fff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:09 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r4, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:09 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xfb3ee000000000}, 0x0)

07:40:09 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1f8}], 0x1, 0x6, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:09 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x38541db900000000}, 0x0)

07:40:09 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1f8}], 0x1, 0x6, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0xc0, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  129.278753][ T5944] loop4: detected capacity change from 0 to 16
07:40:09 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x8000000000000000}, 0x0)

07:40:09 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x100000000000000}, 0x0)

07:40:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0xec0, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  129.359131][ T5968] loop4: detected capacity change from 0 to 16
07:40:09 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1f8}], 0x1, 0x6, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

[  129.473953][ T5992] loop4: detected capacity change from 0 to 16
07:40:10 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422", 0x1fa}], 0x1, 0x6, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:10 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r4, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:10 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:10 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x9effffff00000000}, 0x0)

07:40:10 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x200000000000000}, 0x0)

07:40:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x33fe0, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:10 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1fa}], 0x1, 0x6, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x20000098, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  130.148830][ T6026] loop4: detected capacity change from 0 to 16
07:40:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x7ffff000, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:10 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1fa}], 0x1, 0x6, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0xfffffdef, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:10 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x300000000000000}, 0x0)

[  130.244268][ T6050] loop4: detected capacity change from 0 to 16
07:40:10 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xefffffff00000000}, 0x0)

[  130.309345][ T6058] loop4: detected capacity change from 0 to 16
07:40:11 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r4, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:11 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x1fb}], 0x1, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:11 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:11 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x400000000000000}, 0x0)

07:40:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xf0ffffff00000000}, 0x0)

07:40:11 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:11 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1fb}], 0x1, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:11 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x2, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  131.055067][ T6104] loop4: detected capacity change from 0 to 16
07:40:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xffffff7f00000000}, 0x0)

07:40:11 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x1000000000000000}, 0x0)

07:40:11 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x3, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:11 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1fb}], 0x1, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

[  131.137961][ T6120] loop4: detected capacity change from 0 to 16
[  131.218737][ T6132] loop4: detected capacity change from 0 to 16
07:40:12 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100))
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x4, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:12 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xffffffff00000000}, 0x0)

07:40:12 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x8000000000000000}, 0x0)

07:40:12 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:12 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x5, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  131.923929][ T6142] loop4: detected capacity change from 0 to 16
07:40:12 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x9effffff00000000}, 0x0)

07:40:12 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x2}, 0x0)

07:40:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x6, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:12 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xefffffff00000000}, 0x0)

07:40:12 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  132.127972][ T6177] loop4: detected capacity change from 0 to 16
07:40:13 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x3}, 0x0)

07:40:13 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x7, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:13 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xf0ffffff00000000}, 0x0)

07:40:13 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x0)

[  132.800933][ T6182] loop4: detected capacity change from 0 to 16
07:40:13 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x4}, 0x0)

07:40:13 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x8, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:13 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xffffff7f00000000}, 0x0)

07:40:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x10}, 0x0)

07:40:13 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x9, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:13 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x0)

[  132.988955][ T6221] loop4: detected capacity change from 0 to 16
07:40:13 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:13 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0xa, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x300}, 0x0)

07:40:13 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0xffffffff00000000}, 0x0)

07:40:13 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x0)

[  133.666460][ T6226] loop4: detected capacity change from 0 to 16
07:40:14 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:14 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0xb, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x2}, 0x0)

07:40:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x1000000}, 0x0)

07:40:14 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0xc, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x3}, 0x0)

07:40:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x2000000}, 0x0)

07:40:14 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:14 executing program 5:
pipe(0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x4}, 0x0)

[  133.909483][ T6270] loop4: detected capacity change from 0 to 16
07:40:14 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0xd, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x3000000}, 0x0)

07:40:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x10}, 0x0)

07:40:14 executing program 5:
pipe(0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:14 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:15 executing program 5:
pipe(0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x4000000}, 0x0)

07:40:15 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x300}, 0x0)

[  134.655472][ T6283] loop4: detected capacity change from 0 to 16
07:40:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x10000000}, 0x0)

07:40:15 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0xe, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:15 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:15 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xfb3ee0}, 0x0)

07:40:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x38541db9}, 0x0)

07:40:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0xf, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:15 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x1ec}], 0x1, 0x6, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:15 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x1000000}, 0x0)

07:40:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x9effffff}, 0x0)

[  135.500590][ T6343] loop4: detected capacity change from 0 to 16
07:40:15 executing program 4:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r5, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r5, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r5, 0x0, 0x34788, 0x0)

07:40:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x10, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:15 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x2000000}, 0x0)

07:40:15 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xb91d5438}, 0x0)

07:40:16 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r4, 0x0, 0x34788, 0x0)

07:40:16 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x3000000}, 0x0)

07:40:16 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x11, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:16 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xefffffff}, 0x0)

07:40:16 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xf0ffffff}, 0x0)

07:40:16 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x12, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:16 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x4000000}, 0x0)

07:40:16 executing program 4:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {0x77359400}}, 0x100)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r5, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
r6 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$BTRFS_IOC_QUOTA_CTL(r6, 0xc0109428, &(0x7f0000000200)={0x3, 0x9})
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
connect$inet(r5, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r5, 0x0, 0x34788, 0x0)

07:40:16 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffff7f}, 0x0)

07:40:16 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x25, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:16 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:16 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x10000000}, 0x0)

07:40:17 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
clock_gettime(0x0, &(0x7f0000000100))
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:17 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffff9e}, 0x0)

07:40:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x48, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:17 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x9effffff}, 0x0)

07:40:17 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffffef}, 0x0)

07:40:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x4c, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:17 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xe03efb00}, 0x0)

07:40:17 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 1)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:17 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xfffffff0}, 0x0)

07:40:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x60, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:17 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xefffffff}, 0x0)

07:40:17 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

[  137.385689][ T6590] loop4: detected capacity change from 0 to 16
[  137.416912][ T6590] FAULT_INJECTION: forcing a failure.
[  137.416912][ T6590] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.430058][ T6590] CPU: 1 PID: 6590 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  137.440121][ T6590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  137.450164][ T6590] Call Trace:
[  137.453438][ T6590]  <TASK>
[  137.456420][ T6590]  dump_stack_lvl+0xd6/0x122
[  137.461011][ T6590]  dump_stack+0x11/0x1b
[  137.465165][ T6590]  should_fail+0x23c/0x250
[  137.469619][ T6590]  should_fail_usercopy+0x16/0x20
[  137.474636][ T6590]  _copy_from_user+0x1c/0xd0
[  137.479310][ T6590]  iovec_from_user+0xc4/0x2e0
[  137.483965][ T6590]  __import_iovec+0x57/0x2d0
[  137.488535][ T6590]  ? __rcu_read_unlock+0x5c/0x290
[  137.493583][ T6590]  ? kstrtouint_from_user+0x13c/0x170
[  137.498931][ T6590]  import_iovec+0xb8/0xd0
[  137.503269][ T6590]  do_pwritev+0x127/0x440
[  137.507587][ T6590]  ? vfs_write+0x667/0x950
[  137.512016][ T6590]  ? debug_smp_processor_id+0x18/0x20
[  137.517384][ T6590]  ? fpregs_assert_state_consistent+0x7e/0x90
[  137.523486][ T6590]  __x64_sys_pwritev2+0x7e/0xa0
[  137.528418][ T6590]  do_syscall_64+0x44/0xd0
[  137.532825][ T6590]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  137.538699][ T6590] RIP: 0033:0x7fbba9ab7ae9
[  137.543142][ T6590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  137.562802][ T6590] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  137.571236][ T6590] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  137.579243][ T6590] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  137.587197][ T6590] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  137.595198][ T6590] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  137.603157][ T6590] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  137.611114][ T6590]  </TASK>
07:40:18 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:18 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x100000000000000}, 0x0)

07:40:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xf0ffffff}, 0x0)

07:40:18 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x68, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:18 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 2)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffff7f}, 0x0)

07:40:18 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x200000000000000}, 0x0)

[  138.176184][ T6616] loop4: detected capacity change from 0 to 16
[  138.202950][ T6616] FAULT_INJECTION: forcing a failure.
[  138.202950][ T6616] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  138.216302][ T6616] CPU: 1 PID: 6616 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:18 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x300000000000000}, 0x0)

07:40:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffff9e}, 0x0)

07:40:18 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x400000000000000}, 0x0)

[  138.226430][ T6616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  138.236473][ T6616] Call Trace:
[  138.239745][ T6616]  <TASK>
[  138.242710][ T6616]  dump_stack_lvl+0xd6/0x122
[  138.247425][ T6616]  dump_stack+0x11/0x1b
[  138.251578][ T6616]  should_fail+0x23c/0x250
[  138.255986][ T6616]  __alloc_pages+0x102/0x330
[  138.260584][ T6616]  alloc_pages+0x382/0x3d0
[  138.265048][ T6616]  folio_alloc+0x1a/0x20
[  138.269293][ T6616]  filemap_alloc_folio+0x53/0xf0
07:40:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffffef}, 0x0)

[  138.274245][ T6616]  __filemap_get_folio+0x443/0x690
[  138.279426][ T6616]  pagecache_get_page+0x26/0xe0
[  138.284282][ T6616]  grab_cache_page_write_begin+0x3f/0x50
[  138.289993][ T6616]  cont_write_begin+0x4ab/0x7b0
[  138.294864][ T6616]  fat_write_begin+0x61/0xf0
[  138.299452][ T6616]  ? fat_block_truncate_page+0x30/0x30
[  138.305010][ T6616]  pagecache_write_begin+0x5a/0x70
[  138.310372][ T6616]  cont_write_begin+0x539/0x7b0
[  138.315353][ T6616]  fat_write_begin+0x61/0xf0
[  138.320031][ T6616]  ? fat_block_truncate_page+0x30/0x30
[  138.325495][ T6616]  generic_perform_write+0x1c8/0x400
[  138.331505][ T6616]  __generic_file_write_iter+0xf7/0x2b0
[  138.337065][ T6616]  ? generic_write_checks+0x250/0x290
[  138.342514][ T6616]  generic_file_write_iter+0x75/0x130
[  138.347920][ T6616]  do_iter_readv_writev+0x2de/0x380
[  138.353196][ T6616]  do_iter_write+0x192/0x5c0
[  138.357789][ T6616]  ? import_iovec+0xb8/0xd0
[  138.362314][ T6616]  do_pwritev+0x235/0x440
[  138.366624][ T6616]  ? debug_smp_processor_id+0x18/0x20
[  138.372044][ T6616]  ? fpregs_assert_state_consistent+0x7e/0x90
[  138.378121][ T6616]  __x64_sys_pwritev2+0x7e/0xa0
[  138.383064][ T6616]  do_syscall_64+0x44/0xd0
[  138.387491][ T6616]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  138.393363][ T6616] RIP: 0033:0x7fbba9ab7ae9
[  138.397756][ T6616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  138.417389][ T6616] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
07:40:18 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

[  138.425775][ T6616] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  138.433819][ T6616] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  138.441800][ T6616] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  138.449750][ T6616] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  138.457727][ T6616] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  138.465681][ T6616]  </TASK>
07:40:19 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x1000000000000000}, 0x0)

07:40:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x6c, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:19 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xfffffff0}, 0x0)

07:40:19 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 3)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:19 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xfb3ee000000000}, 0x0)

07:40:19 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x38541db900000000}, 0x0)

[  139.031528][ T6652] loop4: detected capacity change from 0 to 16
[  139.064761][ T6652] FAULT_INJECTION: forcing a failure.
[  139.064761][ T6652] name failslab, interval 1, probability 0, space 0, times 0
07:40:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x8000000000000000}, 0x0)

07:40:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x74, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  139.077493][ T6652] CPU: 1 PID: 6652 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  139.087670][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  139.097726][ T6652] Call Trace:
[  139.100998][ T6652]  <TASK>
[  139.103918][ T6652]  dump_stack_lvl+0xd6/0x122
[  139.108513][ T6652]  dump_stack+0x11/0x1b
[  139.112666][ T6652]  should_fail+0x23c/0x250
[  139.117081][ T6652]  ? mempool_alloc_slab+0x16/0x20
[  139.122180][ T6652]  __should_failslab+0x81/0x90
[  139.126946][ T6652]  should_failslab+0x5/0x20
07:40:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x9effffff00000000}, 0x0)

[  139.131513][ T6652]  kmem_cache_alloc+0x4f/0x320
[  139.136356][ T6652]  mempool_alloc_slab+0x16/0x20
[  139.141330][ T6652]  ? mempool_free+0x130/0x130
[  139.146052][ T6652]  mempool_alloc+0x9d/0x310
[  139.150555][ T6652]  ? debug_smp_processor_id+0x18/0x20
[  139.155926][ T6652]  bio_alloc_bioset+0xcc/0x560
[  139.160689][ T6652]  ? __getblk_gfp+0x3f/0x530
[  139.165279][ T6652]  submit_bh_wbc+0x133/0x320
[  139.169875][ T6652]  ? __list_del_entry_valid+0x54/0xc0
[  139.175252][ T6652]  write_dirty_buffer+0xde/0xf0
[  139.180159][ T6652]  fat_sync_bhs+0x52/0x160
[  139.184581][ T6652]  fat_alloc_clusters+0x95a/0xab0
[  139.189634][ T6652]  fat_get_block+0x267/0x610
[  139.194229][ T6652]  __block_write_begin_int+0x4c5/0x1010
[  139.199847][ T6652]  ? fat_block_truncate_page+0x30/0x30
[  139.205310][ T6652]  cont_write_begin+0x4cf/0x7b0
[  139.210183][ T6652]  fat_write_begin+0x61/0xf0
[  139.214806][ T6652]  ? fat_block_truncate_page+0x30/0x30
[  139.220262][ T6652]  pagecache_write_begin+0x5a/0x70
[  139.225382][ T6652]  cont_write_begin+0x539/0x7b0
[  139.230246][ T6652]  fat_write_begin+0x61/0xf0
[  139.234835][ T6652]  ? fat_block_truncate_page+0x30/0x30
[  139.240294][ T6652]  generic_perform_write+0x1c8/0x400
[  139.245579][ T6652]  __generic_file_write_iter+0xf7/0x2b0
[  139.251113][ T6652]  ? generic_write_checks+0x250/0x290
[  139.256461][ T6652]  generic_file_write_iter+0x75/0x130
[  139.261820][ T6652]  do_iter_readv_writev+0x2de/0x380
[  139.267035][ T6652]  do_iter_write+0x192/0x5c0
[  139.271653][ T6652]  ? import_iovec+0xb8/0xd0
[  139.276237][ T6652]  do_pwritev+0x235/0x440
[  139.280590][ T6652]  ? debug_smp_processor_id+0x18/0x20
[  139.285940][ T6652]  ? fpregs_assert_state_consistent+0x7e/0x90
[  139.291990][ T6652]  __x64_sys_pwritev2+0x7e/0xa0
[  139.296821][ T6652]  do_syscall_64+0x44/0xd0
[  139.301320][ T6652]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  139.307193][ T6652] RIP: 0033:0x7fbba9ab7ae9
[  139.311619][ T6652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
07:40:19 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xefffffff00000000}, 0x0)

07:40:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x7a, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:19 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x100000000000000}, 0x0)

[  139.331282][ T6652] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  139.339807][ T6652] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  139.347778][ T6652] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  139.355782][ T6652] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  139.363731][ T6652] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  139.371750][ T6652] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  139.379708][ T6652]  </TASK>
07:40:19 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:19 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x200000000000000}, 0x0)

07:40:19 executing program 3:
pipe(0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xf0ffffff00000000}, 0x0)

07:40:19 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 4)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x2, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffff7f00000000}, 0x0)

07:40:19 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x300000000000000}, 0x0)

[  139.545197][ T6698] validate_nla: 12 callbacks suppressed
[  139.545210][ T6698] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  139.584592][ T6709] loop4: detected capacity change from 0 to 16
[  139.608436][ T6709] FAULT_INJECTION: forcing a failure.
[  139.608436][ T6709] name failslab, interval 1, probability 0, space 0, times 0
[  139.621106][ T6709] CPU: 1 PID: 6709 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  139.631238][ T6709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  139.641289][ T6709] Call Trace:
[  139.644625][ T6709]  <TASK>
[  139.647584][ T6709]  dump_stack_lvl+0xd6/0x122
[  139.652158][ T6709]  dump_stack+0x11/0x1b
[  139.656355][ T6709]  should_fail+0x23c/0x250
[  139.660754][ T6709]  ? mempool_alloc_slab+0x16/0x20
[  139.665765][ T6709]  __should_failslab+0x81/0x90
[  139.670510][ T6709]  should_failslab+0x5/0x20
[  139.675109][ T6709]  kmem_cache_alloc+0x4f/0x320
[  139.679860][ T6709]  ? folio_mark_accessed+0x12f/0x380
[  139.685179][ T6709]  mempool_alloc_slab+0x16/0x20
[  139.690012][ T6709]  ? mempool_free+0x130/0x130
[  139.694684][ T6709]  mempool_alloc+0x9d/0x310
[  139.699184][ T6709]  bio_alloc_bioset+0xcc/0x560
[  139.703941][ T6709]  submit_bh_wbc+0x133/0x320
[  139.708534][ T6709]  ? __list_del_entry_valid+0x54/0xc0
[  139.713915][ T6709]  __sync_dirty_buffer+0x136/0x1e0
[  139.719015][ T6709]  sync_dirty_buffer+0x16/0x20
[  139.723755][ T6709]  fat_mirror_bhs+0x24b/0x330
[  139.728421][ T6709]  fat_alloc_clusters+0x9ad/0xab0
[  139.733483][ T6709]  fat_get_block+0x267/0x610
[  139.738051][ T6709]  __block_write_begin_int+0x4c5/0x1010
[  139.743573][ T6709]  ? fat_block_truncate_page+0x30/0x30
[  139.749010][ T6709]  cont_write_begin+0x4cf/0x7b0
[  139.753896][ T6709]  fat_write_begin+0x61/0xf0
[  139.758508][ T6709]  ? fat_block_truncate_page+0x30/0x30
[  139.763958][ T6709]  pagecache_write_begin+0x5a/0x70
[  139.769052][ T6709]  cont_write_begin+0x539/0x7b0
[  139.773919][ T6709]  fat_write_begin+0x61/0xf0
[  139.778487][ T6709]  ? fat_block_truncate_page+0x30/0x30
[  139.783918][ T6709]  generic_perform_write+0x1c8/0x400
[  139.789186][ T6709]  __generic_file_write_iter+0xf7/0x2b0
[  139.794709][ T6709]  ? generic_write_checks+0x250/0x290
[  139.800064][ T6709]  generic_file_write_iter+0x75/0x130
[  139.805477][ T6709]  do_iter_readv_writev+0x2de/0x380
[  139.810649][ T6709]  do_iter_write+0x192/0x5c0
[  139.815217][ T6709]  ? import_iovec+0xb8/0xd0
[  139.819768][ T6709]  do_pwritev+0x235/0x440
[  139.824161][ T6709]  ? debug_smp_processor_id+0x18/0x20
[  139.829510][ T6709]  ? fpregs_assert_state_consistent+0x7e/0x90
[  139.835609][ T6709]  __x64_sys_pwritev2+0x7e/0xa0
[  139.840522][ T6709]  do_syscall_64+0x44/0xd0
[  139.844976][ T6709]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  139.850888][ T6709] RIP: 0033:0x7fbba9ab7ae9
[  139.855317][ T6709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  139.874914][ T6709] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  139.883320][ T6709] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  139.891294][ T6709] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  139.899267][ T6709] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  139.907217][ T6709] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  139.915776][ T6709] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  139.923802][ T6709]  </TASK>
07:40:20 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:20 executing program 3:
pipe(0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

07:40:20 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x3, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:20 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffffff00000000}, 0x0)

07:40:20 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x400000000000000}, 0x0)

07:40:20 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 5)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:20 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:20 executing program 3:
pipe(0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x34788, 0x0)

[  140.321914][ T6730] loop4: detected capacity change from 0 to 16
[  140.349476][ T6730] FAULT_INJECTION: forcing a failure.
[  140.349476][ T6730] name failslab, interval 1, probability 0, space 0, times 0
[  140.362145][ T6730] CPU: 0 PID: 6730 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:20 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x4, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:20 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x1000000000000000}, 0x0)

