_splice_direct+0x190/0x190
[  356.150994][T12657]  do_splice_direct+0x106/0x190
[  356.155990][T12657]  do_sendfile+0x675/0xc40
[  356.160412][T12657]  __x64_sys_sendfile64+0x102/0x140
[  356.165650][T12657]  do_syscall_64+0x44/0xd0
[  356.170082][T12657]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  356.176043][T12657] RIP: 0033:0x7ff4b8299ae9
[  356.180454][T12657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  356.200082][T12657] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  356.208493][T12657] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  356.216465][T12657] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  356.224463][T12657] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  356.232440][T12657] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  356.240407][T12657] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  356.248479][T12657]  </TASK>
17:52:51 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000a700)

17:52:51 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
sendfile(r0, r2, 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$SIOCPNADDRESOURCE(r3, 0x89e0, &(0x7f0000000040)=0x8)

17:52:51 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f3)

17:52:51 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 41)

17:52:51 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
syz_io_uring_setup(0x5de6, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000680)=@IORING_OP_WRITE={0x17, 0x4, 0x0, @fd_index, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x18}, 0x12aebbbc)
syz_io_uring_setup(0x49cf, &(0x7f0000000040)={0x0, 0x1eb7, 0x4, 0x0, 0x2a5, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r3=>0x0)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
sendmsg$AUDIT_USER_TTY(r4, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x6c, 0x464, 0x100, 0x70bd2d, 0x25dfdbfc, "6c5c6556b534b7818d4ea6f4567bf71476fad5478689eef16d19e4d9b9a9103ca3f0a26923229d2dc6e1c8024f000d1a54e2ed55fd377cd9861d7c94e0a1986de644a5207b198aef486f16e96d01af49ff24dcaf93e0af37f7", ["", "", "", ""]}, 0x6c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x23456}, 0x8001)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r5, 0x0, 0x80000001)

[  356.804198][T12676] FAULT_INJECTION: forcing a failure.
[  356.804198][T12676] name failslab, interval 1, probability 0, space 0, times 0
[  356.816855][T12676] CPU: 0 PID: 12676 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  356.825875][T12676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  356.836043][T12676] Call Trace:
[  356.839315][T12676]  <TASK>
[  356.842240][T12676]  dump_stack_lvl+0xd6/0x122
[  356.846849][T12676]  dump_stack+0x11/0x1b
[  356.851010][T12676]  should_fail+0x23c/0x250
[  356.855434][T12676]  ? jbd2__journal_start+0xf7/0x3f0
[  356.860636][T12676]  __should_failslab+0x81/0x90
[  356.865415][T12676]  should_failslab+0x5/0x20
[  356.870010][T12676]  kmem_cache_alloc+0x4f/0x320
[  356.874781][T12676]  jbd2__journal_start+0xf7/0x3f0
[  356.879889][T12676]  __ext4_journal_start_sb+0x159/0x310
[  356.885393][T12676]  ext4_iomap_begin+0x408/0x630
[  356.890291][T12676]  ? ext4_alloc_da_blocks+0x100/0x100
[  356.895706][T12676]  iomap_iter+0x395/0x4a0
[  356.900046][T12676]  __iomap_dio_rw+0xb78/0x1070
[  356.904829][T12676]  iomap_dio_rw+0x38/0x80
[  356.909187][T12676]  ? ext4_file_write_iter+0x451/0x1200
[  356.914699][T12676]  ext4_file_write_iter+0xac3/0x1200
[  356.919991][T12676]  ? ext4_file_write_iter+0x451/0x1200
[  356.925495][T12676]  do_iter_readv_writev+0x2de/0x380
[  356.930699][T12676]  do_iter_write+0x192/0x5c0
[  356.935345][T12676]  ? splice_from_pipe_next+0x34f/0x3b0
[  356.940806][T12676]  ? kmalloc_array+0x2d/0x40
[  356.945470][T12676]  vfs_iter_write+0x4c/0x70
[  356.949994][T12676]  iter_file_splice_write+0x43a/0x790
[  356.955374][T12676]  ? splice_from_pipe+0xd0/0xd0
[  356.960234][T12676]  direct_splice_actor+0x80/0xa0
[  356.965175][T12676]  splice_direct_to_actor+0x345/0x650
[  356.970576][T12676]  ? do_splice_direct+0x190/0x190
[  356.975606][T12676]  do_splice_direct+0x106/0x190
[  356.980462][T12676]  do_sendfile+0x675/0xc40
[  356.984881][T12676]  __x64_sys_sendfile64+0x102/0x140
[  356.990169][T12676]  do_syscall_64+0x44/0xd0
[  356.994591][T12676]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  357.000517][T12676] RIP: 0033:0x7ff4b8299ae9
[  357.004937][T12676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  357.024582][T12676] RSP: 002b:00007ff4b6010188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  357.033001][T12676] RAX: ffffffffffffffda RBX: 00007ff4b83acf60 RCX: 00007ff4b8299ae9
[  357.040974][T12676] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
17:52:52 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001c6)

[  357.049029][T12676] RBP: 00007ff4b60101d0 R08: 0000000000000000 R09: 0000000000000000
[  357.057001][T12676] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  357.064975][T12676] R13: 00007ffca0f1f41f R14: 00007ff4b6010300 R15: 0000000000022000
[  357.072961][T12676]  </TASK>
17:52:52 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 42)

17:52:52 executing program 5:
prctl$PR_GET_DUMPABLE(0x3)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000059840)={<r4=>0x0, 0x0, "364785dfd9d5edbba0108401814eae13d7e0427d9a39733e8499ad39bd15ccdb5240fc289599ed7ae35df63e1caad060084b247ce7dbe3a52fe64b2d9ba1388cfa20140d94d55aff9d17ce507fe23b2ef4e83a6040029281facf4952b83e8b4ef51d3b0c8687c7522d91e0260601dc80e3a57bfa9c793731203ee29f5ab618e660b4e85c3e8fddbe20199b90280fb304c112899ba99e4e09612c75e699b75b6829777419f28b22c6dac435f2a7dee9a674ccfce3578ad8515d2c1db5669806d7f047865cd21622d4be10b57ccae839f7d3f8e4c02692a855b128ad4bd2b367095e12fe129e2991925dbe17feeeded4a5ea723b274c8f51af39cf8ef29e635340", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r5=>0x0, ""/256, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000005a840)={0x0, ""/256, 0x0, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005aa40)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r8=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r9=>0x0}], 0x7f, "3101188c0c7ee3"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r10=>0x0, ""/256, <r11=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r12=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005ba40)={0x1ff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r13=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r14=>0x0}], 0x9, "302c398e25db8c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r15=>0x0, ""/256, <r16=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r16}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005ca40)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r14}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {0x0, r4}, {r5, r7}, {0x0, r9}, {}, {r10}, {0x0, r13}, {r15}], 0x40, "d25648dd2e9163"})
r17 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r17, 0x0, 0x80000001)

[  357.225332][T12685] FAULT_INJECTION: forcing a failure.
[  357.225332][T12685] name failslab, interval 1, probability 0, space 0, times 0
[  357.238160][T12685] CPU: 0 PID: 12685 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  357.246957][T12685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  357.257022][T12685] Call Trace:
[  357.260301][T12685]  <TASK>
[  357.263240][T12685]  dump_stack_lvl+0xd6/0x122
[  357.267967][T12685]  dump_stack+0x11/0x1b
[  357.272116][T12685]  should_fail+0x23c/0x250
[  357.276542][T12685]  ? jbd2__journal_start+0xf7/0x3f0
[  357.281798][T12685]  __should_failslab+0x81/0x90
[  357.286568][T12685]  should_failslab+0x5/0x20
[  357.291079][T12685]  kmem_cache_alloc+0x4f/0x320
[  357.295871][T12685]  jbd2__journal_start+0xf7/0x3f0
[  357.300969][T12685]  __ext4_journal_start_sb+0x159/0x310
[  357.306443][T12685]  ext4_iomap_begin+0x408/0x630
[  357.311354][T12685]  ? ext4_alloc_da_blocks+0x100/0x100
[  357.316760][T12685]  iomap_iter+0x395/0x4a0
[  357.321129][T12685]  __iomap_dio_rw+0xb78/0x1070
[  357.325910][T12685]  iomap_dio_rw+0x38/0x80
[  357.330246][T12685]  ? ext4_file_write_iter+0x451/0x1200
[  357.335781][T12685]  ext4_file_write_iter+0xac3/0x1200
[  357.341066][T12685]  ? ext4_file_write_iter+0x451/0x1200
[  357.346616][T12685]  do_iter_readv_writev+0x2de/0x380
[  357.351827][T12685]  do_iter_write+0x192/0x5c0
[  357.356495][T12685]  vfs_iter_write+0x4c/0x70
[  357.361065][T12685]  iter_file_splice_write+0x43a/0x790
[  357.366512][T12685]  ? splice_from_pipe+0xd0/0xd0
[  357.371368][T12685]  direct_splice_actor+0x80/0xa0
17:52:52 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x100, 0x32)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x28)
pwrite64(r2, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x50, r2, 0x16e96000)
sendfile(r0, r1, 0x0, 0x80000001)
preadv(r0, &(0x7f0000000680)=[{&(0x7f0000000100)=""/203, 0xcb}, {&(0x7f0000000200)}, {&(0x7f0000000240)=""/12, 0xc}, {&(0x7f0000000280)=""/198, 0xc6}, {&(0x7f0000000380)=""/13, 0xd}, {&(0x7f00000003c0)=""/162, 0xa2}, {&(0x7f0000000480)=""/39, 0x27}, {&(0x7f00000004c0)=""/144, 0x90}, {&(0x7f0000000580)=""/197, 0xc5}], 0x9, 0x2, 0x0)

[  357.376310][T12685]  splice_direct_to_actor+0x345/0x650
[  357.381760][T12685]  ? do_splice_direct+0x190/0x190
[  357.386790][T12685]  do_splice_direct+0x106/0x190
[  357.392167][T12685]  do_sendfile+0x675/0xc40
[  357.396596][T12685]  __x64_sys_sendfile64+0x102/0x140
[  357.401799][T12685]  do_syscall_64+0x44/0xd0
[  357.406274][T12685]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  357.412216][T12685] RIP: 0033:0x7ff4b8299ae9
[  357.416635][T12685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  357.436367][T12685] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  357.444785][T12685] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  357.452829][T12685] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  357.460872][T12685] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  357.468847][T12685] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
17:52:52 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000e12a)

17:52:52 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f4)

[  357.476842][T12685] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  357.484888][T12685]  </TASK>
17:52:52 executing program 3:
write$P9_RCLUNK(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x79, 0x2}, 0x7)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:52 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
write$binfmt_script(r0, &(0x7f0000000100)={'#! ', './bus', [{}, {0x20, '-@+'}], 0xa, "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"}, 0x100e)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:53 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x85)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:53 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
accept4$phonet_pipe(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10, 0x80800)
sendfile(r1, r0, 0x0, 0x7f)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000580)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@multicast2}}}, &(0x7f0000000680)=0xe8)
syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f00000001c0)='./bus\x00', 0x20, 0x4, &(0x7f0000000500)=[{&(0x7f0000000200)="0c4bd2e82a2a4af38f0ced1f633250e504f0f752d7f360f382fa80e30f6bbd9f9218888e7f", 0x25, 0x20}, {&(0x7f0000000240)="4da4a8e8218d8749634cf2fd13c441af6ac25627d9be6d61a0c001a10aaa64d06c33dfeb72e254e0ff1794c51538e63310092966c5fae1fa578c01ff419dbf3a59c099cb9c714ad0e9f39025855e062c7c9890f454b59ce3589a1ab359588cb233dcefb8e0f68c49af980d3c5acdfa8e5b9d4b2969ec98e9aaa49927d3e6c55c504874cd0c3cd30e3aceb452dfa5b215c3547d481ac1145ca42f83cabafd524f6ad1c8ec976a6f0a976b2d64a32ef6d54e69f89bb13387be70992835b665ff73ec70d9bc8c860101d692e5afbff652267cb44a518e3cf634f55c", 0xda, 0x380000000000000}, {&(0x7f0000000340)="d844a6553efde117c43868daf91dba66815c8dacf5669f201e883acf3f811979034b0231d2744bbca8dbd4c7bf8a0e21549b9a9f83dac72f3ccc7ded4d3c54182fc33e54eaa4bfb1a445e11b5b323ce2ebf5cd4832ed99145e27cabc882b17fa23c68ff7061dc34d36e5d4d0675f1a6bb3fbedcbe887a5f58ba822e77c4e74a398e594d5f3371ce8e0d4427b36d88327f4d61e99d4a01c7f6a15c04b266a4734e1b185c05fc00eab713a6152daf7170f8f9c3a1023ee5b", 0xb7, 0x7}, {&(0x7f0000000400)="80648d135ac863e426a48df3e7c3c911c453e1b4348da2a452b9583ebc37839b44d0691ab8944f40b0301731c4974220d1e939282a918f2f00f12efb69f06a7897707d7ae76d9ab564032701ccbd96d15571401f7b66220f5bb681b94639aca2b906c699e0d65bcc7bd2100daf73ea33b2f8a6f026528f9dbc3530bc4a3c52e0ce26d67e305e91b86dbc802534efb072499feb17ee689ede33cc9ec4a8146b40372dd93ecdc0a9267093954137357928be3083b246542cc573602ec1b0af1d0c08038c4183362f357aa2094fead1523ea59c7d5652f675b338bef28a3812e869b76f9ad72aff99eb34e295a2fc", 0xed, 0x7}], 0x12010, &(0x7f00000006c0)={[{@gid={'gid', 0x3d, 0xffffffffffffffff}}], [{@audit}, {@uid_lt={'uid<', r3}}, {@pcr={'pcr', 0x3d, 0x25}}, {@obj_type={'obj_type', 0x3d, '%+'}}, {@subj_type={'subj_type', 0x3d, '\\-) '}}, {@seclabel}, {@euid_eq={'euid', 0x3d, 0xee00}}]})

17:52:53 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001c7)

17:52:53 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 43)

17:52:53 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0)
preadv(r2, &(0x7f0000000300)=[{&(0x7f0000000140)=""/170, 0xaa}, {&(0x7f0000000200)=""/254, 0xfe}], 0x2, 0x401, 0x1)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)

[  358.048773][T12716] loop5: detected capacity change from 0 to 264192
[  358.116365][T12723] FAULT_INJECTION: forcing a failure.
[  358.116365][T12723] name failslab, interval 1, probability 0, space 0, times 0
[  358.129141][T12723] CPU: 1 PID: 12723 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  358.138048][T12723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  358.148174][T12723] Call Trace:
[  358.151455][T12723]  <TASK>
[  358.154369][T12723]  dump_stack_lvl+0xd6/0x122
[  358.158944][T12723]  dump_stack+0x11/0x1b
[  358.163125][T12723]  should_fail+0x23c/0x250
[  358.167520][T12723]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  358.173213][T12723]  __should_failslab+0x81/0x90
[  358.177988][T12723]  should_failslab+0x5/0x20
[  358.182475][T12723]  kmem_cache_alloc+0x4f/0x320
[  358.187242][T12723]  ext4_mb_new_blocks+0x328/0x1ee0
[  358.192357][T12723]  ? ext4_get_branch+0x27d/0x2e0
[  358.197282][T12723]  ext4_ind_map_blocks+0xb1c/0x1740
[  358.202496][T12723]  ext4_map_blocks+0x6e3/0xf00
[  358.207240][T12723]  ext4_iomap_begin+0x4b0/0x630
[  358.212085][T12723]  ? ext4_alloc_da_blocks+0x100/0x100
[  358.217459][T12723]  iomap_iter+0x395/0x4a0
[  358.221772][T12723]  __iomap_dio_rw+0xb78/0x1070
[  358.226579][T12723]  iomap_dio_rw+0x38/0x80
[  358.230919][T12723]  ? ext4_file_write_iter+0x451/0x1200
[  358.236392][T12723]  ext4_file_write_iter+0xac3/0x1200
[  358.241727][T12723]  ? ext4_file_write_iter+0x451/0x1200
[  358.247185][T12723]  do_iter_readv_writev+0x2de/0x380
[  358.252382][T12723]  do_iter_write+0x192/0x5c0
[  358.256990][T12723]  vfs_iter_write+0x4c/0x70
[  358.261590][T12723]  iter_file_splice_write+0x43a/0x790
[  358.266947][T12723]  ? splice_from_pipe+0xd0/0xd0
[  358.271781][T12723]  direct_splice_actor+0x80/0xa0
[  358.276801][T12723]  splice_direct_to_actor+0x345/0x650
[  358.282277][T12723]  ? do_splice_direct+0x190/0x190
[  358.287353][T12723]  do_splice_direct+0x106/0x190
[  358.292256][T12723]  do_sendfile+0x675/0xc40
[  358.296700][T12723]  __x64_sys_sendfile64+0x102/0x140
[  358.301887][T12723]  do_syscall_64+0x44/0xd0
[  358.306331][T12723]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  358.312387][T12723] RIP: 0033:0x7ff4b8299ae9
[  358.316783][T12723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  358.336410][T12723] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  358.344822][T12723] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  358.352786][T12723] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  358.360756][T12723] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  358.368718][T12723] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  358.376739][T12723] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  358.384769][T12723]  </TASK>
17:52:53 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat$incfs(0xffffffffffffffff, &(0x7f0000000100)='.pending_reads\x00', 0x121200, 0x8)
ioctl$IMCLEAR_L2(r2, 0x80044946, &(0x7f0000000140)=0x9)
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r1, 0xf505, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)

17:52:53 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f5)

17:52:53 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0xffffffffffffffff)

17:52:53 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, 0x852, r2, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000240)=@IORING_OP_STATX={0x15, 0x4, 0x0, r1, &(0x7f0000000100), &(0x7f0000000200)='./bus\x00', 0x8, 0x800, 0x0, {0x0, r4}}, 0x10000)

17:52:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0x0, {0x4a}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r2, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xb4, r4, 0x800, 0x70bd2b, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8}, {0x6, 0x11, 0x9}}]}, 0xb4}, 0x1, 0x0, 0x0, 0x44890}, 0x4010)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x18, r1, 0x3c2e60e28f3e69ab, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)
r5 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x8, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x5, 0x5}}]}, {0x0, [0x5f, 0x30, 0x0, 0x2e, 0x5f, 0x61]}}, &(0x7f0000000200)=""/189, 0x38, 0xbd, 0x1}, 0x20)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r6, 0x0, 0x0, 0x0)
sendfile(r6, r5, 0x0, 0x7ffffffe)

17:52:53 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x4000, 0x1ce)
r2 = pidfd_open(0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
sendfile(r2, r3, &(0x7f0000000080)=0x4, 0x8)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:53 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f0000000100)='./bus/file0\x00', 0x481, 0x20)
ioctl$PPPIOCGMRU(r2, 0x80047453, &(0x7f0000000140))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)

17:52:54 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x14)
ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000100))
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000009c0)={0x38, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x24, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x7d}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x5, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)
sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, r1, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040000)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r3 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x8883, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="00000000000000002e2f627573009146a9ad643490dda2f480f4ae9b7f610600eaec0496196d226678800fcbdf9d67134696760b8b7b4a10d2a67f1d23708d2fcc788380f4b108c73bd8439bb37f20d8dae14e97850304e792fe0e131e211b5f52e37848b29c7b432bacfc1da54482adcdf529ca"])
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r4, 0x0, 0x80000001)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r5, 0x0, 0x0, 0x0)
r6 = openat$urandom(0xffffffffffffff9c, &(0x7f00000002c0), 0x410001, 0x0)
fstat(r3, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0xf4240)
mount$9p_fd(0x0, &(0x7f0000000240)='./bus\x00', &(0x7f0000000280), 0x800, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@nodevmap}, {@cache_none}, {@version_L}], [{@fowner_gt={'fowner>', r7}}]}})

17:52:54 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 44)

17:52:54 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001c8)

[  358.947940][T12764] 9pnet: Insufficient options for proto=fd
[  359.035537][T12769] FAULT_INJECTION: forcing a failure.
[  359.035537][T12769] name failslab, interval 1, probability 0, space 0, times 0
[  359.048201][T12769] CPU: 0 PID: 12769 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  359.057005][T12769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  359.067129][T12769] Call Trace:
[  359.070404][T12769]  <TASK>
[  359.073326][T12769]  dump_stack_lvl+0xd6/0x122
[  359.077924][T12769]  dump_stack+0x11/0x1b
[  359.082196][T12769]  should_fail+0x23c/0x250
[  359.086626][T12769]  ? mempool_alloc_slab+0x16/0x20
[  359.091690][T12769]  __should_failslab+0x81/0x90
[  359.096461][T12769]  should_failslab+0x5/0x20
[  359.100979][T12769]  kmem_cache_alloc+0x4f/0x320
[  359.105790][T12769]  mempool_alloc_slab+0x16/0x20
[  359.110756][T12769]  ? mempool_free+0x130/0x130
[  359.115522][T12769]  mempool_alloc+0x9d/0x310
[  359.120091][T12769]  ? preempt_count_add+0x4e/0x90
[  359.125034][T12769]  ? _raw_read_unlock+0x13/0x30
[  359.129888][T12769]  ? jbd2_transaction_committed+0xad/0xc0
[  359.135668][T12769]  bio_alloc_bioset+0xcc/0x560
[  359.140438][T12769]  ? iov_iter_alignment+0x34b/0x370
[  359.145646][T12769]  iomap_dio_bio_iter+0x5ed/0xc70
[  359.150702][T12769]  ? ext4_alloc_da_blocks+0x100/0x100
[  359.155027][T12764] 9pnet: Insufficient options for proto=fd
[  359.156078][T12769]  __iomap_dio_rw+0x8b5/0x1070
[  359.166702][T12769]  iomap_dio_rw+0x38/0x80
[  359.171036][T12769]  ? ext4_file_write_iter+0x451/0x1200
[  359.176522][T12769]  ext4_file_write_iter+0xac3/0x1200
[  359.181816][T12769]  ? ext4_file_write_iter+0x451/0x1200
[  359.187382][T12769]  do_iter_readv_writev+0x2de/0x380
[  359.192663][T12769]  do_iter_write+0x192/0x5c0
[  359.197260][T12769]  ? splice_from_pipe_next+0x34f/0x3b0
[  359.202720][T12769]  ? kmalloc_array+0x2d/0x40
[  359.207314][T12769]  vfs_iter_write+0x4c/0x70
[  359.211826][T12769]  iter_file_splice_write+0x43a/0x790
[  359.217247][T12769]  ? splice_from_pipe+0xd0/0xd0
[  359.222149][T12769]  direct_splice_actor+0x80/0xa0
[  359.227143][T12769]  splice_direct_to_actor+0x345/0x650
17:52:54 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000040)=@v2={0x2, @aes256, 0x4, '\x00', @c})
sendfile(r0, r1, 0x0, 0x80000001)

[  359.232546][T12769]  ? do_splice_direct+0x190/0x190
[  359.237578][T12769]  do_splice_direct+0x106/0x190
[  359.242437][T12769]  do_sendfile+0x675/0xc40
[  359.246884][T12769]  __x64_sys_sendfile64+0x102/0x140
[  359.252084][T12769]  do_syscall_64+0x44/0xd0
[  359.256506][T12769]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  359.262494][T12769] RIP: 0033:0x7ff4b8299ae9
[  359.266954][T12769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:52:54 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000100)="f1ae2b5fce90d575c2b5372fd709ea799410ce5c86da481136b49085214f2ca6cc95b60c813f3d264fb83c46d7ba32afdca804f87340f5f51b1dbf4959792c457b09a1df3a62687cc912a9b1f07a162936d9b1e320e845e5241316448440bb8cd594293879e6e0de4423395ad9e9603278", 0x71}], 0x1)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x1d98c2, 0x0)
r3 = memfd_secret(0x80000)
r4 = openat(r3, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r4, 0x0, 0x80000001)

[  359.286561][T12769] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  359.294980][T12769] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  359.302949][T12769] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  359.310915][T12769] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  359.318889][T12769] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  359.326858][T12769] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  359.334833][T12769]  </TASK>
[  359.356105][   T24] audit: type=1400 audit(1637344374.533:275): avc:  denied  { write } for  pid=12775 comm="syz-executor.5" path="socket:[43382]" dev="sockfs" ino=43382 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
17:52:54 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r2, 0x89f9, &(0x7f0000000180)={'syztnl0\x00', &(0x7f0000000100)={'ip6gre0\x00', 0x0, 0x2f, 0xa0, 0x6, 0x2, 0x62, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private1, 0x8, 0x80, 0x1, 0x4}})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)

17:52:54 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f6)

17:52:54 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0, 0x8)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4)

17:52:54 executing program 1:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000100)={0x0, @in={{0x2, 0x4e22, @multicast2}}, 0xc6f2, 0x7f}, 0x90)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000001c0), 0x1}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x66d, 0x0, 0xffffff01, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

17:52:54 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @private2, 0x5}, 0x1c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000480)="39bbad915bd1e9b4ac43deefebb56f9d73bd1926137537c3c640e348ef10c19d2351215b1eba64d816fd2e6d550dd6c7df9ba3e219c29dca3e9829718632b5b0d6b9eddedc574f834e6cdaf42193e490667b15d65417e28c64e6cb87ab36db8784e719c93aa5866515872ee0bb596cd5349dc02bc1f28cab84cd8748bf2dd0f5e9c101cab8300faede8951cf5938a335a34b24e17f90a3b95fed624d02d6f70ba97837482057a06f0cd4fa834ca881aa32a71781802d67e252485a83f006196e49ac89", 0xc3, 0x40, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @loopback, 0x9}, 0x1c)
write$binfmt_misc(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="73797a302ef6f4597605202c6ffa3977df987d2822aed37e1356eb9029d7b5bce97100010000dfd2d4292c39517dcd8928ef5f5121faf51fc79a1a7c50822ba16d8a4bbf5278120525e46b4926347fb74187f789a9017bdd6907fa67708040b7d7ae309c8233e24ce77d0572ee3462846ba7c7f9c04f28e96c258a592f123a2da7032c47c365cafda8450f07e3dc4d346a0c4a0d2b899b267c54d7f9db2a335fa87703833a59a69a64afaa809f129c6732926c728d98ac1f79c1dedf88b168aea57d44e9179c869c9261a9e5eeb961cc4a4cba46d9a6948f9e90aa0d66afe7e2b2cc3cc9b8548d90d366bae94d1e2d3ddb1f386674e23cd487adc6a98a18505dba0c7171362a13ff186586a0247806d07d9e04dbe85e07637fe74087018e3fc22e7948f3a153439e7f79098e371b36025a6a994ef201bbefaa0d962bd905a11a296247f906b3cd13526f0ad145d199bbf9330a5669f5d798c7128ebf5e97f74fabf20b57d2129a74407c4044daf23361629ccac6ba4e7fdd0e965beace018fd80e15f6fb6f04b5"], 0x99)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000000101ff0f00000008000000000a0000000c00198008000100fc0c0000040001"], 0x24}}, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x236002, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r3, 0x80049363, &(0x7f0000000140))

[  359.655228][   T24] audit: type=1400 audit(1637344374.833:276): avc:  denied  { setopt } for  pid=12791 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
17:52:55 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 45)

17:52:55 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001c9)

[  359.925524][T12806] FAULT_INJECTION: forcing a failure.
[  359.925524][T12806] name failslab, interval 1, probability 0, space 0, times 0
[  359.938280][T12806] CPU: 1 PID: 12806 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  359.947083][T12806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  359.957136][T12806] Call Trace:
[  359.960415][T12806]  <TASK>
[  359.963342][T12806]  dump_stack_lvl+0xd6/0x122
[  359.967942][T12806]  dump_stack+0x11/0x1b
[  359.972107][T12806]  should_fail+0x23c/0x250
[  359.976528][T12806]  ? jbd2__journal_start+0xf7/0x3f0
[  359.981728][T12806]  __should_failslab+0x81/0x90
[  359.986563][T12806]  should_failslab+0x5/0x20
[  359.991179][T12806]  kmem_cache_alloc+0x4f/0x320
[  359.996002][T12806]  jbd2__journal_start+0xf7/0x3f0
[  360.001034][T12806]  __ext4_journal_start_sb+0x159/0x310
[  360.006540][T12806]  ext4_iomap_begin+0x408/0x630
[  360.011476][T12806]  ? ext4_alloc_da_blocks+0x100/0x100
[  360.016929][T12806]  iomap_iter+0x395/0x4a0
[  360.021267][T12806]  __iomap_dio_rw+0xb78/0x1070
[  360.026094][T12806]  iomap_dio_rw+0x38/0x80
[  360.030516][T12806]  ? ext4_file_write_iter+0x451/0x1200
[  360.035989][T12806]  ext4_file_write_iter+0xac3/0x1200
[  360.041408][T12806]  ? ext4_file_write_iter+0x451/0x1200
[  360.046875][T12806]  do_iter_readv_writev+0x2de/0x380
[  360.052078][T12806]  do_iter_write+0x192/0x5c0
[  360.056760][T12806]  vfs_iter_write+0x4c/0x70
[  360.061332][T12806]  iter_file_splice_write+0x43a/0x790
[  360.066736][T12806]  ? splice_from_pipe+0xd0/0xd0
[  360.071668][T12806]  direct_splice_actor+0x80/0xa0
[  360.076665][T12806]  splice_direct_to_actor+0x345/0x650
[  360.082043][T12806]  ? do_splice_direct+0x190/0x190
[  360.087072][T12806]  do_splice_direct+0x106/0x190
[  360.091924][T12806]  do_sendfile+0x675/0xc40
[  360.096341][T12806]  __x64_sys_sendfile64+0x102/0x140
[  360.101607][T12806]  do_syscall_64+0x44/0xd0
[  360.106026][T12806]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  360.112021][T12806] RIP: 0033:0x7ff4b8299ae9
[  360.116433][T12806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  360.136039][T12806] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  360.144449][T12806] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  360.152418][T12806] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  360.160445][T12806] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  360.168541][T12806] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  360.176513][T12806] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  360.184526][T12806]  </TASK>
17:52:55 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x1d0)
pwrite64(r1, 0x0, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x4)

17:52:55 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x8)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x80000001)
pipe2(&(0x7f0000000180)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80000)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r5, &(0x7f00000001c0), 0x0, 0x0, 0x80800, 0x1, {0x0, r6}}, 0x1)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x7f, 0x3f, 0x81, 0x4, 0x0, 0x7, 0x2000, 0x9, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20, 0x80ee77332bc421de, @perf_config_ext={0xfffffffffffffffd, 0x1ffe00000000}, 0x8420, 0x7, 0x4, 0x4, 0xfffffffffffff001, 0x2, 0x200, 0x0, 0xfffff272, 0x0, 0x8}, 0x0, 0xc, 0xffffffffffffffff, 0x9)

17:52:55 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
recvmsg$kcm(r2, &(0x7f0000002400)={&(0x7f0000000040)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000001380)=[{&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/172, 0xac}, {&(0x7f00000011c0)=""/102, 0x66}, {&(0x7f0000001240)=""/30, 0x1e}, {&(0x7f0000001280)=""/229, 0xe5}], 0x5, &(0x7f0000001400)=""/4096, 0x1000}, 0x2042)
sendfile(r0, r1, 0x0, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000002440)={{0x1, 0x1, 0x18, <r3=>r1}, './bus\x00'})
sendfile(r3, r1, &(0x7f0000002480)=0x9, 0x1f)

17:52:55 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f7)

17:52:55 executing program 1:
creat(&(0x7f0000000080)='./bus\x00', 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
ftruncate(r1, 0x5)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000100), 0x3, 0x18000)
sendfile(r0, r2, 0x0, 0x80000003)

17:52:55 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
fallocate(r0, 0x1, 0x40, 0x3)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
clock_gettime(0x0, &(0x7f0000004080)={<r3=>0x0, <r4=>0x0})
recvmmsg(r2, &(0x7f0000003f80)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000300)=""/219, 0xdb}], 0x1, &(0x7f0000000400)=""/4096, 0x1000}}, {{0x0, 0x0, &(0x7f0000003600)=[{&(0x7f0000001400)=""/68, 0x44}, {&(0x7f0000001480)=""/122, 0x7a}, {&(0x7f0000001500)=""/4096, 0x1000}, {&(0x7f0000002500)=""/201, 0xc9}, {&(0x7f0000002600)=""/4096, 0x1000}], 0x5}, 0x10000}, {{0x0, 0x0, &(0x7f0000003d80)=[{&(0x7f0000004100)=""/224, 0xe0}, {&(0x7f0000003780)=""/144, 0x90}, {&(0x7f0000003840)=""/243, 0xf3}, {&(0x7f0000003940)=""/227, 0xe3}, {&(0x7f0000003a40)=""/199, 0xc7}, {&(0x7f0000003b40)=""/92, 0x5c}, {&(0x7f0000003bc0)=""/157, 0x9d}, {&(0x7f0000003c80)=""/251, 0xfb}], 0x8}, 0x80000000}, {{&(0x7f0000003e00)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000003e80)=[{&(0x7f0000000080)=""/39, 0x27}], 0x1, &(0x7f0000003ec0)=""/183, 0xb7}, 0x1f}], 0x4, 0x10000, &(0x7f00000040c0)={r3, r4+10000000})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000100))
fcntl$setpipe(r1, 0x407, 0x80000001)

17:52:55 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
clock_gettime(0x0, &(0x7f0000004900)={<r1=>0x0, <r2=>0x0})
recvmmsg$unix(r0, &(0x7f0000004680)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000180)=""/94, 0x5e}, {&(0x7f0000000200)=""/159, 0x9f}, {&(0x7f00000002c0)=""/34, 0x22}], 0x3}}, {{&(0x7f0000000340), 0x6e, &(0x7f0000000500)=[{&(0x7f0000000440)=""/177, 0xb1}], 0x1}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f0000000700)=[{&(0x7f00000005c0)}, {&(0x7f0000000600)=""/248, 0xf8}], 0x2, &(0x7f0000000740)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x120}}, {{&(0x7f0000000880), 0x6e, &(0x7f0000000bc0)=[{&(0x7f0000000900)=""/98, 0x62}, {&(0x7f0000000980)=""/212, 0xd4}, {&(0x7f0000000a80)=""/88, 0x58}, {&(0x7f0000000b00)=""/182, 0xb6}], 0x4, &(0x7f0000000c00)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000000c80), 0x6e, &(0x7f0000000d80)=[{&(0x7f0000000d00)=""/68, 0x44}], 0x1, &(0x7f0000000dc0)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000000e40)=@abs, 0x6e, &(0x7f0000000f40)=[{&(0x7f0000000ec0)=""/68, 0x44}], 0x1}}, {{0x0, 0x0, &(0x7f0000001000)=[{&(0x7f0000000f80)=""/121, 0x79}], 0x1, &(0x7f0000001040)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}, {{&(0x7f0000001080), 0x6e, &(0x7f0000003280)=[{&(0x7f0000001100)=""/4096, 0x1000}, {&(0x7f0000002100)=""/4096, 0x1000}, {&(0x7f0000003100)=""/240, 0xf0}, {&(0x7f0000003200)=""/18, 0x12}, {&(0x7f0000003240)=""/32, 0x20}], 0x5, &(0x7f0000003300)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000003380), 0x6e, 0x0, 0x0, &(0x7f0000003400)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}}, {{&(0x7f0000003500), 0x6e, &(0x7f0000004640)=[{&(0x7f0000003580)=""/177, 0xb1}, {&(0x7f0000003640)=""/4096, 0x1000}], 0x2}}], 0xa, 0x0, &(0x7f0000004940)={r1, r2+10000000})
openat$cgroup_procs(r3, &(0x7f0000004980)='tasks\x00', 0x2, 0x0)
r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x80000001)

17:52:55 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 46)

[  360.784642][T12838] FAULT_INJECTION: forcing a failure.
[  360.784642][T12838] name failslab, interval 1, probability 0, space 0, times 0
[  360.797328][T12838] CPU: 1 PID: 12838 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  360.806091][T12838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  360.816148][T12838] Call Trace:
[  360.819507][T12838]  <TASK>
[  360.822433][T12838]  dump_stack_lvl+0xd6/0x122
[  360.827041][T12838]  dump_stack+0x11/0x1b
[  360.831307][T12838]  should_fail+0x23c/0x250
[  360.835916][T12838]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  360.841246][T12838]  __should_failslab+0x81/0x90
[  360.846073][T12838]  should_failslab+0x5/0x20
[  360.850772][T12838]  kmem_cache_alloc+0x4f/0x320
[  360.855583][T12838]  ext4_mb_new_blocks+0x328/0x1ee0
[  360.860828][T12838]  ? ext4_mark_iloc_dirty+0x855/0x890
[  360.866223][T12838]  ext4_new_meta_blocks+0x84/0x180
[  360.871386][T12838]  ext4_ind_map_blocks+0xb68/0x1740
[  360.876649][T12838]  ext4_map_blocks+0x6e3/0xf00
[  360.881482][T12838]  ext4_iomap_begin+0x4b0/0x630
[  360.886340][T12838]  ? ext4_alloc_da_blocks+0x100/0x100
[  360.891766][T12838]  iomap_iter+0x395/0x4a0
[  360.896200][T12838]  __iomap_dio_rw+0xb78/0x1070
[  360.900993][T12838]  iomap_dio_rw+0x38/0x80
[  360.905396][T12838]  ? ext4_file_write_iter+0x451/0x1200
[  360.910857][T12838]  ext4_file_write_iter+0xac3/0x1200
[  360.916147][T12838]  ? ext4_file_write_iter+0x451/0x1200
[  360.921630][T12838]  do_iter_readv_writev+0x2de/0x380
[  360.926881][T12838]  do_iter_write+0x192/0x5c0
[  360.931484][T12838]  ? splice_from_pipe_next+0x34f/0x3b0
[  360.937015][T12838]  ? kmalloc_array+0x2d/0x40
[  360.941606][T12838]  vfs_iter_write+0x4c/0x70
[  360.946122][T12838]  iter_file_splice_write+0x43a/0x790
[  360.951502][T12838]  ? splice_from_pipe+0xd0/0xd0
[  360.956403][T12838]  direct_splice_actor+0x80/0xa0
[  360.961384][T12838]  splice_direct_to_actor+0x345/0x650
[  360.966779][T12838]  ? do_splice_direct+0x190/0x190
[  360.971807][T12838]  do_splice_direct+0x106/0x190
[  360.976661][T12838]  do_sendfile+0x675/0xc40
[  360.981082][T12838]  __x64_sys_sendfile64+0x102/0x140
[  360.986370][T12838]  do_syscall_64+0x44/0xd0
[  360.990871][T12838]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  360.996771][T12838] RIP: 0033:0x7ff4b8299ae9
[  361.001186][T12838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  361.020801][T12838] RSP: 002b:00007ff4b6010188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:52:56 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x80000001)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x10810, r0, 0xb74fc000)
sendfile(r0, r2, &(0x7f0000000040)=0xfffffffffffff001, 0x991)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
fallocate(r1, 0x20, 0x7, 0x1)
open(&(0x7f0000000100)='./file0\x00', 0x4241, 0x3a4)

[  361.029211][T12838] RAX: ffffffffffffffda RBX: 00007ff4b83acf60 RCX: 00007ff4b8299ae9
[  361.037179][T12838] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  361.045267][T12838] RBP: 00007ff4b60101d0 R08: 0000000000000000 R09: 0000000000000000
[  361.053260][T12838] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  361.061229][T12838] R13: 00007ffca0f1f41f R14: 00007ff4b6010300 R15: 0000000000022000
[  361.069208][T12838]  </TASK>
17:52:56 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001ca)

17:52:56 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 47)

17:52:56 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)

17:52:56 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
ioctl$INCFS_IOC_PERMIT_FILL(0xffffffffffffffff, 0x40046721, &(0x7f0000000040)={r0})
symlinkat(&(0x7f0000000080)='./bus\x00', r1, &(0x7f0000000100)='./bus\x00')

[  361.248893][T12852] FAULT_INJECTION: forcing a failure.
[  361.248893][T12852] name failslab, interval 1, probability 0, space 0, times 0
[  361.261639][T12852] CPU: 0 PID: 12852 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  361.270402][T12852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  361.280492][T12852] Call Trace:
[  361.283768][T12852]  <TASK>
[  361.286718][T12852]  dump_stack_lvl+0xd6/0x122
[  361.291313][T12852]  dump_stack+0x11/0x1b
[  361.295473][T12852]  should_fail+0x23c/0x250
[  361.299889][T12852]  ? ext4_mb_new_blocks+0x73e/0x1ee0
[  361.305239][T12852]  __should_failslab+0x81/0x90
[  361.310080][T12852]  should_failslab+0x5/0x20
[  361.314599][T12852]  kmem_cache_alloc+0x4f/0x320
[  361.319375][T12852]  ext4_mb_new_blocks+0x73e/0x1ee0
[  361.324597][T12852]  ? ext4_mark_iloc_dirty+0x855/0x890
[  361.329982][T12852]  ext4_new_meta_blocks+0x84/0x180
[  361.335186][T12852]  ext4_ind_map_blocks+0xb68/0x1740
[  361.340407][T12852]  ext4_map_blocks+0x6e3/0xf00
[  361.345230][T12852]  ext4_iomap_begin+0x4b0/0x630
[  361.350121][T12852]  ? ext4_alloc_da_blocks+0x100/0x100
[  361.355548][T12852]  iomap_iter+0x395/0x4a0
[  361.359961][T12852]  __iomap_dio_rw+0xb78/0x1070
[  361.364753][T12852]  iomap_dio_rw+0x38/0x80
[  361.369153][T12852]  ? ext4_file_write_iter+0x451/0x1200
[  361.374685][T12852]  ext4_file_write_iter+0xac3/0x1200
[  361.379975][T12852]  ? ext4_file_write_iter+0x451/0x1200
[  361.385538][T12852]  do_iter_readv_writev+0x2de/0x380
[  361.390833][T12852]  do_iter_write+0x192/0x5c0
[  361.395439][T12852]  ? splice_from_pipe_next+0x34f/0x3b0
[  361.400951][T12852]  ? kmalloc_array+0x2d/0x40
[  361.405549][T12852]  vfs_iter_write+0x4c/0x70
[  361.410149][T12852]  iter_file_splice_write+0x43a/0x790
[  361.415593][T12852]  ? splice_from_pipe+0xd0/0xd0
[  361.420501][T12852]  direct_splice_actor+0x80/0xa0
[  361.425454][T12852]  splice_direct_to_actor+0x345/0x650
[  361.430828][T12852]  ? do_splice_direct+0x190/0x190
[  361.435879][T12852]  do_splice_direct+0x106/0x190
[  361.440743][T12852]  do_sendfile+0x675/0xc40
[  361.445317][T12852]  __x64_sys_sendfile64+0x102/0x140
[  361.450582][T12852]  do_syscall_64+0x44/0xd0
[  361.454999][T12852]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  361.460933][T12852] RIP: 0033:0x7ff4b8299ae9
[  361.465349][T12852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  361.485079][T12852] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  361.493574][T12852] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  361.501573][T12852] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  361.509550][T12852] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  361.517533][T12852] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  361.525527][T12852] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  361.533534][T12852]  </TASK>
17:52:56 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = socket(0x10, 0x3, 0x0)
write(r3, &(0x7f0000000140)="240000001a005f0014f9f407000909000a00800000000000000000000800100000000000", 0x24)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:56 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f8)

17:52:56 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000040)=0xf4240)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2, 0x810, r0, 0x85e75000)

17:52:57 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r1, 0x80049367, &(0x7f0000000140)=0x3)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000040), &(0x7f0000000080)=0x4)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$F2FS_IOC_GET_PIN_FILE(r2, 0x8004f50e, &(0x7f0000000100))

17:52:57 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 48)

17:52:57 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001cb)

[  362.138794][T12878] FAULT_INJECTION: forcing a failure.
[  362.138794][T12878] name failslab, interval 1, probability 0, space 0, times 0
[  362.151486][T12878] CPU: 0 PID: 12878 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  362.160245][T12878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  362.170294][T12878] Call Trace:
[  362.173568][T12878]  <TASK>
[  362.176496][T12878]  dump_stack_lvl+0xd6/0x122
[  362.181092][T12878]  dump_stack+0x11/0x1b
[  362.185252][T12878]  should_fail+0x23c/0x250
[  362.189669][T12878]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  362.194963][T12878]  __should_failslab+0x81/0x90
[  362.199791][T12878]  should_failslab+0x5/0x20
[  362.204297][T12878]  kmem_cache_alloc+0x4f/0x320
[  362.209103][T12878]  ext4_mb_new_blocks+0x328/0x1ee0
[  362.214225][T12878]  ? ext4_new_meta_blocks+0x14a/0x180
[  362.219673][T12878]  ext4_ind_map_blocks+0xb1c/0x1740
[  362.224881][T12878]  ext4_map_blocks+0x6e3/0xf00
[  362.229746][T12878]  ext4_iomap_begin+0x4b0/0x630
[  362.234603][T12878]  ? ext4_alloc_da_blocks+0x100/0x100
[  362.239981][T12878]  iomap_iter+0x395/0x4a0
[  362.244318][T12878]  __iomap_dio_rw+0xb78/0x1070
[  362.249094][T12878]  iomap_dio_rw+0x38/0x80
[  362.253529][T12878]  ? ext4_file_write_iter+0x451/0x1200
[  362.259004][T12878]  ext4_file_write_iter+0xac3/0x1200
[  362.264387][T12878]  ? ext4_file_write_iter+0x451/0x1200
[  362.269887][T12878]  do_iter_readv_writev+0x2de/0x380
[  362.275086][T12878]  do_iter_write+0x192/0x5c0
[  362.279685][T12878]  ? splice_from_pipe_next+0x34f/0x3b0
[  362.285197][T12878]  ? kmalloc_array+0x2d/0x40
[  362.289789][T12878]  vfs_iter_write+0x4c/0x70
[  362.294330][T12878]  iter_file_splice_write+0x43a/0x790
[  362.299724][T12878]  ? splice_from_pipe+0xd0/0xd0
[  362.304621][T12878]  direct_splice_actor+0x80/0xa0
[  362.309654][T12878]  splice_direct_to_actor+0x345/0x650
[  362.315255][T12878]  ? do_splice_direct+0x190/0x190
[  362.320289][T12878]  do_splice_direct+0x106/0x190
[  362.325284][T12878]  do_sendfile+0x675/0xc40
[  362.329709][T12878]  __x64_sys_sendfile64+0x102/0x140
[  362.335005][T12878]  do_syscall_64+0x44/0xd0
[  362.339425][T12878]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  362.345513][T12878] RIP: 0033:0x7ff4b8299ae9
[  362.349927][T12878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  362.369537][T12878] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  362.377956][T12878] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  362.385929][T12878] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  362.393994][T12878] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  362.401960][T12878] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  362.409965][T12878] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  362.417943][T12878]  </TASK>
17:52:57 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0xb}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x101000, 0x1c9)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:57 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f9)

17:52:57 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = accept$inet6(r1, 0x0, &(0x7f0000000140))
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000180)={{{@in6, @in6=@empty}}, {{@in6}, 0x0, @in=@empty}}, &(0x7f0000000280)=0xe8)
ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, &(0x7f0000000440)={{r1}, "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"})
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xfffffffffffffffb, r1, 0x0)
flistxattr(r0, &(0x7f0000000100)=""/46, 0x2e)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)

17:52:57 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
accept$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000140)=0x14)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x20000, 0x1000}, 0x18)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f00000004c0)=0x80, 0x4)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f0000000080)=0x2, 0x4)
r4 = socket(0x100000000011, 0x2, 0x0)
bind(r4, &(0x7f0000000940)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836010004b0e0301a4ce875f2e3ff5f163ee340b767950080f5ff000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, <r5=>0x0}, &(0x7f0000000100)=0x14)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000140)=0x400, 0x4)
bind$xdp(r3, &(0x7f0000000900)={0x2c, 0xc, r5}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)={'syztnl1\x00', <r6=>0x0, 0x80, 0x7, 0x8895, 0x7, {{0x21, 0x4, 0x1, 0xb, 0x84, 0x64, 0x0, 0x0, 0x2f, 0x0, @multicast2, @multicast1, {[@timestamp_prespec={0x44, 0x54, 0x16, 0x3, 0x7, [{@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x3c}, 0x8}, {@empty, 0x1}, {@multicast2}, {@remote, 0x10001}, {@private=0xa010100, 0x7}, {@local, 0x2}, {@loopback, 0x10001}, {@loopback, 0x5}, {@loopback, 0x9}]}, @ssrr={0x89, 0x1b, 0x5b, [@initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast, @dev={0xac, 0x14, 0x14, 0x2a}, @multicast1, @empty, @multicast2]}]}}}}})
sendmsg$nl_route(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000008}, 0xc, &(0x7f0000000400)={&(0x7f0000000280)=@RTM_NEWMDB={0x158, 0x54, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x2, 0x1, {@ip4=@rand_addr=0x64010101}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x3, 0x4, {@in6_addr=@mcast1, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x1, 0x2, 0x3, {@ip4=@remote, 0x86dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x2, 0x0, {@ip4=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8edd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x3, 0x2, {@ip4=@multicast2}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r5, 0x1, 0x0, 0x100, {@in6_addr=@ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x1, 0x4, {@in6_addr=@private1={0xfc, 0x1, '\x00', 0x1}, 0x86dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r6, 0x0, 0x3, 0x1, {@ip4=@loopback}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x1, 0x20, {@in6_addr=@private0={0xfc, 0x0, '\x00', 0x1}, 0x86dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x2, 0x4, {@ip4=@empty, 0x8edd}}}]}, 0x158}, 0x1, 0x0, 0x0, 0x20004084}, 0x20000000)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r7, 0x0, 0x80000001)
read(r7, &(0x7f0000000040)=""/16, 0x10)

17:52:58 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 49)

17:52:58 executing program 3:
connect$qrtr(0xffffffffffffffff, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0x8001}, 0xc)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(r0, &(0x7f0000000080)='./bus\x00', 0x20001, 0x0)
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x0, 0x7, &(0x7f0000000540)=[{&(0x7f0000000140)="b0bdf836eb7b8b561d6abc3bd829dd", 0xf, 0x7}, {&(0x7f0000000180)="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", 0xfe, 0x1000}, {&(0x7f0000000280)="e686b78cf50644b7a93ac90d8aed0639d10619aa4b8ee3c160c1fd0dee710e89a7e2e66136eff8c183506a65830318a3296ce3f13296128ccc85c62b3ded06609c7c3a1913a58ffda7eda2c66a865e4065b3414879adb9f2a138c58787a6f47980bfcc17b5b60eb755f829d29369492c94e0f91f8981841f1c3302f7acb6a14ea6937bf0b23fe38e20f861cef990409de69936aab983c16f594134e85f37fdb511e130dbfc9a4aaee262c4170c597972638fe4", 0xb3, 0x5}, {&(0x7f0000000340)="94ebff7c30e812c528644c47e3ddbe960688117b28278a8d36695c8e97f4c1f1eb2699b6c240efcf171b98aba3b7547d26bcdc277d84a47dea272dd77e2e30a4bb911600", 0x44, 0x4}, {&(0x7f00000003c0)="9e5e4a40a627095c13a3a3fc4e03102f6d17500d5843", 0x16, 0x1}, {&(0x7f0000000400)="02eff4c8ced9d7188ac91be0fa6203d274a7c2aa254cd36fe1f6da742c391ca1ea68828e1822a330e878c5303d86cdaeb873fd8d41660c7fa643cfc805fcabcaf836fc15acbb57f61a59da7c710e715645d60b08c96c3c2c0862af2f6d84b0636922622080f9656c0aac9f123922fb2443ce62f48f3a07782e22eed6", 0x7c, 0x6}, {&(0x7f0000000480)="c9fc7f3d901b55c59250d9bde0a12c95d4028f107cf7cdf6916a2fb6940af3dae305f1925102185cd00caf2a4a188cf1f58031c29c17ea4f097da82fd243eab83e9f53f8e6212fe3fa659a123b2c04c79e1843f14383a5d94efc63c8b7f9277e8a77548304125f547ca4a26d996d17c45f0dff791311acb74525ddfd0f0d4bfafd7c53d894a9c31233c5decf265dbd2cdb42c60aa55340bb0610779108ff604d54a4f3effd041d2262e0c595d6d2a4d3d62537", 0xb3, 0x8}], 0x2, &(0x7f0000000600)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6d6f64653d3030303030303030303030372c658f743b0f00"/35, @ANYRESDEC=0x0, @ANYBLOB=',appraise,\x00'])
openat(r2, &(0x7f0000000680)='./bus\x00', 0x420341, 0x4)
sendfile(r0, r1, 0x0, 0x80000001)

[  363.001401][T12903] FAULT_INJECTION: forcing a failure.
[  363.001401][T12903] name failslab, interval 1, probability 0, space 0, times 0
[  363.014125][T12903] CPU: 0 PID: 12903 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  363.022939][T12903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  363.033014][T12903] Call Trace:
[  363.036289][T12903]  <TASK>
[  363.039242][T12903]  dump_stack_lvl+0xd6/0x122
[  363.043843][T12903]  dump_stack+0x11/0x1b
[  363.048065][T12903]  should_fail+0x23c/0x250
[  363.052483][T12903]  ? jbd2_journal_add_journal_head+0x6c/0x3a0
[  363.058592][T12903]  __should_failslab+0x81/0x90
[  363.063361][T12903]  should_failslab+0x5/0x20
[  363.067867][T12903]  kmem_cache_alloc+0x4f/0x320
[  363.072682][T12903]  jbd2_journal_add_journal_head+0x6c/0x3a0
[  363.078591][T12903]  jbd2_journal_get_create_access+0x2c/0x290
[  363.084639][T12903]  __ext4_journal_get_create_access+0x65/0x320
[  363.090834][T12903]  ext4_ind_map_blocks+0xcf1/0x1740
[  363.096214][T12903]  ext4_map_blocks+0x6e3/0xf00
17:52:58 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001cc)

[  363.101011][T12903]  ext4_iomap_begin+0x4b0/0x630
[  363.105872][T12903]  ? ext4_alloc_da_blocks+0x100/0x100
[  363.111297][T12903]  iomap_iter+0x395/0x4a0
[  363.115637][T12903]  __iomap_dio_rw+0xb78/0x1070
[  363.120414][T12903]  iomap_dio_rw+0x38/0x80
[  363.124748][T12903]  ? ext4_file_write_iter+0x451/0x1200
[  363.130208][T12903]  ext4_file_write_iter+0xac3/0x1200
[  363.135501][T12903]  ? ext4_file_write_iter+0x451/0x1200
[  363.140994][T12903]  do_iter_readv_writev+0x2de/0x380
[  363.146262][T12903]  do_iter_write+0x192/0x5c0
[  363.150997][T12903]  ? splice_from_pipe_next+0x34f/0x3b0
[  363.156464][T12903]  ? kmalloc_array+0x2d/0x40
[  363.161064][T12903]  vfs_iter_write+0x4c/0x70
[  363.165582][T12903]  iter_file_splice_write+0x43a/0x790
[  363.170969][T12903]  ? splice_from_pipe+0xd0/0xd0
[  363.175818][T12903]  direct_splice_actor+0x80/0xa0
[  363.180762][T12903]  splice_direct_to_actor+0x345/0x650
[  363.186139][T12903]  ? do_splice_direct+0x190/0x190
[  363.191169][T12903]  do_splice_direct+0x106/0x190
[  363.196089][T12903]  do_sendfile+0x675/0xc40
17:52:58 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000e80)={<r4=>0x0, 0x9, 0x5, 0x1})
setxattr$trusted_overlay_nlink(&(0x7f0000000100)='./bus\x00', &(0x7f0000000140), &(0x7f0000000180)={'L+'}, 0x16, 0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000001280)={r4, 0xfff, 0x7})
open(&(0x7f00000001c0)='./bus\x00', 0x305200, 0x128)

[  363.200517][T12903]  __x64_sys_sendfile64+0x102/0x140
[  363.205721][T12903]  do_syscall_64+0x44/0xd0
[  363.210145][T12903]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  363.216068][T12903] RIP: 0033:0x7ff4b8299ae9
[  363.220479][T12903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  363.240153][T12903] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  363.248568][T12903] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  363.256536][T12903] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  363.264560][T12903] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  363.272607][T12903] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  363.280576][T12903] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  363.288550][T12903]  </TASK>
[  363.291718][T12903] ENOMEM in journal_alloc_journal_head, retrying.
[  363.304793][T12907] loop3: detected capacity change from 0 to 16
[  363.311177][T12907] tmpfs: Unknown parameter 'e�t;'
[  363.349366][T12907] loop3: detected capacity change from 0 to 16
17:52:58 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = inotify_init1(0x0)
sendfile(r1, r2, &(0x7f0000000080)=0x9, 0x6)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x2, 0x3f, 0x2, 0x6, 0x0, 0x0, 0x1010, 0xc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x7e9, 0x2, @perf_config_ext={0x8, 0x7fffffff}, 0xc1, 0xfffffffffffff000, 0x5265, 0x6, 0x9, 0x9, 0x8, 0x0, 0x7c83, 0x0, 0x6}, 0xffffffffffffffff, 0xd, r3, 0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r4, 0x0, 0x80000001)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x96)

[  363.392339][   T24] audit: type=1400 audit(1637344378.573:277): avc:  denied  { write } for  pid=12909 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
17:52:58 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003fa)

17:52:59 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 50)

[  363.899434][T12925] FAULT_INJECTION: forcing a failure.
[  363.899434][T12925] name failslab, interval 1, probability 0, space 0, times 0
[  363.912084][T12925] CPU: 1 PID: 12925 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  363.920918][T12925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  363.930976][T12925] Call Trace:
[  363.934248][T12925]  <TASK>
[  363.937173][T12925]  dump_stack_lvl+0xd6/0x122
[  363.941772][T12925]  dump_stack+0x11/0x1b
[  363.946060][T12925]  should_fail+0x23c/0x250
[  363.950570][T12925]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  363.955928][T12925]  __should_failslab+0x81/0x90
[  363.960709][T12925]  should_failslab+0x5/0x20
[  363.965270][T12925]  kmem_cache_alloc+0x4f/0x320
[  363.970151][T12925]  ext4_mb_new_blocks+0x328/0x1ee0
[  363.975270][T12925]  ? ext4_new_meta_blocks+0x14a/0x180
[  363.980651][T12925]  ext4_ind_map_blocks+0xb1c/0x1740
[  363.985861][T12925]  ext4_map_blocks+0x6e3/0xf00
[  363.990631][T12925]  ext4_iomap_begin+0x4b0/0x630
[  363.995513][T12925]  ? ext4_alloc_da_blocks+0x100/0x100
[  364.000890][T12925]  iomap_iter+0x395/0x4a0
[  364.005244][T12925]  __iomap_dio_rw+0xb78/0x1070
[  364.010017][T12925]  iomap_dio_rw+0x38/0x80
[  364.014376][T12925]  ? ext4_file_write_iter+0x451/0x1200
[  364.019835][T12925]  ext4_file_write_iter+0xac3/0x1200
[  364.025121][T12925]  ? ext4_file_write_iter+0x451/0x1200
[  364.030596][T12925]  do_iter_readv_writev+0x2de/0x380
[  364.035931][T12925]  do_iter_write+0x192/0x5c0
[  364.040610][T12925]  ? splice_from_pipe_next+0x34f/0x3b0
[  364.046186][T12925]  ? kmalloc_array+0x2d/0x40
[  364.050792][T12925]  vfs_iter_write+0x4c/0x70
[  364.055378][T12925]  iter_file_splice_write+0x43a/0x790
[  364.060810][T12925]  ? splice_from_pipe+0xd0/0xd0
[  364.065662][T12925]  direct_splice_actor+0x80/0xa0
[  364.070632][T12925]  splice_direct_to_actor+0x345/0x650
[  364.076003][T12925]  ? do_splice_direct+0x190/0x190
[  364.081033][T12925]  do_splice_direct+0x106/0x190
[  364.085915][T12925]  do_sendfile+0x675/0xc40
[  364.090331][T12925]  __x64_sys_sendfile64+0x102/0x140
[  364.095529][T12925]  do_syscall_64+0x44/0xd0
[  364.099974][T12925]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  364.105883][T12925] RIP: 0033:0x7ff4b8299ae9
[  364.110291][T12925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  364.129983][T12925] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  364.138532][T12925] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
17:52:59 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
open_tree(r0, &(0x7f00000003c0)='./bus\x00', 0x100)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000009c0)={0x38, r2, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x24, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x7d}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x5, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
pwritev(r3, &(0x7f0000000500)=[{&(0x7f0000000400)="291c7b2a1093efad2675769756", 0xd}, {&(0x7f0000000440)="95fad9d5f07c044bd0bcc3e1d354aa6906c8715000b47775455d8f21c80e2933c2ac583a244a9154238ec8cb34f441c09874c8bd97c8405fa4d02c3e999b0490fb4afc7e75591b3dae3532289cea58e6f8b6b4af106f6dfc3f0c083a908818e86b80dc2307b7e5a9cac8274e8d6202ec1c44a66685b33f8640ae41134ae005bf442802ad473b9e473b80641e80234b73393ad6bdf5cf51f4dce7f4b1706496", 0x9f}], 0x2, 0x80, 0x7fffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x260, r2, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_CQM={0x68, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x7}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0xfffffffd}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x22fd}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x1b7cdc}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x8001}, @NL80211_ATTR_CQM_RSSI_THOLD={0x2c, 0x1, [0xc3, 0x7, 0x6, 0x5e, 0x4, 0x0, 0x3800, 0x3, 0x8, 0x8ece]}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x2b1}]}, @NL80211_ATTR_CQM={0x4c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x401}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x19}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x9}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x1ff}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x7}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x5}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x33}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x2b}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x5c}]}, @NL80211_ATTR_CQM={0xc, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x4]}]}, @NL80211_ATTR_CQM={0x34, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x3f, 0x0, 0x9]}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0xd7}, @NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x2f17, 0x8, 0x2]}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x7fffffff}]}, @NL80211_ATTR_CQM={0xc, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0xff}]}, @NL80211_ATTR_CQM={0x2c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x2e}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x4}, @NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x5, 0x7, 0x4]}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x4}]}, @NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x7}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x18}]}, @NL80211_ATTR_CQM={0x4c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x8001]}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x1cb}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x3}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x7}, @NL80211_ATTR_CQM_RSSI_THOLD={0x28, 0x1, [0xfffffeff, 0x1e6, 0x5efd, 0x8, 0xf19, 0x1, 0x93, 0x1f, 0x6]}]}, @NL80211_ATTR_CQM={0x64, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x250}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0xc, 0x1, [0xfffffffb, 0x5]}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x800}, @NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x8]}, @NL80211_ATTR_CQM_RSSI_THOLD={0x24, 0x1, [0x3, 0x401, 0xd6, 0xffffff75, 0x20, 0xfffffff8, 0x0, 0x4]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x7ff}]}, @NL80211_ATTR_CQM={0x5c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x2e}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x4}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x7}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x44d}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x43}, @NL80211_ATTR_CQM_RSSI_THOLD={0x1c, 0x1, [0x8, 0x8, 0xc0004000, 0xdecc, 0xffffffff, 0x7]}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x4}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x80000001}]}]}, 0x260}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)=@ipv6_deladdrlabel={0x84, 0x49, 0x221159ff425c3e8b, 0x70bd2b, 0x25dfdbfc, {0xa, 0x0, 0x80, 0x0, 0x0, 0x3}, [@IFAL_LABEL={0x8, 0x2, 0x2}, @IFAL_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}}, @IFAL_LABEL={0x8, 0x2, 0xf}, @IFAL_ADDRESS={0x14, 0x1, @dev={0xfe, 0x80, '\x00', 0x36}}, @IFAL_ADDRESS={0x14, 0x1, @local}, @IFAL_LABEL={0x8, 0x2, 0xb}]}, 0x84}, 0x1, 0x0, 0x0, 0x80}, 0xd4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r5, 0x0, 0x80000001)

17:52:59 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r3=>0x0, ""/256, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f000005dc00)={<r5=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005ec00)={0xc5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r6=>0x0}], 0x5, "4e850897f8178f"})
r7 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r8=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x0, "2156816c73038c"})
r9 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r9, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r11=>0x0, ""/256, <r12=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005fc00)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r13=>0x0}], 0x6, "695fe666c8c4af"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f0000060c00)={<r14=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000061c00)={0x5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3, r5}, {r6, r8}, {0x0, r10}, {}, {r11}, {r13, r14}], 0xfc, "30e580c1347eac"})

[  364.146499][T12925] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  364.154464][T12925] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  364.162449][T12925] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  364.170486][T12925] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  364.178532][T12925]  </TASK>
17:52:59 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001cd)

17:52:59 executing program 1:
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000440)="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", 0x1000)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x68200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x40, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:59 executing program 3:
ioctl$SCSI_IOCTL_DOORUNLOCK(0xffffffffffffffff, 0x5381)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:52:59 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003fb)

17:52:59 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x1e5)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:52:59 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100)}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x1, 0x0, 0x1, 0xfb, 0x0, 0x5, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, @perf_config_ext={0x3, 0x1}, 0x704, 0x60000000000000, 0x5, 0x9, 0x12000000000, 0x6, 0xffff, 0x0, 0x80000001, 0x0, 0x8}, 0x0, 0xffffffffffffffff, r2, 0x8)

17:52:59 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 51)

17:52:59 executing program 3:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x13d480, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  364.807319][T12963] FAULT_INJECTION: forcing a failure.
[  364.807319][T12963] name failslab, interval 1, probability 0, space 0, times 0
[  364.820104][T12963] CPU: 1 PID: 12963 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  364.828866][T12963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  364.838927][T12963] Call Trace:
[  364.842189][T12963]  <TASK>
[  364.845099][T12963]  dump_stack_lvl+0xd6/0x122
[  364.849705][T12963]  dump_stack+0x11/0x1b
[  364.853847][T12963]  should_fail+0x23c/0x250
[  364.858324][T12963]  ? mempool_alloc_slab+0x16/0x20
[  364.863468][T12963]  __should_failslab+0x81/0x90
[  364.868256][T12963]  should_failslab+0x5/0x20
[  364.872740][T12963]  kmem_cache_alloc+0x4f/0x320
[  364.877523][T12963]  mempool_alloc_slab+0x16/0x20
[  364.882397][T12963]  ? mempool_free+0x130/0x130
[  364.887139][T12963]  mempool_alloc+0x9d/0x310
[  364.891708][T12963]  ? __crc32c_le_base+0x99/0x350
[  364.896643][T12963]  ? __crc32c_le_base+0x19c/0x350
[  364.901832][T12963]  sg_pool_alloc+0x74/0x90
[  364.906235][T12963]  __sg_alloc_table+0xce/0x290
[  364.911043][T12963]  sg_alloc_table_chained+0xaf/0x140
[  364.916338][T12963]  ? sg_alloc_table_chained+0x140/0x140
[  364.921897][T12963]  scsi_alloc_sgtables+0x18a/0x510
[  364.927089][T12963]  sd_init_command+0x944/0x1610
[  364.931937][T12963]  scsi_queue_rq+0x1026/0x1460
[  364.936754][T12963]  blk_mq_dispatch_rq_list+0x534/0x11e0
[  364.942333][T12963]  ? __sbitmap_queue_get+0x11/0x20
[  364.947522][T12963]  blk_mq_do_dispatch_sched+0x446/0x6d0
[  364.953053][T12963]  __blk_mq_sched_dispatch_requests+0x1ca/0x270
[  364.959343][T12963]  blk_mq_sched_dispatch_requests+0x9f/0x110
[  364.965303][T12963]  __blk_mq_run_hw_queue+0xc1/0x140
[  364.970513][T12963]  __blk_mq_delay_run_hw_queue+0x199/0x360
[  364.976302][T12963]  ? __rcu_read_unlock+0x5c/0x290
[  364.981385][T12963]  blk_mq_run_hw_queue+0x231/0x260
[  364.986551][T12963]  blk_mq_sched_insert_requests+0x130/0x200
[  364.992510][T12963]  blk_mq_flush_plug_list+0x372/0x460
[  364.997877][T12963]  blk_flush_plug+0x25a/0x2b0
[  365.002539][T12963]  ? ext4_iomap_end+0x33/0x50
[  365.007214][T12963]  blk_finish_plug+0x44/0x60
[  365.011894][T12963]  __iomap_dio_rw+0xcad/0x1070
[  365.016730][T12963]  iomap_dio_rw+0x38/0x80
[  365.021061][T12963]  ? ext4_file_write_iter+0x451/0x1200
[  365.026635][T12963]  ext4_file_write_iter+0xac3/0x1200
[  365.031970][T12963]  ? ext4_file_write_iter+0x451/0x1200
[  365.037472][T12963]  do_iter_readv_writev+0x2de/0x380
[  365.042688][T12963]  do_iter_write+0x192/0x5c0
[  365.047269][T12963]  ? splice_from_pipe_next+0x34f/0x3b0
[  365.052747][T12963]  ? kmalloc_array+0x2d/0x40
[  365.057415][T12963]  vfs_iter_write+0x4c/0x70
[  365.061992][T12963]  iter_file_splice_write+0x43a/0x790
[  365.067363][T12963]  ? splice_from_pipe+0xd0/0xd0
[  365.072465][T12963]  direct_splice_actor+0x80/0xa0
[  365.077385][T12963]  splice_direct_to_actor+0x345/0x650
[  365.082769][T12963]  ? do_splice_direct+0x190/0x190
[  365.087792][T12963]  do_splice_direct+0x106/0x190
[  365.092701][T12963]  do_sendfile+0x675/0xc40
[  365.097128][T12963]  __x64_sys_sendfile64+0x102/0x140
[  365.102327][T12963]  do_syscall_64+0x44/0xd0
[  365.106723][T12963]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  365.112604][T12963] RIP: 0033:0x7ff4b8299ae9
[  365.117010][T12963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  365.136696][T12963] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  365.145120][T12963] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  365.153079][T12963] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  365.161038][T12963] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  365.168996][T12963] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  365.176965][T12963] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  365.184917][T12963]  </TASK>
17:53:00 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800001ce)

17:53:00 executing program 3:
r0 = open(&(0x7f0000000040)='./bus\x00', 0x288883, 0x4b)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus/file0\x00', 0x80, 0x80)
sendfile(0xffffffffffffffff, r1, 0x0, 0x80000001)
ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, &(0x7f0000000140))
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r5 = openat$incfs(r2, &(0x7f0000000240)='.log\x00', 0x0, 0x100)
mq_notify(r5, &(0x7f0000000280)={0x0, 0x2e, 0x4, @tid=0xffffffffffffffff})
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r4, 0x403, 0x0, 0x0, {{}, {0x0, 0x4107}}}, 0x1c}}, 0x0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="00012abd7000fbdbdf0400000000000000000b0000000014001462726f6164636173742d6c696e6b00004db3f6d38943a500bd8a02653c503894fccaa8e2b9dcd54f9d608c290f24e5423590b398762f0ba4fabbb4b072ae89ebe53cc9406a8f777f2b7e726c6858f53b8ed02e80bb3b8f30f248de286ab2cfb233f2cfed7fe63eb403accfa661acc800f94078c319706240f2d7d2dd81fa099ff5fe07145e1686f30aff9002dafe2ceea76f822df75fe623bde20174081dd44e3aa41941f2c748143d645dd242a04ce0e75e410f24048e599e24cad98fad42dc81"], 0x30}, 0x1, 0x0, 0x0, 0x20000800}, 0x2004081c)
pwrite64(r2, 0x0, 0x0, 0x0)
r6 = socket$pptp(0x18, 0x1, 0x2)
ioctl$BTRFS_IOC_QGROUP_CREATE(r6, 0x4010942a, &(0x7f0000000100)={0x100000001, 0x80000000})

17:53:00 executing program 5:
ioctl$SCSI_IOCTL_DOORUNLOCK(0xffffffffffffffff, 0x5381)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:53:00 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x3f8000000000000)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x3}}, './file0\x00'})
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={0x1, &(0x7f00000000c0)="d032d9153f18e1da8a4451c9fb76c87a0b264119ef97c4fba44c3dbea2de60d31dc79788fbf2c50691d2920c96b2cb89ad28caddadb978f0458a9225fed9d52a449de4994ce96eb0b4138fe8aa88b91d0bd7d1db9dae8c73bf27f070b59f87315a0479ec77910a133ae507f5268371228b216cab66c285bdba"}, 0x20)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x80000001)

17:53:00 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000579)

17:53:00 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 52)

17:53:00 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f5)

[  365.692639][T12990] FAULT_INJECTION: forcing a failure.
[  365.692639][T12990] name failslab, interval 1, probability 0, space 0, times 0
[  365.705323][T12990] CPU: 1 PID: 12990 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  365.714593][T12990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  365.724643][T12990] Call Trace:
[  365.727919][T12990]  <TASK>
[  365.730853][T12990]  dump_stack_lvl+0xd6/0x122
[  365.735606][T12990]  dump_stack+0x11/0x1b
[  365.739763][T12990]  should_fail+0x23c/0x250
[  365.744181][T12990]  ? jbd2__journal_start+0xf7/0x3f0
[  365.749381][T12990]  __should_failslab+0x81/0x90
[  365.754163][T12990]  should_failslab+0x5/0x20
[  365.758668][T12990]  kmem_cache_alloc+0x4f/0x320
[  365.763442][T12990]  jbd2__journal_start+0xf7/0x3f0
[  365.768519][T12990]  __ext4_journal_start_sb+0x159/0x310
[  365.773985][T12990]  ext4_file_write_iter+0xbe6/0x1200
[  365.779278][T12990]  do_iter_readv_writev+0x2de/0x380
[  365.784481][T12990]  do_iter_write+0x192/0x5c0
[  365.789139][T12990]  ? splice_from_pipe_next+0x34f/0x3b0
[  365.794601][T12990]  ? kmalloc_array+0x2d/0x40
[  365.799215][T12990]  vfs_iter_write+0x4c/0x70
[  365.803741][T12990]  iter_file_splice_write+0x43a/0x790
[  365.809218][T12990]  ? splice_from_pipe+0xd0/0xd0
[  365.814069][T12990]  direct_splice_actor+0x80/0xa0
[  365.819031][T12990]  splice_direct_to_actor+0x345/0x650
[  365.824412][T12990]  ? do_splice_direct+0x190/0x190
[  365.829444][T12990]  do_splice_direct+0x106/0x190
[  365.834303][T12990]  do_sendfile+0x675/0xc40
[  365.838809][T12990]  __x64_sys_sendfile64+0x102/0x140
[  365.844090][T12990]  do_syscall_64+0x44/0xd0
[  365.848549][T12990]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  365.854456][T12990] RIP: 0033:0x7ff4b8299ae9
[  365.858944][T12990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  365.878574][T12990] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:53:00 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x252c02, 0x0)
r2 = syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000200)='./bus\x00', 0x554e, 0x1, &(0x7f0000000300)=[{&(0x7f0000000240)="4633c7ead5bacdf2a0fe25ece1bcb6a6b765c8fd2be8ceddd9622c6be71cfe9ea8363df1809a0b5e5c8f9b687a41826cb29f66f4cab94b36c1f0d634e416bebeec3198d97e23fe6e41a0c2d930c9ecea01135e173eeb740a2b3be39c8aef311bfa6473777c89048fd038ba586a0237439cd1feca883d67fe86ea48a0ea4b9e8a096a4e06ab63be437ada9c2f01876f3ec872ae20215d244bc4fb8ed480adad7ab0ae071114cff9f3f56ffe14994bfda20d0cd55c", 0xb4, 0x7}], 0x10000, &(0x7f0000000540)=ANY=[@ANYBLOB='dmode=0x0000000000000036,norock,fowner>', @ANYRESDEC=0xee00, @ANYBLOB="5802f5ff4ce03e0e4ece792a9ae58355bc2a154ea6f663b6e5d11c68a8c59bf8ca1e424229188770c7d70bc6b83386bf88ec025f"])
perf_event_open(&(0x7f0000001900)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc150d4e}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000003440)={{r3}, 0x0, 0x0, @inherit={0x78, 0x0}, @devid})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f0000001980)={{}, r4, 0x12, @inherit={0x68, &(0x7f0000000140)={0x255ac0224c1bc711, 0x4, 0x100, 0x4, {0x2, 0x813b, 0x200000000001000, 0x0, 0x1}, [0xd648, 0x3da8, 0x0, 0x60]}}, @name="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"})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000440)={"3ed226457111bd2ae0c97d0d0f898e5c", r4, 0x0, {0x9, 0x7}, {0x1, 0x401}, 0x2000000010001, [0x8, 0x1c, 0x10001, 0xfffffffffffff001, 0x3, 0x800, 0x0, 0x4b66, 0x580, 0x1, 0x6, 0xffffffff00000001, 0x82, 0x4, 0xe7, 0x5]})
r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000140)={{0x5c, @multicast1, 0x4e20, 0x1, 'ovf\x00', 0x23, 0xffffffff, 0x665}, {@broadcast, 0x4e21, 0x10000, 0x3f, 0x20, 0x7}}, 0x44)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000002dc0)={{0x1, 0x1, 0x18, <r7=>r6}, './bus\x00'})
r8 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r8, 0x0, 0x0, 0x0)
io_submit(0x0, 0x7, &(0x7f0000002f00)=[&(0x7f00000015c0)={0x0, 0x0, 0x0, 0x6, 0x3f, 0xffffffffffffffff, &(0x7f00000005c0)="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", 0x1000}, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x8, 0x9, 0xffffffffffffffff, &(0x7f0000001840)="f0f5b092563b931e53a59751d8b7263c11fda4be5fed270ac810fcce0f0db66eb9aaeb1afcb085fccc0fb686bc6c4981c20283125dec290ef708b344114c935523b3b0764ad5a8d947fa99c072e9662acef2bb6376eb8eb587d154f5dd6abb17f206235a5016fa23fdc387eded5212fd35aa2bab32ed5f7e89fa0661ba5720d96d62052d6b9263afe1", 0x89, 0x1124, 0x0, 0x2, r5}, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x6, 0x1ff, 0xffffffffffffffff, &(0x7f0000002a00)="16a39e93abe2a9f95063d2df655696f162e1aa6a7c063a3bbcff2d776ff1407042114251028ef6e3753423b35e3a36f404742015b2b2bdeda27c84249e23aed812f92b1c4ed735ee6fbdb6fac8c378d4c4a362c2a6c319df3539c5080d091e0a0d5441a19b45a7bd7ae46e863f54f9f83639265401091f6c15c7c0c39a3835f85df0b22af09e9a24905bed", 0x8b, 0x5, 0x0, 0x3}, &(0x7f0000002c00)={0x0, 0x0, 0x0, 0x1, 0x8, r5, &(0x7f0000002b00)="fe71eae6c547297c662519311a1e667467ee79f3c89a86a85b93f13b01c5958b5e150a9820b64c9a983d80fa4b872da324c3eea45a2c946941ac9098d1e13840aaeaaec1e70c5ad71c5191849c85694912805c68aa1128036d0024846a1823b35bda07b432ed663a3fe3f71a39d81da8f9f83bf932a9f5ad465ebbc0fa0465dc6a2da3a6d0998f523d67ea4659e7180f88d6511c678d77fb58b5ffb04204eab2729f9876e6e4c9ffeb9417b583c4fecd4d14d17c0121ff387f6d4d4a22fa6a25cb63e8eec7b52bfe124f41c4", 0xcc, 0x401, 0x0, 0x3}, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f0000002c40)="13248af04613de1e430becbf85b42fe86bb73c1c73555cb5b76086ec36faee02b1c7c478016e20bd0ca0763ce8caf3a095e95ceda14efcdd83b1a2a533b38a1643c3a8525e928bd8a92f67d02b38b62fbf7c6e123033ee852471b10341c455c046ec", 0x62, 0x5, 0x0, 0x2, r0}, &(0x7f0000002e00)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002d00)="2aa433a2c103e4f9ad78c75e2fb7fd866bb3695134df60bd5bedca1bc64b625eda0de08af1ca474bad19b492ff0a3bb381ef53badd88969c6755eb9e8cfde38dfcf6b052c76c6058cb5d83d73d1715df045f0fd63bf17447cd5ae430adc0f37dfda52cd31273c5d5f48a37404a71442d1f384da8e92fc334c1648eb43e3eba543ea8e674e26178fd51ab82113116caf98887097626e2f7823d0a386f03e574", 0x9f, 0x1, 0x0, 0x1, r7}, &(0x7f0000002ec0)={0x0, 0x0, 0x0, 0x7, 0xec0, r8, &(0x7f0000002e40)="861a790097687ee6979a68f2e63cfeaecec8333167cdefa1f75fd64ad4575382e72f4e06b2f7a933a7fd47516f607765835d57e871a31c584e296621995f1340f6b318be3897b1457fcbaa913408e9cb1c9cd0", 0x53, 0x100000001, 0x0, 0x2}])