[  140.372307][ T6730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  140.382358][ T6730] Call Trace:
[  140.385627][ T6730]  <TASK>
[  140.388551][ T6730]  dump_stack_lvl+0xd6/0x122
[  140.393150][ T6730]  dump_stack+0x11/0x1b
[  140.397316][ T6730]  should_fail+0x23c/0x250
[  140.401760][ T6730]  ? mempool_alloc_slab+0x16/0x20
[  140.406818][ T6730]  __should_failslab+0x81/0x90
[  140.411580][ T6730]  should_failslab+0x5/0x20
[  140.416083][ T6730]  kmem_cache_alloc+0x4f/0x320
07:40:20 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x5, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  140.420845][ T6730]  ? __sync_dirty_buffer+0x1c2/0x1e0
[  140.426188][ T6730]  mempool_alloc_slab+0x16/0x20
[  140.431042][ T6730]  ? mempool_free+0x130/0x130
[  140.435741][ T6730]  mempool_alloc+0x9d/0x310
[  140.440252][ T6730]  bio_alloc_bioset+0xcc/0x560
[  140.445011][ T6730]  ? __getblk_gfp+0x3f/0x530
[  140.449597][ T6730]  submit_bh_wbc+0x133/0x320
[  140.454189][ T6730]  ? mark_buffer_dirty+0x190/0x260
[  140.459339][ T6730]  write_dirty_buffer+0xde/0xf0
[  140.464190][ T6730]  fat_sync_bhs+0x52/0x160
07:40:20 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x6, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  140.468666][ T6730]  fat_alloc_clusters+0x95a/0xab0
[  140.473736][ T6730]  fat_get_block+0x267/0x610
[  140.478337][ T6730]  __block_write_begin_int+0x4c5/0x1010
[  140.484041][ T6730]  ? fat_block_truncate_page+0x30/0x30
[  140.489602][ T6730]  cont_write_begin+0x4cf/0x7b0
[  140.494559][ T6730]  fat_write_begin+0x61/0xf0
[  140.499180][ T6730]  ? fat_block_truncate_page+0x30/0x30
[  140.504644][ T6730]  generic_perform_write+0x1c8/0x400
[  140.509941][ T6730]  __generic_file_write_iter+0xf7/0x2b0
[  140.515516][ T6730]  ? generic_write_checks+0x250/0x290
[  140.520966][ T6730]  generic_file_write_iter+0x75/0x130
[  140.526485][ T6730]  do_iter_readv_writev+0x2de/0x380
[  140.531687][ T6730]  do_iter_write+0x192/0x5c0
[  140.536326][ T6730]  ? import_iovec+0xb8/0xd0
[  140.540833][ T6730]  do_pwritev+0x235/0x440
[  140.545157][ T6730]  ? debug_smp_processor_id+0x18/0x20
[  140.550586][ T6730]  ? fpregs_assert_state_consistent+0x7e/0x90
[  140.556695][ T6730]  __x64_sys_pwritev2+0x7e/0xa0
[  140.561545][ T6730]  do_syscall_64+0x44/0xd0
[  140.566013][ T6730]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  140.571923][ T6730] RIP: 0033:0x7fbba9ab7ae9
[  140.576315][ T6730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  140.595899][ T6730] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  140.604348][ T6730] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  140.612442][ T6730] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  140.620453][ T6730] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  140.628403][ T6730] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  140.636354][ T6730] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  140.644323][ T6730]  </TASK>
07:40:21 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:21 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x7, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:21 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:21 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x8000000000000000}, 0x0)

07:40:21 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 6)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:21 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x2}, 0x0)

07:40:21 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x9effffff00000000}, 0x0)

[  141.182402][ T6767] loop4: detected capacity change from 0 to 16
[  141.196817][ T6770] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:21 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x8, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  141.226691][ T6767] FAULT_INJECTION: forcing a failure.
[  141.226691][ T6767] name failslab, interval 1, probability 0, space 0, times 0
[  141.239368][ T6767] CPU: 0 PID: 6767 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  141.249436][ T6767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  141.254950][ T6780] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  141.259516][ T6767] Call Trace:
[  141.259525][ T6767]  <TASK>
07:40:21 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0xa, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  141.259532][ T6767]  dump_stack_lvl+0xd6/0x122
[  141.259581][ T6767]  dump_stack+0x11/0x1b
[  141.259598][ T6767]  should_fail+0x23c/0x250
[  141.267719][ T6780] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  141.270929][ T6767]  ? mempool_alloc_slab+0x16/0x20
[  141.270957][ T6767]  __should_failslab+0x81/0x90
[  141.304736][ T6767]  should_failslab+0x5/0x20
[  141.309247][ T6767]  kmem_cache_alloc+0x4f/0x320
[  141.314007][ T6767]  ? __sync_dirty_buffer+0x1c2/0x1e0
[  141.318074][ T6786] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
07:40:21 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0xb, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  141.319304][ T6767]  mempool_alloc_slab+0x16/0x20
[  141.319331][ T6767]  ? mempool_free+0x130/0x130
[  141.327421][ T6786] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  141.332209][ T6767]  mempool_alloc+0x9d/0x310
[  141.332317][ T6767]  bio_alloc_bioset+0xcc/0x560
[  141.336981][ T6786] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  141.345013][ T6767]  ? __getblk_gfp+0x3f/0x530
[  141.366916][ T6767]  submit_bh_wbc+0x133/0x320
[  141.371512][ T6767]  ? mark_buffer_dirty+0x190/0x260
[  141.376762][ T6767]  write_dirty_buffer+0xde/0xf0
[  141.381625][ T6767]  fat_sync_bhs+0x52/0x160
[  141.386096][ T6767]  fat_alloc_clusters+0x95a/0xab0
[  141.391145][ T6767]  fat_get_block+0x267/0x610
[  141.395778][ T6767]  __block_write_begin_int+0x4c5/0x1010
[  141.395914][ T6791] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  141.401330][ T6767]  ? fat_block_truncate_page+0x30/0x30
[  141.401383][ T6767]  cont_write_begin+0x4cf/0x7b0
[  141.409431][ T6791] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:21 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0xc, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  141.414865][ T6767]  fat_write_begin+0x61/0xf0
[  141.414887][ T6767]  ? fat_block_truncate_page+0x30/0x30
[  141.414909][ T6767]  generic_perform_write+0x1c8/0x400
[  141.443084][ T6767]  __generic_file_write_iter+0xf7/0x2b0
[  141.448641][ T6767]  ? generic_write_checks+0x250/0x290
[  141.454141][ T6767]  generic_file_write_iter+0x75/0x130
[  141.459566][ T6767]  do_iter_readv_writev+0x2de/0x380
[  141.464824][ T6767]  do_iter_write+0x192/0x5c0
[  141.469420][ T6767]  ? import_iovec+0xb8/0xd0
[  141.473925][ T6767]  do_pwritev+0x235/0x440
07:40:21 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0xd, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  141.478258][ T6767]  ? debug_smp_processor_id+0x18/0x20
[  141.483629][ T6767]  ? fpregs_assert_state_consistent+0x7e/0x90
[  141.489700][ T6767]  __x64_sys_pwritev2+0x7e/0xa0
[  141.494584][ T6767]  do_syscall_64+0x44/0xd0
[  141.499084][ T6767]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  141.505018][ T6767] RIP: 0033:0x7fbba9ab7ae9
[  141.509452][ T6767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  141.529058][ T6767] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  141.537564][ T6767] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  141.545545][ T6767] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  141.553516][ T6767] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  141.561502][ T6767] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  141.569535][ T6767] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  141.577604][ T6767]  </TASK>
07:40:22 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:22 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0xe, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:22 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:22 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x3}, 0x0)

07:40:22 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xefffffff00000000}, 0x0)

07:40:22 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 7)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:22 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x10, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  142.076878][ T6822] loop4: detected capacity change from 0 to 16
[  142.102368][ T6822] FAULT_INJECTION: forcing a failure.
[  142.102368][ T6822] name failslab, interval 1, probability 0, space 0, times 0
[  142.115079][ T6822] CPU: 1 PID: 6822 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:22 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x11, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  142.125214][ T6822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  142.135263][ T6822] Call Trace:
[  142.138548][ T6822]  <TASK>
[  142.141478][ T6822]  dump_stack_lvl+0xd6/0x122
[  142.146084][ T6822]  dump_stack+0x11/0x1b
[  142.150308][ T6822]  should_fail+0x23c/0x250
[  142.154719][ T6822]  ? mempool_alloc_slab+0x16/0x20
[  142.159781][ T6822]  __should_failslab+0x81/0x90
[  142.164545][ T6822]  should_failslab+0x5/0x20
[  142.169069][ T6822]  kmem_cache_alloc+0x4f/0x320
07:40:22 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x12, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:22 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x102, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  142.173880][ T6822]  mempool_alloc_slab+0x16/0x20
[  142.178785][ T6822]  ? mempool_free+0x130/0x130
[  142.183477][ T6822]  mempool_alloc+0x9d/0x310
[  142.188059][ T6822]  bio_alloc_bioset+0xcc/0x560
[  142.192819][ T6822]  submit_bh_wbc+0x133/0x320
[  142.197408][ T6822]  ? mark_buffer_dirty+0x190/0x260
[  142.202542][ T6822]  write_dirty_buffer+0xde/0xf0
[  142.207395][ T6822]  fat_sync_bhs+0x52/0x160
[  142.211818][ T6822]  fat_ent_write+0x85/0xd0
[  142.216244][ T6822]  fat_chain_add+0x15b/0x410
[  142.220883][ T6822]  fat_get_block+0x48d/0x610
07:40:22 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x103, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  142.225480][ T6822]  __block_write_begin_int+0x4c5/0x1010
[  142.231031][ T6822]  ? fat_block_truncate_page+0x30/0x30
[  142.236499][ T6822]  cont_write_begin+0x4cf/0x7b0
[  142.241426][ T6822]  fat_write_begin+0x61/0xf0
[  142.246055][ T6822]  ? fat_block_truncate_page+0x30/0x30
[  142.251522][ T6822]  generic_perform_write+0x1c8/0x400
[  142.256822][ T6822]  __generic_file_write_iter+0xf7/0x2b0
[  142.262425][ T6822]  ? generic_write_checks+0x250/0x290
[  142.267795][ T6822]  generic_file_write_iter+0x75/0x130
07:40:22 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x104, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  142.273196][ T6822]  do_iter_readv_writev+0x2de/0x380
[  142.278440][ T6822]  do_iter_write+0x192/0x5c0
[  142.283064][ T6822]  ? import_iovec+0xb8/0xd0
[  142.285101][ T6852] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  142.287689][ T6822]  do_pwritev+0x235/0x440
[  142.287715][ T6822]  ? debug_smp_processor_id+0x18/0x20
[  142.305532][ T6822]  ? fpregs_assert_state_consistent+0x7e/0x90
[  142.311603][ T6822]  __x64_sys_pwritev2+0x7e/0xa0
[  142.316455][ T6822]  do_syscall_64+0x44/0xd0
[  142.321102][ T6822]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  142.327002][ T6822] RIP: 0033:0x7fbba9ab7ae9
[  142.331460][ T6822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  142.351111][ T6822] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  142.359521][ T6822] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  142.367495][ T6822] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  142.375539][ T6822] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  142.383552][ T6822] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  142.391547][ T6822] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  142.399578][ T6822]  </TASK>
07:40:23 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xf0ffffff00000000}, 0x0)

07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x105, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:23 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:23 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:23 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 8)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:23 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x0)

07:40:23 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffff7f00000000}, 0x0)

07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x106, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  142.955130][ T6880] loop4: detected capacity change from 0 to 16
[  142.980227][ T6880] FAULT_INJECTION: forcing a failure.
[  142.980227][ T6880] name failslab, interval 1, probability 0, space 0, times 0
[  142.992978][ T6880] CPU: 0 PID: 6880 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  143.003098][ T6880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  143.013151][ T6880] Call Trace:
[  143.016462][ T6880]  <TASK>
[  143.019422][ T6880]  dump_stack_lvl+0xd6/0x122
[  143.024134][ T6880]  dump_stack+0x11/0x1b
[  143.028375][ T6880]  should_fail+0x23c/0x250
[  143.032791][ T6880]  ? mempool_alloc_slab+0x16/0x20
[  143.037863][ T6880]  __should_failslab+0x81/0x90
[  143.042623][ T6880]  should_failslab+0x5/0x20
[  143.047123][ T6880]  kmem_cache_alloc+0x4f/0x320
[  143.051893][ T6880]  ? blk_mq_submit_bio+0xdeb/0x1470
[  143.057098][ T6880]  mempool_alloc_slab+0x16/0x20
[  143.061966][ T6880]  ? mempool_free+0x130/0x130
[  143.066812][ T6880]  mempool_alloc+0x9d/0x310
[  143.071374][ T6880]  bio_alloc_bioset+0xcc/0x560
[  143.076203][ T6880]  submit_bh_wbc+0x133/0x320
[  143.080793][ T6880]  ? mark_buffer_dirty+0x190/0x260
[  143.085901][ T6880]  __sync_dirty_buffer+0x136/0x1e0
[  143.091012][ T6880]  sync_dirty_buffer+0x16/0x20
[  143.095832][ T6880]  fat_mirror_bhs+0x24b/0x330
[  143.100511][ T6880]  fat_ent_write+0xc2/0xd0
[  143.104930][ T6880]  fat_chain_add+0x15b/0x410
[  143.109577][ T6880]  fat_get_block+0x48d/0x610
[  143.114232][ T6880]  __block_write_begin_int+0x4c5/0x1010
[  143.119781][ T6880]  ? fat_block_truncate_page+0x30/0x30
[  143.125311][ T6880]  cont_write_begin+0x4cf/0x7b0
[  143.130167][ T6880]  fat_write_begin+0x61/0xf0
[  143.134855][ T6880]  ? fat_block_truncate_page+0x30/0x30
[  143.140384][ T6880]  generic_perform_write+0x1c8/0x400
[  143.145682][ T6880]  __generic_file_write_iter+0xf7/0x2b0
[  143.151233][ T6880]  ? generic_write_checks+0x250/0x290
[  143.156606][ T6880]  generic_file_write_iter+0x75/0x130
[  143.162005][ T6880]  do_iter_readv_writev+0x2de/0x380
[  143.167243][ T6880]  do_iter_write+0x192/0x5c0
[  143.171841][ T6880]  ? import_iovec+0xb8/0xd0
[  143.176400][ T6880]  do_pwritev+0x235/0x440
[  143.180770][ T6880]  ? debug_smp_processor_id+0x18/0x20
[  143.186143][ T6880]  ? fpregs_assert_state_consistent+0x7e/0x90
[  143.192237][ T6880]  __x64_sys_pwritev2+0x7e/0xa0
[  143.197089][ T6880]  do_syscall_64+0x44/0xd0
07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x108, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x109, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x10a, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x10b, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x110, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:23 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x111, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  143.201518][ T6880]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  143.207487][ T6880] RIP: 0033:0x7fbba9ab7ae9
[  143.211895][ T6880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  143.231584][ T6880] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  143.240094][ T6880] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  143.248042][ T6880] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  143.256050][ T6880] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  143.264005][ T6880] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  143.271984][ T6880] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  143.279939][ T6880]  </TASK>
07:40:24 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x125, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:24 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0xffffffff00000000}, 0x0)

07:40:24 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

07:40:24 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 9)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:24 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x164, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  143.815226][ T6927] loop4: detected capacity change from 0 to 16
[  143.850908][ T6927] FAULT_INJECTION: forcing a failure.
[  143.850908][ T6927] name failslab, interval 1, probability 0, space 0, times 0
07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  143.863608][ T6927] CPU: 0 PID: 6927 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  143.873753][ T6927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  143.883832][ T6927] Call Trace:
[  143.887156][ T6927]  <TASK>
[  143.890082][ T6927]  dump_stack_lvl+0xd6/0x122
[  143.894688][ T6927]  dump_stack+0x11/0x1b
[  143.898846][ T6927]  should_fail+0x23c/0x250
[  143.903257][ T6927]  ? fat_cache_add+0x1f7/0x4f0
[  143.908020][ T6927]  __should_failslab+0x81/0x90
07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x2, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  143.912787][ T6927]  should_failslab+0x5/0x20
[  143.917292][ T6927]  kmem_cache_alloc+0x4f/0x320
[  143.922133][ T6927]  fat_cache_add+0x1f7/0x4f0
[  143.926748][ T6927]  ? __schedule+0x44a/0x6a0
[  143.931258][ T6927]  fat_get_cluster+0x5ca/0x890
[  143.936063][ T6927]  fat_get_mapped_cluster+0xe0/0x260
[  143.941350][ T6927]  fat_bmap+0x258/0x290
[  143.945560][ T6927]  fat_get_block+0x3cb/0x610
[  143.950152][ T6927]  __block_write_begin_int+0x4c5/0x1010
[  143.955706][ T6927]  ? fat_block_truncate_page+0x30/0x30
[  143.961239][ T6927]  cont_write_begin+0x4cf/0x7b0
07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x3, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x4, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  143.966095][ T6927]  fat_write_begin+0x61/0xf0
[  143.970734][ T6927]  ? fat_block_truncate_page+0x30/0x30
[  143.976228][ T6927]  generic_perform_write+0x1c8/0x400
[  143.981582][ T6927]  __generic_file_write_iter+0xf7/0x2b0
[  143.987137][ T6927]  ? generic_write_checks+0x250/0x290
[  143.992510][ T6927]  generic_file_write_iter+0x75/0x130
[  143.997918][ T6927]  do_iter_readv_writev+0x2de/0x380
[  144.003170][ T6927]  do_iter_write+0x192/0x5c0
[  144.007767][ T6927]  ? import_iovec+0xb8/0xd0
07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x5, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  144.012284][ T6927]  do_pwritev+0x235/0x440
[  144.016630][ T6927]  ? debug_smp_processor_id+0x18/0x20
[  144.022003][ T6927]  ? fpregs_assert_state_consistent+0x7e/0x90
[  144.028070][ T6927]  __x64_sys_pwritev2+0x7e/0xa0
[  144.032917][ T6927]  do_syscall_64+0x44/0xd0
[  144.037332][ T6927]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  144.043232][ T6927] RIP: 0033:0x7fbba9ab7ae9
[  144.047662][ T6927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  144.067326][ T6927] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  144.075764][ T6927] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  144.083752][ T6927] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  144.091721][ T6927] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  144.099671][ T6927] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  144.107623][ T6927] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  144.115706][ T6927]  </TASK>
07:40:24 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x300}, 0x0)

07:40:24 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x6, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:24 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:24 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:24 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 10)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:24 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

[  144.698057][ T6976] loop4: detected capacity change from 0 to 16
[  144.711704][ T6976] FAULT_INJECTION: forcing a failure.
[  144.711704][ T6976] name failslab, interval 1, probability 0, space 0, times 0
[  144.724189][ T6978] validate_nla: 21 callbacks suppressed
[  144.724202][ T6978] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  144.724354][ T6976] CPU: 0 PID: 6976 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x7, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  144.729871][ T6978] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  144.737907][ T6976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  144.737921][ T6976] Call Trace:
[  144.737927][ T6976]  <TASK>
[  144.737932][ T6976]  dump_stack_lvl+0xd6/0x122
[  144.776807][ T6976]  dump_stack+0x11/0x1b
[  144.780981][ T6976]  should_fail+0x23c/0x250
[  144.785396][ T6976]  ? fat_cache_add+0x1f7/0x4f0
[  144.790240][ T6976]  __should_failslab+0x81/0x90
07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x8, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  144.793743][ T6991] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  144.795006][ T6976]  should_failslab+0x5/0x20
[  144.795032][ T6976]  kmem_cache_alloc+0x4f/0x320
[  144.803100][ T6991] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  144.820411][ T6976]  fat_cache_add+0x1f7/0x4f0
[  144.825003][ T6976]  ? __schedule+0x44a/0x6a0
[  144.829580][ T6976]  fat_get_cluster+0x5ca/0x890
[  144.834342][ T6976]  fat_get_mapped_cluster+0xe0/0x260
[  144.839630][ T6976]  fat_bmap+0x258/0x290
07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x9, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  144.843370][ T6996] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  144.843795][ T6976]  fat_get_block+0x3cb/0x610
[  144.843862][ T6976]  __block_write_begin_int+0x4c5/0x1010
[  144.851882][ T6996] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  144.856434][ T6976]  ? fat_block_truncate_page+0x30/0x30
[  144.875695][ T6976]  cont_write_begin+0x4cf/0x7b0
[  144.880628][ T6976]  fat_write_begin+0x61/0xf0
[  144.885221][ T6976]  ? fat_block_truncate_page+0x30/0x30
[  144.890677][ T6976]  generic_perform_write+0x1c8/0x400
07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xa, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  144.895980][ T6976]  __generic_file_write_iter+0xf7/0x2b0
[  144.896755][ T7001] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  144.901593][ T6976]  ? generic_write_checks+0x250/0x290
[  144.901617][ T6976]  generic_file_write_iter+0x75/0x130
[  144.901641][ T6976]  do_iter_readv_writev+0x2de/0x380
[  144.909789][ T7001] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  144.915134][ T6976]  do_iter_write+0x192/0x5c0
[  144.915161][ T6976]  ? import_iovec+0xb8/0xd0
[  144.942814][ T6976]  do_pwritev+0x235/0x440
07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xb, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  144.947220][ T6976]  ? debug_smp_processor_id+0x18/0x20
[  144.952677][ T6976]  ? fpregs_assert_state_consistent+0x7e/0x90
[  144.958750][ T6976]  __x64_sys_pwritev2+0x7e/0xa0
[  144.963610][ T6976]  do_syscall_64+0x44/0xd0
[  144.968027][ T6976]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  144.973257][ T7006] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  144.973982][ T6976] RIP: 0033:0x7fbba9ab7ae9
07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xc, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  144.973999][ T6976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  144.982064][ T7006] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  145.014117][ T6976] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  145.022587][ T6976] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  145.030558][ T6976] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  145.038585][ T6976] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  145.046559][ T6976] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  145.054527][ T6976] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  145.062521][ T6976]  </TASK>
07:40:25 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x1000000}, 0x0)

07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xd, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xe, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:25 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x2}, 0x0)

07:40:25 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:25 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 11)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:25 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)