[  365.886993][T12990] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  365.894967][T12990] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  365.902969][T12990] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  365.910940][T12990] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  365.918968][T12990] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  365.926942][T12990]  </TASK>
17:53:01 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = pidfd_getfd(r2, r2, 0x0)
fchmodat(r3, &(0x7f0000000100)='./file0\x00', 0xa2)

[  365.960416][T12996] loop1: detected capacity change from 0 to 42
[  366.047974][    C0] sd 0:0:1:0: tag#120 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  366.057783][    C0] sd 0:0:1:0: tag#120 CDB: opcode=0xe5 (vendor)
[  366.064051][    C0] sd 0:0:1:0: tag#120 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  366.073011][    C0] sd 0:0:1:0: tag#120 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  366.081976][    C0] sd 0:0:1:0: tag#120 CDB[20]: ba
[  366.103578][T13001] loop1: detected capacity change from 0 to 42
17:53:01 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
fchmod(r3, 0x0)

17:53:01 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000281)

17:53:01 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000600)

17:53:01 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001900)

17:53:01 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 53)

[  366.581941][T13019] FAULT_INJECTION: forcing a failure.
[  366.581941][T13019] name failslab, interval 1, probability 0, space 0, times 0
[  366.594647][T13019] CPU: 1 PID: 13019 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  366.603433][T13019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  366.613485][T13019] Call Trace:
[  366.616763][T13019]  <TASK>
[  366.619740][T13019]  dump_stack_lvl+0xd6/0x122
[  366.624335][T13019]  dump_stack+0x11/0x1b
[  366.628571][T13019]  should_fail+0x23c/0x250
[  366.633001][T13019]  ? kmalloc_array+0x2d/0x40
[  366.637598][T13019]  __should_failslab+0x81/0x90
[  366.642444][T13019]  should_failslab+0x5/0x20
[  366.647015][T13019]  __kmalloc+0x6f/0x370
[  366.651174][T13019]  kmalloc_array+0x2d/0x40
[  366.655604][T13019]  iter_file_splice_write+0xd5/0x790
[  366.660912][T13019]  ? atime_needs_update+0x2ba/0x390
[  366.666194][T13019]  ? touch_atime+0x11f/0x2e0
[  366.670798][T13019]  ? generic_file_splice_read+0x2a9/0x330
[  366.676579][T13019]  ? splice_from_pipe+0xd0/0xd0
[  366.681435][T13019]  direct_splice_actor+0x80/0xa0
[  366.686374][T13019]  splice_direct_to_actor+0x345/0x650
[  366.691822][T13019]  ? do_splice_direct+0x190/0x190
[  366.696929][T13019]  do_splice_direct+0x106/0x190
[  366.701788][T13019]  do_sendfile+0x675/0xc40
[  366.706297][T13019]  __x64_sys_sendfile64+0x102/0x140
[  366.711593][T13019]  do_syscall_64+0x44/0xd0
[  366.716014][T13019]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  366.721967][T13019] RIP: 0033:0x7ff4b8299ae9
[  366.726381][T13019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  366.746008][T13019] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  366.754422][T13019] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  366.762471][T13019] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  366.770438][T13019] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  366.778406][T13019] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  366.786429][T13019] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  366.794414][T13019]  </TASK>
17:53:02 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x2, 0x7, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
open$dir(&(0x7f0000000140)='./bus\x00', 0x280d00, 0xc)
r3 = fsmount(r1, 0x1, 0x70)
openat(r3, &(0x7f0000000100)='./bus\x00', 0x34e36ea1114e8552, 0x75)

17:53:02 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003cc)

17:53:02 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000a00)

17:53:02 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 54)

17:53:02 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003dd)

[  367.477927][T13040] FAULT_INJECTION: forcing a failure.
[  367.477927][T13040] name failslab, interval 1, probability 0, space 0, times 0
[  367.490697][T13040] CPU: 0 PID: 13040 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  367.499462][T13040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  367.509510][T13040] Call Trace:
[  367.512786][T13040]  <TASK>
[  367.515713][T13040]  dump_stack_lvl+0xd6/0x122
[  367.520310][T13040]  dump_stack+0x11/0x1b
[  367.524542][T13040]  should_fail+0x23c/0x250
[  367.528957][T13040]  ? mempool_alloc_slab+0x16/0x20
[  367.534001][T13040]  __should_failslab+0x81/0x90
[  367.538853][T13040]  should_failslab+0x5/0x20
[  367.543361][T13040]  kmem_cache_alloc+0x4f/0x320
[  367.548149][T13040]  mempool_alloc_slab+0x16/0x20
[  367.553120][T13040]  ? mempool_free+0x130/0x130
[  367.557800][T13040]  mempool_alloc+0x9d/0x310
[  367.562311][T13040]  ? __crc32c_le_base+0xbf/0x350
[  367.567257][T13040]  ? __crc32c_le_base+0x19c/0x350
[  367.572338][T13040]  sg_pool_alloc+0x74/0x90
[  367.576762][T13040]  __sg_alloc_table+0xce/0x290
[  367.581532][T13040]  sg_alloc_table_chained+0xaf/0x140
[  367.586843][T13040]  ? sg_alloc_table_chained+0x140/0x140
[  367.592402][T13040]  scsi_alloc_sgtables+0x18a/0x510
[  367.597556][T13040]  sd_init_command+0x944/0x1610
[  367.602500][T13040]  scsi_queue_rq+0x1026/0x1460
[  367.607277][T13040]  blk_mq_dispatch_rq_list+0x534/0x11e0
[  367.612920][T13040]  ? __sbitmap_queue_get+0x11/0x20
[  367.618043][T13040]  blk_mq_do_dispatch_sched+0x446/0x6d0
[  367.623603][T13040]  ? blk_attempt_req_merge+0x21/0x30
[  367.628923][T13040]  __blk_mq_sched_dispatch_requests+0x1ca/0x270
[  367.635192][T13040]  blk_mq_sched_dispatch_requests+0x9f/0x110
[  367.641235][T13040]  __blk_mq_run_hw_queue+0xc1/0x140
[  367.646453][T13040]  __blk_mq_delay_run_hw_queue+0x199/0x360
[  367.652362][T13040]  ? __rcu_read_unlock+0x5c/0x290
[  367.657390][T13040]  blk_mq_run_hw_queue+0x231/0x260
[  367.662513][T13040]  blk_mq_sched_insert_requests+0x130/0x200
[  367.668464][T13040]  blk_mq_flush_plug_list+0x372/0x460
[  367.673864][T13040]  blk_flush_plug+0x25a/0x2b0
[  367.678548][T13040]  ? ext4_iomap_end+0x33/0x50
[  367.683251][T13040]  blk_finish_plug+0x44/0x60
[  367.687852][T13040]  __iomap_dio_rw+0xcad/0x1070
[  367.692690][T13040]  iomap_dio_rw+0x38/0x80
[  367.697084][T13040]  ? ext4_file_write_iter+0x451/0x1200
[  367.702552][T13040]  ext4_file_write_iter+0xac3/0x1200
[  367.707851][T13040]  ? ext4_file_write_iter+0x451/0x1200
[  367.713322][T13040]  do_iter_readv_writev+0x2de/0x380
[  367.718601][T13040]  do_iter_write+0x192/0x5c0
[  367.723264][T13040]  ? splice_from_pipe_next+0x34f/0x3b0
[  367.728743][T13040]  ? kmalloc_array+0x2d/0x40
[  367.733343][T13040]  vfs_iter_write+0x4c/0x70
[  367.737859][T13040]  iter_file_splice_write+0x43a/0x790
[  367.743285][T13040]  ? splice_from_pipe+0xd0/0xd0
[  367.748202][T13040]  direct_splice_actor+0x80/0xa0
[  367.753142][T13040]  splice_direct_to_actor+0x345/0x650
[  367.758547][T13040]  ? do_splice_direct+0x190/0x190
[  367.763614][T13040]  do_splice_direct+0x106/0x190
[  367.768470][T13040]  do_sendfile+0x675/0xc40
[  367.772914][T13040]  __x64_sys_sendfile64+0x102/0x140
[  367.778117][T13040]  do_syscall_64+0x44/0xd0
[  367.782562][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  367.788460][T13040] RIP: 0033:0x7ff4b8299ae9
[  367.792877][T13040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  367.812545][T13040] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  367.820960][T13040] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  367.828933][T13040] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  367.836903][T13040] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  367.844951][T13040] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  367.852930][T13040] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  367.860908][T13040]  </TASK>
17:53:03 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
openat(r3, &(0x7f0000000100)='./file0/file0\x00', 0x8000, 0x0)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
recvmmsg(r2, &(0x7f0000004040)=[{{&(0x7f0000000140)=@in6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/97, 0x61}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000000240)=""/47, 0x2f}, {&(0x7f0000000280)=""/30, 0x1e}, {&(0x7f00000002c0)=""/13, 0xd}], 0x5, &(0x7f0000001440)=""/114, 0x72}, 0x1ff}, {{&(0x7f00000014c0)=@ethernet={0x0, @dev}, 0x80, &(0x7f0000001980)=[{&(0x7f0000000380)=""/16, 0x10}, {&(0x7f0000001540)=""/153, 0x99}, {&(0x7f0000001600)=""/85, 0x55}, {&(0x7f0000001680)=""/250, 0xfa}, {&(0x7f0000001780)=""/195, 0xc3}, {&(0x7f0000001880)=""/16, 0x10}, {&(0x7f00000018c0)=""/170, 0xaa}], 0x7, &(0x7f0000001a00)=""/70, 0x46}, 0x7}, {{&(0x7f0000001a80)=@can, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000001b00)=""/78, 0x4e}, {&(0x7f0000001b80)=""/11, 0xb}], 0x2, &(0x7f0000001c00)=""/204, 0xcc}, 0x80000001}, {{&(0x7f0000001d00)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000001d80)=""/235, 0xeb}, {&(0x7f0000001e80)=""/111, 0x6f}, {&(0x7f0000001f00)=""/4096, 0x1000}, {&(0x7f0000002f00)=""/178, 0xb2}, {&(0x7f0000002fc0)=""/4096, 0x1000}], 0x5}, 0x5}], 0x4, 0x42, &(0x7f0000004140))
pwrite64(r4, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x11, r4, 0x8f1dd000)
sendfile(r1, r2, 0x0, 0x80000001)

17:53:03 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003cd)

17:53:03 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 55)

17:53:03 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000b00)

[  368.380313][T13058] FAULT_INJECTION: forcing a failure.
[  368.380313][T13058] name failslab, interval 1, probability 0, space 0, times 0
[  368.393135][T13058] CPU: 0 PID: 13058 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  368.401999][T13058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  368.412048][T13058] Call Trace:
[  368.415427][T13058]  <TASK>
[  368.418352][T13058]  dump_stack_lvl+0xd6/0x122
[  368.423014][T13058]  dump_stack+0x11/0x1b
[  368.427237][T13058]  should_fail+0x23c/0x250
[  368.431655][T13058]  ? jbd2__journal_start+0xf7/0x3f0
[  368.436855][T13058]  __should_failslab+0x81/0x90
[  368.441631][T13058]  should_failslab+0x5/0x20
[  368.446144][T13058]  kmem_cache_alloc+0x4f/0x320
[  368.450910][T13058]  jbd2__journal_start+0xf7/0x3f0
[  368.455934][T13058]  __ext4_journal_start_sb+0x159/0x310
[  368.461435][T13058]  ? ext4_file_write_iter+0x451/0x1200
[  368.466899][T13058]  ext4_file_write_iter+0x992/0x1200
[  368.472187][T13058]  ? ext4_file_write_iter+0x451/0x1200
[  368.477672][T13058]  do_iter_readv_writev+0x2de/0x380
[  368.482875][T13058]  do_iter_write+0x192/0x5c0
[  368.487563][T13058]  ? splice_from_pipe_next+0x34f/0x3b0
[  368.493114][T13058]  ? kmalloc_array+0x2d/0x40
[  368.497756][T13058]  vfs_iter_write+0x4c/0x70
[  368.502311][T13058]  iter_file_splice_write+0x43a/0x790
[  368.507689][T13058]  ? splice_from_pipe+0xd0/0xd0
[  368.512621][T13058]  direct_splice_actor+0x80/0xa0
[  368.517580][T13058]  splice_direct_to_actor+0x345/0x650
[  368.522986][T13058]  ? do_splice_direct+0x190/0x190
[  368.528063][T13058]  do_splice_direct+0x106/0x190
[  368.532919][T13058]  do_sendfile+0x675/0xc40
[  368.537379][T13058]  __x64_sys_sendfile64+0x102/0x140
[  368.542580][T13058]  do_syscall_64+0x44/0xd0
[  368.547000][T13058]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  368.553088][T13058] RIP: 0033:0x7ff4b8299ae9
[  368.557549][T13058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:53:03 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000a00)

[  368.577154][T13058] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  368.585571][T13058] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  368.593541][T13058] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  368.601510][T13058] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  368.609593][T13058] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  368.617561][T13058] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  368.625543][T13058]  </TASK>
17:53:04 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x80)
unlink(&(0x7f0000000280)='./bus\x00')
ftruncate(r1, 0x8)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
ioctl$PTP_PEROUT_REQUEST(r2, 0x40383d03, &(0x7f0000000180)={{0x6}, {0x0, 0x1000}, 0x8})
ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000200)={0x1, 0x19, 0xb, 0xf, 0x1, 0x7, 0x0, 0x128, 0x1})
r3 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x404b00, 0x0)
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f00000001c0)={0x0, 0xf4, 0x1, 0x200, 0x2, [0x1f, 0x9b, 0x7, 0x1]})
mkdir(&(0x7f0000000100)='./bus\x00', 0x100)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000000440)=ANY=[@ANYBLOB="01000000010000000100000016d03a021bbc20380094e68b732815f19e7cd418afbb0b8a5eab9d77000000000000009e18039c7d1804a54852c02776322c12075b12b36997986e5acfc14018a3c52b1fbadcb7d359752208496f9af53909c673f4a4bec19e7581e85212b46cee0829920bc11043bd6db9d18d7562616fa33b34ed38e7800b943452100d84cbc44d88f1a5a9fdded13deedd27742f009462c692c485613c160b28b7b4", @ANYRES32=r5, @ANYRES32=<r6=>r4, @ANYBLOB='\x00\x00\x00\x00./bus\x00'])
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r6)
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
sendfile(r7, r2, 0x0, 0x80000001)

17:53:04 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003ce)

[  369.013836][   T24] audit: type=1400 audit(1637344384.193:278): avc:  denied  { write } for  pid=13065 comm="syz-executor.1" path="socket:[43725]" dev="sockfs" ino=43725 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
17:53:04 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x109000, 0x0)
getsockopt$netlink(r0, 0x10e, 0x9, &(0x7f0000000140)=""/241, &(0x7f0000000240)=0xf1)
ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000440))
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_int(r0, &(0x7f0000000280)=0xff, 0x12)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

[  369.100728][   T24] audit: type=1400 audit(1637344384.283:279): avc:  denied  { ioctl } for  pid=13071 comm="syz-executor.1" path="/dev/nvram" dev="devtmpfs" ino=97 ioctlcmd=0x941f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
17:53:04 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 56)

17:53:04 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001200)

[  369.303565][T13080] FAULT_INJECTION: forcing a failure.
[  369.303565][T13080] name failslab, interval 1, probability 0, space 0, times 0
[  369.316202][T13080] CPU: 1 PID: 13080 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  369.325045][T13080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  369.335112][T13080] Call Trace:
[  369.338382][T13080]  <TASK>
[  369.341310][T13080]  dump_stack_lvl+0xd6/0x122
[  369.345974][T13080]  dump_stack+0x11/0x1b
[  369.350177][T13080]  should_fail+0x23c/0x250
[  369.354605][T13080]  ? __iomap_dio_rw+0x143/0x1070
[  369.359553][T13080]  __should_failslab+0x81/0x90
[  369.364342][T13080]  should_failslab+0x5/0x20
[  369.368858][T13080]  kmem_cache_alloc_trace+0x52/0x350
[  369.374151][T13080]  ? delay_tsc+0x96/0xe0
[  369.378400][T13080]  __iomap_dio_rw+0x143/0x1070
[  369.383243][T13080]  ? __ext4_handle_dirty_metadata+0x17d/0x5a0
[  369.389353][T13080]  ? jbd2_journal_stop+0x592/0x6a0
[  369.394467][T13080]  ? jbd2_journal_stop+0x592/0x6a0
[  369.399657][T13080]  ? ___cache_free+0x46/0x300
[  369.404405][T13080]  iomap_dio_rw+0x38/0x80
[  369.408742][T13080]  ? ext4_file_write_iter+0x451/0x1200
[  369.414202][T13080]  ext4_file_write_iter+0xac3/0x1200
[  369.419573][T13080]  ? ext4_file_write_iter+0x451/0x1200
[  369.425077][T13080]  do_iter_readv_writev+0x2de/0x380
[  369.430279][T13080]  do_iter_write+0x192/0x5c0
[  369.434923][T13080]  ? splice_from_pipe_next+0x34f/0x3b0
[  369.440508][T13080]  ? kmalloc_array+0x2d/0x40
[  369.445148][T13080]  vfs_iter_write+0x4c/0x70
[  369.449660][T13080]  iter_file_splice_write+0x43a/0x790
[  369.455156][T13080]  ? splice_from_pipe+0xd0/0xd0
[  369.460010][T13080]  direct_splice_actor+0x80/0xa0
[  369.464995][T13080]  splice_direct_to_actor+0x345/0x650
[  369.470428][T13080]  ? do_splice_direct+0x190/0x190
[  369.475463][T13080]  do_splice_direct+0x106/0x190
[  369.480325][T13080]  do_sendfile+0x675/0xc40
[  369.484750][T13080]  __x64_sys_sendfile64+0x102/0x140
[  369.489951][T13080]  do_syscall_64+0x44/0xd0
[  369.494380][T13080]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  369.500288][T13080] RIP: 0033:0x7ff4b8299ae9
[  369.504756][T13080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  369.524366][T13080] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  369.532776][T13080] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  369.540841][T13080] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  369.548809][T13080] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  369.556780][T13080] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  369.564856][T13080] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  369.572829][T13080]  </TASK>
17:53:04 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003db)

17:53:05 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003cf)

17:53:05 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x4c842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x20000, 0x1)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r3, 0xc020662a, &(0x7f0000000140)={0x1, 0x2, 0x1, 0x0, 0x3, [{0x7fff, 0xfff, 0x10001, '\x00', 0x2200}, {0x2, 0x1, 0x3, '\x00', 0x804}, {0x0, 0x400, 0x1f, '\x00', 0xc00}]})
sendfile(r1, r2, 0x0, 0x80000001)

17:53:05 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 57)

[  370.150087][T13098] FAULT_INJECTION: forcing a failure.
[  370.150087][T13098] name failslab, interval 1, probability 0, space 0, times 0
[  370.162756][T13098] CPU: 1 PID: 13098 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  370.171520][T13098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  370.181774][T13098] Call Trace:
[  370.185048][T13098]  <TASK>
[  370.187977][T13098]  dump_stack_lvl+0xd6/0x122
[  370.192573][T13098]  dump_stack+0x11/0x1b
[  370.196792][T13098]  should_fail+0x23c/0x250
[  370.201214][T13098]  ? jbd2__journal_start+0xf7/0x3f0
[  370.206497][T13098]  __should_failslab+0x81/0x90
[  370.211266][T13098]  should_failslab+0x5/0x20
[  370.215776][T13098]  kmem_cache_alloc+0x4f/0x320
[  370.220547][T13098]  ? __find_get_block+0x785/0x9b0
[  370.225578][T13098]  jbd2__journal_start+0xf7/0x3f0
[  370.230625][T13098]  __ext4_journal_start_sb+0x159/0x310
[  370.236144][T13098]  ext4_iomap_begin+0x408/0x630
[  370.241095][T13098]  ? ext4_alloc_da_blocks+0x100/0x100
[  370.246476][T13098]  iomap_iter+0x395/0x4a0
[  370.250811][T13098]  __iomap_dio_rw+0x695/0x1070
[  370.255583][T13098]  ? jbd2_journal_stop+0x592/0x6a0
[  370.260701][T13098]  iomap_dio_rw+0x38/0x80
[  370.265036][T13098]  ? ext4_file_write_iter+0x451/0x1200
[  370.270559][T13098]  ext4_file_write_iter+0xac3/0x1200
[  370.275903][T13098]  ? ext4_file_write_iter+0x451/0x1200
[  370.281374][T13098]  do_iter_readv_writev+0x2de/0x380
[  370.286654][T13098]  do_iter_write+0x192/0x5c0
[  370.291281][T13098]  ? splice_from_pipe_next+0x34f/0x3b0
17:53:05 executing program 3:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000040), 0x4)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005ce00)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r4=>0x0}], 0x40, "868ea0cdf27d88"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r5=>0x0, ""/256, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}], 0x0, "9743ba5586d593"})
r7 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r8=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005de00)={0x8000, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {0x0, r4}, {r5, r8}], 0x0, "3ff28a3612f75a"})
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000000080)={0x0, <r10=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r10)
fchown(r0, r10, 0xee00)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r11, 0x0, 0x80000001)

[  370.296831][T13098]  ? kmalloc_array+0x2d/0x40
[  370.301554][T13098]  vfs_iter_write+0x4c/0x70
[  370.306088][T13098]  iter_file_splice_write+0x43a/0x790
[  370.311489][T13098]  ? splice_from_pipe+0xd0/0xd0
[  370.316373][T13098]  direct_splice_actor+0x80/0xa0
[  370.321316][T13098]  splice_direct_to_actor+0x345/0x650
[  370.326698][T13098]  ? do_splice_direct+0x190/0x190
[  370.331731][T13098]  do_splice_direct+0x106/0x190
[  370.336591][T13098]  do_sendfile+0x675/0xc40
[  370.341040][T13098]  __x64_sys_sendfile64+0x102/0x140
[  370.346259][T13098]  do_syscall_64+0x44/0xd0
[  370.350742][T13098]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  370.356638][T13098] RIP: 0033:0x7ff4b8299ae9
[  370.361116][T13098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:53:05 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x42400, 0x1dc)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x13, r2, 0xf97f4000)

[  370.376929][   T24] audit: type=1400 audit(1637344385.343:280): avc:  denied  { setattr } for  pid=13099 comm="syz-executor.3" name="UDP-Lite" dev="sockfs" ino=43772 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  370.380828][T13098] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  370.412594][T13098] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  370.420665][T13098] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  370.428632][T13098] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  370.436631][T13098] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
17:53:05 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001300)

[  370.444726][T13098] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  370.452683][T13098]  </TASK>
17:53:05 executing program 5:
r0 = creat(&(0x7f0000000480)='./bus\x00', 0x11c)
execve(&(0x7f0000000100)='./bus\x00', &(0x7f0000000280)=[&(0x7f0000000140)='/\xc6\x00', &(0x7f0000000180)='$.)\x00', &(0x7f00000001c0)='\x83\x00', &(0x7f0000000200)='*^%-[:$(^$\x00', &(0x7f0000000240)='{\x00'], &(0x7f00000003c0)=[&(0x7f00000002c0)=']$-}%^)\\$^\'.\x00', &(0x7f0000000300)='\x00', &(0x7f0000000340)='-@$}\x00', &(0x7f0000000380)=']]]_j\x00'])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={0x0, <r5=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r5)
r6 = getgid()
fchownat(r1, &(0x7f0000000400)='./file0\x00', r5, r6, 0x1000)
ioctl$TUNGETDEVNETNS(r3, 0x54e3, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:53:05 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x50000, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:53:06 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xb000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r3, 0x8983, &(0x7f0000000100)={0x1, 'ipvlan1\x00'})

17:53:06 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001380)=@raw={'raw\x00', 0x9, 0x3, 0x378, 0x168, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x2a8, 0xffffffff, 0xffffffff, 0x2a8, 0xffffffff, 0x3, &(0x7f0000001340), {[{{@uncond, 0x0, 0xf8, 0x168, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x8}}, @inet=@rpfilter={{0x28}, {0x9}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0xe, 0x7, 0x0, 0x1, 0x0, "c5c7a04c4e8f69d670aeb017ccd970a58ec1bae67d4d5e312cc89051a48145eb13a1716489b68fabf4eccf0a806f70cd4dfdd5e76fa3d147fa715a121c285fac"}}}, {{@uncond, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@eui64={{0x28}}, @inet=@rpfilter={{0x28}, {0x2}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x4a94, 0x4, 0x49f, 'syz0\x00', {0xfffffffffffffa7a}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d8)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$vcsu(&(0x7f0000000040), 0x6, 0x101800)
r1 = epoll_create(0xff)
sendfile(r0, r1, 0x0, 0x80000001)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./bus\x00', 0x8, 0x4, &(0x7f0000001200)=[{&(0x7f0000000140)="15ff6e2d447f260b8dd80bb3ca1dda236422caedbc995a", 0x17, 0xfffffffffffffe00}, {&(0x7f0000000180)="748043989a8d14117a7480ad789560cc39", 0x11, 0x100000001}, {&(0x7f00000001c0)="46fa5f919ba85615a255aee7ef68f01c0420d7f5b53a869729ad0bf9bef882c021df03630dfaf552274608e226cb0ccd4c60efe85a7b2a5e166d5ccc317abe9b6bb5bcc715b0f9bf8a9feeb430594aa2a261849f8f90ac3d51ee4c4674da5b834f61940e822283e8459e14bfc8be52c830c761ebba9a89b3f61e2b1238a767527f2f11c7c4e35b8f28babd53d77e47153c44da937c38b57bf9b58fc4f191eaf8ca2ae895d429dbf98dbda3f94e358c15e100b01db8788bc915fd8742bc4e3e2beb6160950beb71506ba6c9cbb39b6021c8f855d5cb5e92aea25d98e50a6fbf411c220dde29dbd1fc3923020d5ec7949b3e61bd4750252a1d5afd9a5dd5699d332857d6840aa18fee9a527de85ac912482f2178a2649a13f9372fc1e2263f48dfdc55cb6f3c5ee6cf979f4989696b00616d6a9e552d512e0db2f6b2c6172a9ffdfd69f1f53aab8c2ff3b1bf28ad7c243ff717a0e00552d8b0ee2e911fe36edaeb76f1fb1bd1706c671ce7ddd3456145fb4fcf61bc20a0486c473a5ff9c53f46a74c14af632d2564928880db3a921199303e3863e06d11520fffbc8e7faf67faadcf369009670fb0623a9eb3d175ff8f283ae74ff713b01d5d97b033a809a45e807fa3dedf228210a18791857ac04efca80e69c790ff99912bd61f8df4fabed2d85c785b31b8531398748f9d110a760f4a64ebcdb48c8940b1720113d2a1ed66d4bb5ee387cb18adfab4272b898cd29891225edda6893fa05fd67f73553d6b680e33dbe090b86409403db656cd70fe4bfba9fa2fefd45f28d38c30f961e67d6a43450efc2566a1d272a54c84c7d7929e20ab76ff52c17306103d13f539d2c27f6a3a57a93b895c687a069d158187d48bdf0b4de6b1555807961528e09bcbc82167da53336eb716f270b34f1c86c5d20d93073cfc0ade58837b00e54c0cb450ad05e6fb00799067d0ddaeed70bed9fa0a9d0f54d51f9a134c025187e528acd182de89cff5d21a979863fbac70fc675b6d8f47e18f997aab3606bfb3a3be2128a07bd71f308c735a29bae59472647242d30f1c360bd7696dce0d4d04538ea3f56ed9744c81a1de6782cd6e15fa61072d0248d56b7c9cff57e1c3f83c69e8d8cafd83f383f4e992fb8f0c069f4b27f09e8c300788b1acee4a12ab9ed59c603c2f40671db6d858caa55c62f78f3e58287b19a9a402554d4b91bf2c7040aa593175c6c77781fa09f35062a163bafc4f03e50baf8cb3f90dd69c559faac8803bc0cfb36734d7bd230f3c279f365fb14a06cc298ed179a860c0e623a567651634b064d00afcf83137b56b87772cbf0df989d990a41d87db05cb6917bf0c3f0d542db3e5818f0b6fa690077b69e92e5a2b89f1ccd2aeea8b16726303df9d5aa6353bad02baa3f744bdbede3dbe879aed35cfbb58deb33b009e9dc66a2876741421cc6df0a345ac3f72e71acf09ab00d6c98d321da9c0c4449452fcc41a7ea2bd030666ad82ecb44a9e1e0ff869547eb72a36d5730becbb13f3832426662b939446e5c376e9a863ba69ff01e2873a3be7a7d64b79a452eb6b64e10b57ce630a61e0468f4fd40787892165f98c74549cca362cc906e8265528834994b03820d6103abb6bf33e8a6d43b271dfdd92560095f03a0bca5d6164c691823810b4d030c197c7710f6f9cce9e0f029258c9f1eb2dedc64e857b80fb4bf3abbc7bc58b22f9e0bc0943cafcc6c3656233e31e5d21c09429b893f1cf76bcc4fe979d9191caca26f3aa58a725e259422d65d3b62fbae16b07484009f6a001221642593ea3d3a7a1867dc13fdab4b490056ea31816e733ed1bd70bfff71bccd986331d20919028829b1011a778b6975e2beb5fc0c7ee9e245f74f6f4637b4dc4495516b81cf83cd852d7504b2b1d47874eacde0cfb9df80788b9d2921fb33a24d6ce0e308b8eca8a9c4525eef1d38d49cc64d8c5e35d6c690d48d7243f8423897947bc85b0be84a301294cfa6b1a3fbb7fd9a0b6d86cfe00d9479cfac73c1931fd848a7b67f260d2207a72e8133abc9037de9a07430f88ea12e01ab471f11beaa1c2bfc80a9b455e638c16fcfd7b053e440d5dde808872fdc5c8b8d07df5d49902b7d38de6dd5d8164dc20c8c88c99cc002637d3f04214d0f31c392920cd431a28510a3a1c45ee91d0d7523c0228d8b78d9eba86fdb1cd307b1621dec7b5b97ff91d2eaf57233c60a101589b0b66c15ce0029d064fecbbb27368e2c09203cd09c22ecafc1b6d24d9d2612e9aeba8390ca387139d53092e0b94abb604862bbbe54db8d455810fbfc475785c183f5f26223fa6d8ba31625757bdb9eee6b33568df45917f5768a16073d0bbcbc3d88a22429871b0110368e8ba78743538b67f0ec2dfa53fcc4a6cb2e4c44f30445d82a51933df0bc5b74e9a371d9a1fc5d37f9e9e9b8eadfe12a5efce7961b4223bfb1380e32d361464d4d2712769743c5225ff4ed3f5467eb591c22d69b906433ec1a84678df492a8d7bcd988d2f39812c8f1e1c0411db0703b1dadc42028cd5f8bfdd46ad811bfc264933b5e05553d3384e1c8373096446a8f7928939bfe01da48a1b1cb3dd3b8bd118b8651935f22711c72bc0f47e932ed11912ae5ccc0f07a2ec46fb6f95e5fab7fcd92c21126b253bedca4f4efdc5b771fbabb48955ea90b83bbcc054f0d0eb3db4fddb9b807853330b39ad555cc7694b5ae5f268ce61669d4a9493caa551464606c6bfe7c7af2f3f254f6c97af2acd093f403a92c8bf6056fe065d6ebdb23a6942743b9d96e250f898a77be74210975381d9367c4389109960c86b037454915b7f0efd175186f4a65f848cc7a0b2e7d2e978d39b7364e05791e07e2874ac1eeab4929b7405b3ce7f57f2a5ca035bb11cee4dee1200174dbbe91f56fb9f181e178c9cecbc5cb6fdc713aa7e086d4a26976ca79641f652504f3e8d6091d0e7e5ce1af45852f28f5e1379241dd3876b22692f9a1c4239fdbbb4ab932ce72b528471e5ea06cb95f630d5e5066f4d79d00240a68da904744f6e4e14a458ee0983c3683e2b26cbaa33b24672bab6dd829f280e79159eddf41b84baf56719b0f2621655070c595a4a8ef36a6a5456c295a16db46adf982116619bd77932f2f3ab4c7ed6374bd4e549cd468c11e353154312334a2906e9b4faaf22af1ebae622bffc41f9abd996f06a293c4602400efc83ccbc32bcf2dfb8e3155f7fc8a11dfe78b1b64fbaa3f047d0ac1a606653bf236740f68b9d9856eba54a115124702685d5c91300b7266b8831c6eacc5a87bbe4a99d2bc4065b154e717ef2f9da948eac3f81affb6adece00b633a4754e8c6055d74f9d7690485d115835cd1fbcbf9dfd1cb1f99d37c7274b7cbb294ad3c8983dc23356364bc22c09576beef0b32bb3f16875f74c735b6dff574887bc6a971861524f2cbafbc865e6abc8d83d618e6e94190e7141c7df2ed3d01c2d4be5b65c984321342f68b569256a5231dfb165c3eca88f59698d9601aa8d3c9d89a2c980efb962be7982ecd42ad0d9868148d13744e62e50e74705a2692c4de22de8cc1042e929489cde9e416551d1c687da950bb34eca12c2f87cdaa668125485ce3439cc2845baf590f436b80731021866c3c17dd6a2aa38ffd836eccef642a9f8a05868966c1c94d9eda2af1142604b95c68b30393af8abd2037267d56625517e675c2e5f265498733d794265978b3556ccb4d502f53a51082cbd63c427b425126189a058cecee7eb25da2863c977126a29c43756e14ae2d2387e88c05533019b3134213b8f0d63f30a9c6451a798c54acb28e949371d47af531a57750adc52617e62f5ff3b77a0dbe42167d08bd0d8df119d87eac892191a6e81fe1b9b2716e620b33dbcabcffff7379b76fafc8ab12dfbb78a737dcbfca5a9b77f5e821ff83cffafb9e40f3dc9fce6e29685b008d795027c03a5ff7e4fa837f98bf3453c31db3058a055bb7e7da2919ef10804eacdb7c028e419a71cf24065d97f864ebe13fcbad8049009edd43fe88c309bf0a66063dec21865d866c86d70de0dd94e88628ca4c20efcf56cb59eb2bb567c34e5edf39b65d4e015760e3c63854aee80f7f18916f01c15f881d7e95e1762add578d99638e75e696cce850d57ad0cee4e96d29a260e6dd481a5513ee887f007b24f0e9529de73a3ea8a7741c20b5398f51de652ab21ff38e6adae8f0c64738d432a9911fe7c7fa6f8d9ae6703309d23fad6a4a1774f60bb40fedddc4677d96a098cda429a111bb2b4f7435a6536f2bf81b9f549465d09daa038c6c40a8f634836bf8187ab93c9c8555004a82bbab3b2b3fced8ef19bbf24d92fe605125d63dd2524ed979f1c0130ae250c14a43b2c2da68d8c9738b0e247d7209fdf158faa590ccf07e533ffbf32e0f034d9e252b97d7e1e8f2c7421ac41ad744466afd52fdfa0d562f8975711d80fb8653278582468d0b9b3222c688e1a9a0a0703721c8c7cf1985db44a93c6bfc03180af1f4be559ef7f707aeea07dcb8600a872b006bf4e4f992c98255648a7cd2d7855b04f5c572c04cd75f1583d9af783fdb5bb0570ea232b73b3078023f57238b5da4c70299a42693dfb9b9fd44d75e0c4d3412b93679a0c41ce65afa5410623d1165bcf382f9d0b270c76bb4daac017eb4ef7c9879a574703c0712fa641f7e8e71adf62056e25882000e9a092043ff52be8ca938b3e838bdcff2b798588b6f34955871178ff053b0a0e4adcd9ac00ae1c43af1b3528b757bb874ec2246013d3c5489794ed2c78050c0695ede3ce70aaed1abc79d86a8556b392a877c6abbffc1d7c5f3ac9741bd1b1935138adcd578c5bf7d06a6128529e71744b118135368d4b6cddf2a2db3a0495188d4f24cfac9471693b50e7d6ff50e34f3d070655314f6e1850bedf0ed7b126d05a34533d1482cb2a1107cb903c1af869dac638531006bf603a05f4f0e115b48aa324961c76492114f2af1dff131bff75e2f908401bfaee1b814d1ae1fe6ca767ddd28327e75861b99d4bd7ea7faba051eae95e38353858ae594a617db73e9aaee271678defa677f47e52ef4998be9a1f7c68478bddee5d2f1867b68515282d544e8c35c68794cf90cd607b828be07da41f668e8da34408817aa1dab7e1ada001e4589cc498da98d0d8fbdd24ebfa8cb79a5eb6381f745319d5702b8b6673e4a42d689b9fdba6012fd9c318ee99086950b052685cf264a1ff33fc9707b5df35a9252e585855d56d60fc874baeaa41eac9174c8204c0e06e53bbf4cd65f48e7d5770e948b3ca76b51ded809d7fe439a9bd286c0d62f67ab44383356f9c4af03c24d169e0d35e170a327cc781e5893fc9ff1e69e3564df7f8415fd8090c7e8495ee1660c58f41c36d9e22419c697b2a04ccbe257950545fad1209f9a303ef4c2092aa288355bb32ed13b3c93585a92bf1a12f0566d9c5a581c464a8ed31b2d6b935be51b5bc6ba2c29e5baccf519256f69203f4cd3bea58aa2a5f0590198db2ecf3606d114fa48e92004b023b32ffe56d12308b9994ac7ff47732de6902ad0cfb75582c63f62e4a5d1dac60aeaf174373101eb3f1519324fb884052c21e29a416b42c89fe690a0fa7501a69244f5e7166846b498e6c2c1b1e04f5e9b4c4b3b74780b6fb1bf2aeaefb2bcc935e53bba82126ce369508afe7f21558b6f5b85195cdfaf6d53964ef517185ade45dc23bbb648836529e1761a984e7251ea2bcea1e57574e423990ebbe60349146ae085c61d3d2f51cb5f6deafdcbd5c014f731ba1fa5f0112628ed31f8abe19d48adf1ee7", 0x1000, 0xfdbc}, {&(0x7f00000011c0)="a7b9169a5db594c6c522dd23e7b9737481a7004db14b9c2fc7", 0x19, 0x2a9}], 0x288840, &(0x7f0000001280)={[{@rodir}, {@nonumtail}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}}], [{@fsname}, {@dont_measure}, {@permit_directio}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@dont_measure}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@dont_hash}, {@uid_lt={'uid<', 0xee00}}]})

17:53:06 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 58)

17:53:06 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d0)

17:53:06 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d9)

[  370.964657][T13124] loop3: detected capacity change from 0 to 264192
[  370.971474][T13124] =======================================================
[  370.971474][T13124] WARNING: The mand mount option has been deprecated and
[  370.971474][T13124]          and is ignored by this kernel. Remove the mand
[  370.971474][T13124]          option from the mount to silence this warning.
[  370.971474][T13124] =======================================================
[  371.013997][   T24] audit: type=1400 audit(1637344386.193:281): avc:  denied  { create } for  pid=13121 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  371.034372][   T24] audit: type=1400 audit(1637344386.203:282): avc:  denied  { ioctl } for  pid=13121 comm="syz-executor.1" path="socket:[44564]" dev="sockfs" ino=44564 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
17:53:06 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
signalfd4(r0, &(0x7f0000000040)={[0xf7]}, 0x8, 0x80000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
unshare(0x600)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r2, 0x4028700f, &(0x7f0000000180)={0x1, 0x0, {0x0, 0x0, 0x0, 0xa, 0x0, 0x4c}})
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

[  371.129755][T13135] FAULT_INJECTION: forcing a failure.
[  371.129755][T13135] name failslab, interval 1, probability 0, space 0, times 0
[  371.142430][T13135] CPU: 0 PID: 13135 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  371.151191][T13135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  371.161226][T13135] Call Trace:
[  371.164496][T13135]  <TASK>
[  371.167407][T13135]  dump_stack_lvl+0xd6/0x122
[  371.172028][T13135]  dump_stack+0x11/0x1b
[  371.176162][T13135]  should_fail+0x23c/0x250
[  371.180558][T13135]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  371.185940][T13135]  __should_failslab+0x81/0x90
[  371.190745][T13135]  should_failslab+0x5/0x20
[  371.195229][T13135]  kmem_cache_alloc+0x4f/0x320
[  371.200058][T13135]  ext4_mb_new_blocks+0x328/0x1ee0
[  371.205228][T13135]  ? ext4_get_branch+0x28e/0x2e0
[  371.210235][T13135]  ext4_ind_map_blocks+0xb1c/0x1740
[  371.215474][T13135]  ext4_map_blocks+0x6e3/0xf00
[  371.220271][T13135]  ext4_iomap_begin+0x4b0/0x630
[  371.225184][T13135]  ? ext4_alloc_da_blocks+0x100/0x100
[  371.230621][T13135]  iomap_iter+0x395/0x4a0
[  371.234991][T13135]  __iomap_dio_rw+0x695/0x1070
[  371.239816][T13135]  ? jbd2_journal_stop+0x592/0x6a0
[  371.244912][T13135]  iomap_dio_rw+0x38/0x80
[  371.249271][T13135]  ? ext4_file_write_iter+0x451/0x1200
[  371.254775][T13135]  ext4_file_write_iter+0xac3/0x1200
[  371.260050][T13135]  ? ext4_file_write_iter+0x451/0x1200
[  371.265591][T13135]  do_iter_readv_writev+0x2de/0x380
[  371.270817][T13135]  do_iter_write+0x192/0x5c0
[  371.275418][T13135]  ? splice_from_pipe_next+0x34f/0x3b0
[  371.280913][T13135]  ? kmalloc_array+0x2d/0x40
[  371.285506][T13135]  vfs_iter_write+0x4c/0x70
[  371.290024][T13135]  iter_file_splice_write+0x43a/0x790
[  371.295432][T13135]  ? splice_from_pipe+0xd0/0xd0
[  371.300298][T13135]  direct_splice_actor+0x80/0xa0
[  371.305302][T13135]  splice_direct_to_actor+0x345/0x650
[  371.310688][T13135]  ? do_splice_direct+0x190/0x190
[  371.315786][T13135]  do_splice_direct+0x106/0x190
[  371.320618][T13135]  do_sendfile+0x675/0xc40
[  371.325082][T13135]  __x64_sys_sendfile64+0x102/0x140
[  371.330263][T13135]  do_syscall_64+0x44/0xd0
[  371.334691][T13135]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  371.340607][T13135] RIP: 0033:0x7ff4b8299ae9
[  371.345096][T13135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  371.364701][T13135] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  371.373093][T13135] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  371.381116][T13135] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  371.389079][T13135] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  371.397032][T13135] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  371.405060][T13135] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  371.413012][T13135]  </TASK>
[  371.432890][   T24] audit: type=1400 audit(1637344386.613:283): avc:  denied  { ioctl } for  pid=13136 comm="syz-executor.3" path="/dev/rtc0" dev="devtmpfs" ino=219 ioctlcmd=0x700f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
17:53:06 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001400)

17:53:06 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
open(&(0x7f00000000c0)='./bus\x00', 0x80000, 0x12)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r1, 0x0, 0x80000001)

17:53:06 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x440000, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
mknodat$null(r1, &(0x7f0000000040)='./bus\x00', 0x8000, 0x103)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r5=>0x0, ""/256, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000000100)={r4, r6, "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", "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"})
sendfile(r0, r2, 0x0, 0x80000001)
r7 = openat$nvram(0xffffffffffffff9c, &(0x7f00000037c0), 0x8000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000038c0)={'batadv0\x00', <r8=>0x0})
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r7, 0x89f6, &(0x7f0000003980)={'sit0\x00', &(0x7f0000003900)={'syztnl2\x00', r8, 0x29, 0x1, 0x1, 0x4845, 0x18, @mcast2, @remote, 0x8000, 0x7ede68cadb6affda, 0x6}})

17:53:06 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000040))
write$P9_RREADLINK(r1, &(0x7f0000000080)={0xe, 0x17, 0x1, {0x5, './bus'}}, 0xe)

17:53:06 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000100)=@usbdevfs_disconnect={0x7})
ftruncate(0xffffffffffffffff, 0x7f)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x40000)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
sendfile(0xffffffffffffffff, r0, &(0x7f0000000180)=0x80, 0x8)
pwrite64(r3, 0x0, 0x0, 0x0)
ftruncate(r3, 0x7)
r4 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x80000001)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={<r6=>0xffffffffffffffff})
r7 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r7, 0x0, 0x0, 0x0)
dup2(r6, r7)
fcntl$notify(r5, 0x402, 0x4)

17:53:07 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
pwrite64(r2, &(0x7f0000000100)="8559cf5e2b852d8b42b4c19a9cf91db8baed8c07bad9c3b2a8bfb1bd2d24ed166baf96a65a975c80bd9d202b91f36854f6803b2c0b3eb80abfaffea28ddebea5cc121d1e0bb9000f05b501d6ffb96f814cb466e3f0d5407d63a6ee50f96559169a626d6848509634fa09e2c1e6941b265637a09becfaf518addd3480c63eb7da41e2532f14db67510a351348c46b12be8d8fa45284ef9bfdf84673b8f814e3bb1a6ab1673a0d6424b92ad0f4ade6671e4530ddc95cbb881bb6a5a5ddc1af6dc2409384e7653e1ecb6dd2db", 0xcb, 0xffff)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
fadvise64(r3, 0x7, 0x100, 0x1)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001)

17:53:07 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 59)

17:53:07 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d1)

17:53:07 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001300)

[  371.985750][T13167] FAULT_INJECTION: forcing a failure.
[  371.985750][T13167] name failslab, interval 1, probability 0, space 0, times 0
[  371.998425][T13167] CPU: 0 PID: 13167 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  372.007199][T13167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  372.017232][T13167] Call Trace:
[  372.020528][T13167]  <TASK>
[  372.023455][T13167]  dump_stack_lvl+0xd6/0x122
[  372.028099][T13167]  dump_stack+0x11/0x1b
[  372.032237][T13167]  should_fail+0x23c/0x250
[  372.036714][T13167]  ? ext4_mb_new_blocks+0x73e/0x1ee0
[  372.042092][T13167]  __should_failslab+0x81/0x90
[  372.046937][T13167]  should_failslab+0x5/0x20
[  372.051671][T13167]  kmem_cache_alloc+0x4f/0x320
[  372.056453][T13167]  ext4_mb_new_blocks+0x73e/0x1ee0
[  372.061551][T13167]  ? ext4_get_branch+0x28e/0x2e0
[  372.066476][T13167]  ext4_ind_map_blocks+0xb1c/0x1740
[  372.071760][T13167]  ext4_map_blocks+0x6e3/0xf00
[  372.076595][T13167]  ext4_iomap_begin+0x4b0/0x630
[  372.081430][T13167]  ? ext4_alloc_da_blocks+0x100/0x100
[  372.086785][T13167]  iomap_iter+0x395/0x4a0
[  372.091171][T13167]  __iomap_dio_rw+0x695/0x1070
[  372.095922][T13167]  ? jbd2_journal_stop+0x592/0x6a0
[  372.101093][T13167]  iomap_dio_rw+0x38/0x80
[  372.105445][T13167]  ? ext4_file_write_iter+0x451/0x1200
[  372.110887][T13167]  ext4_file_write_iter+0xac3/0x1200
[  372.116164][T13167]  ? ext4_file_write_iter+0x451/0x1200
[  372.121608][T13167]  do_iter_readv_writev+0x2de/0x380
[  372.126802][T13167]  do_iter_write+0x192/0x5c0
[  372.131500][T13167]  ? splice_from_pipe_next+0x34f/0x3b0
[  372.137013][T13167]  ? kmalloc_array+0x2d/0x40
[  372.141614][T13167]  vfs_iter_write+0x4c/0x70
[  372.146181][T13167]  iter_file_splice_write+0x43a/0x790
[  372.151546][T13167]  ? splice_from_pipe+0xd0/0xd0
[  372.156426][T13167]  direct_splice_actor+0x80/0xa0
[  372.161347][T13167]  splice_direct_to_actor+0x345/0x650
[  372.166750][T13167]  ? do_splice_direct+0x190/0x190
[  372.171915][T13167]  do_splice_direct+0x106/0x190
[  372.176822][T13167]  do_sendfile+0x675/0xc40
[  372.181220][T13167]  __x64_sys_sendfile64+0x102/0x140
[  372.186481][T13167]  do_syscall_64+0x44/0xd0
[  372.190937][T13167]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  372.196880][T13167] RIP: 0033:0x7ff4b8299ae9
[  372.201802][T13167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  372.221481][T13167] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:53:07 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x1dc, 0x0, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_NODE={0x1c0, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "70d9af11f47b0a8878f3bf4dc8f0bee764baeecfd2f965c926"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xa5, 0x3, "ba2c5df9c822f974e8b3864aa982eac2eb15c1f275095d38098e1e784781b7a9f8c31b6399fbfc6777ad6e516a1a02801b78017d7ec48e235f7d1ebf10ae5e5c2b1874c46c6d6c7c3c8ede832636abceb79869fd03feee397877b978ae30af305ae2dabbee29b9dc1631f258180d38184c17c78f3b6e6dd9005d93709cf9d8fcdb8df9cdfdf8a69297a6a3445c2979ba1b9b99f041e264357707823cacc0768e47"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffffa}, @TIPC_NLA_NODE_ID={0xba, 0x3, "ffd2106979a482ed200e5a2831884531837d26f059eb70eb68c6d595d7cf1db8d7f8f01c0516a184b4b32f36f657e170ab0d11bd0f9a2195f4f55ad5770d94c28b9fa3c73292d35e6656eb50044972f3b7ce3f8864e2a782709fdba66d91b728e90173013f8d4e417053b2ff59906fb23fccb305f4339da77dc94b64ce960b5d5122f1db8019318d893af04d60a2713acbe16ec39202d44078d749300ecf116acfd9448f3a45fd24bff0da5fadd47b85dfd42160bef6"}]}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

[  372.229909][T13167] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  372.237865][T13167] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  372.245826][T13167] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  372.253778][T13167] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  372.261742][T13167] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  372.269940][T13167]  </TASK>
17:53:07 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80001800)

17:53:07 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
fallocate(0xffffffffffffffff, 0x76, 0x5, 0x7f)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000040))
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
dup(r3)
mknodat$null(r2, &(0x7f0000000080)='./bus\x00', 0x40, 0x103)

17:53:07 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x40, 0x50)
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x6, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000180)={"0e12ad9bd6eabe3c051d5dd182ab6c9d", 0x0, <r3=>0x0, {0xe480, 0x20}, {0x8, 0x7}, 0xfffffffffffff800, [0x20, 0x5, 0x100, 0x332, 0x6, 0x834, 0x8001, 0x8000, 0x4, 0x2, 0x4, 0x80000000, 0x3f, 0x1f, 0x6, 0x2]})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000440)={{}, r3, 0x3a, @unused=[0x1, 0x4, 0xcb4, 0x20], @name="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"})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001)
openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)

17:53:07 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 60)

17:53:08 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d2)

[  372.789644][T13192] FAULT_INJECTION: forcing a failure.
[  372.789644][T13192] name failslab, interval 1, probability 0, space 0, times 0
[  372.802510][T13192] CPU: 1 PID: 13192 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  372.811335][T13192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  372.821378][T13192] Call Trace:
[  372.824651][T13192]  <TASK>
[  372.827574][T13192]  dump_stack_lvl+0xd6/0x122
[  372.832347][T13192]  dump_stack+0x11/0x1b
[  372.836570][T13192]  should_fail+0x23c/0x250
[  372.841022][T13192]  ? __es_insert_extent+0x546/0xe80
[  372.846226][T13192]  __should_failslab+0x81/0x90
[  372.851033][T13192]  should_failslab+0x5/0x20
[  372.855519][T13192]  kmem_cache_alloc+0x4f/0x320
[  372.860348][T13192]  __es_insert_extent+0x546/0xe80
[  372.865355][T13192]  ext4_es_insert_extent+0x1cb/0x19c0
[  372.870724][T13192]  ext4_map_blocks+0xa5d/0xf00
[  372.875474][T13192]  ext4_iomap_begin+0x4b0/0x630
[  372.880307][T13192]  ? ext4_alloc_da_blocks+0x100/0x100
[  372.885732][T13192]  iomap_iter+0x395/0x4a0
[  372.890045][T13192]  __iomap_dio_rw+0x695/0x1070
[  372.894854][T13192]  ? jbd2_journal_stop+0x592/0x6a0
[  372.899952][T13192]  iomap_dio_rw+0x38/0x80
[  372.904282][T13192]  ? ext4_file_write_iter+0x451/0x1200
[  372.909727][T13192]  ext4_file_write_iter+0xac3/0x1200
[  372.915056][T13192]  ? ext4_file_write_iter+0x451/0x1200
[  372.920533][T13192]  do_iter_readv_writev+0x2de/0x380
[  372.925811][T13192]  do_iter_write+0x192/0x5c0
[  372.930391][T13192]  vfs_iter_write+0x4c/0x70
[  372.934885][T13192]  iter_file_splice_write+0x43a/0x790
[  372.940328][T13192]  ? splice_from_pipe+0xd0/0xd0
[  372.945194][T13192]  direct_splice_actor+0x80/0xa0
[  372.950202][T13192]  splice_direct_to_actor+0x345/0x650
[  372.955607][T13192]  ? do_splice_direct+0x190/0x190
[  372.960629][T13192]  do_splice_direct+0x106/0x190
[  372.965530][T13192]  do_sendfile+0x675/0xc40
[  372.969934][T13192]  __x64_sys_sendfile64+0x102/0x140
[  372.975117][T13192]  do_syscall_64+0x44/0xd0
[  372.979629][T13192]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  372.985560][T13192] RIP: 0033:0x7ff4b8299ae9
[  372.989966][T13192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  373.009575][T13192] RSP: 002b:00007ff4b6010188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  373.018032][T13192] RAX: ffffffffffffffda RBX: 00007ff4b83acf60 RCX: 00007ff4b8299ae9
[  373.026003][T13192] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
[  373.033959][T13192] RBP: 00007ff4b60101d0 R08: 0000000000000000 R09: 0000000000000000
[  373.041924][T13192] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  373.050005][T13192] R13: 00007ffca0f1f41f R14: 00007ff4b6010300 R15: 0000000000022000
[  373.057987][T13192]  </TASK>
17:53:08 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x414602, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000200))
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000480)={'syztnl0\x00', &(0x7f0000000400)={'sit0\x00', <r4=>0x0, 0x4, 0x5, 0x72, 0xff, 0x12, @private2, @dev={0xfe, 0x80, '\x00', 0x43}, 0x0, 0xbb27, 0x5, 0xffc00000}})
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newtclass={0x38, 0x28, 0x800, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0xfff8, 0xfff9}, {0x8, 0x7}, {0xd, 0xfff3}}, [@tclass_kind_options=@c_sfb={0x8}, @tclass_kind_options=@c_ingress={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x40)

17:53:08 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f3)

17:53:08 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80002bcf)

17:53:08 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(r0, &(0x7f0000000000)='./bus\x00', 0x8100, 0x46)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = gettid()
capget(&(0x7f0000000000)={0x20071026, r2}, &(0x7f00000002c0))
fcntl$lock(r0, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x3, 0xc360, r2})

17:53:08 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:53:08 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001) (fail_nth: 61)

17:53:08 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0, <r2=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r2)
mount$tmpfs(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x2011013, &(0x7f0000000180)=ANY=[@ANYBLOB="2382cf270000000065722c7569643d", @ANYRESHEX, @ANYBLOB=',euid>', @ANYRESDEC=0x0, @ANYBLOB=',audit,defcontext=sysadm_u,uid=', @ANYRESDEC=r2, @ANYBLOB=',\x00'])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x10200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x2a8, 0x7, 0x0, 0x0, 0xfffd, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getpeername$unix(r4, &(0x7f0000000240)=@abs, &(0x7f00000002c0)=0x6e)
socket(0x29, 0x4, 0x5)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r3, r5, 0x0, 0x80000001)

17:53:08 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000780), &(0x7f00000007c0)=0xe)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000800)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000840)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x7, 0x1, 0x30, 0x0, 0x2, 0x3e, 0x426, 0x176, 0x40, 0x1a, 0x8000, 0x5e, 0x38, 0x2, 0x2, 0x6, 0x3}, [{0x2, 0x2, 0x9, 0x4, 0x29, 0x200, 0x9f, 0x8001}, {0x60000002, 0x20, 0xf91, 0x6, 0xffffffff00000001, 0x9, 0x400, 0x9}], "56dc82bcc12d538c474a3defe4840d0edcc6842ae4aaa20464667bf8e0ac4034cf1cb7fcf46d2fbd5e0a3d52c14c7d883f3c623a319be15c22aa8956c95ff6595f3c9922fb92e1bd60935beaaecf72677124ee6669079b300874aa07f4769f94c0c2587350724f299146a03e6692a01ba082ccff0b8e39d2ac63d73d90012a80651ef4630d20f38d7382eab35db97c5a59e0ee75c78c6b29ab4730fc6680a58c714ae1a4e7ba6fade9876ce0533aeba1f9770247bf9c89a937707a4e50a17849b56f0b5a06f340e0f0ffbb919b4c6c8370c6ab7936f313d6616b9e5287c74322f5e387728571", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x696)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000700)={0x53, 0xffffffffffffffff, 0xf5, 0x1, @buffer={0x0, 0xbf, &(0x7f0000000440)=""/191}, &(0x7f0000000500)="cb474ac1e175dd83eeb03df34bb7a6f36e205d99aa400fd31b1a591a373f279f55ad06f0d6195d42dffba84d793d613959359af1215de8c413592ad8fb3d1ad78e960f5db49cee925017e3f4d9c79aee93ad17696c6f7b7de29c039e08d75e94e325f763b3430b3ff5650d6fb9897a2d7efbbde6e5e7ee00411f5ea6d22866ce02f914fada438a1db4c050dccdb6084e3e68f2c213a1d05a27c9aaac6ffc2c054c5c475144f7766a04292c75bd06e8c9d8eebf9f0e15c24f8acf589d07073d0f363349aa9c54df830655843ee4a27b5fc459c9806f29bfeec12b3d16b2c9bc11cb5e7915478c068d383c5fdc9c64e56c9d99e2acdd", &(0x7f0000000600)=""/218, 0x89, 0x10014, 0x0, &(0x7f0000000340)})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r1, 0x40806685, &(0x7f00000002c0)={0x1, 0x2, 0x1000, 0xfb, &(0x7f0000000100)="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", 0x9b, 0x0, &(0x7f0000000200)="2493dfbebb8dd786df17d36402e4b6dce9bac8e10673ce6e2244b9eff248f0fd99da75e35bdeb8325f67ffbae49b26d1e707a107178328b2bd8eb79128aa161039407c5deb01de00968b37240d43b8e540e238fe333999a8092fd98cca1ff6fb203245202bbfa146cdd5d8e2be1544edcd08c0b7ea3533295ab2a94d90c51da9e6b68ea265b7ed75b253d3f453e022733903eb711dc2ae94c94b42"})
ioctl$F2FS_IOC_GARBAGE_COLLECT(r3, 0x4004f506, &(0x7f0000000380))
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
sendfile(r1, r5, 0x0, 0x80000001)

17:53:08 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d8c0, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000180)={0x0, r0}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x8, 0x1, 0x3, 0x4, 0x0, 0xfff, 0x21002, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xf7, 0x4, @perf_config_ext={0xffffffffffff5675, 0x3}, 0x1, 0x7ff, 0x80000001, 0x4, 0x10001, 0x4, 0x401, 0x0, 0x400, 0x0, 0x3}, r1, 0x3, r2, 0x1)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x200200, 0x0)
sendfile(r0, r3, 0x0, 0x80000001)
r4 = perf_event_open(&(0x7f00000001c0)={0x5, 0x80, 0x0, 0x2, 0x6, 0x67, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffff68, 0x1, @perf_config_ext={0x10000, 0xfffffffffffffffb}, 0x10000, 0x101, 0x7, 0x9, 0x8, 0x8, 0x3f, 0x0, 0x1ff, 0x0, 0x48}, r1, 0x2, 0xffffffffffffffff, 0xa)
r5 = syz_open_dev$loop(&(0x7f0000000240), 0x0, 0x10000)
fcntl$getownex(r5, 0x10, &(0x7f0000000280))
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xc, 0x13, r4, 0x47e38000)
r6 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r6, 0x80047213, &(0x7f0000000040))

17:53:08 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x800, 0x1, &(0x7f0000000140)=[{&(0x7f0000000100)="fe13961636e35aee84be22de5ee95273e5c849a89ea9", 0x16, 0x400}], 0x6000000, &(0x7f0000000180)={[{@mpol={'mpol', 0x3d, {'default', '=static', @void}}}, {@huge_never}, {@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x33, 0x67, 0x25, 0x37, 0x34]}}], [{@euid_eq}, {@smackfsfloor}]})
r2 = openat(r1, &(0x7f0000000000)='./file0\x00', 0x206080, 0x0)
sendfile(r0, r2, 0x0, 0x80000001)
dup(r2)

[  373.541112][   T24] audit: type=1400 audit(1637344388.723:284): avc:  denied  { create } for  pid=13217 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  373.612978][T13226] loop3: detected capacity change from 0 to 4
[  373.620254][T13226] tmpfs: Unsupported parameter 'huge'
[  373.637821][T13227] FAULT_INJECTION: forcing a failure.
[  373.637821][T13227] name failslab, interval 1, probability 0, space 0, times 0
[  373.650670][T13227] CPU: 0 PID: 13227 Comm: syz-executor.0 Not tainted 5.16.0-rc1-syzkaller #0
[  373.659439][T13227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  373.669494][T13227] Call Trace:
[  373.672776][T13227]  <TASK>
[  373.675702][T13227]  dump_stack_lvl+0xd6/0x122
[  373.680301][T13227]  dump_stack+0x11/0x1b
[  373.684572][T13227]  should_fail+0x23c/0x250
[  373.688986][T13227]  ? mempool_alloc_slab+0x16/0x20
[  373.694025][T13227]  __should_failslab+0x81/0x90
[  373.698799][T13227]  should_failslab+0x5/0x20
[  373.703310][T13227]  kmem_cache_alloc+0x4f/0x320
[  373.708097][T13227]  mempool_alloc_slab+0x16/0x20
[  373.712954][T13227]  ? mempool_free+0x130/0x130
[  373.717651][T13227]  mempool_alloc+0x9d/0x310
[  373.722216][T13227]  ? preempt_count_add+0x4e/0x90
[  373.727157][T13227]  ? _raw_read_unlock+0x13/0x30
[  373.732028][T13227]  ? jbd2_transaction_committed+0xad/0xc0
[  373.737829][T13227]  bio_alloc_bioset+0xcc/0x560
[  373.742664][T13227]  ? iov_iter_alignment+0x34b/0x370
[  373.747900][T13227]  iomap_dio_bio_iter+0x5ed/0xc70
[  373.752932][T13227]  ? ext4_alloc_da_blocks+0x100/0x100
[  373.758335][T13227]  __iomap_dio_rw+0x8b5/0x1070
[  373.763140][T13227]  iomap_dio_rw+0x38/0x80
[  373.767502][T13227]  ? ext4_file_write_iter+0x451/0x1200
[  373.772967][T13227]  ext4_file_write_iter+0xac3/0x1200
[  373.778310][T13227]  ? ext4_file_write_iter+0x451/0x1200
[  373.783830][T13227]  do_iter_readv_writev+0x2de/0x380
[  373.789098][T13227]  do_iter_write+0x192/0x5c0
[  373.793737][T13227]  ? splice_from_pipe_next+0x34f/0x3b0
[  373.799200][T13227]  ? kmalloc_array+0x2d/0x40
[  373.803795][T13227]  vfs_iter_write+0x4c/0x70
[  373.808340][T13227]  iter_file_splice_write+0x43a/0x790
[  373.813722][T13227]  ? splice_from_pipe+0xd0/0xd0
[  373.818603][T13227]  direct_splice_actor+0x80/0xa0
[  373.823636][T13227]  splice_direct_to_actor+0x345/0x650
[  373.829088][T13227]  ? do_splice_direct+0x190/0x190
[  373.834140][T13227]  do_splice_direct+0x106/0x190
[  373.839036][T13227]  do_sendfile+0x675/0xc40
[  373.843458][T13227]  __x64_sys_sendfile64+0x102/0x140
[  373.848660][T13227]  do_syscall_64+0x44/0xd0
[  373.853137][T13227]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  373.859153][T13227] RIP: 0033:0x7ff4b8299ae9
17:53:09 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d3)

[  373.863610][T13227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  373.883329][T13227] RSP: 002b:00007ff4b5fef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  373.891828][T13227] RAX: ffffffffffffffda RBX: 00007ff4b83ad020 RCX: 00007ff4b8299ae9
[  373.899872][T13227] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000004
17:53:09 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)
r3 = openat(r2, &(0x7f0000000080)='./bus\x00', 0x402c0, 0x80)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './bus\x00'})
sendfile(r0, r1, 0x0, 0x80000001)

[  373.907840][T13227] RBP: 00007ff4b5fef1d0 R08: 0000000000000000 R09: 0000000000000000
[  373.915883][T13227] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  373.923851][T13227] R13: 00007ffca0f1f41f R14: 00007ff4b5fef300 R15: 0000000000022000
[  373.931825][T13227]  </TASK>
[  373.953155][T13226] loop3: detected capacity change from 0 to 4
17:53:09 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003f3)

17:53:09 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80003600)

17:53:09 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000001)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
preadv(r2, &(0x7f0000000440)=[{&(0x7f0000000100)=""/138, 0x8a}, {&(0x7f00000001c0)=""/187, 0xbb}, {&(0x7f0000000280)=""/136, 0x88}, {&(0x7f0000000340)=""/214, 0xd6}, {&(0x7f0000000040)=""/117, 0x75}], 0x5, 0xfe6f, 0x7)

17:53:09 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000001)

17:53:09 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
pipe2(&(0x7f0000000100), 0x6000)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000001c0), 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r3, 0x84, 0x12, &(0x7f0000000140), &(0x7f0000000180)=0x4)

17:53:09 executing program 3:
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(0xffffffffffffffff, 0xc0a85352, &(0x7f0000000100)={{0x2, 0x7f}, 'port0\x00', 0x80, 0x2040a, 0x2, 0x1, 0x16, 0x2dd2, 0x1ff, 0x0, 0x3, 0x8})
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x400482, 0x0)
pwrite64(r3, 0x0, 0x0, 0x2)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x40010, r2, 0xb850e000)

17:53:10 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d4)

17:53:10 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000100), 0xffffffffffffffff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x24000, 0x22)
openat(r1, &(0x7f0000000000)='./bus/file0\x00', 0x20000, 0x100)
chroot(&(0x7f0000000040)='./bus\x00')
sendfile(r0, r1, 0x0, 0x80000001)

17:53:10 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d5)

17:53:10 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x400, 0x40)
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, &(0x7f0000000040)={0x0, 0x2, 0x9})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180), 0x2, 0x1)

17:53:10 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg1\x00', <r2=>0x0})
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r4=>r3}, './bus\x00'})
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x14, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x2004010}, 0x4004810)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x8, &(0x7f0000001000)=ANY=[@ANYRESOCT=r3], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00', r5}, 0x10)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000280)={0x0, <r6=>0x0}, 0x8)
r7 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r7, 0x0)
preadv(r7, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r8 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000100)=r6, 0x4)
bpf$ITER_CREATE(0x1d, &(0x7f0000000140)={r8}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000001c0)=r6, 0x4)
sendfile(r0, r1, 0x0, 0x80000001)

17:53:10 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80003b00)

17:53:10 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x7ffff000)

17:53:10 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0xec742, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/exe\x00', 0x5a2160d6f78032d2, 0x0)
sendfile(r0, r1, 0x0, 0x3)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
signalfd(r4, &(0x7f0000000240)={[0xffff]}, 0x8)
r5 = syz_open_dev$evdev(&(0x7f00000001c0), 0x80000000, 0x2200)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r5, 0x4004f506, &(0x7f0000000200)=0x1)
ioctl$RNDADDENTROPY(r3, 0x40085203, &(0x7f0000000140)={0x4a, 0x17, "22f7a1655b20cac21b9b5b729c9c98a0a8c07046ae7f0a"})
pwrite64(r2, 0x0, 0x0, 0x0)
bind$unix(r2, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e20}, 0x6e)

17:53:10 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r2, 0x4004662b, &(0x7f0000000380)=0x5)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r1, 0x28, &(0x7f0000000040)}, 0x10)
r3 = syz_mount_image$nfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xd41, 0x2, &(0x7f00000002c0)=[{&(0x7f0000000180)="b353c2d16e468fc47d74d791c9ee035d34fc791073d53d3daae20b0bf3ba4143aed62dbfd6a5bb77065dabb2c82f991c4c180991198f64e2409d671ba0051218bd63d4743def2afdb302fb1bc763357a0a033c1dc8a8267942b26d2c030f559ec4941dd263bdb9376b609cc0331706ee6f18af857af5da97e52dd317ed8ad66598f0bf103e74fd25fb1c3a4cfc6a2dd47ec6cbc1974aa8a23ad96803691dc547b1dd01dad59eee532525cdcfe8dd93eefd9594c444b6ff1abf5cef062e520df940e68072bc48f4a14b24bf2feec453b1c1b27b961754629dbeba1f87a6eb8bd8ae05dba9f97e86b41e67828130d4ef3e70c3299773", 0xf5, 0x7fffffff}, {&(0x7f0000000280)="c1c184dfe372b4f4c2282dd4595f0f6b9c31a4b0a3058a65244d9d8455aad19354533a00c6d8597eda38b03475ba", 0x2e, 0xffffffffffffff81}], 0x808, &(0x7f0000000300)={[{'\']\\,'}], [{@uid_eq={'uid', 0x3d, 0xee00}}]})
r4 = openat(r3, &(0x7f0000000340)='./file0\x00', 0x800, 0x0)
sendfile(r0, r4, 0x0, 0x80000001)

17:53:10 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
fcntl$getownex(r3, 0x10, &(0x7f0000000180))
sendfile(r1, r2, 0x0, 0x80000001)
r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x357902, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000140)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7fffffff, 0x0, 0x1, 0x4, 0x8}, 0x20)

[  375.492216][   T24] audit: type=1400 audit(1637344390.673:285): avc:  denied  { read } for  pid=13289 comm="syz-executor.3" dev="nsfs" ino=4026532770 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  375.513852][   T24] audit: type=1400 audit(1637344390.673:286): avc:  denied  { open } for  pid=13289 comm="syz-executor.3" path="net:[4026532770]" dev="nsfs" ino=4026532770 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
17:53:10 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x4c842, 0x0)
ftruncate(0xffffffffffffffff, 0xe02e)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)

[  375.586143][T13293] loop3: detected capacity change from 0 to 264192
[  375.594027][T13293] nfs: Unknown parameter '']\'
17:53:10 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
write(r0, &(0x7f0000000080)='K\b', 0x2)
write(0xffffffffffffffff, &(0x7f0000000040)="af", 0x1)
r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, &(0x7f0000000100)=0x8000, 0x8)
sendfile(r0, r1, 0x0, 0x80000001)

17:53:10 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d5)

17:53:10 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000300)={{0x7f, 0x45, 0x4c, 0x46, 0x40, 0x40, 0xbc, 0x1, 0x7, 0x3, 0x38, 0x7f, 0x84, 0x40, 0x242, 0x31be2d56, 0xfff8, 0x38, 0x2, 0x6, 0x3, 0x7}, [{0x6, 0x1f, 0x0, 0x1800000, 0x0, 0x100000000, 0x856c, 0xfffffffffffffff9}], "3b291a790cfd1d30551989ee6d513329542c8be00427747252d479babf91964de80be3bbdab313b7ce3c232a5d7acb7eae387fec08bb4f8de4ef046deb4b56dc3a73e26ea87a8574305ecf1dffbeeb", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x9c7)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
sendfile(r3, r0, &(0x7f0000000d00)=0x5, 0x14d7)
sendfile(r0, r2, 0x0, 0x80000001)
r4 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x48400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @jmp={0x5, 0x0, 0x9, 0xb, 0x7, 0xffffffffffffffe0, 0xfffffffffffffff0}]}, &(0x7f0000000080)='GPL\x00', 0x7, 0xae, &(0x7f0000000100)=""/174, 0x40f00, 0x14, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000200)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x2, 0x10, 0x9, 0x6}, 0x10}, 0x78)

17:53:11 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003d4)

17:53:11 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='numa_maps\x00')
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000080)=""/23, 0x17, 0xa00)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x8d, 0x0, 0x3, 0x3000, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x4, @perf_config_ext={0x401, 0x9}, 0x5e22, 0xf8c, 0x9, 0x0, 0x0, 0x0, 0x20, 0x0, 0x4, 0x0, 0x591}, 0xffffffffffffffff, 0x0, r2, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0})
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x0, 0x9, 0x1, 0x7fffffff, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
preadv(r3, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000000740)=""/139, 0x8b}, {&(0x7f0000000800)=""/209, 0xd1}], 0x3, 0x0, 0x6c6cf4f1)
pread64(0xffffffffffffffff, &(0x7f0000000080)=""/23, 0x17, 0xa00)
r4 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pread64(r0, &(0x7f0000000440)=""/203, 0xcb, 0x1)
readv(0xffffffffffffffff, &(0x7f0000000140)=[{0x0}], 0x1)
r5 = signalfd(0xffffffffffffffff, &(0x7f0000000240)={[0x9]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, r4, {0x2}}, './bus\x00'})
pread64(r4, &(0x7f0000000080)=""/23, 0x17, 0xa00)
pread64(r0, 0x0, 0x0, 0x0)
r6 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r7 = openat(0xffffffffffffffff, &(0x7f0000000000)='./bus\x00', 0x8c000, 0x0)
sendfile(r6, r7, 0x0, 0x80000001)

17:53:11 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d6)

[  376.122141][    C1] sd 0:0:1:0: tag#125 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  376.131958][    C1] sd 0:0:1:0: tag#125 CDB: opcode=0xe5 (vendor)
[  376.138223][    C1] sd 0:0:1:0: tag#125 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  376.147276][    C1] sd 0:0:1:0: tag#125 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  376.156234][    C1] sd 0:0:1:0: tag#125 CDB[20]: ba
17:53:11 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80008800)

[  376.169682][    C1] sd 0:0:1:0: tag#70 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  376.179382][    C1] sd 0:0:1:0: tag#70 CDB: opcode=0xe5 (vendor)
[  376.185563][    C1] sd 0:0:1:0: tag#70 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  376.194450][    C1] sd 0:0:1:0: tag#70 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  376.203329][    C1] sd 0:0:1:0: tag#70 CDB[20]: ba
17:53:11 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000002)

17:53:11 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
open(&(0x7f00000001c0)='./bus\x00', 0x80, 0x16e)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
pwritev2(r0, &(0x7f0000000200)=[{&(0x7f0000000100)="fcf7969859341afdc4418fb7b9f2ef65533c69d87def3e1055a04a07a092943d01551db53d1d388f0be73f72a4724cce22af5cafd7b32a94165840a29cd36e9074c195e752e8649c976ae6a9d9257bcd80e833ccd689fe04b724108794f6ee1abdd54906be237849624acbcff39e628b3394fd9de3b8857e23abe2b9a2c1bf605be51a7d0ea6ade2b4795cf3c169a1d207bb51a0cdb656d9f5e4a8141968397789", 0xa1}, {&(0x7f00000001c0)}], 0x2, 0x4, 0x6, 0x11)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52218, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x420, 0x0, 0x4000100, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:53:12 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000002)