07:40:25 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

[  145.569482][ T7037] loop4: detected capacity change from 0 to 16
[  145.599734][ T7037] FAULT_INJECTION: forcing a failure.
[  145.599734][ T7037] name failslab, interval 1, probability 0, space 0, times 0
07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xf, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:25 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x10, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  145.612544][ T7037] CPU: 1 PID: 7037 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  145.622590][ T7037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  145.632642][ T7037] Call Trace:
[  145.635923][ T7037]  <TASK>
[  145.638893][ T7037]  dump_stack_lvl+0xd6/0x122
[  145.643618][ T7037]  dump_stack+0x11/0x1b
[  145.647836][ T7037]  should_fail+0x23c/0x250
[  145.652282][ T7037]  ? mempool_alloc_slab+0x16/0x20
[  145.657329][ T7037]  __should_failslab+0x81/0x90
[  145.662134][ T7037]  should_failslab+0x5/0x20
07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x11, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  145.666690][ T7037]  kmem_cache_alloc+0x4f/0x320
[  145.671454][ T7037]  ? __mod_lruvec_page_state+0x11c/0x160
[  145.677118][ T7037]  mempool_alloc_slab+0x16/0x20
[  145.681971][ T7037]  ? mempool_free+0x130/0x130
[  145.686647][ T7037]  mempool_alloc+0x9d/0x310
[  145.691152][ T7037]  bio_alloc_bioset+0xcc/0x560
[  145.695913][ T7037]  ? submit_bio_noacct+0x49f/0x4e0
[  145.701028][ T7037]  submit_bh_wbc+0x133/0x320
[  145.705666][ T7037]  ? mark_buffer_dirty+0x190/0x260
[  145.710788][ T7037]  __sync_dirty_buffer+0x136/0x1e0
07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x12, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  145.715927][ T7037]  sync_dirty_buffer+0x16/0x20
[  145.720693][ T7037]  fat_mirror_bhs+0x24b/0x330
[  145.725388][ T7037]  fat_alloc_clusters+0x9ad/0xab0
[  145.730418][ T7037]  fat_get_block+0x267/0x610
[  145.735055][ T7037]  __block_write_begin_int+0x4c5/0x1010
[  145.740688][ T7037]  ? fat_block_truncate_page+0x30/0x30
[  145.746223][ T7037]  cont_write_begin+0x4cf/0x7b0
[  145.751103][ T7037]  fat_write_begin+0x61/0xf0
[  145.755699][ T7037]  ? fat_block_truncate_page+0x30/0x30
[  145.761342][ T7037]  generic_perform_write+0x1c8/0x400
07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x25, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  145.766637][ T7037]  __generic_file_write_iter+0xf7/0x2b0
[  145.772249][ T7037]  ? generic_write_checks+0x250/0x290
[  145.777622][ T7037]  generic_file_write_iter+0x75/0x130
[  145.783001][ T7037]  do_iter_readv_writev+0x2de/0x380
[  145.788209][ T7037]  do_iter_write+0x192/0x5c0
[  145.792842][ T7037]  ? import_iovec+0xb8/0xd0
[  145.797358][ T7037]  do_pwritev+0x235/0x440
[  145.801689][ T7037]  ? debug_smp_processor_id+0x18/0x20
[  145.807082][ T7037]  ? fpregs_assert_state_consistent+0x7e/0x90
[  145.813218][ T7037]  __x64_sys_pwritev2+0x7e/0xa0
07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x48, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  145.818093][ T7037]  do_syscall_64+0x44/0xd0
[  145.822511][ T7037]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  145.828413][ T7037] RIP: 0033:0x7fbba9ab7ae9
[  145.832899][ T7037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  145.852550][ T7037] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  145.860964][ T7037] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x4c, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:26 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x3}, 0x0)

[  145.868935][ T7037] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  145.876937][ T7037] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  145.884912][ T7037] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  145.892883][ T7037] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  145.900876][ T7037]  </TASK>
07:40:26 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 12)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  146.069980][ T7089] loop4: detected capacity change from 0 to 16
[  146.081460][ T7089] FAULT_INJECTION: forcing a failure.
[  146.081460][ T7089] name failslab, interval 1, probability 0, space 0, times 0
[  146.094358][ T7089] CPU: 0 PID: 7089 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  146.104404][ T7089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  146.114482][ T7089] Call Trace:
[  146.117763][ T7089]  <TASK>
[  146.120687][ T7089]  dump_stack_lvl+0xd6/0x122
[  146.125304][ T7089]  dump_stack+0x11/0x1b
[  146.129561][ T7089]  should_fail+0x23c/0x250
[  146.134017][ T7089]  ? mempool_alloc_slab+0x16/0x20
[  146.139079][ T7089]  __should_failslab+0x81/0x90
[  146.143842][ T7089]  should_failslab+0x5/0x20
[  146.148323][ T7089]  kmem_cache_alloc+0x4f/0x320
[  146.153211][ T7089]  mempool_alloc_slab+0x16/0x20
[  146.158120][ T7089]  ? mempool_free+0x130/0x130
[  146.162841][ T7089]  mempool_alloc+0x9d/0x310
[  146.167400][ T7089]  bio_alloc_bioset+0xcc/0x560
[  146.172148][ T7089]  submit_bh_wbc+0x133/0x320
[  146.176716][ T7089]  ? mark_buffer_dirty+0x190/0x260
[  146.181816][ T7089]  write_dirty_buffer+0xde/0xf0
[  146.186743][ T7089]  fat_sync_bhs+0x52/0x160
[  146.191221][ T7089]  fat_ent_write+0x85/0xd0
[  146.195711][ T7089]  fat_chain_add+0x15b/0x410
[  146.200327][ T7089]  fat_get_block+0x48d/0x610
[  146.204931][ T7089]  __block_write_begin_int+0x4c5/0x1010
[  146.210468][ T7089]  ? fat_block_truncate_page+0x30/0x30
[  146.215929][ T7089]  cont_write_begin+0x4cf/0x7b0
[  146.220808][ T7089]  fat_write_begin+0x61/0xf0
[  146.225406][ T7089]  ? fat_block_truncate_page+0x30/0x30
[  146.230925][ T7089]  generic_perform_write+0x1c8/0x400
[  146.236242][ T7089]  __generic_file_write_iter+0xf7/0x2b0
[  146.241777][ T7089]  ? generic_write_checks+0x250/0x290
[  146.247158][ T7089]  generic_file_write_iter+0x75/0x130
[  146.252532][ T7089]  do_iter_readv_writev+0x2de/0x380
[  146.257716][ T7089]  do_iter_write+0x192/0x5c0
[  146.262309][ T7089]  ? import_iovec+0xb8/0xd0
[  146.266798][ T7089]  do_pwritev+0x235/0x440
[  146.271182][ T7089]  ? debug_smp_processor_id+0x18/0x20
[  146.276539][ T7089]  ? fpregs_assert_state_consistent+0x7e/0x90
[  146.282606][ T7089]  __x64_sys_pwritev2+0x7e/0xa0
[  146.287549][ T7089]  do_syscall_64+0x44/0xd0
[  146.291962][ T7089]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  146.297910][ T7089] RIP: 0033:0x7fbba9ab7ae9
[  146.302308][ T7089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  146.321924][ T7089] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  146.330342][ T7089] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  146.338295][ T7089] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  146.346256][ T7089] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  146.354208][ T7089] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  146.362156][ T7089] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  146.370113][ T7089]  </TASK>
07:40:26 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x60, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:26 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x3000000}, 0x0)

07:40:26 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x0)

07:40:26 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:26 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x68, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:26 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 13)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:26 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x6c, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:26 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x10000000}, 0x0)

07:40:26 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x74, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  146.569239][ T7122] loop4: detected capacity change from 0 to 16
[  146.598244][ T7122] FAULT_INJECTION: forcing a failure.
[  146.598244][ T7122] name failslab, interval 1, probability 0, space 0, times 0
[  146.610923][ T7122] CPU: 1 PID: 7122 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  146.620983][ T7122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  146.631099][ T7122] Call Trace:
[  146.634407][ T7122]  <TASK>
[  146.637342][ T7122]  dump_stack_lvl+0xd6/0x122
[  146.642008][ T7122]  dump_stack+0x11/0x1b
[  146.646209][ T7122]  should_fail+0x23c/0x250
[  146.650683][ T7122]  ? mempool_alloc_slab+0x16/0x20
[  146.655717][ T7122]  __should_failslab+0x81/0x90
[  146.660495][ T7122]  should_failslab+0x5/0x20
[  146.664999][ T7122]  kmem_cache_alloc+0x4f/0x320
[  146.669744][ T7122]  mempool_alloc_slab+0x16/0x20
[  146.674643][ T7122]  ? mempool_free+0x130/0x130
[  146.679304][ T7122]  mempool_alloc+0x9d/0x310
[  146.683834][ T7122]  bio_alloc_bioset+0xcc/0x560
[  146.688577][ T7122]  submit_bh_wbc+0x133/0x320
[  146.693190][ T7122]  ? mark_buffer_dirty+0x190/0x260
[  146.698290][ T7122]  __sync_dirty_buffer+0x136/0x1e0
[  146.703433][ T7122]  sync_dirty_buffer+0x16/0x20
[  146.708234][ T7122]  fat_mirror_bhs+0x24b/0x330
[  146.712891][ T7122]  fat_ent_write+0xc2/0xd0
[  146.717288][ T7122]  fat_chain_add+0x15b/0x410
[  146.721883][ T7122]  fat_get_block+0x48d/0x610
[  146.726498][ T7122]  __block_write_begin_int+0x4c5/0x1010
[  146.732036][ T7122]  ? fat_block_truncate_page+0x30/0x30
[  146.737653][ T7122]  cont_write_begin+0x4cf/0x7b0
[  146.742487][ T7122]  fat_write_begin+0x61/0xf0
[  146.747060][ T7122]  ? fat_block_truncate_page+0x30/0x30
[  146.752610][ T7122]  generic_perform_write+0x1c8/0x400
[  146.757898][ T7122]  __generic_file_write_iter+0xf7/0x2b0
[  146.763525][ T7122]  ? generic_write_checks+0x250/0x290
[  146.768943][ T7122]  generic_file_write_iter+0x75/0x130
[  146.774341][ T7122]  do_iter_readv_writev+0x2de/0x380
[  146.779601][ T7122]  do_iter_write+0x192/0x5c0
[  146.784253][ T7122]  ? import_iovec+0xb8/0xd0
[  146.788757][ T7122]  do_pwritev+0x235/0x440
[  146.793098][ T7122]  ? debug_smp_processor_id+0x18/0x20
[  146.798476][ T7122]  ? fpregs_assert_state_consistent+0x7e/0x90
[  146.804602][ T7122]  __x64_sys_pwritev2+0x7e/0xa0
[  146.809434][ T7122]  do_syscall_64+0x44/0xd0
[  146.813852][ T7122]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  146.819740][ T7122] RIP: 0033:0x7fbba9ab7ae9
[  146.824131][ T7122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  146.843724][ T7122] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  146.852167][ T7122] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  146.860183][ T7122] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  146.868306][ T7122] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  146.876281][ T7122] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  146.884303][ T7122] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  146.892253][ T7122]  </TASK>
07:40:27 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:27 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x7a, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:27 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x38541db9}, 0x0)

07:40:27 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x300}, 0x0)

07:40:27 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 14)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:27 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

[  147.314718][ T7139] loop4: detected capacity change from 0 to 16
[  147.338305][ T7139] FAULT_INJECTION: forcing a failure.
[  147.338305][ T7139] name failslab, interval 1, probability 0, space 0, times 0
[  147.350979][ T7139] CPU: 1 PID: 7139 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:27 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x154, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:27 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x300, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  147.361054][ T7139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  147.371104][ T7139] Call Trace:
[  147.374386][ T7139]  <TASK>
[  147.377367][ T7139]  dump_stack_lvl+0xd6/0x122
[  147.381959][ T7139]  dump_stack+0x11/0x1b
[  147.386120][ T7139]  should_fail+0x23c/0x250
[  147.390533][ T7139]  ? mempool_alloc_slab+0x16/0x20
[  147.395714][ T7139]  __should_failslab+0x81/0x90
[  147.400475][ T7139]  should_failslab+0x5/0x20
[  147.405143][ T7139]  kmem_cache_alloc+0x4f/0x320
[  147.409970][ T7139]  mempool_alloc_slab+0x16/0x20
[  147.414832][ T7139]  ? mempool_free+0x130/0x130
[  147.419516][ T7139]  mempool_alloc+0x9d/0x310
[  147.424089][ T7139]  bio_alloc_bioset+0xcc/0x560
[  147.428849][ T7139]  submit_bh_wbc+0x133/0x320
[  147.433468][ T7139]  ? mark_buffer_dirty+0x190/0x260
[  147.438746][ T7139]  __sync_dirty_buffer+0x136/0x1e0
[  147.443841][ T7139]  sync_dirty_buffer+0x16/0x20
[  147.448600][ T7139]  fat_mirror_bhs+0x24b/0x330
[  147.453263][ T7139]  fat_ent_write+0xc2/0xd0
[  147.457672][ T7139]  fat_chain_add+0x15b/0x410
[  147.462244][ T7139]  fat_get_block+0x48d/0x610
[  147.466838][ T7139]  __block_write_begin_int+0x4c5/0x1010
[  147.472482][ T7139]  ? fat_block_truncate_page+0x30/0x30
[  147.477934][ T7139]  cont_write_begin+0x4cf/0x7b0
[  147.482777][ T7139]  fat_write_begin+0x61/0xf0
[  147.487467][ T7139]  ? fat_block_truncate_page+0x30/0x30
[  147.492914][ T7139]  generic_perform_write+0x1c8/0x400
[  147.498201][ T7139]  __generic_file_write_iter+0xf7/0x2b0
[  147.503765][ T7139]  ? generic_write_checks+0x250/0x290
[  147.509120][ T7139]  generic_file_write_iter+0x75/0x130
[  147.514490][ T7139]  do_iter_readv_writev+0x2de/0x380
[  147.519685][ T7139]  do_iter_write+0x192/0x5c0
[  147.524294][ T7139]  ? import_iovec+0xb8/0xd0
[  147.528827][ T7139]  do_pwritev+0x235/0x440
[  147.533189][ T7139]  ? debug_smp_processor_id+0x18/0x20
[  147.538541][ T7139]  ? fpregs_assert_state_consistent+0x7e/0x90
[  147.544673][ T7139]  __x64_sys_pwritev2+0x7e/0xa0
[  147.549521][ T7139]  do_syscall_64+0x44/0xd0
[  147.554033][ T7139]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  147.559924][ T7139] RIP: 0033:0x7fbba9ab7ae9
[  147.564391][ T7139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  147.583976][ T7139] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  147.592364][ T7139] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  147.600318][ T7139] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
07:40:27 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x500, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  147.608351][ T7139] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  147.616298][ T7139] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  147.624275][ T7139] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  147.632420][ T7139]  </TASK>
07:40:27 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xfb3ee0}, 0x0)

07:40:28 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x9effffff}, 0x0)

07:40:28 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x600, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:28 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:28 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 15)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:28 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x700, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:28 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x1000000}, 0x0)

07:40:28 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xb91d5438}, 0x0)

07:40:28 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

[  148.490371][ T7182] loop4: detected capacity change from 0 to 16
[  148.528511][ T7182] FAULT_INJECTION: forcing a failure.
07:40:28 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x900, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  148.528511][ T7182] name failslab, interval 1, probability 0, space 0, times 0
[  148.541382][ T7182] CPU: 0 PID: 7182 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  148.551467][ T7182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  148.561522][ T7182] Call Trace:
[  148.564864][ T7182]  <TASK>
[  148.567797][ T7182]  dump_stack_lvl+0xd6/0x122
[  148.572404][ T7182]  dump_stack+0x11/0x1b
[  148.576564][ T7182]  should_fail+0x23c/0x250
[  148.580986][ T7182]  ? mempool_alloc_slab+0x16/0x20
[  148.586144][ T7182]  __should_failslab+0x81/0x90
07:40:28 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xa00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  148.590970][ T7182]  should_failslab+0x5/0x20
[  148.595477][ T7182]  kmem_cache_alloc+0x4f/0x320
[  148.600299][ T7182]  mempool_alloc_slab+0x16/0x20
[  148.605155][ T7182]  ? mempool_free+0x130/0x130
[  148.609869][ T7182]  mempool_alloc+0x9d/0x310
[  148.614384][ T7182]  bio_alloc_bioset+0xcc/0x560
[  148.619244][ T7182]  ? submit_bio_noacct+0x49f/0x4e0
[  148.624362][ T7182]  submit_bh_wbc+0x133/0x320
[  148.629083][ T7182]  ? mark_buffer_dirty+0x190/0x260
[  148.634199][ T7182]  __sync_dirty_buffer+0x136/0x1e0
07:40:28 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xb00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:28 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xc00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  148.639398][ T7182]  sync_dirty_buffer+0x16/0x20
[  148.644159][ T7182]  fat_mirror_bhs+0x24b/0x330
[  148.648869][ T7182]  fat_alloc_clusters+0x9ad/0xab0
[  148.653909][ T7182]  fat_get_block+0x267/0x610
[  148.658506][ T7182]  __block_write_begin_int+0x4c5/0x1010
[  148.664105][ T7182]  ? fat_block_truncate_page+0x30/0x30
[  148.669657][ T7182]  cont_write_begin+0x4cf/0x7b0
[  148.674516][ T7182]  fat_write_begin+0x61/0xf0
[  148.679177][ T7182]  ? fat_block_truncate_page+0x30/0x30
[  148.684637][ T7182]  generic_perform_write+0x1c8/0x400
07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xd00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  148.689928][ T7182]  __generic_file_write_iter+0xf7/0x2b0
[  148.695478][ T7182]  ? generic_write_checks+0x250/0x290
[  148.700848][ T7182]  generic_file_write_iter+0x75/0x130
[  148.706303][ T7182]  do_iter_readv_writev+0x2de/0x380
[  148.711502][ T7182]  do_iter_write+0x192/0x5c0
[  148.716180][ T7182]  ? import_iovec+0xb8/0xd0
[  148.720691][ T7182]  do_pwritev+0x235/0x440
[  148.725029][ T7182]  ? debug_smp_processor_id+0x18/0x20
[  148.730405][ T7182]  ? fpregs_assert_state_consistent+0x7e/0x90
[  148.736475][ T7182]  __x64_sys_pwritev2+0x7e/0xa0
07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xe00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  148.741343][ T7182]  do_syscall_64+0x44/0xd0
[  148.745763][ T7182]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  148.751658][ T7182] RIP: 0033:0x7fbba9ab7ae9
[  148.756072][ T7182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  148.775758][ T7182] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  148.784172][ T7182] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  148.792141][ T7182] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  148.800119][ T7182] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  148.808092][ T7182] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  148.816064][ T7182] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  148.824088][ T7182]  </TASK>
07:40:29 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xe5a, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:29 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)

07:40:29 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xefffffff}, 0x0)

07:40:29 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 16)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:29 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

[  149.389238][ T7236] loop4: detected capacity change from 0 to 16
[  149.418821][ T7236] FAULT_INJECTION: forcing a failure.
[  149.418821][ T7236] name failslab, interval 1, probability 0, space 0, times 0
07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xe5b, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xf00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  149.431566][ T7236] CPU: 1 PID: 7236 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  149.441634][ T7236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  149.451687][ T7236] Call Trace:
[  149.455007][ T7236]  <TASK>
[  149.457947][ T7236]  dump_stack_lvl+0xd6/0x122
[  149.462600][ T7236]  dump_stack+0x11/0x1b
[  149.466757][ T7236]  should_fail+0x23c/0x250
[  149.471193][ T7236]  ? mempool_alloc_slab+0x16/0x20
[  149.476219][ T7236]  __should_failslab+0x81/0x90
[  149.480986][ T7236]  should_failslab+0x5/0x20
07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x1100, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  149.485490][ T7236]  kmem_cache_alloc+0x4f/0x320
[  149.490254][ T7236]  mempool_alloc_slab+0x16/0x20
[  149.495100][ T7236]  ? mempool_free+0x130/0x130
[  149.499790][ T7236]  mempool_alloc+0x9d/0x310
[  149.504306][ T7236]  bio_alloc_bioset+0xcc/0x560
[  149.509164][ T7236]  submit_bh_wbc+0x133/0x320
[  149.513869][ T7236]  ? mark_buffer_dirty+0x190/0x260
[  149.519139][ T7236]  write_dirty_buffer+0xde/0xf0
[  149.524047][ T7236]  fat_sync_bhs+0x52/0x160
[  149.528471][ T7236]  fat_ent_write+0x85/0xd0
[  149.532994][ T7236]  fat_chain_add+0x15b/0x410
07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x1200, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  149.537588][ T7236]  fat_get_block+0x48d/0x610
[  149.542178][ T7236]  __block_write_begin_int+0x4c5/0x1010
[  149.547732][ T7236]  ? fat_block_truncate_page+0x30/0x30
[  149.553198][ T7236]  cont_write_begin+0x4cf/0x7b0
[  149.558066][ T7236]  fat_write_begin+0x61/0xf0
[  149.562665][ T7236]  ? fat_block_truncate_page+0x30/0x30
[  149.568132][ T7236]  generic_perform_write+0x1c8/0x400
[  149.573448][ T7236]  __generic_file_write_iter+0xf7/0x2b0
[  149.579002][ T7236]  ? generic_write_checks+0x250/0x290
[  149.584373][ T7236]  generic_file_write_iter+0x75/0x130
07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x2000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  149.589768][ T7236]  do_iter_readv_writev+0x2de/0x380
[  149.595030][ T7236]  do_iter_write+0x192/0x5c0
[  149.599625][ T7236]  ? import_iovec+0xb8/0xd0
[  149.604149][ T7236]  do_pwritev+0x235/0x440
[  149.608505][ T7236]  ? debug_smp_processor_id+0x18/0x20
[  149.613896][ T7236]  ? fpregs_assert_state_consistent+0x7e/0x90
[  149.619973][ T7236]  __x64_sys_pwritev2+0x7e/0xa0
[  149.624978][ T7236]  do_syscall_64+0x44/0xd0
[  149.629400][ T7236]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  149.635302][ T7236] RIP: 0033:0x7fbba9ab7ae9
07:40:29 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x2500, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  149.639714][ T7236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  149.659430][ T7236] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  149.667861][ T7236] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  149.675827][ T7236] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  149.683884][ T7236] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  149.691860][ T7236] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  149.699849][ T7236] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  149.707813][ T7236]  </TASK>
07:40:30 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:30 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x4800, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:30 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x3000000}, 0x0)