17:53:12 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
accept4(r1, &(0x7f0000000180)=@vsock={0x28, 0x0, 0x0, @local}, &(0x7f0000000200)=0x80, 0x800)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
symlink(&(0x7f0000000100)='./bus\x00', &(0x7f0000000140)='./bus\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
sendmmsg(r4, &(0x7f0000006880)=[{{&(0x7f0000000480)=@llc={0x1a, 0x20, 0xf9, 0x9e, 0x1, 0x3}, 0x80, &(0x7f0000001800)=[{&(0x7f0000000500)="e25f9653dd35602b485769d0cba6d411badc47fead3c8367fa54f2c049284ef6", 0x20}, {&(0x7f0000000540)="6713621f5ccd964613dcae5649a5507bc5720e4d3eea7c7744c14e69507357793bad5f2a256c1cac5da5c9eeffc67fa127e34ea8717ae9c4eaf0974f1d52a3898dea7ebd344c05bc623ff329229e705689ea05b7a727b57d9e5be4036adeccbbad653b25cc735606c953914cef69f915874d8aa37d", 0x75}, {&(0x7f00000005c0)="2cc610f05a46401e672959b0b51bf5572d119a4168d00a4467a93d8397a356082d7a6ed08d383806c873db04600a", 0x2e}, {&(0x7f0000000600)="267dc219f58fc0003b81f40169e4a51a598a", 0x12}, {&(0x7f0000000640)="0d20440bb48c65bd366c991699f919f84da5dabbbed958e7eee903c1a4490050e0cfba3479b00b569d805502a242af3d658d80f6177004bf41b73a642f6359b9e6317209cf06e720a42fde1c565e329bff0807484a24e67c5785e26c3c16e4637d09bff671646b49edf9b8afcf43766bf9490d09d41513d8d8cd3a97b706733878f7869d6c7f5de83fb5c106bd954c79ce22a053d9884c1f0dbfa14902306595bd5c596b97ab70e0195929d760505ef2533289bc", 0xb4}, {&(0x7f0000000700)="cacfa8f0f71778dd122a6f55ebfb5554ed4eb8d314da07429bb996a50728df8c94a49b2fddd3a62e7117ebee4f6c874f437b1dec930f513c700a39664486367f976eee152700273ad532ef052486ead5f02192e1e29a01cbeb120c1f0b6101c53898a29c81cc14523d0a9accc51c413f6b66c5538cdcb126755688a7a43d8e09932cf740e5096e8173252f8df9fd149dded06ec8d42fa573782875acd68a801307bceed01fb7634153802e668d1f5506f18f06d393c93d681107868e858c991c6c1f357a9d77ef25d6024d26436aff5e6a42a998e06bc9c04f8076a5c321d479b1db00ffe955b3", 0xe7}, {&(0x7f0000000800)="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", 0x1000}], 0x7, &(0x7f0000001880)=[{0x10, 0x1, 0x5}, {0x28, 0x1, 0x6, "2b57db0836202aec1abd1b70f5dba1a65c7c"}], 0x38}}, {{&(0x7f00000018c0)=@ieee802154, 0x80, &(0x7f0000001dc0)=[{&(0x7f0000001940)="b0329c580dd8d5dcee62837af6", 0xd}, {&(0x7f0000001980)="364e83e64e9f8685277a96b219031b6f700731bf51d512764f2d589227040627976503958236b9e4f454d3f886c6fe8cea8cb71c9df61077d0f63828224a7a98d323cc81813f3afec11e79e9", 0x4c}, {&(0x7f0000001a00)="1e4bc0f71e02fdfd259bc3017424b6e0a822b4a954b1af5d262dfb21da75e90f288b54cd3d68bc2c630b337c4b58fdd695d584c24c7b94d8d6debfb6dd95da5ed34d786987b2ba82b866a43f878606438c785229d7b284413d31996cfcf6d8fba045a30823348208cea9a8c4e6fedddf7cad41952cd5fa28d348f489ff0b8b08dc0a4d36c3bf43668200e84c303d2f8639f10b7cf8d8d773cd2491a8279663084b844ff4eaaeb8ba", 0xa8}, {&(0x7f0000001ac0)="d4121a890708b2c56ed47047d68fcb96c27e4df8f618224e833d41ee087b2b90cf67400a0dafaa5c677c231959f53edd8301372f8371bf24162a4aa6140627717c5927716a651cf624581147221f608cad390a8878a1d93d166d1efec468a7c09732f994541e4e7dc0b5c00640868d35a1e7361dac10fef339c8c6e409176c5b914d9b", 0x83}, {&(0x7f0000001b80)="876067637c9168f665fe963e241d089d494fe993859ae8ae1aee5f8992344cd829cff803c968ba61636eafca6766", 0x2e}, {&(0x7f0000001bc0)="bba4f0ffa4c3d8a75d67f86dae26836b6172a291681488eceb6a11651a49c911a8a5ca7c6f67c3921e13c876253bb37bcdfc6f6f39721977dab37fdd49ac6848a7f29baac4045c768cb7dccaa88ba0338a00b9a7e7c80e008f3763ab1c33323a3633eef22931b7fe5c18d2851f34d3383f4f8db7aa57de70d9b8df796b61e9b8e07d92683dd6756634b925a893ab90bf734d025f88ed05f137e898e2c57f1b98b84e3231e6231082e406a4f45ad5aff05c24650ca483ece23d73b1351504c5267f3d128bd27d90b3e6c8c9eb3d4544750289bbff80c8fd6b3f54181399d6a4ba3e7d055a8d0838", 0xe7}, {&(0x7f0000001cc0)="b9889eb5dbc116d16bd2bf98a9cc93d784d63a52989920eefb00c78d552465e3d481470f217c91", 0x27}, {&(0x7f0000001d00)="5dcbf0d4c938dde17cd7b1d7399fda5ebdcb1fbb6936c30f3cb01e4ed3f4205e5546468249fca8a2d5f8882be554ae29f2f2d9beb6623a8621d525ba717fa41fec0235f6e389adb4c648d1433cae343cb0b672b7c47635408a99e074d06208e81bfd7aab875b235e8dfb3e206f020fd11e2d57c7bc0af60fffa553f534d95569db0afb070f5b4f88b1df2fe0b35dfbbb1984a089c5490222eacd32e0078cbf", 0x9f}], 0x8}}, {{&(0x7f0000001e40)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000002100)=[{&(0x7f0000001ec0)="151faf7db2a4b3bc43c4ae228dfc602be5c8bb6e36e8fff86faf05688b2cd4621387f06fe8997b8a7efef29bdf978e4d7cad69c59ad7324201408f18d783ef6a96283f6a64c5d1192a59a01559d6ae01414d1b", 0x53}, {&(0x7f0000001f40)="19f22e570e15b55ad63aa874384c6616d3279bab5e123f9c1b6bc6b4311e52a75be018daf96e38667aba47036034e1d28fdcefad225824e81e17e45355486e81c9a085e9bde05e617f48e3c5", 0x4c}, {&(0x7f0000001fc0)="dcf75cda49b333b5de3f9d5038a35d22d6dc508954aa88199adf7850de9098bf4fd2499a40760b1dde71484337a4317a3be83fbc67eefae7d0841a6e388187beeb25f7145112bae06c05e384278530c029f41f551d086814f57fe9abbf", 0x5d}, {&(0x7f0000002040)="17e873d1beab364e015110aaf38f8935921d1f1d2c7c8f9f1f649e025a2ef0275b9192a4006e78b68e8c5d4f19782757817c40099997abe911c874718c2f4ecc3ecc8d17b130ec3d3c9094ed830b7cde16fae61ef07f1f536c62817fd10102548f38573772cd109f715a5702a6e078a07e296dfe40669d8f44f6a874ffa1cf450b30fa96f39b0f40a4393a52f1d0f40c66a8c92f874743461fe9e6a43a78ba2b420210b0a7664ff0b401dc14d49973cb3abe73338c21ecd2903dfc696ff4", 0xbe}], 0x4, &(0x7f0000002140)=[{0xa8, 0x1, 0x1000, "61d99568f2a741236c5b60cc08643a1cf65b94b4c20915e121607a8bef701da32f65116c9feb40e5954f6815a9b69af6df4aa7f6697fb83591d8cb1cde9ae6256bfaa7e275756f0fdf1b395dd36f3d02ba4b932ca11dc57021b168f58940a9fd623d4b76e44272d4e022d5b24aa5e2f0a33e705aa4660d3c7a9e37a98ccfe9603273b120dbb7000fafa486a290a5b39d00bd2192d23dab"}, {0x1010, 0x111, 0x1f, "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"}, {0xc8, 0x1, 0x5028, "0b0ffd3b3e3c7653f9820fe34e9504ea49e00f94d17f72d2cbe0669e32cc40b2c87784cc86ff4524fdef8835af84dad67fa55bca7f6e07a96261fd54e26783aa151856408eb5f1b6b86708261a464e3c796ba1f7f15784e318fefdb36329534edae5c3abf24f512e0df04393833793fabde5eb3cda3512e6f161c99e62eecac3d3aebe0d455355268fd31ae3edcd113435a8670afc45a8c71dbc48a729c10bffa037584ba7eeacd92df7d9fc7dcc6a28d80735f9"}], 0x1180}}, {{&(0x7f00000032c0)=@generic={0x21, "0586eaac2d2bc8cdd13ae6564219a46d52fcbbbbab0f1ac852f51531787b2ce04e3dfb1aaaf2c7b09a113efd559e542d8c43c5b80fdab54e3438dfec6d30cf3c6307e086cad132774201f22d9942db700e3a6ef78409f8f678a9b6bd13b2fd7c07934ded4c0315f1d3ceb47b812701da071abd550aa9f61e626d15f2587e"}, 0x80, &(0x7f0000004400)=[{&(0x7f0000003340)="c4e9c88632915f32d4cd2934edb6a26694b6acecfaf4d9273cd1c60d55dffc51dff5f5503c4f2442e0731ed7572d88ab30cec90d4115cc05eb3dbdb9d28c6ff7cf6bf3b57a074f3b39e0916a945ecd60aa746e7ac421960f2bfbe4b120110a0c57a65d26ffbebdf32ef6e71476ddf21034a0d1d2c652622d013e5cf3e5d546fcca7af1b9a68389188a0357a5e8a9c3d379352076e05cbacd16abaed51369edda6887ecc045ce0b38dc0920602631", 0xae}, {&(0x7f0000003400)="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", 0x1000}], 0x2, &(0x7f0000004440)=[{0x1010, 0xff, 0x4, "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"}, {0x108, 0x0, 0x1ff, "930026c0669133cad542b562f086bec42371b2e3019123839a50c6405416ed0cdb4bf19f14ee110f0ed899b97f0d5e586062e3e268470e3912d5a83b48055a943cf78e6bc6f20cd002874a03fd909d9d6d11ddcb0a85467ac7453bfb46750954339dff3ebe48d479b80faf79d6b10b4c165d9303dbf68451bae2987dce1b01ddc0c9b670390d9ff17edd3f9af54c25ec6bf92c6ae1535bdfa5d79bcf86fba2f43d12e210e7d6b9f0d858e4c3a1fb68e690c9c3a39a32d90b4b8278dd84bfbdaf23743b91ce8179496932d72188ded9191f8e07bcb89a42303bf2095b3c5ecda349aa2249aabc4f47524919eca23d6af99028fe"}, {0x88, 0x38, 0x9, "1756df0250556a6e07c0fc3cee63f5747875547019e82cc6893defea82928c2e0504861309b972581aa2e5518142d39ffd27cbabb304850686e1e06e48f2b4c233f0e2e91ec6c0b90fba3916082e9c32d04f92b7ecc974ca50806b999cc03b5dbb1455a8da536e858581efb6fc6ed0588442bf099f59471f"}, {0x28, 0x103, 0x5, "7bdd2ff9b93112462b785430f4d4b9b3f0edef50"}, {0xe8, 0x10d, 0x1, "6f94b644e1c9255abf3fcc262da01e5c23aa30125801e976b07045071dff71ad22a56925c477a4fa1812e47140363d240ab140bb68eef4e7af21569ca6e1bdc1b0dc6581c713f648ee3b7b9ad4da1890a089ca72bee64f387be7986fc69667d3fe363f060c63fa7c4530a618f85598215316abd3f31f62b86b2f27f1a7f9dbe3d595c55501c61704d4f5ba74f134a75764d180fe95a098f47425b1e135e95e1816855919ee30ab17eb20230bb55ab0a8563416a24fb0fa8b8f52709b068eed6155420175b97decf864a046aceeb3ad48380706f4"}, {0x1010, 0x108, 0x9, "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"}, {0x108, 0xff, 0x7, "a43701a907c188cbe150a718c33ebb19abc5f40095148af245e5168899c324fb00fda6262a4f34e66505223ca8568256cdcd66385cb8d5f728b16dc23bb9969818d6d1d3f39cdb84b9740af888d919354e0a8673a24f54d599ed429bfed49f9d8aa4fe3bf36a018247973add4d2dff8248f668c9c1592b228dc2191e7941c958b7aea135638be7059f35d1b5d70fb7a12795dd34958ee4a00004bfb97afb800d0a69a7389de4618bdf10ac48f5d148a1fd457a3b9384f8d364f9931aa162aca053e45a9dd1b18c76e4a3927244de96e9b7836fda8b8c568c9fc966394a79a29d4efb2fdbfe1e9b06ba976a7305720c795f014b74"}, {0x58, 0x10c, 0x2, "b93951875f329d6cf077e73cc614e3ac91a0f16df1fc4991e19ec78d19dc3a8d55e057633bcb52524d6ecd1f198805fd00fd76db8e6ad302c6eea22e0ff1c188ea739a2e"}], 0x2420}}], 0x4, 0xc0)
sendfile(r2, r3, 0x0, 0x80000001)

[  376.971187][   T24] audit: type=1400 audit(1637344392.153:287): avc:  denied  { write } for  pid=13343 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
17:53:12 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d7)

17:53:12 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80009100)

17:53:12 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000003)

17:53:13 executing program 5:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x800003ea)

17:53:13 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x22040, 0x0)
write$UHID_CREATE(r1, &(0x7f0000000180)={0x0, {'syz1\x00', 'syz1\x00', 'syz1\x00', &(0x7f0000000140)=""/29, 0x1d, 0x101, 0x0, 0x90, 0x3ff, 0x400}}, 0x120)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

17:53:13 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d8)

17:53:13 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80009c00)

17:53:13 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000004)

17:53:13 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 1)

[  378.776349][T13385] FAULT_INJECTION: forcing a failure.
[  378.776349][T13385] name failslab, interval 1, probability 0, space 0, times 0
[  378.789140][T13385] CPU: 0 PID: 13385 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  378.797934][T13385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  378.807990][T13385] Call Trace:
[  378.811272][T13385]  <TASK>
[  378.814214][T13385]  dump_stack_lvl+0xd6/0x122
[  378.818813][T13385]  dump_stack+0x11/0x1b
[  378.823103][T13385]  should_fail+0x23c/0x250
[  378.827600][T13385]  ? alloc_pipe_info+0xac/0x350
[  378.832529][T13385]  __should_failslab+0x81/0x90
[  378.837309][T13385]  should_failslab+0x5/0x20
[  378.841815][T13385]  kmem_cache_alloc_trace+0x52/0x350
[  378.847142][T13385]  alloc_pipe_info+0xac/0x350
[  378.851831][T13385]  splice_direct_to_actor+0x5f7/0x650
[  378.857289][T13385]  ? security_file_permission+0x7c/0xa0
[  378.862842][T13385]  ? do_splice_direct+0x190/0x190
[  378.867880][T13385]  ? security_file_permission+0x87/0xa0
[  378.873500][T13385]  do_splice_direct+0x106/0x190
[  378.878409][T13385]  do_sendfile+0x675/0xc40
[  378.882944][T13385]  __x64_sys_sendfile64+0x102/0x140
[  378.888175][T13385]  do_syscall_64+0x44/0xd0
[  378.892598][T13385]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  378.898580][T13385] RIP: 0033:0x7f4521e19ae9
[  378.902986][T13385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:53:14 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 2)

[  378.922591][T13385] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  378.931006][T13385] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  378.939041][T13385] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  378.947029][T13385] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  378.955014][T13385] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  378.963003][T13385] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  378.970983][T13385]  </TASK>
17:53:14 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r4 = gettid()
fcntl$setownex(r3, 0xf, &(0x7f0000000140)={0x0, r4})
sendfile(r1, r2, 0x0, 0x80000001)

17:53:14 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000bb00)

17:53:14 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003d9)

[  379.032242][T13396] FAULT_INJECTION: forcing a failure.
[  379.032242][T13396] name failslab, interval 1, probability 0, space 0, times 0
[  379.044983][T13396] CPU: 0 PID: 13396 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  379.053749][T13396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  379.063969][T13396] Call Trace:
[  379.067249][T13396]  <TASK>
[  379.070201][T13396]  dump_stack_lvl+0xd6/0x122
[  379.074798][T13396]  dump_stack+0x11/0x1b
[  379.078964][T13396]  should_fail+0x23c/0x250
[  379.083391][T13396]  ? kcalloc+0x32/0x40
[  379.087627][T13396]  __should_failslab+0x81/0x90
[  379.092400][T13396]  should_failslab+0x5/0x20
[  379.096913][T13396]  __kmalloc+0x6f/0x370
[  379.101072][T13396]  ? kmem_cache_alloc_trace+0x24b/0x350
[  379.106624][T13396]  kcalloc+0x32/0x40
[  379.110528][T13396]  alloc_pipe_info+0x1be/0x350
[  379.115303][T13396]  splice_direct_to_actor+0x5f7/0x650
[  379.120681][T13396]  ? security_file_permission+0x7c/0xa0
[  379.126259][T13396]  ? do_splice_direct+0x190/0x190
[  379.131308][T13396]  ? security_file_permission+0x87/0xa0
[  379.136866][T13396]  do_splice_direct+0x106/0x190
[  379.141743][T13396]  do_sendfile+0x675/0xc40
[  379.146178][T13396]  __x64_sys_sendfile64+0x102/0x140
[  379.151464][T13396]  do_syscall_64+0x44/0xd0
[  379.155916][T13396]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  379.161877][T13396] RIP: 0033:0x7f4521e19ae9
[  379.166305][T13396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  379.185911][T13396] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  379.194376][T13396] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  379.202356][T13396] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  379.210321][T13396] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  379.218285][T13396] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  379.226256][T13396] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  379.234227][T13396]  </TASK>
17:53:14 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000005)

17:53:14 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 3)

[  379.803370][T13413] FAULT_INJECTION: forcing a failure.
[  379.803370][T13413] name failslab, interval 1, probability 0, space 0, times 0
[  379.816055][T13413] CPU: 0 PID: 13413 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  379.824924][T13413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  379.834980][T13413] Call Trace:
[  379.838254][T13413]  <TASK>
[  379.841188][T13413]  dump_stack_lvl+0xd6/0x122
[  379.845820][T13413]  dump_stack+0x11/0x1b
[  379.850064][T13413]  should_fail+0x23c/0x250
[  379.854479][T13413]  ? kmalloc_array+0x2d/0x40
[  379.859073][T13413]  __should_failslab+0x81/0x90
[  379.863842][T13413]  should_failslab+0x5/0x20
[  379.868395][T13413]  __kmalloc+0x6f/0x370
[  379.872563][T13413]  kmalloc_array+0x2d/0x40
[  379.877003][T13413]  iter_file_splice_write+0xd5/0x790
[  379.882372][T13413]  ? atime_needs_update+0x2ba/0x390
[  379.887651][T13413]  ? touch_atime+0x11f/0x2e0
[  379.892240][T13413]  ? generic_file_splice_read+0x2a9/0x330
[  379.898021][T13413]  ? splice_from_pipe+0xd0/0xd0
[  379.902941][T13413]  direct_splice_actor+0x80/0xa0
[  379.907970][T13413]  splice_direct_to_actor+0x345/0x650
[  379.913401][T13413]  ? do_splice_direct+0x190/0x190
[  379.918503][T13413]  do_splice_direct+0x106/0x190
[  379.923360][T13413]  do_sendfile+0x675/0xc40
[  379.927779][T13413]  __x64_sys_sendfile64+0x102/0x140
[  379.932994][T13413]  do_syscall_64+0x44/0xd0
[  379.937438][T13413]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  379.943338][T13413] RIP: 0033:0x7f4521e19ae9
[  379.947776][T13413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  379.970643][T13413] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  379.979146][T13413] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  379.987148][T13413] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  379.995118][T13413] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  380.003251][T13413] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  380.011340][T13413] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  380.019310][T13413]  </TASK>
17:53:15 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003da)

17:53:15 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'})
r2 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ppoll(&(0x7f0000000100)=[{r0, 0x26}, {r2, 0x200}, {r3, 0x20a}, {r3, 0x20}], 0x4, &(0x7f0000000140)={0x0, 0x989680}, &(0x7f0000000180)={[0x9]}, 0x8)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80000001)

17:53:15 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 4)

17:53:15 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000c800)

[  380.103173][T13427] FAULT_INJECTION: forcing a failure.
[  380.103173][T13427] name failslab, interval 1, probability 0, space 0, times 0
[  380.115856][T13427] CPU: 0 PID: 13427 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  380.124671][T13427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  380.134728][T13427] Call Trace:
[  380.138005][T13427]  <TASK>
[  380.140932][T13427]  dump_stack_lvl+0xd6/0x122
[  380.145529][T13427]  dump_stack+0x11/0x1b
[  380.149722][T13427]  should_fail+0x23c/0x250
[  380.154139][T13427]  ? jbd2__journal_start+0xf7/0x3f0
[  380.159495][T13427]  __should_failslab+0x81/0x90
[  380.164277][T13427]  should_failslab+0x5/0x20
[  380.168787][T13427]  kmem_cache_alloc+0x4f/0x320
[  380.173625][T13427]  jbd2__journal_start+0xf7/0x3f0
[  380.178689][T13427]  __ext4_journal_start_sb+0x159/0x310
[  380.184265][T13427]  ? ext4_file_write_iter+0x451/0x1200
[  380.189787][T13427]  ext4_file_write_iter+0x992/0x1200
[  380.195265][T13427]  ? ext4_file_write_iter+0x451/0x1200
[  380.200726][T13427]  ? prandom_u32_state+0xd7/0x100
[  380.205784][T13427]  do_iter_readv_writev+0x2de/0x380
[  380.210991][T13427]  do_iter_write+0x192/0x5c0
[  380.215587][T13427]  ? splice_from_pipe_next+0x34f/0x3b0
[  380.221133][T13427]  ? kmalloc_array+0x2d/0x40
[  380.225758][T13427]  vfs_iter_write+0x4c/0x70
[  380.230266][T13427]  iter_file_splice_write+0x43a/0x790
[  380.235734][T13427]  ? splice_from_pipe+0xd0/0xd0
[  380.240590][T13427]  direct_splice_actor+0x80/0xa0
[  380.245572][T13427]  splice_direct_to_actor+0x345/0x650
[  380.250953][T13427]  ? do_splice_direct+0x190/0x190
[  380.255994][T13427]  do_splice_direct+0x106/0x190
[  380.260852][T13427]  do_sendfile+0x675/0xc40
[  380.265293][T13427]  __x64_sys_sendfile64+0x102/0x140
[  380.270497][T13427]  do_syscall_64+0x44/0xd0
[  380.274920][T13427]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  380.280889][T13427] RIP: 0033:0x7f4521e19ae9
[  380.285301][T13427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  380.304917][T13427] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  380.313336][T13427] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  380.321345][T13427] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  380.329324][T13427] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  380.337300][T13427] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  380.345296][T13427] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  380.353293][T13427]  </TASK>
17:53:15 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000006)

17:53:15 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 5)

[  380.664737][T13438] FAULT_INJECTION: forcing a failure.
[  380.664737][T13438] name failslab, interval 1, probability 0, space 0, times 0
[  380.677714][T13438] CPU: 1 PID: 13438 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  380.686491][T13438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  380.696551][T13438] Call Trace:
[  380.699829][T13438]  <TASK>
[  380.702784][T13438]  dump_stack_lvl+0xd6/0x122
[  380.707420][T13438]  dump_stack+0x11/0x1b
[  380.711583][T13438]  should_fail+0x23c/0x250
[  380.716184][T13438]  ? __iomap_dio_rw+0x143/0x1070
[  380.721129][T13438]  __should_failslab+0x81/0x90
[  380.725903][T13438]  should_failslab+0x5/0x20
[  380.730415][T13438]  kmem_cache_alloc_trace+0x52/0x350
[  380.735714][T13438]  __iomap_dio_rw+0x143/0x1070
[  380.740612][T13438]  ? preempt_count_add+0x4e/0x90
[  380.745562][T13438]  ? jbd2_journal_stop+0x592/0x6a0
[  380.750754][T13438]  ? jbd2_journal_stop+0x592/0x6a0
[  380.755866][T13438]  ? ___cache_free+0x46/0x300
[  380.760551][T13438]  iomap_dio_rw+0x38/0x80
[  380.764966][T13438]  ? ext4_file_write_iter+0x451/0x1200
[  380.770466][T13438]  ext4_file_write_iter+0xac3/0x1200
[  380.775880][T13438]  ? ext4_file_write_iter+0x451/0x1200
[  380.781436][T13438]  ? prandom_u32_state+0xd7/0x100
[  380.786487][T13438]  do_iter_readv_writev+0x2de/0x380
[  380.791729][T13438]  do_iter_write+0x192/0x5c0
[  380.796555][T13438]  ? splice_from_pipe_next+0x34f/0x3b0
[  380.802031][T13438]  ? kmalloc_array+0x2d/0x40
[  380.806628][T13438]  vfs_iter_write+0x4c/0x70
[  380.811169][T13438]  iter_file_splice_write+0x43a/0x790
[  380.816576][T13438]  ? splice_from_pipe+0xd0/0xd0
[  380.821441][T13438]  direct_splice_actor+0x80/0xa0
[  380.826388][T13438]  splice_direct_to_actor+0x345/0x650
[  380.831819][T13438]  ? do_splice_direct+0x190/0x190
[  380.836858][T13438]  do_splice_direct+0x106/0x190
[  380.841791][T13438]  do_sendfile+0x675/0xc40
[  380.846219][T13438]  __x64_sys_sendfile64+0x102/0x140
[  380.851424][T13438]  do_syscall_64+0x44/0xd0
[  380.855878][T13438]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  380.861856][T13438] RIP: 0033:0x7f4521e19ae9
[  380.866362][T13438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  380.885991][T13438] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  380.894521][T13438] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  380.902511][T13438] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
17:53:16 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 6)

[  380.910485][T13438] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  380.918462][T13438] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  380.926504][T13438] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  380.934507][T13438]  </TASK>
17:53:16 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000100)={0x0, r2, 0x559a, 0x4, 0x40, 0xffffffffffff8001})
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x80000001)

17:53:16 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003db)

[  381.028272][T13447] FAULT_INJECTION: forcing a failure.
[  381.028272][T13447] name failslab, interval 1, probability 0, space 0, times 0
[  381.040957][T13447] CPU: 0 PID: 13447 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  381.049828][T13447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  381.059958][T13447] Call Trace:
[  381.063233][T13447]  <TASK>
[  381.066159][T13447]  dump_stack_lvl+0xd6/0x122
[  381.070781][T13447]  dump_stack+0x11/0x1b
[  381.074939][T13447]  should_fail+0x23c/0x250
[  381.079363][T13447]  ? __iomap_dio_rw+0x143/0x1070
[  381.084306][T13447]  __should_failslab+0x81/0x90
[  381.089124][T13447]  should_failslab+0x5/0x20
[  381.093682][T13447]  kmem_cache_alloc_trace+0x52/0x350
[  381.099038][T13447]  ? delay_tsc+0x96/0xe0
[  381.103288][T13447]  __iomap_dio_rw+0x143/0x1070
[  381.108069][T13447]  ? preempt_count_add+0x4e/0x90
[  381.113010][T13447]  ? jbd2_journal_stop+0x592/0x6a0
[  381.118124][T13447]  ? jbd2_journal_stop+0x592/0x6a0
[  381.123235][T13447]  ? ___cache_free+0x46/0x300
17:53:16 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000cd00)

[  381.127916][T13447]  iomap_dio_rw+0x38/0x80
[  381.132250][T13447]  ? ext4_file_write_iter+0x451/0x1200
[  381.137768][T13447]  ext4_file_write_iter+0xac3/0x1200
[  381.143059][T13447]  ? ext4_file_write_iter+0x451/0x1200
[  381.148521][T13447]  ? prandom_u32_state+0xd7/0x100
[  381.153583][T13447]  do_iter_readv_writev+0x2de/0x380
[  381.158790][T13447]  do_iter_write+0x192/0x5c0
[  381.163460][T13447]  ? splice_from_pipe_next+0x34f/0x3b0
[  381.168993][T13447]  ? kmalloc_array+0x2d/0x40
[  381.173588][T13447]  vfs_iter_write+0x4c/0x70
[  381.178105][T13447]  iter_file_splice_write+0x43a/0x790
[  381.183492][T13447]  ? splice_from_pipe+0xd0/0xd0
[  381.188351][T13447]  direct_splice_actor+0x80/0xa0
[  381.193291][T13447]  splice_direct_to_actor+0x345/0x650
[  381.199520][T13447]  ? do_splice_direct+0x190/0x190
[  381.204593][T13447]  do_splice_direct+0x106/0x190
[  381.209461][T13447]  do_sendfile+0x675/0xc40
[  381.213886][T13447]  __x64_sys_sendfile64+0x102/0x140
[  381.220396][T13447]  do_syscall_64+0x44/0xd0
[  381.224814][T13447]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  381.230721][T13447] RIP: 0033:0x7f4521e19ae9
[  381.235177][T13447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  381.254831][T13447] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  381.263247][T13447] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  381.271288][T13447] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
17:53:16 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000007)

17:53:16 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 7)

[  381.279267][T13447] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  381.287242][T13447] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  381.295263][T13447] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  381.303257][T13447]  </TASK>
[  381.389560][T13464] FAULT_INJECTION: forcing a failure.
[  381.389560][T13464] name failslab, interval 1, probability 0, space 0, times 0
[  381.402278][T13464] CPU: 0 PID: 13464 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  381.411053][T13464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  381.421105][T13464] Call Trace:
[  381.424412][T13464]  <TASK>
[  381.427342][T13464]  dump_stack_lvl+0xd6/0x122
[  381.431999][T13464]  dump_stack+0x11/0x1b
[  381.436230][T13464]  should_fail+0x23c/0x250
[  381.440798][T13464]  ? jbd2__journal_start+0xf7/0x3f0
[  381.446001][T13464]  __should_failslab+0x81/0x90
[  381.450771][T13464]  should_failslab+0x5/0x20
[  381.455311][T13464]  kmem_cache_alloc+0x4f/0x320
[  381.460079][T13464]  ? __find_get_block+0x785/0x9b0
[  381.465112][T13464]  jbd2__journal_start+0xf7/0x3f0
[  381.470139][T13464]  __ext4_journal_start_sb+0x159/0x310
[  381.475628][T13464]  ext4_iomap_begin+0x408/0x630
[  381.480488][T13464]  ? ext4_alloc_da_blocks+0x100/0x100
[  381.485869][T13464]  iomap_iter+0x395/0x4a0
[  381.490238][T13464]  __iomap_dio_rw+0x695/0x1070
[  381.495017][T13464]  ? jbd2_journal_stop+0x592/0x6a0
[  381.500153][T13464]  iomap_dio_rw+0x38/0x80
[  381.504484][T13464]  ? ext4_file_write_iter+0x451/0x1200
[  381.510026][T13464]  ext4_file_write_iter+0xac3/0x1200
[  381.515394][T13464]  ? ext4_file_write_iter+0x451/0x1200
[  381.520895][T13464]  ? prandom_u32_state+0xd7/0x100
[  381.525989][T13464]  do_iter_readv_writev+0x2de/0x380
[  381.531193][T13464]  do_iter_write+0x192/0x5c0
[  381.535951][T13464]  ? splice_from_pipe_next+0x34f/0x3b0
[  381.541417][T13464]  ? kmalloc_array+0x2d/0x40
[  381.546010][T13464]  vfs_iter_write+0x4c/0x70
[  381.550544][T13464]  iter_file_splice_write+0x43a/0x790
[  381.555928][T13464]  ? splice_from_pipe+0xd0/0xd0
[  381.560780][T13464]  direct_splice_actor+0x80/0xa0
[  381.565723][T13464]  splice_direct_to_actor+0x345/0x650
[  381.571105][T13464]  ? do_splice_direct+0x190/0x190
[  381.576139][T13464]  do_splice_direct+0x106/0x190
[  381.581001][T13464]  do_sendfile+0x675/0xc40
[  381.585437][T13464]  __x64_sys_sendfile64+0x102/0x140
[  381.590687][T13464]  do_syscall_64+0x44/0xd0
[  381.595108][T13464]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  381.601044][T13464] RIP: 0033:0x7f4521e19ae9
[  381.605526][T13464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  381.625137][T13464] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:53:16 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 8)

[  381.633553][T13464] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  381.641532][T13464] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  381.649507][T13464] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  381.657498][T13464] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  381.665474][T13464] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  381.673451][T13464]  </TASK>
17:53:16 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x77c108717ee0f191, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000100)={<r4=>0x0, ""/256, <r5=>0x0, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000049ac0)={<r7=>r6, r5, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r8=>0x0, ""/256, <r9=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}], 0x0, "9743ba5586d593"})
r10 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r11=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r12=>0x0, ""/256, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {<r14=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}], 0x0, "9743ba5586d593"})
r15 = perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, <r16=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r15, 0xd000943d, &(0x7f0000058c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r16}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, &(0x7f000004aac0)={0x3, [{r5}, {r5, r6}, {}, {0x0, r6}, {}, {}, {}, {r4, r6}, {r4}, {r5}, {r5}, {}, {r4, r6}, {}, {r5}, {r5}, {0x0, r6}, {r5, r6}, {}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {r4}, {0x0, r6}, {0x0, r6}, {r5}, {0x0, r6}, {r5}, {r4}, {r4}, {0x0, r6}, {r5, r6}, {}, {r5}, {0x0, r6}, {0x0, r6}, {r5}, {r5}, {}, {r4}, {r5, r6}, {r5}, {r5}, {}, {}, {0x0, r6}, {}, {r4, r6}, {r4}, {0x0, r6}, {r4, r6}, {r4, r6}, {r4}, {r5}, {0x0, r6}, {0x0, r6}, {}, {r4}, {r5}, {0x0, r6}, {}, {r4, r6}, {r5}, {0x0, r6}, {}, {}, {r4}, {r4}, {r5}, {r4, r6}, {r5}, {0x0, r6}, {r4, r6}, {}, {0x0, r6}, {}, {0x0, r6}, {r4}, {r5, r6}, {r5}, {}, {}, {r4, r6}, {}, {}, {r5}, {r4}, {0x0, r6}, {0x0, r6}, {}, {0x0, r6}, {r5}, {r5, r6}, {r4}, {}, {r5}, {r5}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {r4, r6}, {r5}, {}, {r4}, {0x0, r6}, {r4}, {r4, r6}, {r5}, {0x0, r6}, {}, {0x0, r6}, {r4, r6}, {r5}, {r5}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {r5}, {r4}, {r4}, {0x0, r6}, {r4}, {r5, r6}, {0x0, r6}, {}, {r5, r6}, {}, {r5}, {r4, r6}, {}, {}, {r14, r6}, {0x0, r6}, {r5}, {0x0, r6}, {}, {r4}, {r5}, {r4}, {0x0, r6}, {r5, r6}, {r4}, {0x0, r6}, {r5}, {r5}, {r4}, {0x0, r6}, {r5}, {0x0, r6}, {r4, r6}, {}, {r5, r6}, {}, {0x0, r6}, {0x0, r6}, {}, {r4, r6}, {}, {}, {}, {r5}, {}, {r5, r6}, {0x0, r6}, {r5}, {}, {0x0, r6}, {r4}, {}, {r5}, {r4}, {0x0, r6}, {r5, r6}, {r5}, {0x0, r6}, {r5}, {r4, r6}, {}, {r4}, {0x0, r6}, {0x0, r6}, {r4, r6}, {}, {}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {}, {r4, r6}, {}, {}, {0x0, r6}, {r5}, {r4}, {r5}, {r5}, {r4}, {}, {r4, r6}, {r5}, {}, {}, {r5, r6}, {r5}, {r4, r6}, {r4, r6}, {}, {r4}, {}, {}, {0x0, r6}, {r5}, {0x0, r6}, {}, {r5}, {}, {r5}, {r4}, {0x0, r6}, {r5, r6}, {0x0, r6}, {}, {r5, r6}, {0x0, r6}, {r5}, {0x0, r6}, {0x0, r6}, {}, {0x0, r6}, {r4, r6}, {}, {r5}, {0x0, r6}, {}, {r4}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {}, {}, {r5}, {}, {0x0, r6}, {r4, r6}, {r5, r6}, {0x0, r6}, {0x0, r6}, {0x0, r6}, {}, {0x0, r7}, {r9}, {r5, r11}, {r13, r16}], 0x81, "06efa578fa5a2d"})

[  381.762190][T13471] FAULT_INJECTION: forcing a failure.
[  381.762190][T13471] name failslab, interval 1, probability 0, space 0, times 0
[  381.774868][T13471] CPU: 0 PID: 13471 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  381.783782][T13471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  381.793845][T13471] Call Trace:
[  381.797127][T13471]  <TASK>
[  381.800057][T13471]  dump_stack_lvl+0xd6/0x122
[  381.804694][T13471]  dump_stack+0x11/0x1b
[  381.808954][T13471]  should_fail+0x23c/0x250
[  381.813381][T13471]  ? kcalloc+0x32/0x50
[  381.817505][T13471]  __should_failslab+0x81/0x90
[  381.822278][T13471]  should_failslab+0x5/0x20
[  381.826787][T13471]  __kmalloc+0x6f/0x370
[  381.831023][T13471]  kcalloc+0x32/0x50
[  381.835008][T13471]  ext4_find_extent+0x19f/0x7e0
[  381.839875][T13471]  ext4_ext_map_blocks+0x115/0x2120
[  381.845231][T13471]  ? preempt_count_add+0x4e/0x90
[  381.850203][T13471]  ? _raw_read_unlock+0x13/0x30
[  381.855135][T13471]  ? start_this_handle+0xfa6/0x1050
[  381.860388][T13471]  ? ext4_es_lookup_extent+0x221/0x500
[  381.865957][T13471]  ext4_map_blocks+0x1cf/0xf00
[  381.870911][T13471]  ext4_iomap_begin+0x4b0/0x630
[  381.875797][T13471]  ? ext4_alloc_da_blocks+0x100/0x100
[  381.881198][T13471]  iomap_iter+0x395/0x4a0
[  381.885537][T13471]  __iomap_dio_rw+0x695/0x1070
[  381.890330][T13471]  ? jbd2_journal_stop+0x592/0x6a0
[  381.895543][T13471]  iomap_dio_rw+0x38/0x80
[  381.899918][T13471]  ? ext4_file_write_iter+0x451/0x1200
[  381.905379][T13471]  ext4_file_write_iter+0xac3/0x1200
[  381.910922][T13471]  ? ext4_file_write_iter+0x451/0x1200
[  381.916435][T13471]  ? prandom_u32_state+0xd7/0x100
[  381.921463][T13471]  do_iter_readv_writev+0x2de/0x380
[  381.926736][T13471]  do_iter_write+0x192/0x5c0
[  381.931399][T13471]  vfs_iter_write+0x4c/0x70
[  381.935913][T13471]  iter_file_splice_write+0x43a/0x790
[  381.941292][T13471]  ? splice_from_pipe+0xd0/0xd0
[  381.946147][T13471]  direct_splice_actor+0x80/0xa0
[  381.951088][T13471]  splice_direct_to_actor+0x345/0x650
[  381.956525][T13471]  ? do_splice_direct+0x190/0x190
[  381.961621][T13471]  do_splice_direct+0x106/0x190
[  381.966473][T13471]  do_sendfile+0x675/0xc40
[  381.970962][T13471]  __x64_sys_sendfile64+0x102/0x140
[  381.976226][T13471]  do_syscall_64+0x44/0xd0
[  381.980672][T13471]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  381.986713][T13471] RIP: 0033:0x7f4521e19ae9
[  381.991123][T13471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  382.010750][T13471] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  382.019230][T13471] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  382.027307][T13471] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  382.035423][T13471] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  382.043450][T13471] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  382.051498][T13471] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  382.059469][T13471]  </TASK>
17:53:17 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003dc)

17:53:17 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000d200)

17:53:17 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x2, 0x8, 0x81, 0x0, 0x10e, 0x12000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000100), 0x6}, 0x30, 0x7ff80000, 0x0, 0x8, 0x9, 0x4, 0x8, 0x0, 0xf9, 0x0, 0xfffffffffffffffd}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

17:53:17 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000008)

17:53:17 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 9)

17:53:17 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0xd0800, 0x138)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000040)={<r2=>r1})
sendfile(r2, r1, &(0x7f0000000080)=0x80, 0xd77)
truncate(&(0x7f0000000180)='./bus\x00', 0x2eab0292)
sendfile(r0, r1, 0x0, 0x80000001)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x2100, 0xb0)