07:40:30 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xf0ffffff}, 0x0)

07:40:30 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 17)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  150.260447][ T7284] loop4: detected capacity change from 0 to 16
[  150.263372][ T7287] validate_nla: 68 callbacks suppressed
[  150.263397][ T7287] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  150.280400][ T7287] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  150.283803][ T7284] FAULT_INJECTION: forcing a failure.
[  150.283803][ T7284] name failslab, interval 1, probability 0, space 0, times 0
[  150.301234][ T7284] CPU: 1 PID: 7284 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  150.311299][ T7284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  150.321449][ T7284] Call Trace:
[  150.324707][ T7284]  <TASK>
[  150.327651][ T7284]  dump_stack_lvl+0xd6/0x122
[  150.332265][ T7284]  dump_stack+0x11/0x1b
[  150.336405][ T7284]  should_fail+0x23c/0x250
[  150.340824][ T7284]  ? mempool_alloc_slab+0x16/0x20
[  150.345893][ T7284]  __should_failslab+0x81/0x90
[  150.350710][ T7284]  should_failslab+0x5/0x20
[  150.355268][ T7284]  kmem_cache_alloc+0x4f/0x320
[  150.360029][ T7284]  ? blk_mq_submit_bio+0xdeb/0x1470
[  150.365253][ T7284]  mempool_alloc_slab+0x16/0x20
[  150.370163][ T7284]  ? mempool_free+0x130/0x130
[  150.374924][ T7284]  mempool_alloc+0x9d/0x310
[  150.379477][ T7284]  bio_alloc_bioset+0xcc/0x560
[  150.384222][ T7284]  submit_bh_wbc+0x133/0x320
[  150.388965][ T7284]  ? mark_buffer_dirty+0x190/0x260
[  150.394062][ T7284]  __sync_dirty_buffer+0x136/0x1e0
[  150.399234][ T7284]  sync_dirty_buffer+0x16/0x20
[  150.403978][ T7284]  fat_mirror_bhs+0x24b/0x330
[  150.408648][ T7284]  fat_ent_write+0xc2/0xd0
[  150.413046][ T7284]  fat_chain_add+0x15b/0x410
[  150.417753][ T7284]  fat_get_block+0x48d/0x610
[  150.422535][ T7284]  __block_write_begin_int+0x4c5/0x1010
[  150.428123][ T7284]  ? fat_block_truncate_page+0x30/0x30
[  150.433576][ T7284]  cont_write_begin+0x4cf/0x7b0
[  150.438423][ T7284]  fat_write_begin+0x61/0xf0
[  150.443054][ T7284]  ? fat_block_truncate_page+0x30/0x30
[  150.448551][ T7284]  generic_perform_write+0x1c8/0x400
[  150.453855][ T7284]  __generic_file_write_iter+0xf7/0x2b0
[  150.459384][ T7284]  ? generic_write_checks+0x250/0x290
[  150.464774][ T7284]  generic_file_write_iter+0x75/0x130
[  150.470144][ T7284]  do_iter_readv_writev+0x2de/0x380
[  150.475321][ T7284]  do_iter_write+0x192/0x5c0
[  150.479928][ T7284]  ? import_iovec+0xb8/0xd0
[  150.484471][ T7284]  do_pwritev+0x235/0x440
[  150.488797][ T7284]  ? debug_smp_processor_id+0x18/0x20
[  150.494173][ T7284]  ? fpregs_assert_state_consistent+0x7e/0x90
[  150.500267][ T7284]  __x64_sys_pwritev2+0x7e/0xa0
[  150.505105][ T7284]  do_syscall_64+0x44/0xd0
[  150.509501][ T7284]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  150.515373][ T7284] RIP: 0033:0x7fbba9ab7ae9
[  150.519769][ T7284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  150.539466][ T7284] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  150.547903][ T7284] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
07:40:30 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:30 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x4c00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  150.555888][ T7284] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  150.563845][ T7284] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  150.571794][ T7284] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  150.579755][ T7284] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  150.587828][ T7284]  </TASK>
07:40:30 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)

07:40:30 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

[  150.616068][ T7295] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  150.624253][ T7295] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:30 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x5401, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:31 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 18)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  150.711751][ T7306] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  150.719883][ T7306] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  150.730562][ T7311] loop4: detected capacity change from 0 to 16
07:40:31 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x5a0e, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  150.753779][ T7311] FAULT_INJECTION: forcing a failure.
[  150.753779][ T7311] name failslab, interval 1, probability 0, space 0, times 0
[  150.766505][ T7311] CPU: 1 PID: 7311 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  150.776774][ T7311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  150.782463][ T7316] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  150.786822][ T7311] Call Trace:
[  150.786831][ T7311]  <TASK>
[  150.786837][ T7311]  dump_stack_lvl+0xd6/0x122
[  150.794923][ T7316] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  150.798159][ T7311]  dump_stack+0x11/0x1b
[  150.818011][ T7311]  should_fail+0x23c/0x250
[  150.822431][ T7311]  ? mempool_alloc_slab+0x16/0x20
[  150.827488][ T7311]  __should_failslab+0x81/0x90
[  150.832264][ T7311]  should_failslab+0x5/0x20
[  150.836848][ T7311]  kmem_cache_alloc+0x4f/0x320
[  150.841646][ T7311]  mempool_alloc_slab+0x16/0x20
[  150.846502][ T7311]  ? mempool_free+0x130/0x130
[  150.851175][ T7311]  mempool_alloc+0x9d/0x310
[  150.855658][ T7311]  bio_alloc_bioset+0xcc/0x560
[  150.860472][ T7311]  ? __getblk_gfp+0x3f/0x530
[  150.865066][ T7311]  submit_bh_wbc+0x133/0x320
[  150.869701][ T7311]  ? mark_buffer_dirty+0x190/0x260
[  150.874791][ T7311]  write_dirty_buffer+0xde/0xf0
[  150.879622][ T7311]  fat_sync_bhs+0x52/0x160
[  150.884026][ T7311]  fat_alloc_clusters+0x95a/0xab0
[  150.889045][ T7311]  fat_get_block+0x267/0x610
[  150.893667][ T7311]  __block_write_begin_int+0x4c5/0x1010
[  150.899194][ T7311]  ? fat_block_truncate_page+0x30/0x30
[  150.904636][ T7311]  cont_write_begin+0x4cf/0x7b0
[  150.909489][ T7311]  fat_write_begin+0x61/0xf0
[  150.914059][ T7311]  ? fat_block_truncate_page+0x30/0x30
[  150.919534][ T7311]  generic_perform_write+0x1c8/0x400
[  150.924831][ T7311]  __generic_file_write_iter+0xf7/0x2b0
[  150.930377][ T7311]  ? generic_write_checks+0x250/0x290
[  150.935811][ T7311]  generic_file_write_iter+0x75/0x130
[  150.941205][ T7311]  do_iter_readv_writev+0x2de/0x380
[  150.946461][ T7311]  do_iter_write+0x192/0x5c0
[  150.951128][ T7311]  ? import_iovec+0xb8/0xd0
[  150.955629][ T7311]  do_pwritev+0x235/0x440
[  150.959945][ T7311]  ? debug_smp_processor_id+0x18/0x20
[  150.965402][ T7311]  ? fpregs_assert_state_consistent+0x7e/0x90
[  150.971542][ T7311]  __x64_sys_pwritev2+0x7e/0xa0
[  150.976371][ T7311]  do_syscall_64+0x44/0xd0
[  150.980790][ T7311]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  150.986771][ T7311] RIP: 0033:0x7fbba9ab7ae9
[  150.991161][ T7311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  151.010758][ T7311] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  151.019145][ T7311] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  151.027111][ T7311] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  151.035057][ T7311] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  151.043079][ T7311] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
07:40:31 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, 0x0, 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:31 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x5b0e, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:31 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x10000000}, 0x0)

[  151.051031][ T7311] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  151.059021][ T7311]  </TASK>
07:40:31 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xffffff9e}, 0x0)

07:40:31 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x6000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  151.148640][ T7323] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  151.156875][ T7323] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:31 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:31 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 19)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:31 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x9effffff}, 0x0)

07:40:31 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x6800, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:31 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xffffffef}, 0x0)

[  151.470971][ T7345] loop4: detected capacity change from 0 to 16
[  151.483109][ T7345] FAULT_INJECTION: forcing a failure.
[  151.483109][ T7345] name failslab, interval 1, probability 0, space 0, times 0
[  151.495781][ T7345] CPU: 1 PID: 7345 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  151.505913][ T7345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  151.515960][ T7345] Call Trace:
07:40:31 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x6c00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:31 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x7400, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  151.519229][ T7345]  <TASK>
[  151.522172][ T7345]  dump_stack_lvl+0xd6/0x122
[  151.526916][ T7345]  dump_stack+0x11/0x1b
[  151.531206][ T7345]  should_fail+0x23c/0x250
[  151.535732][ T7345]  ? mempool_alloc_slab+0x16/0x20
[  151.540769][ T7345]  __should_failslab+0x81/0x90
[  151.545600][ T7345]  should_failslab+0x5/0x20
[  151.550120][ T7345]  kmem_cache_alloc+0x4f/0x320
[  151.554888][ T7345]  mempool_alloc_slab+0x16/0x20
[  151.559745][ T7345]  ? mempool_free+0x130/0x130
[  151.564471][ T7345]  mempool_alloc+0x9d/0x310
[  151.569017][ T7345]  bio_alloc_bioset+0xcc/0x560
[  151.573799][ T7345]  submit_bh_wbc+0x133/0x320
[  151.578392][ T7345]  ? mark_buffer_dirty+0x190/0x260
[  151.583676][ T7345]  __sync_dirty_buffer+0x136/0x1e0
[  151.588825][ T7345]  sync_dirty_buffer+0x16/0x20
[  151.593588][ T7345]  fat_mirror_bhs+0x24b/0x330
[  151.598281][ T7345]  fat_alloc_clusters+0x9ad/0xab0
[  151.603379][ T7345]  fat_get_block+0x267/0x610
[  151.608011][ T7345]  __block_write_begin_int+0x4c5/0x1010
[  151.613600][ T7345]  ? fat_block_truncate_page+0x30/0x30
[  151.619200][ T7345]  cont_write_begin+0x4cf/0x7b0
[  151.624155][ T7345]  fat_write_begin+0x61/0xf0
[  151.628765][ T7345]  ? fat_block_truncate_page+0x30/0x30
[  151.634244][ T7345]  generic_perform_write+0x1c8/0x400
[  151.639615][ T7345]  __generic_file_write_iter+0xf7/0x2b0
[  151.645197][ T7345]  ? generic_write_checks+0x250/0x290
[  151.650627][ T7345]  generic_file_write_iter+0x75/0x130
[  151.655982][ T7345]  do_iter_readv_writev+0x2de/0x380
[  151.661244][ T7345]  do_iter_write+0x192/0x5c0
[  151.665863][ T7345]  ? import_iovec+0xb8/0xd0
[  151.670536][ T7345]  do_pwritev+0x235/0x440
[  151.674854][ T7345]  ? debug_smp_processor_id+0x18/0x20
[  151.680328][ T7345]  ? fpregs_assert_state_consistent+0x7e/0x90
[  151.686396][ T7345]  __x64_sys_pwritev2+0x7e/0xa0
[  151.691266][ T7345]  do_syscall_64+0x44/0xd0
[  151.695696][ T7345]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  151.701636][ T7345] RIP: 0033:0x7fbba9ab7ae9
[  151.706067][ T7345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  151.725852][ T7345] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  151.734310][ T7345] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  151.742384][ T7345] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  151.750396][ T7345] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  151.758366][ T7345] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  151.766331][ T7345] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  151.774303][ T7345]  </TASK>
07:40:32 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xe03efb00}, 0x0)

07:40:32 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, 0x0, 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:32 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x7a00, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:32 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xfffffff0}, 0x0)

07:40:32 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 20)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  152.002970][ T7378] loop4: detected capacity change from 0 to 16
[  152.021208][ T7378] FAULT_INJECTION: forcing a failure.
[  152.021208][ T7378] name failslab, interval 1, probability 0, space 0, times 0
[  152.033881][ T7378] CPU: 0 PID: 7378 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  152.043969][ T7378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  152.054002][ T7378] Call Trace:
[  152.057275][ T7378]  <TASK>
[  152.060243][ T7378]  dump_stack_lvl+0xd6/0x122
[  152.064869][ T7378]  dump_stack+0x11/0x1b
[  152.069002][ T7378]  should_fail+0x23c/0x250
[  152.073429][ T7378]  ? mempool_alloc_slab+0x16/0x20
[  152.078533][ T7378]  __should_failslab+0x81/0x90
[  152.083282][ T7378]  should_failslab+0x5/0x20
[  152.087782][ T7378]  kmem_cache_alloc+0x4f/0x320
[  152.092539][ T7378]  mempool_alloc_slab+0x16/0x20
[  152.097388][ T7378]  ? mempool_free+0x130/0x130
[  152.102084][ T7378]  mempool_alloc+0x9d/0x310
[  152.106650][ T7378]  bio_alloc_bioset+0xcc/0x560
[  152.111413][ T7378]  submit_bh_wbc+0x133/0x320
[  152.116098][ T7378]  ? mark_buffer_dirty+0x190/0x260
[  152.121188][ T7378]  write_dirty_buffer+0xde/0xf0
[  152.126123][ T7378]  fat_sync_bhs+0x52/0x160
[  152.130648][ T7378]  fat_ent_write+0x85/0xd0
[  152.135119][ T7378]  fat_chain_add+0x15b/0x410
[  152.139727][ T7378]  fat_get_block+0x48d/0x610
[  152.144296][ T7378]  __block_write_begin_int+0x4c5/0x1010
[  152.149825][ T7378]  ? fat_block_truncate_page+0x30/0x30
[  152.155321][ T7378]  cont_write_begin+0x4cf/0x7b0
[  152.160221][ T7378]  fat_write_begin+0x61/0xf0
[  152.164863][ T7378]  ? fat_block_truncate_page+0x30/0x30
[  152.170307][ T7378]  generic_perform_write+0x1c8/0x400
[  152.175637][ T7378]  __generic_file_write_iter+0xf7/0x2b0
[  152.181285][ T7378]  ? generic_write_checks+0x250/0x290
[  152.186636][ T7378]  generic_file_write_iter+0x75/0x130
[  152.192034][ T7378]  do_iter_readv_writev+0x2de/0x380
[  152.197422][ T7378]  do_iter_write+0x192/0x5c0
[  152.202064][ T7378]  ? import_iovec+0xb8/0xd0
[  152.206556][ T7378]  do_pwritev+0x235/0x440
[  152.210869][ T7378]  ? debug_smp_processor_id+0x18/0x20
[  152.216247][ T7378]  ? fpregs_assert_state_consistent+0x7e/0x90
[  152.222355][ T7378]  __x64_sys_pwritev2+0x7e/0xa0
[  152.227350][ T7378]  do_syscall_64+0x44/0xd0
[  152.231760][ T7378]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  152.237658][ T7378] RIP: 0033:0x7fbba9ab7ae9
[  152.242058][ T7378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  152.261739][ T7378] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  152.270131][ T7378] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  152.278093][ T7378] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  152.286055][ T7378] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  152.294028][ T7378] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
07:40:32 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:32 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x34000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  152.302046][ T7378] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  152.310014][ T7378]  </TASK>
07:40:32 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x2)

07:40:32 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xefffffff}, 0x0)

07:40:32 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x400300, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:32 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 21)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:32 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xe0ffff, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:32 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x1000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  152.494660][ T7411] loop4: detected capacity change from 0 to 16
[  152.514642][ T7411] FAULT_INJECTION: forcing a failure.
[  152.514642][ T7411] name failslab, interval 1, probability 0, space 0, times 0
[  152.527368][ T7411] CPU: 0 PID: 7411 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  152.537442][ T7411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  152.547475][ T7411] Call Trace:
[  152.550748][ T7411]  <TASK>
[  152.553657][ T7411]  dump_stack_lvl+0xd6/0x122
[  152.558229][ T7411]  dump_stack+0x11/0x1b
[  152.562437][ T7411]  should_fail+0x23c/0x250
[  152.566934][ T7411]  ? mempool_alloc_slab+0x16/0x20
[  152.572068][ T7411]  __should_failslab+0x81/0x90
[  152.576812][ T7411]  should_failslab+0x5/0x20
[  152.581386][ T7411]  kmem_cache_alloc+0x4f/0x320
[  152.586137][ T7411]  mempool_alloc_slab+0x16/0x20
[  152.591028][ T7411]  ? mempool_free+0x130/0x130
[  152.595763][ T7411]  mempool_alloc+0x9d/0x310
[  152.600298][ T7411]  bio_alloc_bioset+0xcc/0x560
[  152.605132][ T7411]  submit_bh_wbc+0x133/0x320
[  152.609735][ T7411]  ? mark_buffer_dirty+0x190/0x260
[  152.614826][ T7411]  __sync_dirty_buffer+0x136/0x1e0
[  152.619921][ T7411]  sync_dirty_buffer+0x16/0x20
[  152.624735][ T7411]  fat_mirror_bhs+0x24b/0x330
[  152.629477][ T7411]  fat_ent_write+0xc2/0xd0
[  152.633910][ T7411]  fat_chain_add+0x15b/0x410
[  152.638493][ T7411]  fat_get_block+0x48d/0x610
[  152.643080][ T7411]  __block_write_begin_int+0x4c5/0x1010
[  152.648628][ T7411]  ? fat_block_truncate_page+0x30/0x30
[  152.654083][ T7411]  cont_write_begin+0x4cf/0x7b0
[  152.658938][ T7411]  fat_write_begin+0x61/0xf0
[  152.663522][ T7411]  ? fat_block_truncate_page+0x30/0x30
[  152.668972][ T7411]  generic_perform_write+0x1c8/0x400
[  152.674321][ T7411]  __generic_file_write_iter+0xf7/0x2b0
[  152.679861][ T7411]  ? generic_write_checks+0x250/0x290
[  152.685215][ T7411]  generic_file_write_iter+0x75/0x130
[  152.690696][ T7411]  do_iter_readv_writev+0x2de/0x380
[  152.696054][ T7411]  do_iter_write+0x192/0x5c0
[  152.700626][ T7411]  ? import_iovec+0xb8/0xd0
[  152.705109][ T7411]  do_pwritev+0x235/0x440
[  152.709461][ T7411]  ? debug_smp_processor_id+0x18/0x20
[  152.714816][ T7411]  ? fpregs_assert_state_consistent+0x7e/0x90
[  152.720934][ T7411]  __x64_sys_pwritev2+0x7e/0xa0
[  152.725847][ T7411]  do_syscall_64+0x44/0xd0
[  152.730245][ T7411]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  152.736131][ T7411] RIP: 0033:0x7fbba9ab7ae9
[  152.740604][ T7411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  152.760261][ T7411] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  152.768675][ T7411] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  152.776717][ T7411] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  152.784666][ T7411] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  152.792618][ T7411] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  152.800567][ T7411] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  152.808520][ T7411]  </TASK>
07:40:33 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, 0x0, 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:33 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x3)

07:40:33 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xf0ffffff}, 0x0)

07:40:33 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x2000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:33 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:33 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x3000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:33 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)

07:40:33 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x4)