[  382.429065][T13494] FAULT_INJECTION: forcing a failure.
[  382.429065][T13494] name failslab, interval 1, probability 0, space 0, times 0
[  382.441800][T13494] CPU: 1 PID: 13494 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  382.450560][T13494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  382.460609][T13494] Call Trace:
[  382.463915][T13494]  <TASK>
[  382.467028][T13494]  dump_stack_lvl+0xd6/0x122
[  382.471703][T13494]  dump_stack+0x11/0x1b
17:53:17 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
fcntl$notify(r1, 0x402, 0x1b)

[  382.475866][T13494]  should_fail+0x23c/0x250
[  382.480335][T13494]  ? __es_insert_extent+0x546/0xe80
[  382.485658][T13494]  __should_failslab+0x81/0x90
[  382.491606][T13494]  should_failslab+0x5/0x20
[  382.496152][T13494]  kmem_cache_alloc+0x4f/0x320
[  382.500984][T13494]  __es_insert_extent+0x546/0xe80
[  382.506061][T13494]  ext4_es_insert_extent+0x1cb/0x19c0
[  382.511463][T13494]  ext4_ext_map_blocks+0xff7/0x2120
[  382.516771][T13494]  ? _raw_read_unlock+0x13/0x30
[  382.521716][T13494]  ext4_map_blocks+0x1cf/0xf00
[  382.526472][T13494]  ext4_iomap_begin+0x4b0/0x630
[  382.531386][T13494]  ? ext4_alloc_da_blocks+0x100/0x100
[  382.536804][T13494]  iomap_iter+0x395/0x4a0
[  382.541157][T13494]  __iomap_dio_rw+0x695/0x1070
[  382.545921][T13494]  ? jbd2_journal_stop+0x592/0x6a0
[  382.551017][T13494]  iomap_dio_rw+0x38/0x80
[  382.555441][T13494]  ? ext4_file_write_iter+0x451/0x1200
[  382.560922][T13494]  ext4_file_write_iter+0xac3/0x1200
[  382.566303][T13494]  ? ext4_file_write_iter+0x451/0x1200
[  382.571765][T13494]  ? prandom_u32_state+0xd7/0x100
[  382.576844][T13494]  do_iter_readv_writev+0x2de/0x380
[  382.582040][T13494]  do_iter_write+0x192/0x5c0
[  382.586683][T13494]  ? splice_from_pipe_next+0x34f/0x3b0
[  382.592238][T13494]  ? kmalloc_array+0x2d/0x40
[  382.596926][T13494]  vfs_iter_write+0x4c/0x70
[  382.601419][T13494]  iter_file_splice_write+0x43a/0x790
[  382.606797][T13494]  ? splice_from_pipe+0xd0/0xd0
[  382.611685][T13494]  direct_splice_actor+0x80/0xa0
[  382.616665][T13494]  splice_direct_to_actor+0x345/0x650
[  382.622037][T13494]  ? do_splice_direct+0x190/0x190
[  382.627083][T13494]  do_splice_direct+0x106/0x190
[  382.631947][T13494]  do_sendfile+0x675/0xc40
[  382.636368][T13494]  __x64_sys_sendfile64+0x102/0x140
[  382.641609][T13494]  do_syscall_64+0x44/0xd0
[  382.646074][T13494]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  382.652156][T13494] RIP: 0033:0x7f4521e19ae9
[  382.656578][T13494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  382.676170][T13494] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  382.684738][T13494] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  382.692720][T13494] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  382.700842][T13494] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  382.708823][T13494] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  382.716788][T13494] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  382.724743][T13494]  </TASK>
17:53:18 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
mount_setattr(r0, &(0x7f0000000040)='./bus/file0\x00', 0xb800, &(0x7f0000000080)={0x81, 0x100080, 0x80000, {r1}}, 0x20)

17:53:18 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 10)

[  382.977262][T13505] FAULT_INJECTION: forcing a failure.
[  382.977262][T13505] name failslab, interval 1, probability 0, space 0, times 0
[  382.989936][T13505] CPU: 0 PID: 13505 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  382.998702][T13505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  383.008857][T13505] Call Trace:
[  383.012132][T13505]  <TASK>
[  383.015076][T13505]  dump_stack_lvl+0xd6/0x122
[  383.019674][T13505]  dump_stack+0x11/0x1b
[  383.023937][T13505]  should_fail+0x23c/0x250
[  383.028398][T13505]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  383.033743][T13505]  __should_failslab+0x81/0x90
[  383.038517][T13505]  should_failslab+0x5/0x20
[  383.043096][T13505]  kmem_cache_alloc+0x4f/0x320
[  383.047846][T13505]  ext4_mb_new_blocks+0x328/0x1ee0
[  383.053070][T13505]  ? kcalloc+0x32/0x50
[  383.057198][T13505]  ? ext4_find_extent+0x6d7/0x7e0
[  383.062250][T13505]  ? ext4_ext_search_right+0x301/0x4f0
[  383.067716][T13505]  ? ext4_inode_to_goal_block+0x1bd/0x1d0
[  383.073478][T13505]  ext4_ext_map_blocks+0x1658/0x2120
[  383.078781][T13505]  ? _raw_read_unlock+0x13/0x30
[  383.083696][T13505]  ext4_map_blocks+0x71e/0xf00
[  383.088660][T13505]  ext4_iomap_begin+0x4b0/0x630
[  383.093522][T13505]  ? ext4_alloc_da_blocks+0x100/0x100
[  383.098902][T13505]  iomap_iter+0x395/0x4a0
[  383.103311][T13505]  __iomap_dio_rw+0x695/0x1070
[  383.108064][T13505]  ? jbd2_journal_stop+0x592/0x6a0
[  383.113255][T13505]  iomap_dio_rw+0x38/0x80
[  383.117569][T13505]  ? ext4_file_write_iter+0x451/0x1200
[  383.123008][T13505]  ext4_file_write_iter+0xac3/0x1200
[  383.128277][T13505]  ? ext4_file_write_iter+0x451/0x1200
[  383.133756][T13505]  ? prandom_u32_state+0xd7/0x100
[  383.138867][T13505]  do_iter_readv_writev+0x2de/0x380
[  383.144116][T13505]  do_iter_write+0x192/0x5c0
[  383.148725][T13505]  ? splice_from_pipe_next+0x34f/0x3b0
[  383.154204][T13505]  ? kmalloc_array+0x2d/0x40
[  383.158867][T13505]  vfs_iter_write+0x4c/0x70
[  383.163573][T13505]  iter_file_splice_write+0x43a/0x790
[  383.168983][T13505]  ? splice_from_pipe+0xd0/0xd0
[  383.173865][T13505]  direct_splice_actor+0x80/0xa0
[  383.178796][T13505]  splice_direct_to_actor+0x345/0x650
[  383.184188][T13505]  ? do_splice_direct+0x190/0x190
[  383.189231][T13505]  do_splice_direct+0x106/0x190
[  383.194159][T13505]  do_sendfile+0x675/0xc40
[  383.198638][T13505]  __x64_sys_sendfile64+0x102/0x140
[  383.203824][T13505]  do_syscall_64+0x44/0xd0
[  383.208301][T13505]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  383.214200][T13505] RIP: 0033:0x7f4521e19ae9
[  383.218599][T13505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  383.238255][T13505] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  383.246782][T13505] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  383.254806][T13505] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  383.262848][T13505] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  383.270869][T13505] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
17:53:18 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003dd)

17:53:18 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 11)

[  383.278839][T13505] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  383.286840][T13505]  </TASK>
[  383.346644][T13518] FAULT_INJECTION: forcing a failure.
[  383.346644][T13518] name failslab, interval 1, probability 0, space 0, times 0
[  383.359519][T13518] CPU: 0 PID: 13518 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  383.368280][T13518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  383.378415][T13518] Call Trace:
[  383.381684][T13518]  <TASK>
[  383.384597][T13518]  dump_stack_lvl+0xd6/0x122
[  383.389211][T13518]  dump_stack+0x11/0x1b
[  383.393418][T13518]  should_fail+0x23c/0x250
[  383.397821][T13518]  ? __es_insert_extent+0x546/0xe80
[  383.403031][T13518]  __should_failslab+0x81/0x90
[  383.407795][T13518]  should_failslab+0x5/0x20
[  383.412386][T13518]  kmem_cache_alloc+0x4f/0x320
[  383.417240][T13518]  __es_insert_extent+0x546/0xe80
[  383.422259][T13518]  ? ext4_ext_map_blocks+0x1128/0x2120
[  383.427777][T13518]  ext4_es_insert_extent+0x1cb/0x19c0
[  383.433193][T13518]  ext4_map_blocks+0xa5d/0xf00
[  383.438007][T13518]  ext4_iomap_begin+0x4b0/0x630
[  383.442858][T13518]  ? ext4_alloc_da_blocks+0x100/0x100
[  383.448241][T13518]  iomap_iter+0x395/0x4a0
[  383.452637][T13518]  __iomap_dio_rw+0x695/0x1070
[  383.457409][T13518]  ? jbd2_journal_stop+0x592/0x6a0
[  383.462509][T13518]  iomap_dio_rw+0x38/0x80
[  383.467019][T13518]  ? ext4_file_write_iter+0x451/0x1200
[  383.472469][T13518]  ext4_file_write_iter+0xac3/0x1200
[  383.477790][T13518]  ? ext4_file_write_iter+0x451/0x1200
[  383.483252][T13518]  ? prandom_u32_state+0xd7/0x100
[  383.488265][T13518]  do_iter_readv_writev+0x2de/0x380
[  383.493458][T13518]  do_iter_write+0x192/0x5c0
[  383.498121][T13518]  ? splice_from_pipe_next+0x34f/0x3b0
[  383.503583][T13518]  ? kmalloc_array+0x2d/0x40
[  383.508159][T13518]  vfs_iter_write+0x4c/0x70
[  383.512745][T13518]  iter_file_splice_write+0x43a/0x790
[  383.518225][T13518]  ? splice_from_pipe+0xd0/0xd0
[  383.523082][T13518]  direct_splice_actor+0x80/0xa0
[  383.528023][T13518]  splice_direct_to_actor+0x345/0x650
[  383.533398][T13518]  ? do_splice_direct+0x190/0x190
[  383.538425][T13518]  do_splice_direct+0x106/0x190
[  383.543277][T13518]  do_sendfile+0x675/0xc40
[  383.547674][T13518]  __x64_sys_sendfile64+0x102/0x140
[  383.552877][T13518]  do_syscall_64+0x44/0xd0
[  383.557282][T13518]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  383.563165][T13518] RIP: 0033:0x7f4521e19ae9
[  383.567691][T13518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  383.587330][T13518] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:53:18 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000d300)

17:53:18 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0xc8)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/module/psmouse', 0x0, 0x200)
mount$9p_fd(0x0, &(0x7f0000001a00)='./bus\x00', &(0x7f0000001a40), 0x20c40, &(0x7f0000001ac0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@cache_loose}, {@noextend}, {@fscache}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@smackfshat={'smackfshat', 0x3d, '^/]'}}]}})
r2 = syz_open_dev$loop(&(0x7f0000000100), 0x401, 0x30000)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000140))
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
getsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000001900)=""/162, &(0x7f00000019c0)=0xa2)
r4 = syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000380)='./bus\x00', 0xf13, 0x6, &(0x7f0000001740)=[{&(0x7f0000000440)="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", 0x1000, 0x1}, {&(0x7f0000001440)="c1323ab8362cdda2a402c76674e17dea2cf291b5dd", 0x15, 0x4}, {&(0x7f0000001480)="bbf252750c86157a25b8da9a317d0b326160733573da5a660ae0469187eafe5dc208b2e6033f169227be748d982d0fefa04bc4cd36c0c476efb9f160b874bd07b8f974081a544912e73abf95cd9abb928c6b96ad88f9f261f127d4e00ee50307830c670ac822fa42e53371493bcd503fd6266eb418af5cb81a10a387d853", 0x7e}, {&(0x7f0000001500)="52564805fc8bdb36c63fb102a2f30ae6e1a91c98b6a7575882f261d9b896951c5e28c9447766e05825e8d76b3080e792ef9d7901e33f69f5b619e5e46a7b27bd", 0x40, 0x7f}, {&(0x7f0000001540)="cf45ec35463515fcd7cffb42e7c970bbf2a951d8270ac64183b4f181c077134473c9000af9dafbc88b8d7517f0e552f0ca5121efcd9195bea342ee34e95c7164d49d51c0534180d0f5457849954ded39f65bfe3c6a2385803be767657f5156968cb842be20566b7675012316024d954948a144e0f887b85c258762c2123e084d37a600c96f9bc135364e345ec2709206c931a6dc1c22269b39e47dd71d8b45d6a8bdbcf9b2e2dd906a190470e7b2f5c1760e0814a13a955a303d53c062eb28e4902ec75fd28520e69f2d9e3c1d4488a21e816c4d206b973fa9515ee493645f179cc94f", 0xe3, 0x8}, {&(0x7f0000001640)="2f599578e2984e187f2a4473e902ae25810c3578cff024118b196894e405a241307178f437c600861a1c08b1cbbe3c09712b602028c42076a74b1266d05e11ba069bad4f59c827b5cebeac3cbf41ff66e42ff38651f630b60e66e5332578549a7d0c86203cf8ef8d61fcd8bd031f62f71a008549ea97e49e6e3a7619a67adb0dbb8abf1af5f49837e894d3e289a52fac2e00b9a74f5dafbd83c2cb24794a12034dc24aade541ccf399523f7b21d6af5b060ff9f4ed9e382b92191190fc800244c5c368a57644346ac66edfb521f32291d879fd80df04b01659cde2d7fa5ad120f745201b60e6eb", 0xe7}], 0x7ac171da5ee120f9, &(0x7f0000001800)={[{@shortname_mixed}, {@shortname_lower}], [{@obj_role={'obj_role', 0x3d, '\\.\''}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@smackfshat}, {@fsmagic={'fsmagic', 0x3d, 0x8}}, {@smackfstransmute={'smackfstransmute', 0x3d, '^,\\&#,$.'}}, {@euid_eq}, {@seclabel}, {@fsname}]})
openat(r4, &(0x7f00000018c0)='./bus\x00', 0x420a02, 0x100)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r3, r5, 0x0, 0x80000001)

[  383.595741][T13518] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  383.603697][T13518] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  383.611677][T13518] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  383.619646][T13518] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  383.627616][T13518] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  383.635577][T13518]  </TASK>
[  383.698026][T13518] ==================================================================
[  383.706137][T13518] BUG: KCSAN: data-race in ext4_mark_iloc_dirty / ext4_mark_iloc_dirty
[  383.708291][T13527] loop1: detected capacity change from 0 to 8
[  383.714385][T13518] 
[  383.714393][T13518] write to 0xffff888138892588 of 4 bytes by task 13525 on cpu 0:
[  383.730458][T13518]  ext4_mark_iloc_dirty+0x789/0x890
[  383.735655][T13518]  __ext4_mark_inode_dirty+0x4ec/0x5f0
[  383.741108][T13518]  ext4_dirty_inode+0x86/0xa0
[  383.745783][T13518]  __mark_inode_dirty+0x72/0x6c0
[  383.750722][T13518]  ext4_mb_new_blocks+0x1135/0x1ee0
[  383.755915][T13518]  ext4_ind_map_blocks+0xb1c/0x1740
[  383.761114][T13518]  ext4_map_blocks+0x6e3/0xf00
[  383.765868][T13518]  ext4_iomap_begin+0x4b0/0x630
[  383.770709][T13518]  iomap_iter+0x395/0x4a0
[  383.775032][T13518]  __iomap_dio_rw+0xb78/0x1070
[  383.779786][T13518]  iomap_dio_rw+0x38/0x80
[  383.784105][T13518]  ext4_file_write_iter+0xac3/0x1200
[  383.789376][T13518]  do_iter_readv_writev+0x2de/0x380
[  383.794568][T13518]  do_iter_write+0x192/0x5c0
[  383.799148][T13518]  vfs_iter_write+0x4c/0x70
[  383.803640][T13518]  iter_file_splice_write+0x43a/0x790
[  383.809018][T13518]  direct_splice_actor+0x80/0xa0
[  383.813948][T13518]  splice_direct_to_actor+0x345/0x650
[  383.819317][T13518]  do_splice_direct+0x106/0x190
[  383.824151][T13518]  do_sendfile+0x675/0xc40
[  383.828550][T13518]  __x64_sys_sendfile64+0x102/0x140
[  383.833742][T13518]  do_syscall_64+0x44/0xd0
[  383.838143][T13518]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  383.844026][T13518] 
[  383.846345][T13518] write to 0xffff888138892588 of 4 bytes by task 13518 on cpu 1:
[  383.854042][T13518]  ext4_mark_iloc_dirty+0x789/0x890
[  383.859230][T13518]  ext4_orphan_del+0x593/0x730
[  383.863989][T13518]  ext4_file_write_iter+0x1134/0x1200
[  383.869347][T13518]  do_iter_readv_writev+0x2de/0x380
[  383.874534][T13518]  do_iter_write+0x192/0x5c0
[  383.879121][T13518]  vfs_iter_write+0x4c/0x70
[  383.883619][T13518]  iter_file_splice_write+0x43a/0x790
[  383.888986][T13518]  direct_splice_actor+0x80/0xa0
[  383.893912][T13518]  splice_direct_to_actor+0x345/0x650
[  383.899270][T13518]  do_splice_direct+0x106/0x190
[  383.904106][T13518]  do_sendfile+0x675/0xc40
[  383.908513][T13518]  __x64_sys_sendfile64+0x102/0x140
[  383.913693][T13518]  do_syscall_64+0x44/0xd0
[  383.918096][T13518]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  383.923980][T13518] 
[  383.926284][T13518] value changed: 0x00007595 -> 0x00007596
[  383.932097][T13518] 
[  383.934412][T13518] Reported by Kernel Concurrency Sanitizer on:
17:53:19 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000009)

[  383.940542][T13518] CPU: 1 PID: 13518 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  383.949376][T13518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  383.959415][T13518] ==================================================================
17:53:19 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
flock(r1, 0x1a)
sendfile(r0, r1, 0x0, 0x80000001)

17:53:19 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 12)

[  384.191534][T13538] FAULT_INJECTION: forcing a failure.
[  384.191534][T13538] name failslab, interval 1, probability 0, space 0, times 0
[  384.204246][T13538] CPU: 1 PID: 13538 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  384.213048][T13538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  384.223088][T13538] Call Trace:
[  384.226431][T13538]  <TASK>
[  384.229353][T13538]  dump_stack_lvl+0xd6/0x122
[  384.234005][T13538]  dump_stack+0x11/0x1b
[  384.238150][T13538]  should_fail+0x23c/0x250
[  384.242749][T13538]  ? mempool_alloc_slab+0x16/0x20
[  384.247774][T13538]  __should_failslab+0x81/0x90
[  384.252547][T13538]  should_failslab+0x5/0x20
[  384.257032][T13538]  kmem_cache_alloc+0x4f/0x320
[  384.261844][T13538]  mempool_alloc_slab+0x16/0x20
[  384.266711][T13538]  ? mempool_free+0x130/0x130
[  384.271390][T13538]  mempool_alloc+0x9d/0x310
[  384.275928][T13538]  ? preempt_count_add+0x4e/0x90
[  384.280882][T13538]  ? _raw_read_unlock+0x13/0x30
[  384.285738][T13538]  ? jbd2_transaction_committed+0xad/0xc0
[  384.291455][T13538]  bio_alloc_bioset+0xcc/0x560
[  384.296325][T13538]  ? iov_iter_alignment+0x34b/0x370
[  384.301546][T13538]  iomap_dio_bio_iter+0x5ed/0xc70
[  384.306587][T13538]  ? ext4_alloc_da_blocks+0x100/0x100
[  384.312004][T13538]  __iomap_dio_rw+0x8b5/0x1070
[  384.316797][T13538]  iomap_dio_rw+0x38/0x80
[  384.321115][T13538]  ? ext4_file_write_iter+0x451/0x1200
[  384.326573][T13538]  ext4_file_write_iter+0xac3/0x1200
[  384.331909][T13538]  ? ext4_file_write_iter+0x451/0x1200
[  384.337423][T13538]  ? prandom_u32_state+0xd7/0x100
[  384.342451][T13538]  do_iter_readv_writev+0x2de/0x380
[  384.347670][T13538]  do_iter_write+0x192/0x5c0
[  384.352337][T13538]  ? splice_from_pipe_next+0x34f/0x3b0
[  384.357843][T13538]  ? kmalloc_array+0x2d/0x40
[  384.362527][T13538]  vfs_iter_write+0x4c/0x70
[  384.367103][T13538]  iter_file_splice_write+0x43a/0x790
[  384.372527][T13538]  ? splice_from_pipe+0xd0/0xd0
[  384.377366][T13538]  direct_splice_actor+0x80/0xa0
[  384.382300][T13538]  splice_direct_to_actor+0x345/0x650
[  384.387720][T13538]  ? do_splice_direct+0x190/0x190
[  384.392748][T13538]  do_splice_direct+0x106/0x190
[  384.397660][T13538]  do_sendfile+0x675/0xc40
[  384.402110][T13538]  __x64_sys_sendfile64+0x102/0x140
[  384.407309][T13538]  do_syscall_64+0x44/0xd0
[  384.411724][T13538]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  384.417612][T13538] RIP: 0033:0x7f4521e19ae9
[  384.422008][T13538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  384.441653][T13538] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  384.450087][T13538] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  384.458086][T13538] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  384.466080][T13538] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  384.474055][T13538] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  384.482007][T13538] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  384.490033][T13538]  </TASK>
17:53:19 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003de)

17:53:19 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000d600)

[  384.592282][T13548] loop1: detected capacity change from 0 to 8
17:53:19 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xe, 0x50, r0, 0xb8c8a000)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000100)={0x0, 0x3, 0x0, [0x2, 0x6, 0xf9, 0xff, 0x9], [0x8001, 0x4, 0x5ed60529, 0x200, 0x100000001, 0x40, 0x101, 0x2, 0x5, 0x100, 0x6, 0x800, 0x80, 0x37e3, 0x9, 0x7fffffff, 0x0, 0xc3, 0x58, 0x401, 0x2, 0x9, 0x400, 0x6a, 0x3, 0x20, 0x8, 0x8, 0x8, 0x6, 0x7f, 0xc4df, 0x5, 0xf308, 0x8, 0x4, 0x7, 0x8, 0xcb, 0x365a, 0x5, 0x9, 0x9ba, 0x7, 0x4, 0x81, 0xfffffffffffffffe, 0x10001, 0x401, 0x2, 0xff, 0x8, 0x4, 0x1c4, 0x1f, 0xffffffff, 0xb6a, 0x8, 0x6, 0x3ff, 0x7, 0x100000000, 0x287f, 0x2af4, 0x296, 0x72, 0x400000000000000, 0x7fc000000000, 0x7fff, 0x1ff, 0x6, 0x9, 0x3, 0x9, 0x40, 0x1, 0x2, 0x10000, 0x4, 0x2, 0x9, 0x6, 0x9, 0x80000001, 0x2, 0x9, 0x101, 0x8, 0x0, 0x0, 0x11, 0x9, 0x2, 0xfff, 0x8000, 0x5, 0xffffffff80000000, 0x100000000, 0x6, 0x2, 0x0, 0x2, 0x0, 0xfffffffffffffe77, 0x8001, 0x9, 0x538, 0x4, 0xd1b, 0xfffffffffffffffc, 0x1000, 0xd5b, 0x2, 0xffffffff80000000, 0x1, 0x0, 0x6, 0x0, 0x6, 0x9, 0x5]})
sendfile(r0, r1, 0x0, 0x80000001)

17:53:19 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
lsetxattr$trusted_overlay_nlink(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000940), &(0x7f0000000980)={'L-', 0x6}, 0x16, 0x2)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
r2 = gettid()
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
capget(&(0x7f0000000000)={0x20071026, r2}, &(0x7f00000002c0))
recvmmsg$unix(r1, &(0x7f0000000800)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/208, 0xd0}, {&(0x7f0000000300)=""/157, 0x9d}, {&(0x7f0000000440)=""/124, 0x7c}, {&(0x7f0000000280)=""/5, 0x5}], 0x4, &(0x7f0000000500)=[@cred={{0x1c, 0x1, 0x2, {<r3=>0x0}}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000540)=""/237, 0xed}, {&(0x7f0000000640)=""/150, 0x96}, {&(0x7f0000000700)=""/2, 0x2}], 0x3, &(0x7f0000000a00)=ANY=[@ANYBLOB="1c000000000000000100000100000010187449a59a825f9e3bb2428a15da3f591d6fb224ec", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000072f88edcf0f1e53200"/28, @ANYRES32=<r4=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x80}}], 0x2, 0x40, &(0x7f0000000880)={0x0, 0x989680})
r5 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000900)={0x0, 0x4, 0x8, 0x7d08f98a})
r6 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r6, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_DROP_PRIVILEGES(r6, 0x4004551e, &(0x7f0000000780)=0x133)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000008c0), 0x9}, 0x1a390, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, r3, 0xffffffffffffffff, r4, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r7, 0x0, 0x80000001)

17:53:19 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 13)

[  384.825655][T13556] FAULT_INJECTION: forcing a failure.
[  384.825655][T13556] name failslab, interval 1, probability 0, space 0, times 0
[  384.838364][T13556] CPU: 0 PID: 13556 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  384.847107][T13556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  384.857162][T13556] Call Trace:
[  384.860435][T13556]  <TASK>
[  384.863385][T13556]  dump_stack_lvl+0xd6/0x122
[  384.868012][T13556]  dump_stack+0x11/0x1b
[  384.872173][T13556]  should_fail+0x23c/0x250
[  384.876586][T13556]  __should_failslab+0x81/0x90
[  384.881357][T13556]  should_failslab+0x5/0x20
[  384.885881][T13556]  kmem_cache_alloc_node+0x61/0x2d0
[  384.891240][T13556]  ? create_task_io_context+0x36/0x1e0
[  384.896721][T13556]  create_task_io_context+0x36/0x1e0
[  384.902082][T13556]  submit_bio_checks+0x828/0x8e0
[  384.907014][T13556]  ? __rcu_read_unlock+0x5c/0x290
[  384.912120][T13556]  blk_mq_submit_bio+0x2e8/0x14e0
[  384.917297][T13556]  ? should_fail+0xd6/0x250
[  384.921803][T13556]  ? iov_iter_advance+0x6b6/0x750
[  384.926882][T13556]  ? mempool_alloc_slab+0x16/0x20
[  384.931914][T13556]  __submit_bio+0x131/0x340
[  384.936428][T13556]  ? mempool_alloc+0xaa/0x310
[  384.941114][T13556]  submit_bio_noacct+0x418/0x4e0
[  384.946108][T13556]  submit_bio+0x10c/0x180
[  384.950480][T13556]  iomap_dio_bio_iter+0x9ed/0xc70
[  384.955618][T13556]  __iomap_dio_rw+0x8b5/0x1070
[  384.960448][T13556]  iomap_dio_rw+0x38/0x80
[  384.964836][T13556]  ? ext4_file_write_iter+0x451/0x1200
[  384.970479][T13556]  ext4_file_write_iter+0xac3/0x1200
[  384.975855][T13556]  ? ext4_file_write_iter+0x451/0x1200
[  384.981327][T13556]  ? prandom_u32_state+0xd7/0x100
[  384.986362][T13556]  do_iter_readv_writev+0x2de/0x380
[  384.991574][T13556]  do_iter_write+0x192/0x5c0
[  384.996249][T13556]  ? splice_from_pipe_next+0x34f/0x3b0
[  385.001714][T13556]  ? kmalloc_array+0x2d/0x40
[  385.006308][T13556]  vfs_iter_write+0x4c/0x70
[  385.010823][T13556]  iter_file_splice_write+0x43a/0x790
[  385.016216][T13556]  ? splice_from_pipe+0xd0/0xd0
[  385.021072][T13556]  direct_splice_actor+0x80/0xa0
[  385.026118][T13556]  splice_direct_to_actor+0x345/0x650
[  385.031568][T13556]  ? do_splice_direct+0x190/0x190
[  385.036668][T13556]  do_splice_direct+0x106/0x190
[  385.041531][T13556]  do_sendfile+0x675/0xc40
[  385.045953][T13556]  __x64_sys_sendfile64+0x102/0x140
[  385.051154][T13556]  do_syscall_64+0x44/0xd0
[  385.055575][T13556]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  385.061473][T13556] RIP: 0033:0x7f4521e19ae9
[  385.065940][T13556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  385.085552][T13556] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  385.093967][T13556] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  385.101980][T13556] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  385.109951][T13556] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  385.117924][T13556] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
17:53:20 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x8000000a)

[  385.125895][T13556] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  385.133930][T13556]  </TASK>
17:53:20 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 14)

[  385.398767][T13565] FAULT_INJECTION: forcing a failure.
[  385.398767][T13565] name failslab, interval 1, probability 0, space 0, times 0
[  385.411539][T13565] CPU: 1 PID: 13565 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  385.420395][T13565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  385.430448][T13565] Call Trace:
[  385.433725][T13565]  <TASK>
[  385.436654][T13565]  dump_stack_lvl+0xd6/0x122
[  385.441255][T13565]  dump_stack+0x11/0x1b
[  385.445419][T13565]  should_fail+0x23c/0x250
[  385.449840][T13565]  ? mempool_alloc_slab+0x16/0x20
[  385.454871][T13565]  __should_failslab+0x81/0x90
[  385.459642][T13565]  should_failslab+0x5/0x20
[  385.464152][T13565]  kmem_cache_alloc+0x4f/0x320
[  385.468959][T13565]  mempool_alloc_slab+0x16/0x20
[  385.473861][T13565]  ? mempool_free+0x130/0x130
[  385.478578][T13565]  mempool_alloc+0x9d/0x310
[  385.483098][T13565]  ? __find_get_block+0x785/0x9b0
[  385.488151][T13565]  ? delay_tsc+0x96/0xe0
[  385.492423][T13565]  sg_pool_alloc+0x74/0x90
[  385.496883][T13565]  __sg_alloc_table+0xce/0x290
[  385.501683][T13565]  sg_alloc_table_chained+0xaf/0x140
[  385.506976][T13565]  ? sg_alloc_table_chained+0x140/0x140
[  385.512586][T13565]  scsi_alloc_sgtables+0x18a/0x510
[  385.517772][T13565]  sd_init_command+0x944/0x1610
[  385.522648][T13565]  scsi_queue_rq+0x1026/0x1460
[  385.527513][T13565]  blk_mq_dispatch_rq_list+0x534/0x11e0
[  385.533074][T13565]  ? __sbitmap_queue_get+0x11/0x20
[  385.538244][T13565]  blk_mq_do_dispatch_sched+0x446/0x6d0
[  385.543801][T13565]  ? __this_cpu_preempt_check+0x18/0x20
[  385.549415][T13565]  __blk_mq_sched_dispatch_requests+0x1ca/0x270
[  385.555669][T13565]  blk_mq_sched_dispatch_requests+0x9f/0x110
[  385.561692][T13565]  __blk_mq_run_hw_queue+0xc1/0x140
[  385.566898][T13565]  __blk_mq_delay_run_hw_queue+0x199/0x360
[  385.572787][T13565]  ? __rcu_read_unlock+0x5c/0x290
[  385.577847][T13565]  blk_mq_run_hw_queue+0x231/0x260
[  385.582969][T13565]  blk_mq_sched_insert_requests+0x130/0x200
[  385.588872][T13565]  blk_mq_flush_plug_list+0x372/0x460
[  385.594284][T13565]  blk_flush_plug+0x25a/0x2b0
[  385.598966][T13565]  ? ext4_iomap_end+0x33/0x50
[  385.603650][T13565]  blk_finish_plug+0x44/0x60
[  385.608261][T13565]  __iomap_dio_rw+0xcad/0x1070
[  385.613044][T13565]  iomap_dio_rw+0x38/0x80
[  385.617437][T13565]  ? ext4_file_write_iter+0x451/0x1200
[  385.623016][T13565]  ext4_file_write_iter+0xac3/0x1200
[  385.628306][T13565]  ? ext4_file_write_iter+0x451/0x1200
[  385.633776][T13565]  ? prandom_u32_state+0xd7/0x100
[  385.638810][T13565]  do_iter_readv_writev+0x2de/0x380
[  385.644053][T13565]  do_iter_write+0x192/0x5c0
[  385.648657][T13565]  ? splice_from_pipe_next+0x34f/0x3b0
[  385.654198][T13565]  ? kmalloc_array+0x2d/0x40
[  385.658791][T13565]  vfs_iter_write+0x4c/0x70
[  385.663327][T13565]  iter_file_splice_write+0x43a/0x790
[  385.668837][T13565]  ? splice_from_pipe+0xd0/0xd0
[  385.673700][T13565]  direct_splice_actor+0x80/0xa0
[  385.678728][T13565]  splice_direct_to_actor+0x345/0x650
[  385.684107][T13565]  ? do_splice_direct+0x190/0x190
[  385.689139][T13565]  do_splice_direct+0x106/0x190
[  385.693996][T13565]  do_sendfile+0x675/0xc40
[  385.698415][T13565]  __x64_sys_sendfile64+0x102/0x140
[  385.703670][T13565]  do_syscall_64+0x44/0xd0
[  385.708111][T13565]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  385.714031][T13565] RIP: 0033:0x7f4521e19ae9
[  385.718445][T13565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  385.738159][T13565] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
17:53:20 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003df)

[  385.746653][T13565] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  385.754623][T13565] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  385.762597][T13565] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  385.770568][T13565] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  385.778545][T13565] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  385.786518][T13565]  </TASK>
17:53:21 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000018c0)={&(0x7f00000015c0)="5485447c01155c7af1290a2ee760c0a2deed5f35620d44c42f55dc0a13b230953dd337dfedd127ac2d73d1cfef2f0584ad14ea1f040e23be2e59c95f1681f11d6e9df5c880b475791563", &(0x7f0000001640)=""/215, &(0x7f0000001740)="14451c14ac0d49af56ce90672b993982e110845ee6dd1f46f967ce21e79577febaab572770c52f610078b379b6a3f77527dbb05dffad2c9e742c33a343992decbca73f9f8365e2be0be2759985956e3f95f4657aa3dbc55de95bf10587e526bf0f953328920bef09c5c04a1bd96a7158a09388bf6dd335bafb392fb09136a7a4d39e1c3d2a2d053af0204538915f38e659b504b99dc31a5b23327252f54b656b30c91adbdd94f5c10ad8a76e4b79f71125fd69373b4dd8cc2f70ee52a051610560404d5f81c3f9", &(0x7f0000001840)="6b1f6345195fbc0d01da31f26144929357280e506fb45a05326157478b57a718a7e1f596ce66cc0ba2b7cf4d9798ace8529fd3f5f0627e9b4be100bfb79c49b0a81960e970168e53", 0x3, r0, 0x4}, 0x38)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = gettid()
perf_event_open(&(0x7f0000001540)={0x4, 0x80, 0xc7, 0x0, 0x9, 0xa9, 0x0, 0x6, 0x4000, 0x5, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xffffffff, 0x4, @perf_config_ext={0x200, 0x2}, 0x2010, 0x100000000, 0x3, 0x3, 0x7, 0x8, 0x6, 0x0, 0x8, 0x0, 0xff}, r2, 0x6, 0xffffffffffffffff, 0x1)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001ec0)={r1, &(0x7f0000001cc0)="3b7cb148ba02e954bc0bb64ac991c61962f40d1d16ecf3460d759cf78808b59ef0300b0ec5ebcf10f726ecf628ac1938a464312814ec90292c0bf8fd30a0643f33c79d8081f48f770b8ea320d564b69af70b08444d4da5be1a74cfd43f2ed35527ef09ee5d55ecd7ca90e3fe1016c530cd50dd25192376b017b2121ffa077f8800b166ad4253ce734b35bbaba707d4243ab7e3bac9d5d73293b7032166fbe83f22be7fc9bcfde863bdf4e1065cc5718bb58c67fc682118a5b51f971811a6777e2ffc374ac057492c7027c7194a6487d6298d4929417ac1f8a3d91fb87c0cedf033f86ac3", &(0x7f0000001dc0)=""/247}, 0x20)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000001c40)={0x4, 0x1000, 0x1f29, 0x7fff, 0x4, 0x1})
write$binfmt_elf64(r1, &(0x7f0000001900)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x8, 0xbb, 0x28, 0x8001, 0x2, 0x3, 0x6d55, 0x11c, 0x40, 0x2e4, 0x7, 0xfd, 0x38, 0x1, 0x2, 0x3, 0x8000}, [{0x70000000, 0x28, 0xfff, 0x8, 0xffffffffffffffce, 0x9, 0x9, 0x5}, {0x1, 0x7, 0x4, 0x6, 0x8, 0x1, 0x5, 0x7ff}], "244de1a3022a910e77dd12980661a14a5dde1536febfe10598c343330425782ab62e1dd322312e5b01f14371727fd62a86a6309374d6f3e43f45e8c2184cf65c39a8c654df8f79218b4f04ee88f54920924c1a5bd70a7dfde4fe2d4164d3a06c8a6dc6c5aafb7b56ea2fcdb096bb4f902a4629afddbafbb976da17a191fa1978f46859693f0bd390c72c22d8ba38c2cb406ffcc0211d1e77688acbd861a0f24ebe23c0c3c7656179d29e97ab419142176dcca718d5586e59d5dc5a9ec2b57a2cb4e35f253181db7b97e1407fd4a88a179e57576eeb99a24014c26118bdf9e41e137323d6e6af7e6e4b735a31b643b6d640abe646c2a90e2e"}, 0x1a8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x40, 0x0, 0x3}, 0x10)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000001bc0)={0x5, 0x80, 0x0, 0x2, 0x5, 0x5, 0x0, 0xff, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a, 0x2, @perf_bp={&(0x7f0000001b80), 0xb}, 0x44000, 0x6, 0x8001, 0x3, 0x9, 0xc57, 0x3, 0x0, 0x2, 0x0, 0x101})
openat(r3, &(0x7f0000001c80)='./bus\x00', 0x42003, 0x140)
sendfile(r1, r4, 0x0, 0x80000001)
r5 = syz_mount_image$ext4(&(0x7f0000000100)='ext2\x00', &(0x7f0000000140)='./bus\x00', 0x0, 0x0, &(0x7f0000000180), 0x1000400, &(0x7f00000001c0)=ANY=[@ANYBLOB='grpquo4a,bh,sysvgroups,euid>', @ANYRESDEC=0xee00, @ANYBLOB="2c6673757569643d35613365643266332d363437332d346566022d376231302d64356134613662302c646566636f6e746578743d726f6f742c6f626a5f747970653d462d23252d032c61756469742c736d61636b66736465663d2c736d61636b66737472616e736d7502003d2e2628213a2c00"])
lsetxattr$security_capability(&(0x7f0000001ac0)='./bus\x00', &(0x7f0000001b00), &(0x7f0000001b40)=@v2={0x2000000, [{0x1, 0x7fffffff}, {0x4, 0x10000}]}, 0x14, 0x1)
pwritev(r5, &(0x7f0000000380)=[{&(0x7f0000000440)="28f9a1ae98e03ee0c9ef41ece31399081f65eef6c5b6cfd39cc4963be0f95207682d8f68b7152a3a6c2d20d04bf91cf82540bb5bc7cfc5de0be5ad22560a108886548f77d39c1543e532793a67deb05153eed3b711464ac92683408e5bfeb1857110775d45cd80f375290c7a20aa3075aaf333d955b12b3f4f0f1424b1aaca6caa65d521e6f7c7b3efaf7410bd9a7d136fb49daaeb152a4f2fb654e23d9a6c6cd47f2209632efd71f63073d5a54f4c4a977582a47a57aa4c9d6bae257299a4b753e74cdf51ef2a501243a62c3a842460eb573dcaec80d8bb9671c01778487ae54b7b1f36aeccd15bcf3a26924fac9c3622a1ce5bafb0f1f510d4d4c2eec7bb9e7082e9cfa45e8d3a4c3f7d1d9fe4688cc9d4c9dc0a4102a6e373ddd0a9c83f45ff8f0f2f7ce3ba242d5ba88357f8490b1b0e2c069d12ddcd4e1b72bdba148691e4fe80a97a911b5f88e0432347b4ab53f005ebe346c5f0f2546db6b277d76b653e8e77c78a9d580eb2f1bfe73b4f8312fdac1db96114e8988381fa038276052c6ba39c83d5ff46ef7960f13015ec7fb212e7249a2e035cbed09b932168ae6fa31e41ee0b130f6ef7b3d0dbb3a8b3f272c49f4aa41f41535c64c0a227c339189a98eb7ea9872f3a586cecf11a18de032bf8bac2faa8867dbc3919ed22106d7c522f4cdbfe3445ef17b8138177df814008f9d68a59961a76479fe686fe5fca585de2149ee4be8031ad1d9f32f608a06d92f6f9fdf2f649927695f1f98bd676ebddba8aa0d73034d1edd3d90f8d90d60eabca58de28881d9d42f0376294855ab8d82104ebc892fa7ba465c952bcbbf184b7a857fd82ebbb9d1b534168a827fb7dd34c91b484c485a5b9e1955999c510e08bca2d853c7e5a70f4d2482ca0e08d56eb408c14d4cf8b4e55c6a45146fd9f6f2b6c27ff64529bdd52d52683473b26740606a15ff737444741f14ad5fbff1900c291f1f800525ed8947af35e37b15a3863823bfd8f72a035c885713bc3d1f4afc38ecbc4d35ab26e8a688011a3c4e34bae90cedba9f1703a6c6cae2aabbd8d80ec06cdf6c7145f941fce0cf6bf124bed14881bdfee87948b6c7712bb2c4eac15f0d264b8183b68cccf19cbc5a48fad58c07a42d94ee1219aa4ba3b1e340ffad6d735f8558d5808f0685f94f188d60bbc5a26e98e8df55a796c7d17cab1412291da79f05f9a7883ef8c793a8b4084778ff53a9127a2e078f6ea5ad05e078d8f8846a8156dbec5c62b892cbf6602620455e01bda5c0120387f9e4f7bcb84992a9871fa6c92b2e7ad589d7138620b5a83315429edd07af66efa6633184acafce679640bf285a5bd27369bafa7fc4cd36b7f3f5108b9839daa6c8a863adb9a87356c3510a0f55ea45a38b8498075be3ad6201b662b4e99d2a1a2e7ea59b1278f44955d96b5690aac4d2e0a07ffcf93592c319f2df5d90ad6825748efa9c09e7204bdb2b4d2c0ff2fdbf0f02d1a397f666747addb500d3f4776c138bc0ae5de8293d9517b3c3d82d45fddd3bea75d2ea28c4c062310f789d34720a87be10cd0091613b530b14225a76ba218530416297c9a7f74ee17d41e1ba9310d2cab3193e1f10a86ef37841eeb72ef8cdc545b357e786d43d149ec9ef397b3fe623b4df7d970b01f38f902e51fbd7b70d5b21051de5102ba76e53425ac6351be66c3f41efcde3bd9ac276fbb3694894da79bc172c579b9c6f6c076492a63e017310941c15db3f64a6cd64537de0e9e3ed3b3dbbb27dd21acc22575c5eaf2b0ff5d9bc6725ea9018d42668fa134b0f4780e6da0ec4d044a9cfff5aca04ef38f1f55ddfbcfac5aeec39026f52b68af16d13c4ee171f8ab6840eeb162329f64a3756269de0b74162ad5799f2468f2b60029b9cdaeaac1ce426a1f57e52ef20ecb4981e8531bbc237953d419d70be96866eeb572a01e1bf72a9cd10f9fcaba32d81a2b0f3164d6928a52d8a6300f87e7794ad9f14fc0413ab285c9c885663f8517a9c7fa886b2f554fa23b26d744a7e400139353c4230295cbd609c786f840992af9879f635274702b7caad680ada89cefcbf8f10479968cd3756bd3c94f342d7ee41d06a34e014ec062db647e3c1055ec0dd7980ca3c6b3941224c8d865705daceeba9f3775e6c04f1b1955d75d72438f2137bfa620f68ffd2b7a12e0850f2e16289059389cd2c769568e859a6ac7848f3fc7512ace3a2b9940cb49aa93d5d43a9d0c17e868a765e178e0e310068dd81decf6d72818e195319100c838f70a959eea836af43eee572bd81f8861927c2119d349507bad47edc2a648ad23ad8e40b0569875101222d9a9df6e910fcfa5aa230635658e98cc1d3f65a3e6e6788549203555bed0d2541a8b2ec1064b5ac51d59d55125292af77b5b72b333b0aa8cc88c7cf49f24cd39164bfb884ced2d63e2b27efd9ec9e0ecf4e41a947ef59b57d9aa1c762985e56ba112c3aceff2b5c223b95b38783b22c76f9191acc80372d4c3544f49248fe51476d2cc0b27adf823eccd81a0caf016c6e87ac5004e7a84c0c401f5e42cdea3ff3169a952eace1619997bbec452cbfd168c8d601604cec5cea79cc1480813878231750517118188a174130d50e8d31046c812a39d56a9faf83dd77b87bc4a86c1e22373f7906a6da7ff0dac582357424339f32bcdcc28b0860c416fb14420280736b052cd3ed88c5da512eca479e709bd8a199790d1c3ae344920856f137103aef6f2b905c74fd92e8672da03036891a09684ab85a7343e699167dabea440e54d70ce2f8c8a3e9913f3b642ee94be3fc564b21c0b2816a7603cfddd8d2e039f727746bdc1c48e7c83d024830ec6eac6201d26db8b3256313bd9cd8055c0e46a771712cdb8830daa56d4d7e7a30d47917bdf4ddc93921fee914ee55521041c6586f264249c80fb2221b08ffae7e8a57430d3a6d47d1b3a0343987d99c567a1cd4cd6ef69c49540df1abab4735955abd93a16439aceef77f1e64e62cead875db9d095e42bf875b31c3d885f0f3b2edc4015bf0e9e86d816799cbe279e0690c0290aac8f81b06836f035154b08c0db125a54a0767c9c78d2ad6197421f048ce28e6e9e03f97ba0d750875135165c982c5298e088f3813ebe5a6fcc71f545f84257e9cc6fa434e63ab15f8364b02b3a5187d30f1717dcb038cddac3494eb8ffa6e1186e4321ae1af7bc51834332431cc7cfbdb2ddeaa4a73c13c5a4067942de993fe1ab4be8e1d68c1b4f94af1fa57feadbe6d28ac500682e9972e350cb87c7db80a8c6dad62880c083d043cce2f4ebe509596a0cf8a3911c52fccbcc06246dce1015429652c46fd1fc27fcf4b5120089683ddd689b31c70814a26f0afd98e83abf500de24fc17ce79bddb4cf03989e9d24a24a5be47a72fa73e03f7e433b19d2db717e68608854ee3013177cebf1d28ed7b5980ca6857f2e0497d2d69411d363958cc9a68d8e1d01732274a49207d79c28578042a14f249bd08e5ecdbdd2a71eed35bb538083ebab66597d79c9199c3a8590dcf73c705d96c0bea1f215f44b6259be8362e555b53c9572ecb0edc89f08646b3105d3f271c92b057209b345b41f75c6b06be2b1f3816b9a387e097dab703ad56656d1901614f6acb66f6dc4e564384cb502164f3f02418c29253e5f4606a0e45ae3e5fe3e2721c0cd215911f78b57809f28cdbd310d9f23204fdacc0e34ef2e3b1e21841aa10dd6f47d4a75f66b01804fab201e3e725ee97956ad0bdf7ab69e9ee976e2e16a78e9c20af108b5032416066ff76576951b237039652ce18e02af1753e67cc25832c890b14153929fdaaea401d13cc65e48bf4c4530e9bcad9dabd063747d050ee7c18542521a65906cbe3bac3a160241d958ed6e08ecafe734ad4359da5899654725811b7f5adac64532205da8a5a64dccd609a9b2f107a6b7f93500fe5d27629d2cb40bb479aa2d77036e2b8174cac2507d3b88664b7107b7554fa3ed20704ef0380b2ec401bf025906440a8ab7cac8747a11669ba8156d374864ccdfc7880cdc04d578dd3d06271f0e287c91fff5fb79a503ff6475d8c7480a5e8acc75fa45d343299a91b9654d159a7a2400f81136f0a1851422c960d152d40a14ab894cd7e5413945de74e660227d797411f7a2653bbbb5a5fedcedbf5c8e23ff128981c892e7f0765dd3fbf2a345456a17554dbf7f2ebd45c342ddfbddb8163f339844db01b7ca4add18247cfdab8e2025f165a0ec9c9188dbf0b88a32b7192027ad10762118d730aa21be8b59b216a4e22f47c9795fa16c0d52e9b17bdd3ec7e327d3abe49eac9ebb86549c3380a0c38e1b5e9b8512d147138c16d385f8450f7ba6109a50af4af95b0d695f3d73a9d026d9cbd7a76db1d548603c459335fe817ae74e8b86156d275be70b6f2cbbaa492294041e7fc9b5c2417d466a925114fc6e03c92101ebaeb64519954e8ef875403cc0f665df0cc232173c29a0237bf14bb4170c08e3a711f3d8082d991e07d62164eb8b8e640e6778a4247b86457d605e72501ec32508dc0fb7f667453ffcb7f1bc449720ebb336cb436c07ea21df6466ef32f75a9573ab07bbb9aede7b2c63375e710ba2c47b0e7755bd92da1b9b940502065bde89afa6829191f3dca0392711859d422c9a92523c5d8bafc03a7006fc20a48779920910e3c09ff2c45f20df0f03a9851c6b31e4dc877733f24804e41540942a465d0a552361791c8291c0a57f267ee7e9f33d1d53e60bf49d0d80cd8328c03f13fc2889312f23268177b393a62721341a6190bf2018638dc26961bca8a64af7a14b33d46a3cebabbd6d017c967139c6199f3d741401b7214da4dd9b6361ac0ee69dea3b8634d73e83a668867c037ee08182f40eac9bee7665e182d4b6e8ecf86892398745b6aa4b9a956df9f25e684b98682908418490bdb04f9e868366b7896b64154dc784a9ba1c859c03645f0069e7fc1b87ced01c8b00b286400fc0ab49f1e4fec0edec3b1db5589410a6fca46b969a3f55a45f7e504f6bc4393a9b0666d5148a09b00f597e53067fdb1d526d6406a84f4fd3269e9acf7c766012a8488587d4357bc1f5acf4319dd7240906a63417e2ee93301319034f3aaae0cc2c37f40902ca6ec774a4974d502324afb37089b8729e95968318d4a25fb67a76cefacc19b90e2f7aa66d00c14209254ac405e57cb41d7ae8f652be30b6b211f83c81d316c9ea36d0216a175ec04dadc23d2c84b6544fbf83e7701dd2b8a5ea006352096696ef1c6a93a65da3218bccf64bed0b773148fbc8c2fc15deecaa6968f6278a4d8316df4e5b1adf4ba8c5dec2445c1c697726476504ad49dd9876e7b87c6c094c8f0e0e60d7feb5a90889a7a5fb4c39ad004c76641167c26232b9f282f61b68919f774e0d9ac7c4904c22b5f67e322751884a554c1c17449f326ae6ca5049c8f97a54560b8dd47c16fbe0adbf83b4eb4902e3add17f88870fcd32dc260f6184bec7887124c107f5a48962bc66696f648f9b5407cc532465d1be561f45543aea1cc28281553575dc34c33ec67e1f5416384b9debb7f2da5f48c5271e66deef4b43870940dc6113d550f15b323876236ac654e73d1cdc160824de8ed1d6827c4080dfdd81efa60df294854b4c1122986c6bf7561034cd2169c605dd347240428f56ab06b238b46eba82e06940dba1bc41298af82be1057c67832944283f6f5343ba53b3ac7b3c4331f0461ef2eb365ced8c419dbaaa4e4d63972cdc3f9092f3b4cce687912c0f5d0257d02bac51eb42b3d1baa7b8d39d5877132ed2a61bad", 0x1000}, {&(0x7f0000000280)="66d612daf6d633c93c36ce45cbb931c5140223272818d42f9d3cf06e6acda5cf48c2d0990d9c3ddfa4ddd8d8cb7bf71efd1c2dd1a311576068c29c576ccf457819a4041725d1776b519a7472b3b840926b1256a8f4d04559aa23516ec6a4dbeb6ec75ee063e60bfc20e930240c13062d321a3a54f5646210fad1275f6f6b2c6c91c3afb2c173635847033e84", 0x8c}, {&(0x7f0000000340)="b21e747305087bb0514b00c11a0cefb2267926d0b6a1cde3accf2a27f87826bf437325eea98a739e7035f1617c5c75d30a14c1c84c", 0x35}, {&(0x7f0000001440)="27d0d707666cf309970a133693ec5a15e995301f563d40c3847c5d074e51abf18522f8d38a7e9d6ae514e24f5429243bee013a93a278759037e899f613ed7ca41fd90c94ea78c97115b2ae3b16883fb4cc4024ee4bb1d406c0d32362fa25ddc2dcb944e1ebbaa47aa51bbe27e100cfff6f989760cff3340c96954c29c89867a1a3821eb81b8a9421cdc36ff1202e6a71aad53864c4bb7bb2bae7c21de37c70e7403a58e2d523b1eeddce1b98dd68eaf5d82efc10408690d2cdb6a33efb5cea09ec72b73791ced4fac8c1988f02d6264522ae674893be3128f735", 0xda}], 0x4, 0x7fff, 0x4)

17:53:21 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000d700)

[  385.912663][T13579] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 4 (only 8 groups)
17:53:21 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x8000000b)

[  386.034442][T13582] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
17:53:21 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 15)

[  386.151476][T13588] FAULT_INJECTION: forcing a failure.
[  386.151476][T13588] name failslab, interval 1, probability 0, space 0, times 0
[  386.164152][T13588] CPU: 0 PID: 13588 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  386.172987][T13588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  386.183039][T13588] Call Trace:
[  386.186311][T13588]  <TASK>
[  386.189235][T13588]  dump_stack_lvl+0xd6/0x122
[  386.193928][T13588]  dump_stack+0x11/0x1b
[  386.198091][T13588]  should_fail+0x23c/0x250
[  386.202505][T13588]  ? mempool_alloc_slab+0x16/0x20
[  386.207542][T13588]  __should_failslab+0x81/0x90
[  386.212483][T13588]  should_failslab+0x5/0x20
[  386.217052][T13588]  kmem_cache_alloc+0x4f/0x320
[  386.221817][T13588]  mempool_alloc_slab+0x16/0x20
[  386.226762][T13588]  ? mempool_free+0x130/0x130
[  386.231542][T13588]  mempool_alloc+0x9d/0x310
[  386.236133][T13588]  ? __find_get_block+0x785/0x9b0
[  386.241216][T13588]  ? __filemap_get_folio+0x583/0x690
[  386.246549][T13588]  sg_pool_alloc+0x74/0x90
[  386.250972][T13588]  __sg_alloc_table+0xce/0x290
[  386.255759][T13588]  sg_alloc_table_chained+0xaf/0x140
[  386.261053][T13588]  ? sg_alloc_table_chained+0x140/0x140
[  386.266621][T13588]  scsi_alloc_sgtables+0x18a/0x510
[  386.271730][T13588]  sd_init_command+0x944/0x1610
[  386.276591][T13588]  scsi_queue_rq+0x1026/0x1460
[  386.281417][T13588]  blk_mq_dispatch_rq_list+0x534/0x11e0
[  386.286991][T13588]  ? __sbitmap_queue_get+0x11/0x20
[  386.292134][T13588]  blk_mq_do_dispatch_sched+0x446/0x6d0
[  386.297685][T13588]  __blk_mq_sched_dispatch_requests+0x1ca/0x270
[  386.303926][T13588]  blk_mq_sched_dispatch_requests+0x9f/0x110
[  386.309914][T13588]  __blk_mq_run_hw_queue+0xc1/0x140
[  386.315110][T13588]  __blk_mq_delay_run_hw_queue+0x199/0x360
[  386.320954][T13588]  ? __rcu_read_unlock+0x5c/0x290
[  386.326042][T13588]  blk_mq_run_hw_queue+0x231/0x260
[  386.331170][T13588]  blk_mq_sched_insert_requests+0x130/0x200
[  386.337071][T13588]  blk_mq_flush_plug_list+0x372/0x460
[  386.342484][T13588]  blk_flush_plug+0x25a/0x2b0
[  386.347180][T13588]  ? ext4_iomap_end+0x33/0x50
[  386.351860][T13588]  blk_finish_plug+0x44/0x60
[  386.356529][T13588]  __iomap_dio_rw+0xcad/0x1070
[  386.361338][T13588]  iomap_dio_rw+0x38/0x80
[  386.365668][T13588]  ? ext4_file_write_iter+0x451/0x1200
[  386.371128][T13588]  ext4_file_write_iter+0xac3/0x1200
[  386.376470][T13588]  ? ext4_file_write_iter+0x451/0x1200
[  386.382029][T13588]  ? prandom_u32_state+0xd7/0x100
[  386.387064][T13588]  do_iter_readv_writev+0x2de/0x380
[  386.392297][T13588]  do_iter_write+0x192/0x5c0
[  386.396973][T13588]  ? splice_from_pipe_next+0x34f/0x3b0
[  386.402436][T13588]  ? kmalloc_array+0x2d/0x40
[  386.407021][T13588]  vfs_iter_write+0x4c/0x70
[  386.411534][T13588]  iter_file_splice_write+0x43a/0x790
[  386.416914][T13588]  ? splice_from_pipe+0xd0/0xd0
[  386.421830][T13588]  direct_splice_actor+0x80/0xa0
[  386.426773][T13588]  splice_direct_to_actor+0x345/0x650
[  386.432155][T13588]  ? do_splice_direct+0x190/0x190
[  386.437183][T13588]  do_splice_direct+0x106/0x190
[  386.442039][T13588]  do_sendfile+0x675/0xc40
[  386.446518][T13588]  __x64_sys_sendfile64+0x102/0x140
[  386.451817][T13588]  do_syscall_64+0x44/0xd0
[  386.456263][T13588]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  386.462175][T13588] RIP: 0033:0x7f4521e19ae9
[  386.466631][T13588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  386.486235][T13588] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  386.494720][T13588] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  386.502691][T13588] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  386.510701][T13588] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  386.518748][T13588] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  386.526780][T13588] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  386.534821][T13588]  </TASK>
17:53:21 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003e0)

[  386.749066][T13593] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 4 (only 8 groups)
17:53:22 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000db00)

[  386.847965][T13582] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
17:53:22 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x50d080, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)
r4 = syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x1ff, 0x3, &(0x7f0000000440)=[{&(0x7f00000001c0)="b68bd969cd7660bd207d7625fe8074d41729793ee819bd6ad8187128e26deb40de996ac7104a15786eaab59754966f57d1711fda3d38d2a37273401a3168816e3e8cc386882416d46003af9da8e7a2e745e72b765d15ea97aadfb55be498a85bed29504dae33089aa3ec7527b963f9ca49c6c1b8ee197f380e525814832eadb6af5f8144ec6b2ee356b8f130b0b2c83c7f11c738292c", 0x96, 0x1}, {&(0x7f0000000280)="47c6ec92682247e7d209dd96cb3f3e69fe221420537d38b06361942d57532506c031bf6b9d33ba456b3dec5983ea5e1fb00e2772cde3dc7bdcf355c7883b1a5b1fdaae266b82c04457c3410889a41d2178a39e3f03bfa59eff415ad7510201804da49a0179b4cc06f98315e9ea30f04b0ca8b1305f08c932825d5bb0831f227cb13e9c3b3c0af9a7a1a8784505fa4d3f029cc02ba833a01d610c0a30971c4dd408a5dae40544c195f32e3a0e041be59ff9bc7f2eb4a9756f89e77eec13c05ca7cdd9d9c7c3c3a002985b6879842ef27de66d82c75eb8c76235bdccfa6b77ae06e81834", 0xe3, 0x8}, {&(0x7f0000000380)="9cba9df3adb4ed2c2dedc175e5861bcbddf898f318ed4801278d030edd3dc5e903bd34a4bd52132de7b902a6", 0x2c}], 0x180008, &(0x7f0000000680)={[{'-'}, {'{['}, {'&L\x1c2%u\a\x12\xea\xd0\x18M\xca\xccDv@\xea\xa6I\xfa\x1ai\xb8s\x9f\x0f\xfa\xb8%\x165\\j\xb9\xb1H\xfe\t\x9c\xf0+\xe1\xa86\x9c\xff\xff/G\x0e\xb9zl\xf3(]\x93\xe3s\x8f\x88V\xfan\x1a\x11\tPT\xcd\x04\x9e\xfd\x92\xd2\xb2@\x91\x94e\x89\xaf\xa1\xcaa\x8e\xb2\x8b8\xban\xff\xb0\fp]3\x9c\xae\xbf\x18\xde[\xc7\'\xabC5A..\x1aH0\x17'}, {'-+B\x16\x1c\xc6\xa4\b\x1f\xca\x05\x01\xc4]^@\x88Jex\xdfnB\x92\x91\x8a\xc2\xf7\xfby\xa2k\x86\xcc\x7f\x94\xdb\xff\xcd\a\xa8\xf0lf~\xe8\xed\xb27jx\xce\xa3\xa1\x10+\xcc\x16~\xcd\x11\xe9\xa4`\fS\\i$\xfd\xb56\xb88\xc5l\xdf\x00\xe3\x19ea\xa2|\xbf\x97\xf2T\x8b\x9d\b\v\xcfc\x18\x15\xf93~\xc7\x99P\xf9H+\xf6\x8b\x1b\x86\xb4p\x1a\xb8\xde-\r9\xa9Mb9H9z8\xed\x14\xfc)R\xf4P\xd3B7q\xaa\xcb\x88S\xe4f\xd7\x1c\n\xef)\x1d\x81\xde\xc3\x93\xfc\xd7\xd5\xe9P%\xf0\xeb\v\x8f\r\x98\xf2\x82\xa3*\xe0X\x1f\xd2\xb5\x8a\x1fb&\xb7\x87\xf1\x1a\xdc?\xa1\x04\xddj\xd8i\xf6\n\xd2Y}\x05N\x90\xd6\x18\x11f\rn\xc3|6x\xc9\xd0\xb2\x89\x8b\xd0\x98h\n\x80\xb9)\x9f\\\"\x890V\xa8L>\xf5\xb0u\xa5o7)\xaa\xc9\x90]J\xb7\x02\xfek\xf7\xaaP\xde\x8b\x18H\xef,\x8b\xeeQ,\x1ca\x86N\x19\xcdq5\xb52\xdf\x86\x04\xe2|\xb5\xc6\x91\xeb\fR\x13\x86\xe3\x8fSsaVk\x89\xd7\x06\x04#\xd2\xaf\x0e\x9e\xc5\x92\x1dO\x1b\xf9[\xa1\xe5\x1e7\xf2\xd3\xf2\x06!Nj\x05}W'}], [{@seclabel}]})
ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000540)={{r4}, 0x5, &(0x7f0000000500)=[0x6ba, 0x400, 0x8000, 0x25, 0xc232], 0x4, 0x2, [0x7ff, 0x2, 0x0, 0x800]})

17:53:22 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x8000000c)

17:53:22 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 16)

[  387.150814][T13614] FAULT_INJECTION: forcing a failure.
[  387.150814][T13614] name failslab, interval 1, probability 0, space 0, times 0
[  387.163479][T13614] CPU: 1 PID: 13614 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  387.172239][T13614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  387.182343][T13614] Call Trace:
[  387.185619][T13614]  <TASK>
[  387.188546][T13614]  dump_stack_lvl+0xd6/0x122
[  387.193194][T13614]  dump_stack+0x11/0x1b
[  387.197356][T13614]  should_fail+0x23c/0x250
[  387.201788][T13614]  ? kmalloc_array+0x2d/0x40
[  387.206465][T13614]  __should_failslab+0x81/0x90
[  387.211244][T13614]  should_failslab+0x5/0x20
[  387.215762][T13614]  __kmalloc+0x6f/0x370
[  387.219923][T13614]  kmalloc_array+0x2d/0x40
[  387.224401][T13614]  iter_file_splice_write+0xd5/0x790
[  387.229697][T13614]  ? atime_needs_update+0x2ba/0x390
[  387.234966][T13614]  ? touch_atime+0x11f/0x2e0
[  387.239623][T13614]  ? generic_file_splice_read+0x2a9/0x330
[  387.245347][T13614]  ? splice_from_pipe+0xd0/0xd0
[  387.250197][T13614]  direct_splice_actor+0x80/0xa0
[  387.255138][T13614]  splice_direct_to_actor+0x345/0x650
[  387.260520][T13614]  ? do_splice_direct+0x190/0x190
[  387.265547][T13614]  do_splice_direct+0x106/0x190
[  387.270485][T13614]  do_sendfile+0x675/0xc40
[  387.274991][T13614]  __x64_sys_sendfile64+0x102/0x140
[  387.280193][T13614]  do_syscall_64+0x44/0xd0
[  387.284650][T13614]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  387.290553][T13614] RIP: 0033:0x7f4521e19ae9
[  387.294962][T13614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  387.314648][T13614] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  387.323060][T13614] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  387.331031][T13614] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  387.339013][T13614] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
17:53:22 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000100)='./bus/file0\x00', 0x130)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  387.346985][T13614] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  387.354957][T13614] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  387.363004][T13614]  </TASK>
17:53:22 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 17)

[  387.474918][T13619] FAULT_INJECTION: forcing a failure.
[  387.474918][T13619] name failslab, interval 1, probability 0, space 0, times 0
[  387.487642][T13619] CPU: 0 PID: 13619 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  387.496473][T13619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  387.506541][T13619] Call Trace:
[  387.509810][T13619]  <TASK>
[  387.512738][T13619]  dump_stack_lvl+0xd6/0x122
[  387.517329][T13619]  dump_stack+0x11/0x1b
[  387.521559][T13619]  should_fail+0x23c/0x250
[  387.526080][T13619]  ? jbd2__journal_start+0xf7/0x3f0
[  387.531306][T13619]  __should_failslab+0x81/0x90
[  387.536165][T13619]  should_failslab+0x5/0x20
[  387.540679][T13619]  kmem_cache_alloc+0x4f/0x320
[  387.545452][T13619]  jbd2__journal_start+0xf7/0x3f0
[  387.550479][T13619]  __ext4_journal_start_sb+0x159/0x310
[  387.555948][T13619]  ? ext4_expand_extra_isize+0x560/0x560
[  387.561587][T13619]  ext4_dirty_inode+0x58/0xa0
[  387.566324][T13619]  __mark_inode_dirty+0x72/0x6c0
[  387.571343][T13619]  ? ktime_get_coarse_real_ts64+0x10d/0x120
[  387.577410][T13619]  inode_update_time+0x1b4/0x1d0
[  387.582380][T13619]  file_update_time+0x1f3/0x230
[  387.587243][T13619]  file_modified+0x62/0x80
[  387.591707][T13619]  ext4_file_write_iter+0x795/0x1200
[  387.596993][T13619]  ? ext4_file_write_iter+0x451/0x1200
[  387.602455][T13619]  ? prandom_u32_state+0xd7/0x100
[  387.607491][T13619]  do_iter_readv_writev+0x2de/0x380
[  387.612692][T13619]  do_iter_write+0x192/0x5c0
[  387.617352][T13619]  ? splice_from_pipe_next+0x34f/0x3b0
[  387.622820][T13619]  ? kmalloc_array+0x2d/0x40
[  387.627464][T13619]  vfs_iter_write+0x4c/0x70
[  387.631980][T13619]  iter_file_splice_write+0x43a/0x790
[  387.637364][T13619]  ? splice_from_pipe+0xd0/0xd0
[  387.642292][T13619]  direct_splice_actor+0x80/0xa0
[  387.647314][T13619]  splice_direct_to_actor+0x345/0x650
[  387.652870][T13619]  ? do_splice_direct+0x190/0x190
[  387.657905][T13619]  do_splice_direct+0x106/0x190
[  387.662756][T13619]  do_sendfile+0x675/0xc40
[  387.667181][T13619]  __x64_sys_sendfile64+0x102/0x140
[  387.672383][T13619]  do_syscall_64+0x44/0xd0
[  387.676831][T13619]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  387.682786][T13619] RIP: 0033:0x7f4521e19ae9
[  387.687201][T13619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  387.706809][T13619] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  387.715487][T13619] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
17:53:22 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003e1)

[  387.723459][T13619] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  387.731442][T13619] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  387.739411][T13619] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  387.747384][T13619] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  387.755357][T13619]  </TASK>
17:53:23 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000dd00)

17:53:23 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 18)

17:53:23 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x8000000d)

[  388.071511][T13633] FAULT_INJECTION: forcing a failure.
[  388.071511][T13633] name failslab, interval 1, probability 0, space 0, times 0
[  388.084206][T13633] CPU: 0 PID: 13633 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  388.092965][T13633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  388.103035][T13633] Call Trace:
[  388.106316][T13633]  <TASK>
[  388.109243][T13633]  dump_stack_lvl+0xd6/0x122
[  388.113909][T13633]  dump_stack+0x11/0x1b
[  388.118137][T13633]  should_fail+0x23c/0x250
[  388.122591][T13633]  ? jbd2__journal_start+0xf7/0x3f0
[  388.127830][T13633]  __should_failslab+0x81/0x90
[  388.132606][T13633]  should_failslab+0x5/0x20
[  388.137117][T13633]  kmem_cache_alloc+0x4f/0x320
[  388.141885][T13633]  jbd2__journal_start+0xf7/0x3f0
[  388.146912][T13633]  __ext4_journal_start_sb+0x159/0x310
[  388.152383][T13633]  ? ext4_file_write_iter+0x451/0x1200
[  388.157848][T13633]  ext4_file_write_iter+0x992/0x1200
[  388.163139][T13633]  ? ext4_file_write_iter+0x451/0x1200
[  388.168782][T13633]  ? prandom_u32_state+0xd7/0x100
[  388.173852][T13633]  do_iter_readv_writev+0x2de/0x380
[  388.179053][T13633]  do_iter_write+0x192/0x5c0
[  388.183706][T13633]  ? splice_from_pipe_next+0x34f/0x3b0
[  388.189169][T13633]  ? kmalloc_array+0x2d/0x40
[  388.193766][T13633]  vfs_iter_write+0x4c/0x70
[  388.198282][T13633]  iter_file_splice_write+0x43a/0x790
[  388.203661][T13633]  ? splice_from_pipe+0xd0/0xd0
[  388.208518][T13633]  direct_splice_actor+0x80/0xa0
[  388.213512][T13633]  splice_direct_to_actor+0x345/0x650
[  388.218996][T13633]  ? do_splice_direct+0x190/0x190
[  388.224025][T13633]  do_splice_direct+0x106/0x190
[  388.228900][T13633]  do_sendfile+0x675/0xc40
[  388.233351][T13633]  __x64_sys_sendfile64+0x102/0x140
[  388.238557][T13633]  do_syscall_64+0x44/0xd0
[  388.243025][T13633]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  388.248924][T13633] RIP: 0033:0x7f4521e19ae9
[  388.253438][T13633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  388.273092][T13633] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  388.281637][T13633] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  388.289710][T13633] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  388.297711][T13633] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  388.305681][T13633] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  388.313736][T13633] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
17:53:23 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0xffffffff, 0x7, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)

[  388.321709][T13633]  </TASK>
17:53:23 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003e2)

17:53:23 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000e200)

17:53:24 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 19)

[  388.943957][T13653] FAULT_INJECTION: forcing a failure.
[  388.943957][T13653] name failslab, interval 1, probability 0, space 0, times 0
[  388.956706][T13653] CPU: 1 PID: 13653 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  388.965497][T13653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  388.975547][T13653] Call Trace:
[  388.978841][T13653]  <TASK>
[  388.981768][T13653]  dump_stack_lvl+0xd6/0x122
[  388.986360][T13653]  dump_stack+0x11/0x1b
[  388.990541][T13653]  should_fail+0x23c/0x250
[  388.994960][T13653]  ? jbd2__journal_start+0xf7/0x3f0
[  389.000155][T13653]  __should_failslab+0x81/0x90
[  389.004960][T13653]  should_failslab+0x5/0x20
[  389.009494][T13653]  kmem_cache_alloc+0x4f/0x320
[  389.014284][T13653]  jbd2__journal_start+0xf7/0x3f0
[  389.019310][T13653]  __ext4_journal_start_sb+0x159/0x310
[  389.024778][T13653]  ext4_iomap_begin+0x408/0x630
[  389.029646][T13653]  ? ext4_alloc_da_blocks+0x100/0x100
[  389.035020][T13653]  iomap_iter+0x395/0x4a0
[  389.039366][T13653]  __iomap_dio_rw+0x695/0x1070
[  389.044235][T13653]  ? jbd2_journal_stop+0x592/0x6a0
[  389.049352][T13653]  iomap_dio_rw+0x38/0x80
[  389.053686][T13653]  ? ext4_file_write_iter+0x451/0x1200
[  389.059147][T13653]  ext4_file_write_iter+0xac3/0x1200
[  389.064510][T13653]  ? ext4_file_write_iter+0x451/0x1200
[  389.069967][T13653]  ? prandom_u32_state+0xd7/0x100
[  389.075091][T13653]  do_iter_readv_writev+0x2de/0x380
[  389.080291][T13653]  do_iter_write+0x192/0x5c0
[  389.084901][T13653]  ? splice_from_pipe_next+0x34f/0x3b0
[  389.090441][T13653]  ? kmalloc_array+0x2d/0x40
[  389.095056][T13653]  vfs_iter_write+0x4c/0x70
[  389.099562][T13653]  iter_file_splice_write+0x43a/0x790
[  389.105006][T13653]  ? splice_from_pipe+0xd0/0xd0
[  389.109917][T13653]  direct_splice_actor+0x80/0xa0
[  389.114955][T13653]  splice_direct_to_actor+0x345/0x650
[  389.120333][T13653]  ? do_splice_direct+0x190/0x190
[  389.125399][T13653]  do_splice_direct+0x106/0x190
[  389.130252][T13653]  do_sendfile+0x675/0xc40
[  389.134682][T13653]  __x64_sys_sendfile64+0x102/0x140
[  389.139899][T13653]  do_syscall_64+0x44/0xd0
[  389.144320][T13653]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  389.150291][T13653] RIP: 0033:0x7f4521e19ae9
[  389.154726][T13653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  389.174336][T13653] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  389.182753][T13653] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
17:53:24 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 20)

[  389.190765][T13653] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  389.198734][T13653] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  389.206728][T13653] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  389.214697][T13653] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  389.222671][T13653]  </TASK>
17:53:24 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000000440)={{r1}, 0x0, 0x0, @unused=[0x2, 0x0, 0x10001, 0x1], @devid})
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

17:53:24 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x8000000e)

17:53:24 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003e3)

[  389.312060][T13661] FAULT_INJECTION: forcing a failure.
[  389.312060][T13661] name failslab, interval 1, probability 0, space 0, times 0
[  389.324711][T13661] CPU: 1 PID: 13661 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  389.333532][T13661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  389.343595][T13661] Call Trace:
[  389.346872][T13661]  <TASK>
[  389.349796][T13661]  dump_stack_lvl+0xd6/0x122
[  389.354437][T13661]  dump_stack+0x11/0x1b
[  389.358595][T13661]  should_fail+0x23c/0x250
[  389.363034][T13661]  ? jbd2__journal_start+0xf7/0x3f0
[  389.368234][T13661]  __should_failslab+0x81/0x90
[  389.373002][T13661]  should_failslab+0x5/0x20
[  389.377534][T13661]  kmem_cache_alloc+0x4f/0x320
[  389.382335][T13661]  ? __find_get_block+0x785/0x9b0
[  389.387442][T13661]  jbd2__journal_start+0xf7/0x3f0
[  389.392468][T13661]  __ext4_journal_start_sb+0x159/0x310
[  389.397978][T13661]  ext4_iomap_begin+0x408/0x630
[  389.402851][T13661]  ? ext4_alloc_da_blocks+0x100/0x100
[  389.408269][T13661]  iomap_iter+0x395/0x4a0
[  389.412609][T13661]  __iomap_dio_rw+0x695/0x1070
[  389.417381][T13661]  ? jbd2_journal_stop+0x592/0x6a0
[  389.422567][T13661]  iomap_dio_rw+0x38/0x80
[  389.427034][T13661]  ? ext4_file_write_iter+0x451/0x1200
[  389.432537][T13661]  ext4_file_write_iter+0xac3/0x1200
[  389.437952][T13661]  ? ext4_file_write_iter+0x451/0x1200
[  389.443479][T13661]  ? prandom_u32_state+0xd7/0x100
[  389.448636][T13661]  do_iter_readv_writev+0x2de/0x380
[  389.453872][T13661]  do_iter_write+0x192/0x5c0
[  389.458510][T13661]  ? splice_from_pipe_next+0x34f/0x3b0
[  389.463984][T13661]  ? kmalloc_array+0x2d/0x40
[  389.468584][T13661]  vfs_iter_write+0x4c/0x70
[  389.473123][T13661]  iter_file_splice_write+0x43a/0x790
[  389.478511][T13661]  ? splice_from_pipe+0xd0/0xd0
[  389.483447][T13661]  direct_splice_actor+0x80/0xa0
[  389.488401][T13661]  splice_direct_to_actor+0x345/0x650
[  389.493776][T13661]  ? do_splice_direct+0x190/0x190
[  389.498809][T13661]  do_splice_direct+0x106/0x190
[  389.503713][T13661]  do_sendfile+0x675/0xc40
[  389.508163][T13661]  __x64_sys_sendfile64+0x102/0x140
[  389.513371][T13661]  do_syscall_64+0x44/0xd0
[  389.517901][T13661]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  389.523801][T13661] RIP: 0033:0x7f4521e19ae9
[  389.528221][T13661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  389.547829][T13661] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  389.556287][T13661] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  389.564258][T13661] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  389.572230][T13661] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  389.580284][T13661] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  389.588250][T13661] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  389.596299][T13661]  </TASK>
17:53:24 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 21)