07:40:33 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 22)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:33 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x4000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  153.218431][ T7438] loop4: detected capacity change from 0 to 16
[  153.241673][ T7438] FAULT_INJECTION: forcing a failure.
[  153.241673][ T7438] name failslab, interval 1, probability 0, space 0, times 0
[  153.254401][ T7438] CPU: 0 PID: 7438 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:33 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x5000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  153.264510][ T7438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  153.274596][ T7438] Call Trace:
[  153.277867][ T7438]  <TASK>
[  153.280800][ T7438]  dump_stack_lvl+0xd6/0x122
[  153.285398][ T7438]  dump_stack+0x11/0x1b
[  153.289627][ T7438]  should_fail+0x23c/0x250
[  153.294048][ T7438]  ? mempool_alloc_slab+0x16/0x20
[  153.299090][ T7438]  __should_failslab+0x81/0x90
[  153.303907][ T7438]  should_failslab+0x5/0x20
[  153.308494][ T7438]  kmem_cache_alloc+0x4f/0x320
[  153.313257][ T7438]  mempool_alloc_slab+0x16/0x20
07:40:33 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x6000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  153.318291][ T7438]  ? mempool_free+0x130/0x130
[  153.323019][ T7438]  mempool_alloc+0x9d/0x310
[  153.327530][ T7438]  bio_alloc_bioset+0xcc/0x560
[  153.332292][ T7438]  ? __getblk_gfp+0x3f/0x530
[  153.336926][ T7438]  submit_bh_wbc+0x133/0x320
[  153.341518][ T7438]  ? mark_buffer_dirty+0x190/0x260
[  153.346650][ T7438]  write_dirty_buffer+0xde/0xf0
[  153.351530][ T7438]  fat_sync_bhs+0x52/0x160
[  153.355949][ T7438]  fat_alloc_clusters+0x95a/0xab0
[  153.361003][ T7438]  fat_get_block+0x267/0x610
[  153.365678][ T7438]  __block_write_begin_int+0x4c5/0x1010
[  153.371272][ T7438]  ? fat_block_truncate_page+0x30/0x30
[  153.376804][ T7438]  cont_write_begin+0x4cf/0x7b0
[  153.381674][ T7438]  fat_write_begin+0x61/0xf0
[  153.386246][ T7438]  ? fat_block_truncate_page+0x30/0x30
[  153.391684][ T7438]  generic_perform_write+0x1c8/0x400
[  153.397073][ T7438]  __generic_file_write_iter+0xf7/0x2b0
[  153.402654][ T7438]  ? generic_write_checks+0x250/0x290
[  153.408004][ T7438]  generic_file_write_iter+0x75/0x130
[  153.413549][ T7438]  do_iter_readv_writev+0x2de/0x380
[  153.418728][ T7438]  do_iter_write+0x192/0x5c0
[  153.423360][ T7438]  ? import_iovec+0xb8/0xd0
[  153.427897][ T7438]  do_pwritev+0x235/0x440
[  153.432288][ T7438]  ? debug_smp_processor_id+0x18/0x20
[  153.437657][ T7438]  ? fpregs_assert_state_consistent+0x7e/0x90
[  153.443723][ T7438]  __x64_sys_pwritev2+0x7e/0xa0
[  153.448565][ T7438]  do_syscall_64+0x44/0xd0
[  153.452965][ T7438]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  153.458901][ T7438] RIP: 0033:0x7fbba9ab7ae9
[  153.463398][ T7438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  153.483024][ T7438] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  153.491416][ T7438] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  153.499470][ T7438] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  153.507446][ T7438] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  153.515398][ T7438] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  153.523357][ T7438] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  153.531331][ T7438]  </TASK>
07:40:34 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:34 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x7000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:34 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xffffff9e}, 0x0)

07:40:34 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x10)

07:40:34 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:34 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 23)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:34 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x8000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:34 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x300)

07:40:34 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xffffffef}, 0x0)

[  154.060366][ T7477] loop4: detected capacity change from 0 to 16
[  154.099576][ T7477] FAULT_INJECTION: forcing a failure.
07:40:34 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x9000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:34 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xa000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  154.099576][ T7477] name failslab, interval 1, probability 0, space 0, times 0
[  154.112246][ T7477] CPU: 0 PID: 7477 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  154.122352][ T7477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  154.132404][ T7477] Call Trace:
[  154.135675][ T7477]  <TASK>
[  154.138599][ T7477]  dump_stack_lvl+0xd6/0x122
[  154.143196][ T7477]  dump_stack+0x11/0x1b
[  154.147369][ T7477]  should_fail+0x23c/0x250
[  154.151815][ T7477]  ? mempool_alloc_slab+0x16/0x20
07:40:34 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xb000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  154.156861][ T7477]  __should_failslab+0x81/0x90
[  154.161895][ T7477]  should_failslab+0x5/0x20
[  154.166400][ T7477]  kmem_cache_alloc+0x4f/0x320
[  154.171164][ T7477]  mempool_alloc_slab+0x16/0x20
[  154.176017][ T7477]  ? mempool_free+0x130/0x130
[  154.180707][ T7477]  mempool_alloc+0x9d/0x310
[  154.185246][ T7477]  bio_alloc_bioset+0xcc/0x560
[  154.190036][ T7477]  ? submit_bio_noacct+0x49f/0x4e0
[  154.195155][ T7477]  submit_bh_wbc+0x133/0x320
[  154.199780][ T7477]  ? mark_buffer_dirty+0x190/0x260
[  154.204897][ T7477]  __sync_dirty_buffer+0x136/0x1e0
[  154.210077][ T7477]  sync_dirty_buffer+0x16/0x20
[  154.214896][ T7477]  fat_mirror_bhs+0x24b/0x330
[  154.219579][ T7477]  fat_alloc_clusters+0x9ad/0xab0
[  154.224606][ T7477]  fat_get_block+0x267/0x610
[  154.229201][ T7477]  __block_write_begin_int+0x4c5/0x1010
[  154.234775][ T7477]  ? fat_block_truncate_page+0x30/0x30
[  154.240257][ T7477]  cont_write_begin+0x4cf/0x7b0
[  154.245223][ T7477]  fat_write_begin+0x61/0xf0
[  154.249802][ T7477]  ? fat_block_truncate_page+0x30/0x30
[  154.255258][ T7477]  generic_perform_write+0x1c8/0x400
[  154.260592][ T7477]  __generic_file_write_iter+0xf7/0x2b0
[  154.266341][ T7477]  ? generic_write_checks+0x250/0x290
[  154.271691][ T7477]  generic_file_write_iter+0x75/0x130
[  154.277201][ T7477]  do_iter_readv_writev+0x2de/0x380
[  154.282436][ T7477]  do_iter_write+0x192/0x5c0
[  154.287051][ T7477]  ? import_iovec+0xb8/0xd0
[  154.291599][ T7477]  do_pwritev+0x235/0x440
[  154.295942][ T7477]  ? debug_smp_processor_id+0x18/0x20
[  154.301329][ T7477]  ? fpregs_assert_state_consistent+0x7e/0x90
[  154.307463][ T7477]  __x64_sys_pwritev2+0x7e/0xa0
[  154.312298][ T7477]  do_syscall_64+0x44/0xd0
[  154.316696][ T7477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  154.322572][ T7477] RIP: 0033:0x7fbba9ab7ae9
[  154.327013][ T7477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  154.346700][ T7477] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  154.355172][ T7477] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  154.363127][ T7477] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  154.371082][ T7477] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  154.379093][ T7477] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  154.387045][ T7477] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  154.395093][ T7477]  </TASK>
07:40:34 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:34 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xc000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:34 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0xfffffff0}, 0x0)

07:40:34 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x1000000)

07:40:35 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:35 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 24)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:35 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xd000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:35 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x2000000)

07:40:35 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x2)

07:40:35 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xe000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  154.931385][ T7524] loop4: detected capacity change from 0 to 16
[  154.967406][ T7524] FAULT_INJECTION: forcing a failure.
[  154.967406][ T7524] name failslab, interval 1, probability 0, space 0, times 0
07:40:35 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xf000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  154.980244][ T7524] CPU: 0 PID: 7524 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  154.990355][ T7524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  155.000470][ T7524] Call Trace:
[  155.003745][ T7524]  <TASK>
[  155.006669][ T7524]  dump_stack_lvl+0xd6/0x122
[  155.011265][ T7524]  dump_stack+0x11/0x1b
[  155.015426][ T7524]  should_fail+0x23c/0x250
[  155.019925][ T7524]  ? mempool_alloc_slab+0x16/0x20
[  155.024964][ T7524]  __should_failslab+0x81/0x90
07:40:35 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x10000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  155.029732][ T7524]  should_failslab+0x5/0x20
[  155.034284][ T7524]  kmem_cache_alloc+0x4f/0x320
[  155.039047][ T7524]  mempool_alloc_slab+0x16/0x20
[  155.043925][ T7524]  ? mempool_free+0x130/0x130
[  155.048608][ T7524]  mempool_alloc+0x9d/0x310
[  155.053114][ T7524]  bio_alloc_bioset+0xcc/0x560
[  155.057879][ T7524]  submit_bh_wbc+0x133/0x320
[  155.062503][ T7524]  ? mark_buffer_dirty+0x190/0x260
[  155.067622][ T7524]  write_dirty_buffer+0xde/0xf0
[  155.072477][ T7524]  fat_sync_bhs+0x52/0x160
[  155.076993][ T7524]  fat_ent_write+0x85/0xd0
[  155.081425][ T7524]  fat_chain_add+0x15b/0x410
[  155.086019][ T7524]  fat_get_block+0x48d/0x610
[  155.090614][ T7524]  __block_write_begin_int+0x4c5/0x1010
[  155.096235][ T7524]  ? fat_block_truncate_page+0x30/0x30
[  155.101693][ T7524]  cont_write_begin+0x4cf/0x7b0
[  155.106528][ T7524]  fat_write_begin+0x61/0xf0
[  155.111105][ T7524]  ? fat_block_truncate_page+0x30/0x30
[  155.116566][ T7524]  generic_perform_write+0x1c8/0x400
[  155.121853][ T7524]  __generic_file_write_iter+0xf7/0x2b0
[  155.127432][ T7524]  ? generic_write_checks+0x250/0x290
[  155.132783][ T7524]  generic_file_write_iter+0x75/0x130
[  155.138217][ T7524]  do_iter_readv_writev+0x2de/0x380
[  155.143395][ T7524]  do_iter_write+0x192/0x5c0
[  155.148090][ T7524]  ? import_iovec+0xb8/0xd0
[  155.152604][ T7524]  do_pwritev+0x235/0x440
[  155.156982][ T7524]  ? debug_smp_processor_id+0x18/0x20
[  155.162361][ T7524]  ? fpregs_assert_state_consistent+0x7e/0x90
[  155.168459][ T7524]  __x64_sys_pwritev2+0x7e/0xa0
[  155.173289][ T7524]  do_syscall_64+0x44/0xd0
[  155.177739][ T7524]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  155.183628][ T7524] RIP: 0033:0x7fbba9ab7ae9
[  155.188075][ T7524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  155.207753][ T7524] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  155.216148][ T7524] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  155.224105][ T7524] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  155.232161][ T7524] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  155.240120][ T7524] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  155.248162][ T7524] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  155.256148][ T7524]  </TASK>
07:40:35 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:35 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x11000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:35 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x3)

07:40:35 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x3000000)

[  155.486859][ T7557] validate_nla: 48 callbacks suppressed
[  155.486872][ T7557] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  155.500672][ T7557] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:36 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:36 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 25)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:36 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x12000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:36 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x4)

07:40:36 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x4000000)

[  155.799357][ T7572] loop4: detected capacity change from 0 to 16
[  155.816170][ T7571] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  155.824425][ T7571] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  155.836865][ T7572] FAULT_INJECTION: forcing a failure.
[  155.836865][ T7572] name failslab, interval 1, probability 0, space 0, times 0
07:40:36 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x20000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  155.849648][ T7572] CPU: 1 PID: 7572 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  155.859806][ T7572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  155.869985][ T7572] Call Trace:
[  155.873267][ T7572]  <TASK>
[  155.875164][ T7580] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  155.876198][ T7572]  dump_stack_lvl+0xd6/0x122
[  155.884300][ T7580] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:36 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x25000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  155.888884][ T7572]  dump_stack+0x11/0x1b
[  155.901148][ T7572]  should_fail+0x23c/0x250
[  155.905583][ T7572]  ? mempool_alloc_slab+0x16/0x20
[  155.910634][ T7572]  __should_failslab+0x81/0x90
[  155.915398][ T7572]  should_failslab+0x5/0x20
[  155.919975][ T7572]  kmem_cache_alloc+0x4f/0x320
[  155.924738][ T7572]  ? blk_mq_submit_bio+0xdeb/0x1470
[  155.929940][ T7572]  mempool_alloc_slab+0x16/0x20
[  155.931795][ T7585] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  155.934808][ T7572]  ? mempool_free+0x130/0x130
07:40:36 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x48000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  155.942890][ T7585] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  155.947521][ T7572]  mempool_alloc+0x9d/0x310
[  155.960045][ T7572]  bio_alloc_bioset+0xcc/0x560
[  155.964816][ T7572]  submit_bh_wbc+0x133/0x320
[  155.969458][ T7572]  ? mark_buffer_dirty+0x190/0x260
[  155.974585][ T7572]  __sync_dirty_buffer+0x136/0x1e0
[  155.979719][ T7572]  sync_dirty_buffer+0x16/0x20
[  155.984497][ T7572]  fat_mirror_bhs+0x24b/0x330
[  155.989177][ T7572]  fat_ent_write+0xc2/0xd0
[  155.993590][ T7572]  fat_chain_add+0x15b/0x410
[  155.998185][ T7572]  fat_get_block+0x48d/0x610
[  156.002784][ T7572]  __block_write_begin_int+0x4c5/0x1010
[  156.008332][ T7572]  ? fat_block_truncate_page+0x30/0x30
[  156.008533][ T7590] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  156.013802][ T7572]  cont_write_begin+0x4cf/0x7b0
[  156.021921][ T7590] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  156.026732][ T7572]  fat_write_begin+0x61/0xf0
[  156.039365][ T7572]  ? fat_block_truncate_page+0x30/0x30
[  156.044913][ T7572]  generic_perform_write+0x1c8/0x400
[  156.050254][ T7572]  __generic_file_write_iter+0xf7/0x2b0
[  156.055831][ T7572]  ? generic_write_checks+0x250/0x290
[  156.061207][ T7572]  generic_file_write_iter+0x75/0x130
[  156.066616][ T7572]  do_iter_readv_writev+0x2de/0x380
[  156.071818][ T7572]  do_iter_write+0x192/0x5c0
[  156.076464][ T7572]  ? import_iovec+0xb8/0xd0
[  156.080951][ T7572]  do_pwritev+0x235/0x440
[  156.085344][ T7572]  ? debug_smp_processor_id+0x18/0x20
[  156.090758][ T7572]  ? fpregs_assert_state_consistent+0x7e/0x90
[  156.096878][ T7572]  __x64_sys_pwritev2+0x7e/0xa0
[  156.101708][ T7572]  do_syscall_64+0x44/0xd0
[  156.106322][ T7572]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  156.112232][ T7572] RIP: 0033:0x7fbba9ab7ae9
[  156.116643][ T7572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  156.136315][ T7572] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  156.144876][ T7572] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  156.152851][ T7572] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  156.160870][ T7572] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  156.168819][ T7572] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  156.176774][ T7572] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  156.184762][ T7572]  </TASK>
07:40:36 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:36 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x4c000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:36 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x10)

07:40:36 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x10000000)

07:40:36 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x54010000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:36 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x34788, 0x0)

07:40:36 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x300)

07:40:36 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 26)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:36 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x38541db9)

07:40:37 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x5a0e0000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  156.674092][ T7613] loop4: detected capacity change from 0 to 16
[  156.705034][ T7613] FAULT_INJECTION: forcing a failure.
[  156.705034][ T7613] name failslab, interval 1, probability 0, space 0, times 0
07:40:37 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x5b0e0000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  156.717701][ T7613] CPU: 1 PID: 7613 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  156.727769][ T7613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  156.737936][ T7613] Call Trace:
[  156.741208][ T7613]  <TASK>
[  156.744202][ T7613]  dump_stack_lvl+0xd6/0x122
[  156.748797][ T7613]  dump_stack+0x11/0x1b
[  156.752977][ T7613]  should_fail+0x23c/0x250
[  156.757411][ T7613]  ? mempool_alloc_slab+0x16/0x20
[  156.762507][ T7613]  __should_failslab+0x81/0x90
[  156.767271][ T7613]  should_failslab+0x5/0x20
07:40:37 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x60000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  156.771833][ T7613]  kmem_cache_alloc+0x4f/0x320
[  156.776610][ T7613]  mempool_alloc_slab+0x16/0x20
[  156.781465][ T7613]  ? mempool_free+0x130/0x130
[  156.786165][ T7613]  mempool_alloc+0x9d/0x310
[  156.790749][ T7613]  bio_alloc_bioset+0xcc/0x560
[  156.795518][ T7613]  ? __getblk_gfp+0x3f/0x530
[  156.800137][ T7613]  submit_bh_wbc+0x133/0x320
[  156.804763][ T7613]  ? mark_buffer_dirty+0x190/0x260
[  156.809907][ T7613]  write_dirty_buffer+0xde/0xf0
[  156.814782][ T7613]  fat_sync_bhs+0x52/0x160
[  156.819286][ T7613]  fat_alloc_clusters+0x95a/0xab0
[  156.824319][ T7613]  fat_get_block+0x267/0x610
[  156.828989][ T7613]  __block_write_begin_int+0x4c5/0x1010
[  156.834540][ T7613]  ? fat_block_truncate_page+0x30/0x30
[  156.840123][ T7613]  cont_write_begin+0x4cf/0x7b0
[  156.844958][ T7613]  fat_write_begin+0x61/0xf0
[  156.849530][ T7613]  ? fat_block_truncate_page+0x30/0x30
[  156.855015][ T7613]  generic_perform_write+0x1c8/0x400
[  156.860289][ T7613]  __generic_file_write_iter+0xf7/0x2b0
[  156.865837][ T7613]  ? generic_write_checks+0x250/0x290
[  156.871192][ T7613]  generic_file_write_iter+0x75/0x130
[  156.876582][ T7613]  do_iter_readv_writev+0x2de/0x380
[  156.881875][ T7613]  do_iter_write+0x192/0x5c0
[  156.886449][ T7613]  ? import_iovec+0xb8/0xd0
[  156.891002][ T7613]  do_pwritev+0x235/0x440
[  156.895307][ T7613]  ? debug_smp_processor_id+0x18/0x20
[  156.900737][ T7613]  ? fpregs_assert_state_consistent+0x7e/0x90
[  156.906843][ T7613]  __x64_sys_pwritev2+0x7e/0xa0
[  156.911739][ T7613]  do_syscall_64+0x44/0xd0
[  156.916179][ T7613]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  156.922053][ T7613] RIP: 0033:0x7fbba9ab7ae9
[  156.926522][ T7613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  156.946146][ T7613] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  156.954624][ T7613] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  156.962580][ T7613] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  156.970530][ T7613] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  156.978492][ T7613] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  156.986461][ T7613] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  156.994426][ T7613]  </TASK>
07:40:37 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:37 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x68000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:37 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xfb3ee0)

07:40:37 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x9effffff)

07:40:37 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 27)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  157.228307][ T7647] loop4: detected capacity change from 0 to 16
[  157.242886][ T7647] FAULT_INJECTION: forcing a failure.
[  157.242886][ T7647] name failslab, interval 1, probability 0, space 0, times 0
[  157.255650][ T7647] CPU: 1 PID: 7647 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  157.265717][ T7647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  157.275830][ T7647] Call Trace:
[  157.279401][ T7647]  <TASK>
[  157.282325][ T7647]  dump_stack_lvl+0xd6/0x122
[  157.286988][ T7647]  dump_stack+0x11/0x1b
[  157.291144][ T7647]  should_fail+0x23c/0x250
[  157.295546][ T7647]  ? mempool_alloc_slab+0x16/0x20
[  157.300560][ T7647]  __should_failslab+0x81/0x90
[  157.305407][ T7647]  should_failslab+0x5/0x20
[  157.310327][ T7647]  kmem_cache_alloc+0x4f/0x320
[  157.315078][ T7647]  mempool_alloc_slab+0x16/0x20
[  157.319932][ T7647]  ? mempool_free+0x130/0x130
[  157.324735][ T7647]  mempool_alloc+0x9d/0x310
[  157.329287][ T7647]  bio_alloc_bioset+0xcc/0x560
[  157.334131][ T7647]  ? __getblk_gfp+0x3f/0x530
[  157.338700][ T7647]  submit_bh_wbc+0x133/0x320
[  157.343270][ T7647]  ? mark_buffer_dirty+0x190/0x260
[  157.348470][ T7647]  write_dirty_buffer+0xde/0xf0
[  157.353299][ T7647]  fat_sync_bhs+0x52/0x160
[  157.357695][ T7647]  fat_alloc_clusters+0x95a/0xab0
[  157.362702][ T7647]  fat_get_block+0x267/0x610
[  157.367285][ T7647]  __block_write_begin_int+0x4c5/0x1010
[  157.372821][ T7647]  ? fat_block_truncate_page+0x30/0x30
[  157.378269][ T7647]  cont_write_begin+0x4cf/0x7b0
[  157.383107][ T7647]  fat_write_begin+0x61/0xf0
[  157.387759][ T7647]  ? fat_block_truncate_page+0x30/0x30
[  157.393221][ T7647]  generic_perform_write+0x1c8/0x400
[  157.398515][ T7647]  __generic_file_write_iter+0xf7/0x2b0
[  157.404042][ T7647]  ? generic_write_checks+0x250/0x290
[  157.409389][ T7647]  generic_file_write_iter+0x75/0x130
[  157.414752][ T7647]  do_iter_readv_writev+0x2de/0x380
[  157.420075][ T7647]  do_iter_write+0x192/0x5c0
[  157.424645][ T7647]  ? import_iovec+0xb8/0xd0
[  157.429168][ T7647]  do_pwritev+0x235/0x440
[  157.433564][ T7647]  ? debug_smp_processor_id+0x18/0x20
[  157.438978][ T7647]  ? fpregs_assert_state_consistent+0x7e/0x90
[  157.445029][ T7647]  __x64_sys_pwritev2+0x7e/0xa0
[  157.449940][ T7647]  do_syscall_64+0x44/0xd0
[  157.454338][ T7647]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  157.460289][ T7647] RIP: 0033:0x7fbba9ab7ae9
[  157.464699][ T7647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  157.484296][ T7647] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  157.492740][ T7647] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  157.500740][ T7647] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  157.508690][ T7647] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  157.516641][ T7647] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
07:40:37 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, 0x0, 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:37 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x6c000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:37 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x1000000)

07:40:37 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xb91d5438)

[  157.524601][ T7647] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  157.532564][ T7647]  </TASK>
07:40:37 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x74000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:37 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x2000000)

07:40:37 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xefffffff)

07:40:38 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:38 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 28)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:38 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x7a000000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:38 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xf0ffffff)

07:40:38 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x3000000)

[  158.084389][ T7688] loop4: detected capacity change from 0 to 16
[  158.114731][ T7688] FAULT_INJECTION: forcing a failure.
[  158.114731][ T7688] name failslab, interval 1, probability 0, space 0, times 0
[  158.127409][ T7688] CPU: 0 PID: 7688 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  158.137498][ T7688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  158.147539][ T7688] Call Trace:
[  158.150901][ T7688]  <TASK>
[  158.153822][ T7688]  dump_stack_lvl+0xd6/0x122
[  158.158404][ T7688]  dump_stack+0x11/0x1b
[  158.162627][ T7688]  should_fail+0x23c/0x250
[  158.167088][ T7688]  ? mempool_alloc_slab+0x16/0x20
[  158.172164][ T7688]  __should_failslab+0x81/0x90
[  158.176925][ T7688]  should_failslab+0x5/0x20
[  158.181450][ T7688]  kmem_cache_alloc+0x4f/0x320
[  158.186201][ T7688]  mempool_alloc_slab+0x16/0x20
[  158.191138][ T7688]  ? mempool_free+0x130/0x130
[  158.195956][ T7688]  mempool_alloc+0x9d/0x310
[  158.200467][ T7688]  bio_alloc_bioset+0xcc/0x560
[  158.205221][ T7688]  submit_bh_wbc+0x133/0x320
[  158.209792][ T7688]  ? mark_buffer_dirty+0x190/0x260
[  158.214894][ T7688]  write_dirty_buffer+0xde/0xf0
[  158.219725][ T7688]  fat_sync_bhs+0x52/0x160
[  158.224148][ T7688]  fat_ent_write+0x85/0xd0
[  158.228546][ T7688]  fat_chain_add+0x15b/0x410
[  158.233121][ T7688]  fat_get_block+0x48d/0x610
[  158.237704][ T7688]  __block_write_begin_int+0x4c5/0x1010
[  158.243303][ T7688]  ? fat_block_truncate_page+0x30/0x30
[  158.248863][ T7688]  cont_write_begin+0x4cf/0x7b0
[  158.253697][ T7688]  fat_write_begin+0x61/0xf0
[  158.258267][ T7688]  ? fat_block_truncate_page+0x30/0x30
[  158.263795][ T7688]  generic_perform_write+0x1c8/0x400
[  158.269099][ T7688]  __generic_file_write_iter+0xf7/0x2b0
[  158.274628][ T7688]  ? generic_write_checks+0x250/0x290
[  158.279998][ T7688]  generic_file_write_iter+0x75/0x130
[  158.285400][ T7688]  do_iter_readv_writev+0x2de/0x380
[  158.290579][ T7688]  do_iter_write+0x192/0x5c0
[  158.295149][ T7688]  ? import_iovec+0xb8/0xd0
[  158.299641][ T7688]  do_pwritev+0x235/0x440
[  158.303983][ T7688]  ? debug_smp_processor_id+0x18/0x20
[  158.309363][ T7688]  ? fpregs_assert_state_consistent+0x7e/0x90
[  158.315426][ T7688]  __x64_sys_pwritev2+0x7e/0xa0
[  158.320306][ T7688]  do_syscall_64+0x44/0xd0
[  158.324742][ T7688]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  158.330625][ T7688] RIP: 0033:0x7fbba9ab7ae9
[  158.335017][ T7688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  158.354804][ T7688] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  158.363209][ T7688] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  158.371158][ T7688] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  158.379150][ T7688] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  158.387210][ T7688] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  158.395177][ T7688] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  158.403131][ T7688]  </TASK>
07:40:38 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, 0x0, 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:38 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x9effffff, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:38 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffff7f)

07:40:38 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x4000000)

07:40:38 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffff9e)

07:40:38 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xefffffff, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:38 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xf0ffffff, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:39 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:39 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x10000000)

07:40:39 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffffef)

07:40:39 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 29)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:39 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xffffe000, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  158.950310][ T7729] loop4: detected capacity change from 0 to 16
[  158.985633][ T7729] FAULT_INJECTION: forcing a failure.
[  158.985633][ T7729] name failslab, interval 1, probability 0, space 0, times 0
[  158.998412][ T7729] CPU: 0 PID: 7729 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  159.008485][ T7729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  159.018522][ T7729] Call Trace:
[  159.021785][ T7729]  <TASK>
[  159.024695][ T7729]  dump_stack_lvl+0xd6/0x122
[  159.029282][ T7729]  dump_stack+0x11/0x1b
[  159.033438][ T7729]  should_fail+0x23c/0x250
[  159.037843][ T7729]  ? mempool_alloc_slab+0x16/0x20
[  159.042926][ T7729]  __should_failslab+0x81/0x90
[  159.047670][ T7729]  should_failslab+0x5/0x20
[  159.052163][ T7729]  kmem_cache_alloc+0x4f/0x320
[  159.056947][ T7729]  mempool_alloc_slab+0x16/0x20
[  159.061840][ T7729]  ? mempool_free+0x130/0x130
[  159.066498][ T7729]  mempool_alloc+0x9d/0x310
[  159.070987][ T7729]  bio_alloc_bioset+0xcc/0x560
[  159.075746][ T7729]  submit_bh_wbc+0x133/0x320
[  159.080334][ T7729]  ? mark_buffer_dirty+0x190/0x260
[  159.085458][ T7729]  write_dirty_buffer+0xde/0xf0
[  159.090313][ T7729]  fat_sync_bhs+0x52/0x160
[  159.094793][ T7729]  fat_ent_write+0x85/0xd0
[  159.099272][ T7729]  fat_chain_add+0x15b/0x410
[  159.103843][ T7729]  fat_get_block+0x48d/0x610
[  159.108428][ T7729]  __block_write_begin_int+0x4c5/0x1010
[  159.114005][ T7729]  ? fat_block_truncate_page+0x30/0x30
[  159.119522][ T7729]  cont_write_begin+0x4cf/0x7b0
[  159.124388][ T7729]  fat_write_begin+0x61/0xf0
[  159.129014][ T7729]  ? fat_block_truncate_page+0x30/0x30
[  159.134452][ T7729]  generic_perform_write+0x1c8/0x400
[  159.139781][ T7729]  __generic_file_write_iter+0xf7/0x2b0
[  159.145336][ T7729]  ? generic_write_checks+0x250/0x290
[  159.150738][ T7729]  generic_file_write_iter+0x75/0x130
[  159.156095][ T7729]  do_iter_readv_writev+0x2de/0x380
[  159.161353][ T7729]  do_iter_write+0x192/0x5c0
[  159.165959][ T7729]  ? import_iovec+0xb8/0xd0
[  159.170493][ T7729]  do_pwritev+0x235/0x440
[  159.174801][ T7729]  ? debug_smp_processor_id+0x18/0x20
[  159.180175][ T7729]  ? fpregs_assert_state_consistent+0x7e/0x90
[  159.186241][ T7729]  __x64_sys_pwritev2+0x7e/0xa0
[  159.191072][ T7729]  do_syscall_64+0x44/0xd0
[  159.195475][ T7729]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  159.201384][ T7729] RIP: 0033:0x7fbba9ab7ae9
[  159.205783][ T7729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  159.225375][ T7729] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  159.233855][ T7729] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  159.241808][ T7729] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
07:40:39 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, 0x0, 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:39 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xffffff7f, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:39 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xfffffff0)

07:40:39 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x9effffff)

[  159.249840][ T7729] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  159.257828][ T7729] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  159.265777][ T7729] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  159.273735][ T7729]  </TASK>
07:40:39 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xe03efb00)

07:40:39 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x100000000000000)

07:40:39 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xffffff9e, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:40 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:40 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 30)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:40 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xefffffff)

07:40:40 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xffffffef, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:40 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x200000000000000)

[  159.831576][ T7771] loop4: detected capacity change from 0 to 16
[  159.855154][ T7771] FAULT_INJECTION: forcing a failure.
[  159.855154][ T7771] name failslab, interval 1, probability 0, space 0, times 0
[  159.867875][ T7771] CPU: 1 PID: 7771 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  159.877940][ T7771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  159.887996][ T7771] Call Trace:
[  159.891444][ T7771]  <TASK>
[  159.894357][ T7771]  dump_stack_lvl+0xd6/0x122
[  159.898927][ T7771]  dump_stack+0x11/0x1b
[  159.903117][ T7771]  should_fail+0x23c/0x250
[  159.907619][ T7771]  ? mempool_alloc_slab+0x16/0x20
[  159.912624][ T7771]  __should_failslab+0x81/0x90
[  159.917451][ T7771]  should_failslab+0x5/0x20
[  159.921941][ T7771]  kmem_cache_alloc+0x4f/0x320
[  159.926700][ T7771]  mempool_alloc_slab+0x16/0x20
[  159.931530][ T7771]  ? mempool_free+0x130/0x130
[  159.936196][ T7771]  mempool_alloc+0x9d/0x310
[  159.940719][ T7771]  bio_alloc_bioset+0xcc/0x560
[  159.945498][ T7771]  ? __getblk_gfp+0x3f/0x530
[  159.950163][ T7771]  submit_bh_wbc+0x133/0x320
[  159.954810][ T7771]  ? mark_buffer_dirty+0x190/0x260
[  159.959897][ T7771]  write_dirty_buffer+0xde/0xf0
[  159.964809][ T7771]  fat_sync_bhs+0x52/0x160
[  159.969293][ T7771]  fat_alloc_clusters+0x95a/0xab0
[  159.974308][ T7771]  fat_get_block+0x267/0x610
[  159.978876][ T7771]  __block_write_begin_int+0x4c5/0x1010
[  159.984425][ T7771]  ? fat_block_truncate_page+0x30/0x30
[  159.990010][ T7771]  cont_write_begin+0x4cf/0x7b0
[  159.994983][ T7771]  fat_write_begin+0x61/0xf0
[  159.999576][ T7771]  ? fat_block_truncate_page+0x30/0x30
[  160.005033][ T7771]  generic_perform_write+0x1c8/0x400
[  160.010338][ T7771]  __generic_file_write_iter+0xf7/0x2b0
[  160.015925][ T7771]  ? generic_write_checks+0x250/0x290
[  160.021275][ T7771]  generic_file_write_iter+0x75/0x130
[  160.026647][ T7771]  do_iter_readv_writev+0x2de/0x380
[  160.031825][ T7771]  do_iter_write+0x192/0x5c0
[  160.036399][ T7771]  ? import_iovec+0xb8/0xd0
[  160.040881][ T7771]  do_pwritev+0x235/0x440
[  160.045189][ T7771]  ? debug_smp_processor_id+0x18/0x20
[  160.050566][ T7771]  ? fpregs_assert_state_consistent+0x7e/0x90
[  160.056612][ T7771]  __x64_sys_pwritev2+0x7e/0xa0
[  160.061624][ T7771]  do_syscall_64+0x44/0xd0
[  160.066086][ T7771]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  160.071959][ T7771] RIP: 0033:0x7fbba9ab7ae9
[  160.076350][ T7771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  160.095939][ T7771] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  160.104398][ T7771] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  160.112358][ T7771] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  160.120318][ T7771] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  160.128263][ T7771] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  160.136226][ T7771] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  160.144220][ T7771]  </TASK>
07:40:40 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xf0ffffff)

07:40:40 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:40 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x300000000000000)

07:40:40 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0xfffffff0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:40 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 31)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:40 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffff7f)

07:40:40 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  160.297606][ T7800] loop4: detected capacity change from 0 to 16
[  160.323005][ T7800] FAULT_INJECTION: forcing a failure.
[  160.323005][ T7800] name failslab, interval 1, probability 0, space 0, times 0
[  160.335666][ T7800] CPU: 0 PID: 7800 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  160.345867][ T7800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  160.355972][ T7800] Call Trace:
[  160.359230][ T7800]  <TASK>
[  160.362145][ T7800]  dump_stack_lvl+0xd6/0x122
[  160.366733][ T7800]  dump_stack+0x11/0x1b
[  160.370948][ T7800]  should_fail+0x23c/0x250
[  160.375361][ T7800]  ? mempool_alloc_slab+0x16/0x20
[  160.380402][ T7800]  __should_failslab+0x81/0x90
[  160.385218][ T7800]  should_failslab+0x5/0x20
[  160.389706][ T7800]  kmem_cache_alloc+0x4f/0x320
[  160.394450][ T7800]  mempool_alloc_slab+0x16/0x20
[  160.399346][ T7800]  ? mempool_free+0x130/0x130
[  160.404085][ T7800]  mempool_alloc+0x9d/0x310
[  160.408587][ T7800]  bio_alloc_bioset+0xcc/0x560
[  160.413384][ T7800]  ? submit_bio_noacct+0x49f/0x4e0
[  160.418485][ T7800]  submit_bh_wbc+0x133/0x320
[  160.423124][ T7800]  ? mark_buffer_dirty+0x190/0x260
[  160.428215][ T7800]  __sync_dirty_buffer+0x136/0x1e0
[  160.433318][ T7800]  sync_dirty_buffer+0x16/0x20
[  160.438060][ T7800]  fat_mirror_bhs+0x24b/0x330
[  160.442796][ T7800]  fat_alloc_clusters+0x9ad/0xab0
[  160.447814][ T7800]  fat_get_block+0x267/0x610
[  160.452437][ T7800]  __block_write_begin_int+0x4c5/0x1010
[  160.457982][ T7800]  ? fat_block_truncate_page+0x30/0x30
[  160.463424][ T7800]  cont_write_begin+0x4cf/0x7b0
[  160.468257][ T7800]  fat_write_begin+0x61/0xf0
[  160.472874][ T7800]  ? fat_block_truncate_page+0x30/0x30
[  160.478343][ T7800]  generic_perform_write+0x1c8/0x400
[  160.483616][ T7800]  __generic_file_write_iter+0xf7/0x2b0
[  160.489231][ T7800]  ? generic_write_checks+0x250/0x290
[  160.494623][ T7800]  generic_file_write_iter+0x75/0x130
[  160.499986][ T7800]  do_iter_readv_writev+0x2de/0x380
[  160.505222][ T7800]  do_iter_write+0x192/0x5c0
[  160.509823][ T7800]  ? import_iovec+0xb8/0xd0
[  160.514307][ T7800]  do_pwritev+0x235/0x440
[  160.518611][ T7800]  ? debug_smp_processor_id+0x18/0x20
[  160.524013][ T7800]  ? fpregs_assert_state_consistent+0x7e/0x90
[  160.530127][ T7800]  __x64_sys_pwritev2+0x7e/0xa0
[  160.535012][ T7800]  do_syscall_64+0x44/0xd0
[  160.539437][ T7800]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  160.545309][ T7800] RIP: 0033:0x7fbba9ab7ae9
[  160.549700][ T7800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  160.569321][ T7800] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  160.577711][ T7800] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  160.585713][ T7800] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  160.593662][ T7800] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  160.601614][ T7800] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  160.609585][ T7800] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  160.617539][ T7800]  </TASK>
07:40:40 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:40 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffff9e)

07:40:40 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x400000000000000)

07:40:40 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x2, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:41 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 32)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:41 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffffef)

[  160.718976][ T7814] validate_nla: 36 callbacks suppressed
[  160.718990][ T7814] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  160.732701][ T7814] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  160.768751][ T7823] loop4: detected capacity change from 0 to 16
[  160.801764][ T7823] FAULT_INJECTION: forcing a failure.
[  160.801764][ T7823] name failslab, interval 1, probability 0, space 0, times 0
[  160.814534][ T7823] CPU: 0 PID: 7823 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  160.824618][ T7823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  160.834654][ T7823] Call Trace:
[  160.837912][ T7823]  <TASK>
[  160.840844][ T7823]  dump_stack_lvl+0xd6/0x122
[  160.845454][ T7823]  dump_stack+0x11/0x1b
[  160.849694][ T7823]  should_fail+0x23c/0x250
[  160.854089][ T7823]  ? mempool_alloc_slab+0x16/0x20
[  160.859209][ T7823]  __should_failslab+0x81/0x90
[  160.863975][ T7823]  should_failslab+0x5/0x20
[  160.868554][ T7823]  kmem_cache_alloc+0x4f/0x320
[  160.873301][ T7823]  mempool_alloc_slab+0x16/0x20
[  160.878141][ T7823]  ? mempool_free+0x130/0x130
[  160.882850][ T7823]  mempool_alloc+0x9d/0x310
[  160.887333][ T7823]  bio_alloc_bioset+0xcc/0x560
[  160.892136][ T7823]  submit_bh_wbc+0x133/0x320
[  160.896704][ T7823]  ? mark_buffer_dirty+0x190/0x260
[  160.901794][ T7823]  write_dirty_buffer+0xde/0xf0
[  160.906711][ T7823]  fat_sync_bhs+0x52/0x160
[  160.911134][ T7823]  fat_ent_write+0x85/0xd0
[  160.915581][ T7823]  fat_chain_add+0x15b/0x410
[  160.920150][ T7823]  fat_get_block+0x48d/0x610
[  160.924726][ T7823]  __block_write_begin_int+0x4c5/0x1010
[  160.930286][ T7823]  ? fat_block_truncate_page+0x30/0x30
[  160.935725][ T7823]  cont_write_begin+0x4cf/0x7b0
[  160.940613][ T7823]  fat_write_begin+0x61/0xf0
[  160.945197][ T7823]  ? fat_block_truncate_page+0x30/0x30
[  160.950648][ T7823]  generic_perform_write+0x1c8/0x400
[  160.955942][ T7823]  __generic_file_write_iter+0xf7/0x2b0
[  160.961469][ T7823]  ? generic_write_checks+0x250/0x290
[  160.966884][ T7823]  generic_file_write_iter+0x75/0x130
[  160.972276][ T7823]  do_iter_readv_writev+0x2de/0x380
[  160.977455][ T7823]  do_iter_write+0x192/0x5c0
[  160.982026][ T7823]  ? import_iovec+0xb8/0xd0
[  160.986524][ T7823]  do_pwritev+0x235/0x440
[  160.990838][ T7823]  ? debug_smp_processor_id+0x18/0x20
[  160.996270][ T7823]  ? fpregs_assert_state_consistent+0x7e/0x90
[  161.002375][ T7823]  __x64_sys_pwritev2+0x7e/0xa0
[  161.007219][ T7823]  do_syscall_64+0x44/0xd0
[  161.011624][ T7823]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  161.017496][ T7823] RIP: 0033:0x7fbba9ab7ae9
[  161.021897][ T7823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  161.041623][ T7823] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  161.050081][ T7823] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  161.058033][ T7823] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
07:40:41 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:41 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x3, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:41 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xfffffff0)

07:40:41 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x1000000000000000)

[  161.065983][ T7823] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  161.073944][ T7823] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  161.081894][ T7823] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  161.089842][ T7823]  </TASK>
07:40:41 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x4, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:41 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xfb3ee000000000)

[  161.143202][ T7828] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  161.151390][ T7828] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  161.213583][ T7842] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  161.221787][ T7842] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:41 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:41 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 33)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:41 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x100000000000000)

07:40:41 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x5, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:41 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x38541db900000000)

[  161.576869][ T7856] loop4: detected capacity change from 0 to 16
[  161.588966][ T7858] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  161.597104][ T7858] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  161.616239][ T7856] FAULT_INJECTION: forcing a failure.
07:40:41 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x6, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  161.616239][ T7856] name failslab, interval 1, probability 0, space 0, times 0
[  161.628931][ T7856] CPU: 1 PID: 7856 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  161.638996][ T7856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  161.644567][ T7865] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  161.649107][ T7856] Call Trace:
[  161.649116][ T7856]  <TASK>
[  161.649123][ T7856]  dump_stack_lvl+0xd6/0x122
[  161.657342][ T7865] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  161.660466][ T7856]  dump_stack+0x11/0x1b
[  161.660491][ T7856]  should_fail+0x23c/0x250
[  161.660525][ T7856]  ? mempool_alloc_slab+0x16/0x20
[  161.689905][ T7856]  __should_failslab+0x81/0x90
[  161.694750][ T7856]  should_failslab+0x5/0x20
[  161.699330][ T7856]  kmem_cache_alloc+0x4f/0x320
[  161.704092][ T7856]  ? blk_mq_submit_bio+0xdeb/0x1470
[  161.709320][ T7856]  mempool_alloc_slab+0x16/0x20
[  161.714212][ T7856]  ? mempool_free+0x130/0x130
[  161.718976][ T7856]  mempool_alloc+0x9d/0x310
[  161.723461][ T7856]  bio_alloc_bioset+0xcc/0x560
[  161.728338][ T7856]  submit_bh_wbc+0x133/0x320
[  161.733010][ T7856]  ? mark_buffer_dirty+0x190/0x260
[  161.738186][ T7856]  __sync_dirty_buffer+0x136/0x1e0
[  161.743282][ T7856]  sync_dirty_buffer+0x16/0x20
[  161.748041][ T7856]  fat_mirror_bhs+0x24b/0x330
[  161.752703][ T7856]  fat_ent_write+0xc2/0xd0
[  161.757100][ T7856]  fat_chain_add+0x15b/0x410
[  161.761794][ T7856]  fat_get_block+0x48d/0x610
[  161.766373][ T7856]  __block_write_begin_int+0x4c5/0x1010
[  161.771990][ T7856]  ? fat_block_truncate_page+0x30/0x30
[  161.777472][ T7856]  cont_write_begin+0x4cf/0x7b0
[  161.782333][ T7856]  fat_write_begin+0x61/0xf0
[  161.786983][ T7856]  ? fat_block_truncate_page+0x30/0x30
[  161.792563][ T7856]  generic_perform_write+0x1c8/0x400
[  161.797946][ T7856]  __generic_file_write_iter+0xf7/0x2b0
[  161.803522][ T7856]  ? generic_write_checks+0x250/0x290
[  161.808886][ T7856]  generic_file_write_iter+0x75/0x130
[  161.814274][ T7856]  do_iter_readv_writev+0x2de/0x380
[  161.819461][ T7856]  do_iter_write+0x192/0x5c0
[  161.824033][ T7856]  ? import_iovec+0xb8/0xd0
[  161.828581][ T7856]  do_pwritev+0x235/0x440
[  161.832964][ T7856]  ? debug_smp_processor_id+0x18/0x20
[  161.838415][ T7856]  ? fpregs_assert_state_consistent+0x7e/0x90
[  161.844478][ T7856]  __x64_sys_pwritev2+0x7e/0xa0
[  161.849312][ T7856]  do_syscall_64+0x44/0xd0
[  161.853705][ T7856]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  161.859672][ T7856] RIP: 0033:0x7fbba9ab7ae9
[  161.864144][ T7856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  161.883749][ T7856] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  161.892202][ T7856] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  161.900158][ T7856] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  161.908139][ T7856] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  161.916089][ T7856] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  161.924083][ T7856] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  161.932040][ T7856]  </TASK>
07:40:42 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:42 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x7, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:42 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x8000000000000000)