[  389.711572][T13677] FAULT_INJECTION: forcing a failure.
[  389.711572][T13677] name failslab, interval 1, probability 0, space 0, times 0
[  389.724226][T13677] CPU: 1 PID: 13677 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  389.733063][T13677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  389.743141][T13677] Call Trace:
[  389.746416][T13677]  <TASK>
[  389.749343][T13677]  dump_stack_lvl+0xd6/0x122
[  389.754038][T13677]  dump_stack+0x11/0x1b
[  389.758194][T13677]  should_fail+0x23c/0x250
[  389.762727][T13677]  ? kcalloc+0x32/0x50
[  389.766806][T13677]  __should_failslab+0x81/0x90
[  389.771634][T13677]  should_failslab+0x5/0x20
[  389.776225][T13677]  __kmalloc+0x6f/0x370
[  389.780403][T13677]  kcalloc+0x32/0x50
[  389.784343][T13677]  ext4_find_extent+0x19f/0x7e0
[  389.789211][T13677]  ? __sbitmap_queue_get+0x11/0x20
[  389.794333][T13677]  ? __blk_mq_get_tag+0x103/0x280
[  389.799357][T13677]  ext4_ext_map_blocks+0x115/0x2120
[  389.804595][T13677]  ? blk_mq_get_tag+0x50b/0x5f0
17:53:25 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x800, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x89)
pwrite64(r2, 0x0, 0x0, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x20000, 0x1000}, 0x18)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f00000004c0)=0x80, 0x4)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f0000000080)=0x2, 0x4)
r4 = socket(0x100000000011, 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0x0, [], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r4, 0xc0709411, &(0x7f0000058d00)={{<r5=>0x0, 0x9, 0x8, 0x405, 0x5, 0x3, 0x8, 0x7fff, 0x4, 0x9, 0x9, 0x0, 0x7a, 0x59edfb87, 0xfff}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={<r6=>0x0, ""/256, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a1c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}], 0x0, "9743ba5586d593"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, &(0x7f0000058dc0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {r6}], 0x9, "119b9ec614eae9"})
bind(r4, &(0x7f0000000940)=@pppoe={0x18, 0x0, {0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}, 'wlan1\x00'}}, 0x80)
getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, <r8=>0x0}, &(0x7f0000000100)=0x14)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000140)=0x400, 0x4)
bind$xdp(r3, &(0x7f0000000900)={0x2c, 0xc, r8}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000002600290c2bbd7000fbdbdf2500000000", @ANYRES32=r8, @ANYBLOB="0200e0ff10d464f5420002000000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x84)
sendfile(r0, r1, 0x0, 0x80000001)

[  389.809449][T13677]  ? preempt_count_add+0x4e/0x90
[  389.814396][T13677]  ? _raw_read_unlock+0x13/0x30
[  389.819447][T13677]  ? start_this_handle+0xfa6/0x1050
[  389.824793][T13677]  ? ext4_map_blocks+0x384/0xf00
[  389.829734][T13677]  ext4_map_blocks+0x71e/0xf00
[  389.834505][T13677]  ext4_iomap_begin+0x4b0/0x630
[  389.839372][T13677]  ? ext4_alloc_da_blocks+0x100/0x100
[  389.844754][T13677]  iomap_iter+0x395/0x4a0
[  389.849132][T13677]  __iomap_dio_rw+0x695/0x1070
[  389.853900][T13677]  ? jbd2_journal_stop+0x592/0x6a0
17:53:25 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000e900)

[  389.859018][T13677]  iomap_dio_rw+0x38/0x80
[  389.863355][T13677]  ? ext4_file_write_iter+0x451/0x1200
[  389.868821][T13677]  ext4_file_write_iter+0xac3/0x1200
[  389.874152][T13677]  ? ext4_file_write_iter+0x451/0x1200
[  389.879645][T13677]  ? prandom_u32_state+0xd7/0x100
[  389.884678][T13677]  do_iter_readv_writev+0x2de/0x380
[  389.889881][T13677]  do_iter_write+0x192/0x5c0
[  389.894501][T13677]  ? splice_from_pipe_next+0x34f/0x3b0
[  389.899942][T13677]  ? kmalloc_array+0x2d/0x40
[  389.904529][T13677]  vfs_iter_write+0x4c/0x70
[  389.909019][T13677]  iter_file_splice_write+0x43a/0x790
[  389.914498][T13677]  ? splice_from_pipe+0xd0/0xd0
[  389.919467][T13677]  direct_splice_actor+0x80/0xa0
[  389.924422][T13677]  splice_direct_to_actor+0x345/0x650
[  389.929841][T13677]  ? do_splice_direct+0x190/0x190
[  389.934845][T13677]  do_splice_direct+0x106/0x190
[  389.939709][T13677]  do_sendfile+0x675/0xc40
[  389.944184][T13677]  __x64_sys_sendfile64+0x102/0x140
[  389.949375][T13677]  do_syscall_64+0x44/0xd0
[  389.953772][T13677]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  389.959701][T13677] RIP: 0033:0x7f4521e19ae9
[  389.964121][T13677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  389.983749][T13677] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  389.992247][T13677] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  390.000243][T13677] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  390.008194][T13677] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  390.016257][T13677] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  390.024207][T13677] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  390.032241][T13677]  </TASK>
17:53:25 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 22)

[  390.048186][   T24] audit: type=1400 audit(1637344405.223:288): avc:  denied  { ioctl } for  pid=13679 comm="syz-executor.3" path="socket:[46173]" dev="sockfs" ino=46173 ioctlcmd=0x943d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  390.121845][T13684] FAULT_INJECTION: forcing a failure.
[  390.121845][T13684] name failslab, interval 1, probability 0, space 0, times 0
[  390.134496][T13684] CPU: 0 PID: 13684 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  390.143240][T13684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  390.153279][T13684] Call Trace:
[  390.156599][T13684]  <TASK>
[  390.159565][T13684]  dump_stack_lvl+0xd6/0x122
[  390.164153][T13684]  dump_stack+0x11/0x1b
[  390.168347][T13684]  should_fail+0x23c/0x250
[  390.172761][T13684]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  390.178031][T13684]  __should_failslab+0x81/0x90
[  390.182791][T13684]  should_failslab+0x5/0x20
[  390.187380][T13684]  kmem_cache_alloc+0x4f/0x320
[  390.192123][T13684]  ext4_mb_new_blocks+0x328/0x1ee0
[  390.197335][T13684]  ? ext4_find_extent+0x7b2/0x7e0
[  390.202374][T13684]  ? ext4_ext_search_right+0x246/0x4f0
[  390.207887][T13684]  ext4_ext_map_blocks+0x1658/0x2120
[  390.213212][T13684]  ? ext4_es_lookup_extent+0x221/0x500
[  390.218695][T13684]  ext4_map_blocks+0x71e/0xf00
[  390.223445][T13684]  ext4_iomap_begin+0x4b0/0x630
[  390.228298][T13684]  ? ext4_alloc_da_blocks+0x100/0x100
[  390.233693][T13684]  iomap_iter+0x395/0x4a0
[  390.238072][T13684]  __iomap_dio_rw+0x695/0x1070
[  390.242842][T13684]  ? jbd2_journal_stop+0x592/0x6a0
[  390.247936][T13684]  iomap_dio_rw+0x38/0x80
[  390.252271][T13684]  ? ext4_file_write_iter+0x451/0x1200
[  390.257795][T13684]  ext4_file_write_iter+0xac3/0x1200
[  390.263059][T13684]  ? ext4_file_write_iter+0x451/0x1200
[  390.268573][T13684]  ? prandom_u32_state+0xd7/0x100
[  390.273650][T13684]  do_iter_readv_writev+0x2de/0x380
[  390.278844][T13684]  do_iter_write+0x192/0x5c0
[  390.283487][T13684]  ? splice_from_pipe_next+0x34f/0x3b0
[  390.289021][T13684]  ? kmalloc_array+0x2d/0x40
[  390.293611][T13684]  vfs_iter_write+0x4c/0x70
[  390.298214][T13684]  iter_file_splice_write+0x43a/0x790
[  390.303617][T13684]  ? splice_from_pipe+0xd0/0xd0
[  390.308470][T13684]  direct_splice_actor+0x80/0xa0
[  390.313417][T13684]  splice_direct_to_actor+0x345/0x650
[  390.318794][T13684]  ? do_splice_direct+0x190/0x190
[  390.323836][T13684]  do_splice_direct+0x106/0x190
[  390.328672][T13684]  do_sendfile+0x675/0xc40
[  390.333181][T13684]  __x64_sys_sendfile64+0x102/0x140
[  390.338420][T13684]  do_syscall_64+0x44/0xd0
[  390.342814][T13684]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  390.348698][T13684] RIP: 0033:0x7f4521e19ae9
[  390.353108][T13684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  390.372697][T13684] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  390.381083][T13684] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  390.389224][T13684] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  390.397216][T13684] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  390.405220][T13684] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  390.413231][T13684] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
17:53:25 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 23)

[  390.421198][T13684]  </TASK>
17:53:25 executing program 1:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)
fcntl$lock(r0, 0x24, &(0x7f0000000100)={0x1, 0x1, 0x4, 0x7, 0xffffffffffffffff})
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x8)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x80000001)

[  390.493335][T13689] FAULT_INJECTION: forcing a failure.
[  390.493335][T13689] name failslab, interval 1, probability 0, space 0, times 0
[  390.506144][T13689] CPU: 1 PID: 13689 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  390.514911][T13689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  390.524988][T13689] Call Trace:
[  390.528250][T13689]  <TASK>
[  390.531229][T13689]  dump_stack_lvl+0xd6/0x122
[  390.535871][T13689]  dump_stack+0x11/0x1b
[  390.540027][T13689]  should_fail+0x23c/0x250
[  390.544536][T13689]  ? ext4_mb_new_blocks+0x328/0x1ee0
[  390.549848][T13689]  __should_failslab+0x81/0x90
[  390.554607][T13689]  should_failslab+0x5/0x20
[  390.559186][T13689]  kmem_cache_alloc+0x4f/0x320
[  390.563930][T13689]  ext4_mb_new_blocks+0x328/0x1ee0
[  390.569121][T13689]  ? ext4_find_extent+0x7b2/0x7e0
[  390.574195][T13689]  ? ext4_ext_search_right+0x246/0x4f0
[  390.579733][T13689]  ext4_ext_map_blocks+0x1658/0x2120
[  390.585039][T13689]  ? ext4_es_lookup_extent+0x221/0x500
[  390.590577][T13689]  ext4_map_blocks+0x71e/0xf00
[  390.595391][T13689]  ext4_iomap_begin+0x4b0/0x630
[  390.600419][T13689]  ? ext4_alloc_da_blocks+0x100/0x100
[  390.605775][T13689]  iomap_iter+0x395/0x4a0
[  390.610117][T13689]  __iomap_dio_rw+0x695/0x1070
[  390.614875][T13689]  ? jbd2_journal_stop+0x592/0x6a0
[  390.619970][T13689]  iomap_dio_rw+0x38/0x80
[  390.624286][T13689]  ? ext4_file_write_iter+0x451/0x1200
[  390.629729][T13689]  ext4_file_write_iter+0xac3/0x1200
[  390.634995][T13689]  ? ext4_file_write_iter+0x451/0x1200
[  390.640436][T13689]  ? prandom_u32_state+0xd7/0x100
[  390.645454][T13689]  do_iter_readv_writev+0x2de/0x380
[  390.650637][T13689]  do_iter_write+0x192/0x5c0
[  390.655230][T13689]  ? splice_from_pipe_next+0x34f/0x3b0
[  390.660761][T13689]  ? kmalloc_array+0x2d/0x40
[  390.665347][T13689]  vfs_iter_write+0x4c/0x70
[  390.669879][T13689]  iter_file_splice_write+0x43a/0x790
[  390.675252][T13689]  ? splice_from_pipe+0xd0/0xd0
[  390.680087][T13689]  direct_splice_actor+0x80/0xa0
[  390.685018][T13689]  splice_direct_to_actor+0x345/0x650
[  390.690370][T13689]  ? do_splice_direct+0x190/0x190
[  390.695380][T13689]  do_splice_direct+0x106/0x190
[  390.700245][T13689]  do_sendfile+0x675/0xc40
[  390.704644][T13689]  __x64_sys_sendfile64+0x102/0x140
[  390.709927][T13689]  do_syscall_64+0x44/0xd0
[  390.714325][T13689]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  390.720228][T13689] RIP: 0033:0x7f4521e19ae9
[  390.724710][T13689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  390.744454][T13689] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  390.752895][T13689] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  390.760878][T13689] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  390.768854][T13689] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  390.776803][T13689] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  390.784754][T13689] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
17:53:26 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003e4)

17:53:26 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x8000000f)

[  390.792863][T13689]  </TASK>
17:53:26 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 24)

17:53:26 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r3, 0x0, 0x0, 0x0)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r4, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f0000000440)={{<r5=>0x0, 0x4f7a, 0x8, 0x7fffffff, 0xffff, 0x3fc000000000, 0xe50, 0x40, 0x3f, 0x2, 0x8065a000, 0x9, 0xfffffffffffffffb, 0x3f, 0x1000000}, 0x20, [0x0, 0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r4, 0xc0709411, &(0x7f0000000500)={{r5, 0x0, 0x1, 0x100, 0xffff, 0xff, 0x34, 0x2, 0x2, 0x17b, 0x1, 0x80000, 0x5, 0x200, 0x3ff}, 0x20, [0x0, 0x0, 0x0, 0x0]})
ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f00000002c0)={0x1, 0x7, 0x1000, 0xee, &(0x7f0000000100)="bcf930c4cec93cc754ede81caba9ea826eefe14c881a8dc1d367ff6f0654792e36b879c63ddf83ee42c7fbe7f0be25c534089188d9a20ed0a894569c63b310fc4b9c0814edd7aca7c68106cf8f81a5b40ca0b1087c7329e86d9bc34f796b8640a632bfb2419b9d1e0e1aa60d35db100cf3ba673ea10d299566516e748cea37af62b87dac41361f21796ed6f55456611da6eb96e792e122ec9f2fef5a2aa2754800f307a871b495cbd0add38c32b8f4742d7575bf13efb1d24012f3b313640f1dde61412fdb653244ac05e253e646c25be74a571b533258ed9686ae0d35c2638b665a19e7d45c585e9a12fca72eec", 0xbe, 0x0, &(0x7f0000000200)="34d243b2f2b6a3c10b73c42df6eb73e5dda16714376bb1fe74fd93cd0cbb86c4719ef626e6adcb0d28f50119cb43d55c491cfcd7bc66f36d3c1742c9de2270628cd394ed26cbbb58f85f2c49d709edcff49e3a4f218cd2d52cc76355ab2130ea4811a7748c9f29342dfdf8b4407d8b7b51bbba06804389b5dac1a5dafb482ce0022fd7f67dc834241d3f7ac3e907dadcaf061f741954f0eadf041e7bf9b142f70b4df9bd2eb1f9881b12dfa5bc949b74af4cb911f804878c239b37a6f24e"})

17:53:26 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000740)={0x24, r2, 0x1, 0x0, 0x0, {0x14}, [@TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}]}]}, 0x24}}, 0x0)
sendmsg$TIPC_NL_BEARER_DISABLE(r0, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)={0x2b4, r2, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x9c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_KEY={0x49, 0x4, {'gcm(aes)\x00', 0x21, "a5f79cf7033c907e1a136b3afcdd0dffcab4b1eddecb1e06a5cb11d732c5baeccd"}}, @TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "1004cc47cc326b442e6ed9a4dc17beaad6ffa4dd30b84154"}}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_SOCK={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xe53}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}]}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x40}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffa}]}, @TIPC_NLA_LINK={0x68, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x607}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_LINK={0x14c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x569}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffff801}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xdf95}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa140}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}]}]}, 0x2b4}, 0x1, 0x0, 0x0, 0x4008040}, 0x4080)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)

[  390.888570][T13704] FAULT_INJECTION: forcing a failure.
[  390.888570][T13704] name failslab, interval 1, probability 0, space 0, times 0
[  390.901247][T13704] CPU: 1 PID: 13704 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  390.910044][T13704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  390.920155][T13704] Call Trace:
[  390.923428][T13704]  <TASK>
[  390.926348][T13704]  dump_stack_lvl+0xd6/0x122
[  390.930921][T13704]  dump_stack+0x11/0x1b
[  390.935058][T13704]  should_fail+0x23c/0x250
[  390.939480][T13704]  ? __es_insert_extent+0x546/0xe80
[  390.944667][T13704]  __should_failslab+0x81/0x90
[  390.949500][T13704]  should_failslab+0x5/0x20
[  390.954050][T13704]  kmem_cache_alloc+0x4f/0x320
[  390.958919][T13704]  __es_insert_extent+0x546/0xe80
[  390.963976][T13704]  ext4_es_insert_extent+0x1cb/0x19c0
[  390.969326][T13704]  ext4_map_blocks+0xa5d/0xf00
[  390.974107][T13704]  ext4_iomap_begin+0x4b0/0x630
[  390.978941][T13704]  ? ext4_alloc_da_blocks+0x100/0x100
[  390.984308][T13704]  iomap_iter+0x395/0x4a0
[  390.988620][T13704]  __iomap_dio_rw+0x695/0x1070
[  390.993417][T13704]  ? jbd2_journal_stop+0x592/0x6a0
[  390.998572][T13704]  iomap_dio_rw+0x38/0x80
[  391.002885][T13704]  ? ext4_file_write_iter+0x451/0x1200
[  391.008321][T13704]  ext4_file_write_iter+0xac3/0x1200
[  391.013584][T13704]  ? ext4_file_write_iter+0x451/0x1200
[  391.019100][T13704]  ? prandom_u32_state+0xd7/0x100
[  391.024107][T13704]  do_iter_readv_writev+0x2de/0x380
[  391.029314][T13704]  do_iter_write+0x192/0x5c0
[  391.033886][T13704]  ? splice_from_pipe_next+0x34f/0x3b0
[  391.039376][T13704]  ? kmalloc_array+0x2d/0x40
[  391.043945][T13704]  vfs_iter_write+0x4c/0x70
[  391.048506][T13704]  iter_file_splice_write+0x43a/0x790
[  391.054025][T13704]  ? splice_from_pipe+0xd0/0xd0
[  391.058853][T13704]  direct_splice_actor+0x80/0xa0
[  391.063886][T13704]  splice_direct_to_actor+0x345/0x650
[  391.069274][T13704]  ? do_splice_direct+0x190/0x190
[  391.074293][T13704]  do_splice_direct+0x106/0x190
[  391.079229][T13704]  do_sendfile+0x675/0xc40
[  391.083652][T13704]  __x64_sys_sendfile64+0x102/0x140
[  391.088903][T13704]  do_syscall_64+0x44/0xd0
[  391.093442][T13704]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  391.099317][T13704] RIP: 0033:0x7f4521e19ae9
[  391.103707][T13704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  391.123314][T13704] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  391.131703][T13704] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  391.139652][T13704] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  391.147640][T13704] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  391.155623][T13704] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[  391.163615][T13704] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  391.171566][T13704]  </TASK>
17:53:26 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x10b400, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)

17:53:26 executing program 2:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8000f300)

17:53:26 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 25)

17:53:26 executing program 3:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
sendto(r1, &(0x7f0000000040)="8d4ef2170d2b923e345251b6957e694e9b58f9d883042185e98cff2169773f57", 0x20, 0x20040040, 0x0, 0x0)

[  391.524356][T13725] FAULT_INJECTION: forcing a failure.
[  391.524356][T13725] name failslab, interval 1, probability 0, space 0, times 0
[  391.537030][T13725] CPU: 1 PID: 13725 Comm: syz-executor.5 Not tainted 5.16.0-rc1-syzkaller #0
[  391.545839][T13725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  391.555890][T13725] Call Trace:
[  391.559273][T13725]  <TASK>
[  391.562185][T13725]  dump_stack_lvl+0xd6/0x122
[  391.566779][T13725]  dump_stack+0x11/0x1b
[  391.570949][T13725]  should_fail+0x23c/0x250
[  391.575489][T13725]  ? mempool_alloc_slab+0x16/0x20
[  391.580726][T13725]  __should_failslab+0x81/0x90
[  391.585612][T13725]  should_failslab+0x5/0x20
[  391.590138][T13725]  kmem_cache_alloc+0x4f/0x320
[  391.594889][T13725]  ? debug_smp_processor_id+0x18/0x20
[  391.600304][T13725]  mempool_alloc_slab+0x16/0x20
[  391.605159][T13725]  ? mempool_free+0x130/0x130
[  391.609968][T13725]  mempool_alloc+0x9d/0x310
[  391.614475][T13725]  ? preempt_count_add+0x4e/0x90
[  391.619402][T13725]  ? _raw_read_unlock+0x13/0x30
[  391.624249][T13725]  ? jbd2_transaction_committed+0xad/0xc0
[  391.629963][T13725]  bio_alloc_bioset+0xcc/0x560
[  391.634732][T13725]  ? iov_iter_alignment+0x34b/0x370
[  391.639974][T13725]  iomap_dio_bio_iter+0x5ed/0xc70
[  391.645039][T13725]  ? ext4_alloc_da_blocks+0x100/0x100
[  391.650468][T13725]  __iomap_dio_rw+0x8b5/0x1070
[  391.655245][T13725]  iomap_dio_rw+0x38/0x80
[  391.659608][T13725]  ? ext4_file_write_iter+0x451/0x1200
[  391.665081][T13725]  ext4_file_write_iter+0xac3/0x1200
[  391.670438][T13725]  ? ext4_file_write_iter+0x451/0x1200
[  391.675877][T13725]  ? prandom_u32_state+0xd7/0x100
[  391.680885][T13725]  do_iter_readv_writev+0x2de/0x380
[  391.686122][T13725]  do_iter_write+0x192/0x5c0
[  391.690875][T13725]  ? splice_from_pipe_next+0x34f/0x3b0
[  391.696319][T13725]  ? kmalloc_array+0x2d/0x40
[  391.700890][T13725]  vfs_iter_write+0x4c/0x70
[  391.705381][T13725]  iter_file_splice_write+0x43a/0x790
[  391.710780][T13725]  ? splice_from_pipe+0xd0/0xd0
[  391.715612][T13725]  direct_splice_actor+0x80/0xa0
17:53:26 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x1c8}], 0x1, &(0x7f00000000c0)={r2, r3+60000000}, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x800003e5)

[  391.720534][T13725]  splice_direct_to_actor+0x345/0x650
[  391.726048][T13725]  ? do_splice_direct+0x190/0x190
[  391.731146][T13725]  do_splice_direct+0x106/0x190
[  391.736019][T13725]  do_sendfile+0x675/0xc40
[  391.740441][T13725]  __x64_sys_sendfile64+0x102/0x140
[  391.745632][T13725]  do_syscall_64+0x44/0xd0
[  391.750056][T13725]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  391.755995][T13725] RIP: 0033:0x7f4521e19ae9
[  391.760434][T13725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  391.780129][T13725] RSP: 002b:00007f451fb90188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  391.788630][T13725] RAX: ffffffffffffffda RBX: 00007f4521f2cf60 RCX: 00007f4521e19ae9
[  391.796628][T13725] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  391.804577][T13725] RBP: 00007f451fb901d0 R08: 0000000000000000 R09: 0000000000000000
[  391.812535][T13725] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
17:53:27 executing program 0:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
creat(0x0, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x21f6, 0x0, 0x6, &(0x7f0000000140)={[0x3]}, 0x8)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000440)={0x0, 0x80, 0x2, 0x2, 0x20, 0x0, 0x0, 0x10001, 0x24008, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd66, 0x4, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x7f, 0xa8, 0x0, 0x7bd, 0x400, 0x7ff, 0x0, 0x1, 0x0, 0x3}, r0, 0xa, 0xffffffffffffffff, 0x8)
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f00000000c0)={r3, r4+60000000}, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000180), 0xfff, 0x200)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000300000007f7000088f382ee"])
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r6, 0x0, 0x80000010)

[  391.820505][T13725] R13: 00007ffe203c5aff R14: 00007f451fb90300 R15: 0000000000022000
[  391.828460][T13725]  </TASK>
17:53:27 executing program 3:
open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x400200, 0x5)
pwrite64(r0, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x140007ffffffe)

17:53:27 executing program 5:
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001) (fail_nth: 26)

17:53:27 executing program 1:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
sendfile(r1, r2, 0x0, 0x80000001)

17:53:27 executing program 3:
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000000540)={0x10, 0x30, 0xfa00, {&(0x7f0000000500), 0x3, {0xa, 0x4e24, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}}}}, 0x38)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000040)={0x1, [0x1]}, &(0x7f0000000080)=0x6)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14d842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
pwrite64(r2, 0x0, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000640)=@mangle={'mangle\x00', 0x1f, 0x6, 0x438, 0x190, 0x308, 0x0, 0x0, 0x308, 0x3a0, 0x3a0, 0x3a0, 0x3a0, 0x3a0, 0x6, &(0x7f00000005c0), {[{{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28}}, {{@ip={@empty, @empty, 0xffffffff, 0xff, 'team_slave_1\x00', 'wg2\x00', {0xff}, {}, 0x2f, 0x1, 0x40}, 0x0, 0x98, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @empty, 0x3, 0x3, [0x1f, 0x33, 0x5, 0x20, 0x21, 0x3a, 0x26, 0x2c, 0x16, 0x16, 0x1b, 0x40, 0x23, 0x2d, 0x7, 0x1d], 0x2, 0x1, 0x7fffffff}}}, {{@ip={@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0xffffffff, 'sit0\x00', 'macsec0\x00', {}, {0xff}, 0x4, 0x1, 0x40}, 0x0, 0xb0, 0xe0, 0x0, {}, [@common=@set={{0x40}, {{0x1, [0x4, 0x7, 0x6, 0x3, 0x1, 0x3], 0x5, 0x1}}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x7fffffff, 0x9c, @empty, 0x4e22}}}, {{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@empty, @remote, 0xffffff00, 0xffffff00, 'veth0_virt_wifi\x00', 'vlan0\x00', {0xff}, {}, 0x11, 0x1, 0x12}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x498)
preadv(r1, &(0x7f0000001580)=[{&(0x7f0000000100)=""/225, 0xe1}, {&(0x7f0000000200)=""/182, 0xb6}, {&(0x7f00000002c0)=""/2, 0x2}, {&(0x7f0000001640)=""/4098, 0x1002}, {&(0x7f0000000400)=""/89, 0x59}, {&(0x7f0000001380)=""/97, 0x61}, {&(0x7f0000000300)=""/224, 0xe0}, {&(0x7f0000001500)=""/16, 0x10}, {&(0x7f0000001540)=""/39, 0x27}], 0x9, 0x1, 0x6)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x141002, 0x8f)
pwrite64(r3, 0x0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000008140)=ANY=[@ANYBLOB="7f454c460780097f01000000000000000200380030349c796d03000000000000400000000000000094030000000000003f000000090038000200fd008100ff070000006009000000ff7f000000000000ffffffff00000000070000000000000007000000000000003f000000000000000800000000000000e8b23c2839d96ccb1efa59435fcea5964e5460821338d7b80b3003d0ddff3663f09a63192a02f18ef12218d168b6bfcfb23c5a587cafbcb5d9da1ffa81c7121612749edb94e5587b70cdae43a5b623017e424dd54933ae4eaa840c2193ae8d76c673b0ca843493a72a40a2cec5ffcedca6182342b649cb19f084766f81855cd98a7a7876fb27f2ea694717acb0afeb0b6573c1a176126c5ccb6bec2712a5119e56d242825e0dd1e3f8b71b57fd5c6555c1afd3f5dc4249aca1172c3f1547260c93d27a348733ca8a92b28af5a2da5356cd6a8fb1e8f80f4095ef9df6c13eaa194db669a684641463366d8819118db306d24d24a7f295b7a496a2cffd7c2f0f8d5f654b164573ad5712c877332be5d993f0e387471b790e4bd51c5f817c799fe745baa7a37e4f79100d867ada55f8c4b61f6454d4ffde2cd9564972c3014dd47da8d7741b19daba713c38dec24db89159287b8503af293b093505ce528f75d1bed1912474182f2a0d9b93c655799128d5e2ed0f24f9857e3998a778fdb10b729f975bd5774db6bec5ad445050377297eb12b6cf0a22b887cd5aef9af4862caa7dc4c9c3593013d56e4429a3cad69defd15306691968be0ce8e6dc2ef9a07d2b99983633c96b1cb32780d3d1f48bc29d51747cd08e8fb383b47b4eab09a4edd8a3bfbb5440f0a687b94062be57a6f4ed3d3e8eb29d416e86afd9b7f76ceb7a79a3f342380e724dd52577c28e3a17713c8bbe1f22fcb4c516dc4d3c5313281eb7c04b2a9568d2421f224c09fc20c178039b9a3de5c0249607d4b5b4feb3b9120d8d5e5ba2fef2fa9614d3334c73ab90e3bfb0d957e2a4560be425578f9e16c2847a0c64a3bedd1bf45a048e492e20340c2013321437acf0e7353d9e63a454aff4196f46073927eb136f5cb078e0b371da25dbf2b352270a6b979fcc3fd1184a88aa60b09164ef7b33f89a083340aaa92e29bf129f0c8dde617ff2504b36786414b64404d1ed4efc66362989aaf3f96f5ad2b1bb79e9123735a3abf6435379e89b28cbecf2cbb6829eecfb93fa5cb890f93d17815ccb525d0252252c8ad1fcb892430f811011ab13527f67f50ef4c850cf3a53c6371551bbf9763da301a4813e7ed05e3854aa2f7f50a88ed832f5ee7b75852bdbdb7d61e282b411eaffbd5e6c92505203e4692438f93e423dcd0f406d18e0da82029593a99f2db7a231c9a2bb1e4225fbf09d5552ae1dad9c8bba84f056755d93abbf37ec67ca776410c6a7c01c51dabad693862600f4bcb879b99c1966147ec41a061753c46ab9cf747a2e87ef83fc500dcd2ce27ca8d07e8e8c89a9a3b025e5b4408d2a8568fd695ac2b67b6800bbe486b83cb7ebfc13b8a5c4c7a13af7a35328ca72cc35fedda1865cff6c0ef22d8733c7a0d1fce2e8fc477bc511d3aede9bf714843e4ff9dc96878089620dbd07dada8cde28cb467cc8f7606eec89e649799a78d0b7fb395b95efaf72f4e96871868fa33104e3794a0e988d671e90f24c2ec7e35db233cbf63ae2d6e3c61f34407f1bcb23e89cc316d042a5b24ba9d1df04a126d8abe8d3f53aaab88aba100c23139174e269cf16f045dd493bdf47dc6148f8a4626c2efc5900b0b3d93bb0a19ff2fc7e01570eb4d37384d13fab5bb68fbf7afa298efbb6a9ba6b33cbaaa6c46f20c20c01ae68979e0642200b11479f5c5433b22437c6a1005f1da54f0e23b014c9a3925c818589f746977bf7c29c7b32cf1c33a824ec299b765dfa74bbbbaa3daa8d50b5863c91af568139ceda91eae4e1d95bd20b699caf27cd5fc54dbc345f70ffe690b736ea0110d63129b78ccdcfa6e7676b40a8bd97c7fe70c583a2ceea1b66e87536ed25c20689e91ecdc79b24eb70a2da67a88f708e61127603475bdf3efa7d66fc9f2e5ff1979b66dc0336b59c4a6e29253ac1efa0a13e5e448fb952ef164c392a2b4fc9032e73095af463d35b29e230dcdf0cbaf2ea5e88b9afa514b5f32723b314bdd58bf69e2f4ec1db7d7a6f5d61840b209ed231e33ed1fcadb973299f3323cd3df477c9aba0e48b804771b656b6a0db1f3ad0cfe4db29536c9b4df18904d255743e8b1aa196a6838044c088db7fc44bfced070d3e3b131476350962a359a919a8e11530fa13dad03a6e57b1a4a47af1f66023d1afc0bd5d8e3af1ae063d4eb4391b3eb4570969fde11914b18c11152034535cd28cad91b847b2565f231f573dbb763c8cc612ff7a462213e5d9b5aa34cbc6496388552cbff52357b21073d74a908bb80926234ab125f6d6537ebbb5f57cc4e67120fe74990a1190292996f46cb78ae701102be82ad932ec68e603356387e5b8b3a168f3c266ea63fe5ae713552a1b527f517d18acfbd3db9950da567e0bf7b762d9644e83015b98469245fd4722f0e078e32fe7a2dbb25b9a014b1cf7c2779f2f5365b1f0ae94d8e698bf85b7cb6517190ac32205b5b593f154f533ceaf75ee3ef3dd47482272403e8a328d781f6f72d94ce997caa336b0048c31545fc2624d48fba4ba9f3f5b3164b3520c1290fca243dcc1085dbae26ea4d23d04f0b49938e403652c1912abbca70d0e969f177bead8c94e490ceb16ce8907470c81d832d4360082ceaab8f1af639b60f23be32248823163e616a3d6fdb3841cdc73f9b75918ce74df7e1195f5bde435f2a0f78c9b179bd88a4169b1f8f895693eb2037f8957c794cdb614f499d5dd1cf15a258d6ea1d16e2f8ee6515a05d9c28fa3c6b87d64f655c4738b3acd59ff4d7985ddfc8e52c9b66785399ea5066fb880bf36c2921fd727bfa0f5cbc8a7d32b766cc0c6a61239ae5a15c409bdba16749f9271bd5076a1c472c71a6ba8bb15070af0a33b6b8c6d429e22c59de19d9f0e3dae17f1a056171de6458317605038afff9254392cf9e8e0303be6b011871b532e2c4c60cc871e051474f907d4f7a8a593782e3fb3da7aa9e9ac5dd2349726d25a938d1f882814dd62c042f47971e3b060b563ed62ce4ada52081810a254081652e89c07f3f743efc07551958503f0d3d1168f386bb0213771c197254682cff95526f3545e27c52d91d1f3bf101c18eca6fa283f0b4f69c70e14d827da728b8851bd206ef1f7f7fe2e24b23e046b79b10c202e7ec1a3884006ea6a628e4c15b543f54ac46eaf513d4f7296c9c8cf9d632437491dc4a24abf5298d2e134afab088ffd51797a487b2c70c1ff270818a12acac9aec33da1f3b9706e9bf605f9956c8615e75b9d44f0bcc5a07e5ee374e29d555f9ef86a8485ffc0c1f8deb1619c54a7c20af369805e9ad0decfbf97a947a10bf991647ad64b410bca2a8df929ecdb7442ed1c7ea7b8c1f20b1f9e11becab44b7902fff8d412aba706f7f3f906a338102317b0355e73047a9163497456a71528e2e43f4acfb84b4c7b57c0395841f5c385afc71c6f164d51846d54cc549166986da2dd2c28760e3a7ce8c2491863246d7f2cfd760bd23771c705888b76d37dc435df68f1225ade15d2fbb0f18887552506d88896901867bf18806020728107553b82e5dc0a88db7fb9238fc25d38dc1528b6d2758c361876668d6cb712cc9d63b48bbf1b4bb7abba57125a2ce2da31cd90822b2733f6b82dfca9694f05470ef2641276ae66fb5841fe3e2465532d625c8c22311741ab44a0b58dc086848d12c16789b106a22eb9af95e88c79ad1ee7347cb7e1db1b9bbe082535d3480f31f7cc177d59a8ecea57e4b7a8013bb1cc0762626ba35510f2f8f12b1d574431b6a2ca645c44a91e3ea33f614274d190aad5417543b0c669d4cdc045832cb7e2fdd56df1c563a29719fffaaf57a1ecf327ecf9268c2a064005d9cf7d7062332cc9c4d9d06d8fcbc1e6244089d7a8dc948c2665603cd36035111b53676880b4e25b586cb43e4438b7c88929563dc6e2f06cd72e498fe10da13719ad737934abda49dfd63e68c222de53452c4e8e67de429a1d5a84237cb71249e5cf6d9516c5a593e651fc0e44cfaf74fda3975f37b565ba8a043c288126ffa44acbd7c806f302b6529aa6aae7d36201fedd7397c16f318d1c0f12e003f981ce9f7aafbcf0a41bd8e8b1e240f483ced50c2ca41b3accdd7bb70cb3731b9e98a8aff762158c761e4f2167015ad627db0fb3bae90acfb9e0865d64d557c5c408b90f820e20d91d1931b5cfd3dabd8712aae097ebd27c55a4be71175b0d440b5b580b0b1a4d6860b6a77266fc2585ff19ecacdfc6716968d765d9e7f180a3ed3fc660b6a3d34cfe83a9b4094a9f87a219805d97aa27a2d8f5d71ede1b7c5bb34f05190e97ab0a1b74560445d026bb0983b071959535c34c0ffeb65e033bdecdf416c40c32d71addb2c05e533aed159e11f05fb7cb1d879f4dfbb8ed2a84a5d4e717331523f77fa9376c10c58722058baedb2304ef678a632cdfcc7a51791f73097b77646adf4fd43ccef1d19bd2fb4eb02c89f68d09e9d27f4da578330d67287a870308d50d6b3f14ec6e1c1f2a228299f1e9ae36867adfa381abae89327218d320af6947aa905346f247c5ee865e68f3c168a46a9b9a873c00653186b5b5d923d0b305cdbe1a8c869b8a8995b4b630f5b23cc2b41b881a2cbe09d4d29f7b95f112ddd7fd1db59b1f792f3e433529c12be305c1f917a5dca859ea294cfb66f177e741a31ad7de84d5cb4510a47f1ef2cd4e00c8653897fd4260502bd2fb2dfc0f5c7fef06f869f015d3d787cc9207a0b319564ee4dab3ae69d826bf900d4d4ab02d43c61f4bd16afaa5676d2c6ebc5c9d71418a53eada6f150f9b5954682fa6c3c888967e231365ad0bb50be2139bfec74fa8c6f3d2be926e592975f417890e9896fcf78ca4ce8f66669fa18777dd179c782a9a670dc3d0fa9ef1aa45a1502126e4bcc1773d7a7d96f61b52587105d419d1fe2300091ac2e1630259a5f17fdf37923c17605b40b55f24b148717a3984af2ffd5821078af8083ea83efdb0524fd8a5aa9fd84091a7694e250b2fa8c757a4a4ccc7e1ccd795217dde059609fa317b3a6514e2d335be0e5e28be030982789c577e2c76972c834347e2a01ee88a7a4bd8591a16ce994ea4b4c74c5057fa46e9bb3c466070614055efbbc9086f7f466614d0fa2230d937571ee2705e18af67ca0ec4eeedc223c741198483e987220b62b67fd8355d054ec61a546c801071b257355e1ecc416f2263646ab947c1e190148c5bda9d0eaf7152cdac636209b59bfef84dc71413431b8a1f53c9262c4cc42fcf8e4d92e7b6fa3d0b6478cc4a2dfffd4ae8ab2802a0a65c63706dcb77e40f4f9136680250dd5691d2349d2ba140300cc089ca214a2ec003059de556d9a2b30bb237d3658c479ee4765ac8691f33eb40c154e0265320352815fcaf3da1c19b77540d147172201e886842cd8bf472eef3e3ded0b07c49505d4bea9123b31eced17855d418802c889b0e359fe8c50cae8999ecccecec58c6933964150c80ba852dfffe3131ab296cd6c911c70c829042482e6bc509274e0cb1dec5cc46f992872a2802087aef5a627fe511cd5b48af17452668ad0d810fd7246516353185f63beb364c4f6195aa6bda3fb551bc194a788c3d70b05466c842be6d13e67d3ec1f28c7f38e289e936715ae1386c57cc0ad865b9e0fbf1f0c885e067cf3b674eb2126f52816775ab5ff7572a3ac0e24cafba4829b5b5b0d9c609b7156eefd99426a2a7245c33f13f2c364d9fe0285c423dd6209f69b94159cffd83cb1da0d0b72b446754204375da6c76770e1e8b3402818bc2e8be0bd4a98030fb3f2cf0"], 0x1078)
r4 = signalfd4(r3, &(0x7f00000004c0)={[0xfff]}, 0x8, 0x80800)
r5 = dup3(0xffffffffffffffff, r4, 0x80000)
io_uring_enter(r4, 0x591e, 0x2095, 0x3, &(0x7f0000000580)={[0x92c6]}, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r5, &(0x7f0000000b00)={0x2})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r6=>r3}, './bus\x00'})
ioctl$BTRFS_IOC_SPACE_INFO(r6, 0xc0109414, &(0x7f0000002680)={0x3c5, 0x3ff, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x0