07:40:42 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x200000000000000)

07:40:42 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x8, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:42 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 34)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:42 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x9, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  162.122085][ T7893] loop4: detected capacity change from 0 to 16
[  162.136727][ T7893] FAULT_INJECTION: forcing a failure.
[  162.136727][ T7893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.149893][ T7893] CPU: 0 PID: 7893 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  162.160165][ T7893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  162.170220][ T7893] Call Trace:
[  162.173488][ T7893]  <TASK>
[  162.176446][ T7893]  dump_stack_lvl+0xd6/0x122
[  162.181098][ T7893]  dump_stack+0x11/0x1b
[  162.185250][ T7893]  should_fail+0x23c/0x250
[  162.189700][ T7893]  should_fail_usercopy+0x16/0x20
[  162.194701][ T7893]  copy_page_from_iter_atomic+0x2f1/0xc60
[  162.200470][ T7893]  ? fat_write_begin+0x61/0xf0
[  162.205325][ T7893]  ? fat_block_truncate_page+0x30/0x30
[  162.210766][ T7893]  ? fat_write_begin+0x79/0xf0
[  162.215592][ T7893]  generic_perform_write+0x211/0x400
[  162.220965][ T7893]  __generic_file_write_iter+0xf7/0x2b0
[  162.226584][ T7893]  ? generic_write_checks+0x250/0x290
[  162.232008][ T7893]  generic_file_write_iter+0x75/0x130
[  162.237360][ T7893]  do_iter_readv_writev+0x2de/0x380
[  162.242538][ T7893]  do_iter_write+0x192/0x5c0
[  162.247155][ T7893]  ? import_iovec+0xb8/0xd0
[  162.251783][ T7893]  do_pwritev+0x235/0x440
[  162.256113][ T7893]  ? debug_smp_processor_id+0x18/0x20
[  162.261547][ T7893]  ? fpregs_assert_state_consistent+0x7e/0x90
[  162.267601][ T7893]  __x64_sys_pwritev2+0x7e/0xa0
[  162.272456][ T7893]  do_syscall_64+0x44/0xd0
[  162.276899][ T7893]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  162.282791][ T7893] RIP: 0033:0x7fbba9ab7ae9
[  162.287195][ T7893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  162.306851][ T7893] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  162.315252][ T7893] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  162.323302][ T7893] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  162.331434][ T7893] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  162.339381][ T7893] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  162.347737][ T7893] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  162.355694][ T7893]  </TASK>
07:40:42 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:42 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x9effffff00000000)

07:40:42 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xa, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:42 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x300000000000000)

07:40:42 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xb, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  162.435983][ T7893] syz-executor.4: attempt to access beyond end of device
[  162.435983][ T7893] loop4: rw=2049, want=17, limit=16
[  162.448573][ T7893] Buffer I/O error on dev loop4, logical block 16, lost async page write
[  162.459645][ T7893] syz-executor.4: attempt to access beyond end of device
[  162.459645][ T7893] loop4: rw=2049, want=18, limit=16
[  162.471807][ T7893] Buffer I/O error on dev loop4, logical block 17, lost async page write
[  162.483178][ T7893] syz-executor.4: attempt to access beyond end of device
[  162.483178][ T7893] loop4: rw=2049, want=19, limit=16
[  162.495378][ T7893] Buffer I/O error on dev loop4, logical block 18, lost async page write
[  162.504030][ T7893] syz-executor.4: attempt to access beyond end of device
[  162.504030][ T7893] loop4: rw=2049, want=20, limit=16
[  162.516310][ T7893] Buffer I/O error on dev loop4, logical block 19, lost async page write
[  162.541081][ T7893] syz-executor.4: attempt to access beyond end of device
[  162.541081][ T7893] loop4: rw=2049, want=21, limit=16
[  162.553268][ T7893] Buffer I/O error on dev loop4, logical block 20, lost async page write
[  162.561814][ T7893] syz-executor.4: attempt to access beyond end of device
[  162.561814][ T7893] loop4: rw=2049, want=22, limit=16
[  162.574059][ T7893] Buffer I/O error on dev loop4, logical block 21, lost async page write
[  162.582636][ T7893] syz-executor.4: attempt to access beyond end of device
[  162.582636][ T7893] loop4: rw=2049, want=23, limit=16
[  162.594729][ T7893] Buffer I/O error on dev loop4, logical block 22, lost async page write
07:40:43 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, 0x0, 0x0)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:43 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xc, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:43 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xefffffff00000000)

07:40:43 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x400000000000000)

07:40:43 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 35)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:43 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xd, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  162.899716][ T7927] loop4: detected capacity change from 0 to 16
[  162.920008][ T7927] FAULT_INJECTION: forcing a failure.
[  162.920008][ T7927] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  162.933290][ T7927] CPU: 0 PID: 7927 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:43 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xe, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  162.943380][ T7927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  162.953435][ T7927] Call Trace:
[  162.956710][ T7927]  <TASK>
[  162.959632][ T7927]  dump_stack_lvl+0xd6/0x122
[  162.964294][ T7927]  dump_stack+0x11/0x1b
[  162.968448][ T7927]  should_fail+0x23c/0x250
[  162.972875][ T7927]  __alloc_pages+0x102/0x330
[  162.977472][ T7927]  alloc_pages+0x382/0x3d0
[  162.981901][ T7927]  folio_alloc+0x1a/0x20
[  162.986140][ T7927]  filemap_alloc_folio+0x53/0xf0
[  162.991120][ T7927]  __filemap_get_folio+0x443/0x690
[  162.996239][ T7927]  pagecache_get_page+0x26/0xe0
[  163.001073][ T7927]  grab_cache_page_write_begin+0x3f/0x50
[  163.006694][ T7927]  cont_write_begin+0x4ab/0x7b0
[  163.011562][ T7927]  ? __get_user_nocheck_1+0x6/0x10
[  163.016692][ T7927]  fat_write_begin+0x61/0xf0
[  163.021266][ T7927]  ? fat_block_truncate_page+0x30/0x30
[  163.026796][ T7927]  generic_perform_write+0x1c8/0x400
[  163.032171][ T7927]  ? fat_write_begin+0xf0/0xf0
[  163.036932][ T7927]  __generic_file_write_iter+0xf7/0x2b0
[  163.042462][ T7927]  ? generic_write_checks+0x250/0x290
[  163.047814][ T7927]  generic_file_write_iter+0x75/0x130
[  163.053168][ T7927]  do_iter_readv_writev+0x2de/0x380
[  163.058465][ T7927]  do_iter_write+0x192/0x5c0
[  163.063090][ T7927]  ? import_iovec+0xb8/0xd0
[  163.067678][ T7927]  do_pwritev+0x235/0x440
[  163.071993][ T7927]  ? debug_smp_processor_id+0x18/0x20
[  163.077365][ T7927]  ? fpregs_assert_state_consistent+0x7e/0x90
[  163.083614][ T7927]  __x64_sys_pwritev2+0x7e/0xa0
[  163.088899][ T7927]  do_syscall_64+0x44/0xd0
[  163.093302][ T7927]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  163.099178][ T7927] RIP: 0033:0x7fbba9ab7ae9
[  163.103584][ T7927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  163.123360][ T7927] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  163.131749][ T7927] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  163.139762][ T7927] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  163.147710][ T7927] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  163.155669][ T7927] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  163.163652][ T7927] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  163.171604][ T7927]  </TASK>
07:40:43 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:43 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xf, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:43 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 36)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:43 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x1000000000000000)

07:40:43 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xf0ffffff00000000)

[  163.279560][ T7947] loop4: detected capacity change from 0 to 16
[  163.319964][ T7947] FAULT_INJECTION: forcing a failure.
[  163.319964][ T7947] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  163.333718][ T7947] CPU: 1 PID: 7947 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  163.343783][ T7947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  163.353873][ T7947] Call Trace:
[  163.357145][ T7947]  <TASK>
[  163.360055][ T7947]  dump_stack_lvl+0xd6/0x122
[  163.364628][ T7947]  dump_stack+0x11/0x1b
[  163.368774][ T7947]  should_fail+0x23c/0x250
[  163.373175][ T7947]  __alloc_pages+0x102/0x330
[  163.377798][ T7947]  alloc_pages+0x382/0x3d0
[  163.382380][ T7947]  folio_alloc+0x1a/0x20
[  163.386603][ T7947]  filemap_alloc_folio+0x53/0xf0
[  163.391620][ T7947]  __filemap_get_folio+0x443/0x690
[  163.396788][ T7947]  pagecache_get_page+0x26/0xe0
[  163.401618][ T7947]  grab_cache_page_write_begin+0x3f/0x50
[  163.407274][ T7947]  cont_write_begin+0x4ab/0x7b0
[  163.412119][ T7947]  ? __get_user_nocheck_1+0x6/0x10
[  163.417217][ T7947]  fat_write_begin+0x61/0xf0
[  163.421806][ T7947]  ? fat_block_truncate_page+0x30/0x30
[  163.427411][ T7947]  generic_perform_write+0x1c8/0x400
[  163.432715][ T7947]  ? fat_write_begin+0xf0/0xf0
[  163.437550][ T7947]  __generic_file_write_iter+0xf7/0x2b0
[  163.443146][ T7947]  ? generic_write_checks+0x250/0x290
[  163.448496][ T7947]  generic_file_write_iter+0x75/0x130
[  163.453860][ T7947]  do_iter_readv_writev+0x2de/0x380
[  163.459097][ T7947]  do_iter_write+0x192/0x5c0
[  163.463743][ T7947]  ? import_iovec+0xb8/0xd0
[  163.468244][ T7947]  do_pwritev+0x235/0x440
[  163.472567][ T7947]  ? debug_smp_processor_id+0x18/0x20
[  163.477927][ T7947]  ? fpregs_assert_state_consistent+0x7e/0x90
[  163.484005][ T7947]  __x64_sys_pwritev2+0x7e/0xa0
[  163.488834][ T7947]  do_syscall_64+0x44/0xd0
[  163.493301][ T7947]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  163.499256][ T7947] RIP: 0033:0x7fbba9ab7ae9
[  163.503670][ T7947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  163.523274][ T7947] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  163.531742][ T7947] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  163.539748][ T7947] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  163.547733][ T7947] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  163.555702][ T7947] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  163.563731][ T7947] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  163.571788][ T7947]  </TASK>
07:40:44 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, 0x0, 0x0)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:44 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x10, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:44 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 37)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x8000000000000000)

07:40:44 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffff7f00000000)

07:40:44 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x11, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  163.761727][ T7967] loop4: detected capacity change from 0 to 16
[  163.798632][ T7967] FAULT_INJECTION: forcing a failure.
[  163.798632][ T7967] name failslab, interval 1, probability 0, space 0, times 0
07:40:44 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x12, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  163.811337][ T7967] CPU: 0 PID: 7967 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  163.821400][ T7967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  163.831585][ T7967] Call Trace:
[  163.834856][ T7967]  <TASK>
[  163.837826][ T7967]  dump_stack_lvl+0xd6/0x122
[  163.842433][ T7967]  dump_stack+0x11/0x1b
[  163.846726][ T7967]  should_fail+0x23c/0x250
[  163.851141][ T7967]  ? mempool_alloc_slab+0x16/0x20
[  163.856252][ T7967]  __should_failslab+0x81/0x90
[  163.861015][ T7967]  should_failslab+0x5/0x20
[  163.865587][ T7967]  kmem_cache_alloc+0x4f/0x320
[  163.870450][ T7967]  mempool_alloc_slab+0x16/0x20
[  163.875352][ T7967]  ? mempool_free+0x130/0x130
[  163.880030][ T7967]  mempool_alloc+0x9d/0x310
[  163.884558][ T7967]  bio_alloc_bioset+0xcc/0x560
[  163.889336][ T7967]  ? __getblk_gfp+0x3f/0x530
[  163.893943][ T7967]  submit_bh_wbc+0x133/0x320
[  163.898537][ T7967]  ? mark_buffer_dirty+0x190/0x260
[  163.903676][ T7967]  write_dirty_buffer+0xde/0xf0
[  163.908504][ T7967]  fat_sync_bhs+0x52/0x160
[  163.912899][ T7967]  fat_alloc_clusters+0x95a/0xab0
[  163.917916][ T7967]  fat_get_block+0x267/0x610
[  163.922511][ T7967]  __block_write_begin_int+0x4c5/0x1010
[  163.928075][ T7967]  ? fat_block_truncate_page+0x30/0x30
[  163.933520][ T7967]  cont_write_begin+0x4cf/0x7b0
[  163.938347][ T7967]  ? __get_user_nocheck_1+0x6/0x10
[  163.943471][ T7967]  fat_write_begin+0x61/0xf0
[  163.948072][ T7967]  ? fat_block_truncate_page+0x30/0x30
[  163.953507][ T7967]  generic_perform_write+0x1c8/0x400
[  163.958835][ T7967]  ? fat_write_begin+0xf0/0xf0
[  163.963619][ T7967]  __generic_file_write_iter+0xf7/0x2b0
[  163.969247][ T7967]  ? generic_write_checks+0x250/0x290
[  163.974717][ T7967]  generic_file_write_iter+0x75/0x130
[  163.980225][ T7967]  do_iter_readv_writev+0x2de/0x380
[  163.985486][ T7967]  do_iter_write+0x192/0x5c0
[  163.990063][ T7967]  ? import_iovec+0xb8/0xd0
[  163.994558][ T7967]  do_pwritev+0x235/0x440
[  163.998914][ T7967]  ? debug_smp_processor_id+0x18/0x20
[  164.004322][ T7967]  ? fpregs_assert_state_consistent+0x7e/0x90
[  164.010548][ T7967]  __x64_sys_pwritev2+0x7e/0xa0
[  164.015427][ T7967]  do_syscall_64+0x44/0xd0
[  164.019825][ T7967]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  164.025698][ T7967] RIP: 0033:0x7fbba9ab7ae9
[  164.030091][ T7967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  164.049691][ T7967] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  164.058129][ T7967] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  164.066088][ T7967] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  164.074142][ T7967] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  164.082155][ T7967] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  164.090383][ T7967] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  164.098353][ T7967]  </TASK>
07:40:44 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, 0x0, 0x0)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:44 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x25, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x9effffff00000000)

07:40:44 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffffff00000000)

07:40:44 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 38)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  164.231985][ T8002] loop4: detected capacity change from 0 to 16
[  164.244064][ T8002] FAULT_INJECTION: forcing a failure.
[  164.244064][ T8002] name failslab, interval 1, probability 0, space 0, times 0
[  164.256735][ T8002] CPU: 0 PID: 8002 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  164.266798][ T8002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  164.276874][ T8002] Call Trace:
[  164.280134][ T8002]  <TASK>
[  164.283047][ T8002]  dump_stack_lvl+0xd6/0x122
[  164.287680][ T8002]  dump_stack+0x11/0x1b
[  164.291872][ T8002]  should_fail+0x23c/0x250
[  164.296291][ T8002]  ? mempool_alloc_slab+0x16/0x20
[  164.301303][ T8002]  __should_failslab+0x81/0x90
[  164.306048][ T8002]  should_failslab+0x5/0x20
[  164.310550][ T8002]  kmem_cache_alloc+0x4f/0x320
[  164.315346][ T8002]  mempool_alloc_slab+0x16/0x20
[  164.320277][ T8002]  ? mempool_free+0x130/0x130
[  164.324958][ T8002]  mempool_alloc+0x9d/0x310
[  164.329501][ T8002]  bio_alloc_bioset+0xcc/0x560
[  164.334297][ T8002]  ? __getblk_gfp+0x3f/0x530
[  164.338867][ T8002]  submit_bh_wbc+0x133/0x320
[  164.343498][ T8002]  ? mark_buffer_dirty+0x190/0x260
[  164.348607][ T8002]  write_dirty_buffer+0xde/0xf0
[  164.353523][ T8002]  fat_sync_bhs+0x52/0x160
[  164.357977][ T8002]  fat_alloc_clusters+0x95a/0xab0
[  164.363046][ T8002]  fat_get_block+0x267/0x610
[  164.367647][ T8002]  __block_write_begin_int+0x4c5/0x1010
[  164.373271][ T8002]  ? fat_block_truncate_page+0x30/0x30
[  164.378774][ T8002]  cont_write_begin+0x4cf/0x7b0
[  164.383601][ T8002]  ? __get_user_nocheck_1+0x6/0x10
[  164.388691][ T8002]  fat_write_begin+0x61/0xf0
[  164.393359][ T8002]  ? fat_block_truncate_page+0x30/0x30
[  164.398794][ T8002]  generic_perform_write+0x1c8/0x400
[  164.404144][ T8002]  ? fat_write_begin+0xf0/0xf0
[  164.408886][ T8002]  __generic_file_write_iter+0xf7/0x2b0
[  164.414416][ T8002]  ? generic_write_checks+0x250/0x290
[  164.419838][ T8002]  generic_file_write_iter+0x75/0x130
[  164.425236][ T8002]  do_iter_readv_writev+0x2de/0x380
[  164.430489][ T8002]  do_iter_write+0x192/0x5c0
[  164.435057][ T8002]  ? import_iovec+0xb8/0xd0
[  164.439562][ T8002]  do_pwritev+0x235/0x440
[  164.443975][ T8002]  ? debug_smp_processor_id+0x18/0x20
[  164.449407][ T8002]  ? fpregs_assert_state_consistent+0x7e/0x90
[  164.455543][ T8002]  __x64_sys_pwritev2+0x7e/0xa0
[  164.460392][ T8002]  do_syscall_64+0x44/0xd0
[  164.464879][ T8002]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  164.470789][ T8002] RIP: 0033:0x7fbba9ab7ae9
[  164.475224][ T8002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  164.494812][ T8002] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  164.503213][ T8002] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  164.511159][ T8002] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  164.519105][ T8002] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  164.527118][ T8002] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  164.535130][ T8002] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  164.543085][ T8002]  </TASK>
07:40:44 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, 0x0, 0x0)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:44 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x48, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:44 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000000), r1)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000080), r0)
sendmsg$NLBL_CALIPSO_C_REMOVE(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r3, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008001}, 0xc004)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xefffffff00000000)

07:40:44 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 39)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:44 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x4c, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:45 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xf0ffffff00000000)

[  164.714961][ T8026] loop4: detected capacity change from 0 to 16
[  164.732878][ T8026] FAULT_INJECTION: forcing a failure.
[  164.732878][ T8026] name failslab, interval 1, probability 0, space 0, times 0
[  164.745713][ T8026] CPU: 1 PID: 8026 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  164.755820][ T8026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  164.765852][ T8026] Call Trace:
[  164.769149][ T8026]  <TASK>
[  164.772059][ T8026]  dump_stack_lvl+0xd6/0x122
[  164.776638][ T8026]  dump_stack+0x11/0x1b
[  164.780836][ T8026]  should_fail+0x23c/0x250
[  164.785246][ T8026]  ? mempool_alloc_slab+0x16/0x20
[  164.790249][ T8026]  __should_failslab+0x81/0x90
[  164.795001][ T8026]  should_failslab+0x5/0x20
[  164.799612][ T8026]  kmem_cache_alloc+0x4f/0x320
[  164.804354][ T8026]  mempool_alloc_slab+0x16/0x20
[  164.809183][ T8026]  ? mempool_free+0x130/0x130
[  164.813904][ T8026]  mempool_alloc+0x9d/0x310
[  164.818401][ T8026]  bio_alloc_bioset+0xcc/0x560
[  164.823155][ T8026]  submit_bh_wbc+0x133/0x320
[  164.827758][ T8026]  ? mark_buffer_dirty+0x190/0x260
[  164.832952][ T8026]  __sync_dirty_buffer+0x136/0x1e0
[  164.838076][ T8026]  sync_dirty_buffer+0x16/0x20
[  164.842827][ T8026]  fat_mirror_bhs+0x24b/0x330
[  164.847592][ T8026]  fat_alloc_clusters+0x9ad/0xab0
[  164.852790][ T8026]  fat_get_block+0x267/0x610
[  164.857418][ T8026]  __block_write_begin_int+0x4c5/0x1010
[  164.862989][ T8026]  ? fat_block_truncate_page+0x30/0x30
[  164.868428][ T8026]  cont_write_begin+0x4cf/0x7b0
[  164.873255][ T8026]  ? __get_user_nocheck_1+0x6/0x10
[  164.878348][ T8026]  fat_write_begin+0x61/0xf0
[  164.882961][ T8026]  ? fat_block_truncate_page+0x30/0x30
[  164.888454][ T8026]  generic_perform_write+0x1c8/0x400
[  164.893866][ T8026]  ? fat_write_begin+0xf0/0xf0
[  164.898623][ T8026]  __generic_file_write_iter+0xf7/0x2b0
[  164.904220][ T8026]  ? generic_write_checks+0x250/0x290
[  164.909642][ T8026]  generic_file_write_iter+0x75/0x130
[  164.915098][ T8026]  do_iter_readv_writev+0x2de/0x380
[  164.920285][ T8026]  do_iter_write+0x192/0x5c0
[  164.924867][ T8026]  ? import_iovec+0xb8/0xd0
[  164.929366][ T8026]  do_pwritev+0x235/0x440
[  164.933742][ T8026]  ? debug_smp_processor_id+0x18/0x20
[  164.939099][ T8026]  ? fpregs_assert_state_consistent+0x7e/0x90
[  164.945219][ T8026]  __x64_sys_pwritev2+0x7e/0xa0
[  164.950049][ T8026]  do_syscall_64+0x44/0xd0
[  164.954515][ T8026]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  164.960387][ T8026] RIP: 0033:0x7fbba9ab7ae9
[  164.964781][ T8026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  164.984491][ T8026] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  164.992882][ T8026] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  165.000897][ T8026] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
07:40:45 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, 0x0, 0x0)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:45 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x60, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  165.008883][ T8026] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  165.016830][ T8026] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  165.024790][ T8026] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  165.032744][ T8026]  </TASK>
07:40:45 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x68, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:45 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 40)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:45 executing program 1:
semop(0x0, &(0x7f0000000040)=[{0x2, 0x9, 0x800}, {0x2, 0x3, 0x1000}, {0x3, 0x1, 0x1800}], 0x3)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000000c0), r1)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r3, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x2}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x21}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc000804}, 0x20000000)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  165.188411][ T8049] loop4: detected capacity change from 0 to 16
[  165.199468][ T8049] FAULT_INJECTION: forcing a failure.
[  165.199468][ T8049] name failslab, interval 1, probability 0, space 0, times 0
[  165.212149][ T8049] CPU: 0 PID: 8049 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  165.222210][ T8049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  165.232253][ T8049] Call Trace:
[  165.235511][ T8049]  <TASK>
[  165.238427][ T8049]  dump_stack_lvl+0xd6/0x122
[  165.243058][ T8049]  dump_stack+0x11/0x1b
[  165.247245][ T8049]  should_fail+0x23c/0x250
[  165.251649][ T8049]  ? mempool_alloc_slab+0x16/0x20
[  165.256807][ T8049]  __should_failslab+0x81/0x90
[  165.261620][ T8049]  should_failslab+0x5/0x20
[  165.266101][ T8049]  kmem_cache_alloc+0x4f/0x320
[  165.270846][ T8049]  ? blk_mq_submit_bio+0xdeb/0x1470
[  165.276161][ T8049]  mempool_alloc_slab+0x16/0x20
[  165.280994][ T8049]  ? mempool_free+0x130/0x130
[  165.285701][ T8049]  mempool_alloc+0x9d/0x310
[  165.290305][ T8049]  bio_alloc_bioset+0xcc/0x560
[  165.295062][ T8049]  submit_bh_wbc+0x133/0x320
[  165.299699][ T8049]  ? mark_buffer_dirty+0x190/0x260
[  165.304791][ T8049]  __sync_dirty_buffer+0x136/0x1e0
[  165.309882][ T8049]  sync_dirty_buffer+0x16/0x20
[  165.314641][ T8049]  fat_mirror_bhs+0x24b/0x330
[  165.319303][ T8049]  fat_ent_write+0xc2/0xd0
[  165.323888][ T8049]  fat_chain_add+0x15b/0x410
[  165.328457][ T8049]  fat_get_block+0x48d/0x610
[  165.333132][ T8049]  __block_write_begin_int+0x4c5/0x1010
[  165.338746][ T8049]  ? fat_block_truncate_page+0x30/0x30
[  165.344295][ T8049]  cont_write_begin+0x4cf/0x7b0
[  165.349171][ T8049]  ? __get_user_nocheck_1+0x6/0x10
[  165.354271][ T8049]  fat_write_begin+0x61/0xf0
[  165.358844][ T8049]  ? fat_block_truncate_page+0x30/0x30
[  165.364299][ T8049]  generic_perform_write+0x1c8/0x400
[  165.369580][ T8049]  ? fat_write_begin+0xf0/0xf0
[  165.374372][ T8049]  __generic_file_write_iter+0xf7/0x2b0
[  165.379916][ T8049]  ? generic_write_checks+0x250/0x290
[  165.385459][ T8049]  generic_file_write_iter+0x75/0x130
[  165.390821][ T8049]  do_iter_readv_writev+0x2de/0x380
[  165.396013][ T8049]  do_iter_write+0x192/0x5c0
[  165.400587][ T8049]  ? import_iovec+0xb8/0xd0
[  165.405086][ T8049]  do_pwritev+0x235/0x440
[  165.409401][ T8049]  ? debug_smp_processor_id+0x18/0x20
[  165.414827][ T8049]  ? fpregs_assert_state_consistent+0x7e/0x90
[  165.420872][ T8049]  __x64_sys_pwritev2+0x7e/0xa0
[  165.425718][ T8049]  do_syscall_64+0x44/0xd0
[  165.430117][ T8049]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  165.436040][ T8049] RIP: 0033:0x7fbba9ab7ae9
[  165.440429][ T8049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  165.460018][ T8049] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  165.468415][ T8049] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  165.476376][ T8049] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
07:40:45 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:45 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x6c, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:45 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffff7f00000000)

07:40:45 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\b\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  165.484412][ T8049] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  165.492487][ T8049] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  165.500563][ T8049] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  165.508693][ T8049]  </TASK>
07:40:45 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x74, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:45 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x7a, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:45 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0xffffffff00000000)

07:40:46 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, 0x0, 0x0)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:46 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="01040000", @ANYRES16=r5, @ANYBLOB="010000000000000000000100000004000880080001000000000010000c80080008800800090000000000040004800800020001000000"], 0x3c}}, 0x0)
sendmsg$NLBL_CIPSOV4_C_LIST(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80020}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="00047400fcdbdf25030000000800020003000004756bc40e10217e898787b93834b00abcecb4b5f9fe7b3643284b01e951c5f12dc3e9444c75d9a3f6965c45d68232cf8c01da0fc4ba1b85c10c79d6549c29d5e92245e9070000"], 0x1c}, 0x1, 0x0, 0x0, 0x24000040}, 0x80)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x34, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:46 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x154, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:46 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan4\x00'})
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:46 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 41)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  165.932150][ T8088] loop4: detected capacity change from 0 to 16
[  165.940989][ T8085] validate_nla: 40 callbacks suppressed
[  165.941002][ T8085] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  165.954680][ T8085] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  165.967761][ T8088] FAULT_INJECTION: forcing a failure.
[  165.967761][ T8088] name failslab, interval 1, probability 0, space 0, times 0
[  165.980478][ T8088] CPU: 1 PID: 8088 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  165.990602][ T8088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  166.000652][ T8088] Call Trace:
[  166.003993][ T8088]  <TASK>
[  166.006899][ T8088]  dump_stack_lvl+0xd6/0x122
[  166.011598][ T8088]  dump_stack+0x11/0x1b
[  166.015735][ T8088]  should_fail+0x23c/0x250
[  166.020144][ T8088]  ? mempool_alloc_slab+0x16/0x20
[  166.025271][ T8088]  __should_failslab+0x81/0x90
[  166.030121][ T8088]  should_failslab+0x5/0x20
[  166.034602][ T8088]  kmem_cache_alloc+0x4f/0x320
[  166.039347][ T8088]  mempool_alloc_slab+0x16/0x20
[  166.044265][ T8088]  ? mempool_free+0x130/0x130
[  166.048973][ T8088]  mempool_alloc+0x9d/0x310
[  166.053545][ T8088]  bio_alloc_bioset+0xcc/0x560
[  166.058397][ T8088]  ? __getblk_gfp+0x3f/0x530
[  166.062962][ T8088]  submit_bh_wbc+0x133/0x320
[  166.067533][ T8088]  ? mark_buffer_dirty+0x190/0x260
[  166.072685][ T8088]  write_dirty_buffer+0xde/0xf0
[  166.077595][ T8088]  fat_sync_bhs+0x52/0x160
[  166.082055][ T8088]  fat_alloc_clusters+0x95a/0xab0
[  166.087064][ T8088]  fat_get_block+0x267/0x610
[  166.091685][ T8088]  __block_write_begin_int+0x4c5/0x1010
[  166.097211][ T8088]  ? fat_block_truncate_page+0x30/0x30
[  166.102665][ T8088]  cont_write_begin+0x4cf/0x7b0
[  166.107515][ T8088]  ? __get_user_nocheck_1+0x6/0x10
[  166.112687][ T8088]  fat_write_begin+0x61/0xf0
[  166.117359][ T8088]  ? fat_block_truncate_page+0x30/0x30
[  166.122809][ T8088]  generic_perform_write+0x1c8/0x400
[  166.128137][ T8088]  ? fat_write_begin+0xf0/0xf0
[  166.132879][ T8088]  __generic_file_write_iter+0xf7/0x2b0
[  166.138410][ T8088]  ? generic_write_checks+0x250/0x290
[  166.143764][ T8088]  generic_file_write_iter+0x75/0x130
[  166.149120][ T8088]  do_iter_readv_writev+0x2de/0x380
[  166.154337][ T8088]  do_iter_write+0x192/0x5c0
[  166.159027][ T8088]  ? import_iovec+0xb8/0xd0
[  166.163512][ T8088]  do_pwritev+0x235/0x440
[  166.167904][ T8088]  ? debug_smp_processor_id+0x18/0x20
[  166.173262][ T8088]  ? fpregs_assert_state_consistent+0x7e/0x90
[  166.179334][ T8088]  __x64_sys_pwritev2+0x7e/0xa0
[  166.184172][ T8088]  do_syscall_64+0x44/0xd0
[  166.188602][ T8088]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  166.194485][ T8088] RIP: 0033:0x7fbba9ab7ae9
[  166.198888][ T8088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  166.218534][ T8088] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  166.227042][ T8088] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  166.234992][ T8088] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  166.242979][ T8088] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  166.250927][ T8088] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  166.258901][ T8088] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  166.266907][ T8088]  </TASK>
07:40:46 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:46 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x300, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:46 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000829bd7000000000002100000009001f007068793100000000050020e400000000bf2cf056cbbb1ed0de37cc21"], 0x34}}, 0x0)

07:40:46 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="09053fff", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

07:40:46 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 42)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:46 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000700100000f000000000000000000000004000000000002000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d6f4655f000000000000000001000000000000000b0000000004000008000000d2c201001203", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000c7b2a4502ed64a6eb421652eb677bbba010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000400000038", 0x39, 0x53c}, {&(0x7f0000010400)="03000000040000000500000017000f000300040000000000000000000f008551", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000d6f4655fd7f4655fd7f4655f000000000000040020", 0x1d, 0x1800}], 0x0, &(0x7f0000013800))
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:46 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  166.395788][ T8101] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  166.403916][ T8101] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  166.439029][ T8112] loop4: detected capacity change from 0 to 16
[  166.450664][ T8117] loop0: detected capacity change from 0 to 1024
[  166.463225][ T8112] FAULT_INJECTION: forcing a failure.
[  166.463225][ T8112] name failslab, interval 1, probability 0, space 0, times 0
[  166.474291][ T8117] EXT4-fs (loop0): too many log groups per flexible block group
[  166.475924][ T8112] CPU: 0 PID: 8112 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  166.483511][ T8117] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  166.493498][ T8112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  166.493511][ T8112] Call Trace:
[  166.493516][ T8112]  <TASK>
[  166.501312][ T8117] EXT4-fs (loop0): mount failed
[  166.510330][ T8112]  dump_stack_lvl+0xd6/0x122
[  166.510358][ T8112]  dump_stack+0x11/0x1b
[  166.510376][ T8112]  should_fail+0x23c/0x250
[  166.534503][ T8112]  ? mempool_alloc_slab+0x16/0x20
[  166.539593][ T8112]  __should_failslab+0x81/0x90
[  166.544339][ T8112]  should_failslab+0x5/0x20
[  166.548859][ T8112]  kmem_cache_alloc+0x4f/0x320
[  166.553671][ T8112]  mempool_alloc_slab+0x16/0x20
[  166.558610][ T8112]  ? mempool_free+0x130/0x130
[  166.563646][ T8112]  mempool_alloc+0x9d/0x310
[  166.568159][ T8112]  bio_alloc_bioset+0xcc/0x560
[  166.572904][ T8112]  ? submit_bio_noacct+0x49f/0x4e0
[  166.578039][ T8112]  submit_bh_wbc+0x133/0x320
[  166.582682][ T8112]  ? mark_buffer_dirty+0x190/0x260
[  166.587771][ T8112]  __sync_dirty_buffer+0x136/0x1e0
[  166.592868][ T8112]  sync_dirty_buffer+0x16/0x20
[  166.597687][ T8112]  fat_mirror_bhs+0x24b/0x330
[  166.602368][ T8112]  fat_alloc_clusters+0x9ad/0xab0
[  166.607371][ T8112]  fat_get_block+0x267/0x610
[  166.612032][ T8112]  __block_write_begin_int+0x4c5/0x1010
[  166.617588][ T8112]  ? fat_block_truncate_page+0x30/0x30
[  166.623125][ T8112]  cont_write_begin+0x4cf/0x7b0
[  166.627956][ T8112]  ? __get_user_nocheck_1+0x6/0x10
[  166.633087][ T8112]  fat_write_begin+0x61/0xf0
[  166.637660][ T8112]  ? fat_block_truncate_page+0x30/0x30
[  166.643125][ T8112]  generic_perform_write+0x1c8/0x400
[  166.648522][ T8112]  ? fat_write_begin+0xf0/0xf0
[  166.653311][ T8112]  __generic_file_write_iter+0xf7/0x2b0
[  166.658910][ T8112]  ? generic_write_checks+0x250/0x290
[  166.664376][ T8112]  generic_file_write_iter+0x75/0x130
[  166.670532][ T8112]  do_iter_readv_writev+0x2de/0x380
[  166.675718][ T8112]  do_iter_write+0x192/0x5c0
[  166.680291][ T8112]  ? import_iovec+0xb8/0xd0
[  166.684848][ T8112]  do_pwritev+0x235/0x440
[  166.689173][ T8112]  ? debug_smp_processor_id+0x18/0x20
[  166.694540][ T8112]  ? fpregs_assert_state_consistent+0x7e/0x90
[  166.700589][ T8112]  __x64_sys_pwritev2+0x7e/0xa0
[  166.705424][ T8112]  do_syscall_64+0x44/0xd0
[  166.709890][ T8112]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  166.715785][ T8112] RIP: 0033:0x7fbba9ab7ae9
[  166.720311][ T8112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  166.739962][ T8112] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  166.748404][ T8112] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  166.756365][ T8112] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  166.764321][ T8112] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  166.772317][ T8112] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  166.780273][ T8112] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
07:40:47 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:47 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x500, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:47 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xaaa3}, @NL802154_ATTR_SHORT_ADDR={0x6}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xfffe}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x84}, 0x80)

[  166.788327][ T8112]  </TASK>
[  166.838018][ T8123] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  166.846181][ T8123] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  166.857564][ T8117] loop0: detected capacity change from 0 to 1024
[  166.876264][ T8117] EXT4-fs (loop0): too many log groups per flexible block group
07:40:47 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x600, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:47 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 43)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  166.884075][ T8117] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  166.894170][ T8117] EXT4-fs (loop0): mount failed
[  166.919359][ T8135] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  166.927528][ T8135] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  166.990180][ T8142] loop4: detected capacity change from 0 to 16
[  167.006488][ T8142] FAULT_INJECTION: forcing a failure.
[  167.006488][ T8142] name failslab, interval 1, probability 0, space 0, times 0
[  167.019262][ T8142] CPU: 0 PID: 8142 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  167.029326][ T8142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  167.039363][ T8142] Call Trace:
[  167.042622][ T8142]  <TASK>
[  167.045531][ T8142]  dump_stack_lvl+0xd6/0x122
[  167.050142][ T8142]  dump_stack+0x11/0x1b
[  167.054296][ T8142]  should_fail+0x23c/0x250
[  167.058708][ T8142]  ? mempool_alloc_slab+0x16/0x20
[  167.063791][ T8142]  __should_failslab+0x81/0x90
[  167.068564][ T8142]  should_failslab+0x5/0x20
[  167.073057][ T8142]  kmem_cache_alloc+0x4f/0x320
[  167.077902][ T8142]  mempool_alloc_slab+0x16/0x20
[  167.082744][ T8142]  ? mempool_free+0x130/0x130
[  167.087402][ T8142]  mempool_alloc+0x9d/0x310
[  167.091892][ T8142]  bio_alloc_bioset+0xcc/0x560
[  167.096652][ T8142]  submit_bh_wbc+0x133/0x320
[  167.101223][ T8142]  ? mark_buffer_dirty+0x190/0x260
[  167.106343][ T8142]  write_dirty_buffer+0xde/0xf0
[  167.111262][ T8142]  fat_sync_bhs+0x52/0x160
[  167.115686][ T8142]  fat_ent_write+0x85/0xd0
[  167.120146][ T8142]  fat_chain_add+0x15b/0x410
[  167.124764][ T8142]  fat_get_block+0x48d/0x610
[  167.129411][ T8142]  __block_write_begin_int+0x4c5/0x1010
[  167.134936][ T8142]  ? fat_block_truncate_page+0x30/0x30
[  167.140408][ T8142]  cont_write_begin+0x4cf/0x7b0
[  167.145382][ T8142]  ? __get_user_nocheck_1+0x6/0x10
[  167.150554][ T8142]  fat_write_begin+0x61/0xf0
[  167.155138][ T8142]  ? fat_block_truncate_page+0x30/0x30
[  167.160574][ T8142]  generic_perform_write+0x1c8/0x400
[  167.165855][ T8142]  ? fat_write_begin+0xf0/0xf0
[  167.170599][ T8142]  __generic_file_write_iter+0xf7/0x2b0
[  167.176161][ T8142]  ? generic_write_checks+0x250/0x290
[  167.181539][ T8142]  generic_file_write_iter+0x75/0x130
[  167.186935][ T8142]  do_iter_readv_writev+0x2de/0x380
[  167.192127][ T8142]  do_iter_write+0x192/0x5c0
[  167.196761][ T8142]  ? import_iovec+0xb8/0xd0
[  167.201304][ T8142]  do_pwritev+0x235/0x440
[  167.205627][ T8142]  ? debug_smp_processor_id+0x18/0x20
[  167.210989][ T8142]  ? fpregs_assert_state_consistent+0x7e/0x90
[  167.217139][ T8142]  __x64_sys_pwritev2+0x7e/0xa0
[  167.222049][ T8142]  do_syscall_64+0x44/0xd0
[  167.226554][ T8142]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  167.232489][ T8142] RIP: 0033:0x7fbba9ab7ae9
[  167.236975][ T8142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  167.256607][ T8142] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  167.265018][ T8142] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  167.272985][ T8142] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  167.280939][ T8142] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
07:40:47 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:47 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x700, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:47 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x38, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0xc000}, 0x0)

07:40:47 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000002100000009001f007068b512227931000000000c000500000000fc00c5ed8582e046c0f24388fbdb045ca3b3e4218349fa23f988c59f15215a7da2e35bde4e11b7de24496085cbc4889071300d91bcb9c38d4c83f531d7834614df674e967f24071b5eb0411317db01ba6515a958b50321330258c3b183b18e8168"], 0x34}}, 0x0)

07:40:47 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000040)={'wpan3\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r2, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x4c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000000}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x20000850)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  167.288905][ T8142] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  167.296874][ T8142] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  167.304879][ T8142]  </TASK>
07:40:47 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:47 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x900, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  167.349785][ T8151] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  167.358015][ T8151] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:40:47 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:47 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xa00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:47 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x4000001)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:47 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r3)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r1)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), r5)
sendmsg$NLBL_CIPSOV4_C_ADD(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x3c, r7, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0x8, 0x8, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x3c}}, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0x104, r7, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0xe8, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e843c93}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x596f3c67}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b7bc776}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf0a5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7447a3fc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x69ee8394}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x70df397}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x54be5794}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x42bc58a2}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x133995d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30802440}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3701}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd35c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x68ce}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x413b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x456c1f68}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b7e94ce}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68a2f7ae}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x91de}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf473}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x416286c4}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa7da}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x416f92d6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xaee8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3bad0c95}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x104}, 0x1, 0x0, 0x0, 0x20040010}, 0x20000104)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000082100000009001f00706879310000000005002000000000000c00050000000000000044000000"], 0x34}}, 0x0)

07:40:47 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 44)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  167.694811][ T8173] loop4: detected capacity change from 0 to 16
[  167.728365][ T8173] FAULT_INJECTION: forcing a failure.
[  167.728365][ T8173] name failslab, interval 1, probability 0, space 0, times 0
[  167.741084][ T8173] CPU: 1 PID: 8173 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  167.751184][ T8173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  167.761284][ T8173] Call Trace:
[  167.764561][ T8173]  <TASK>
[  167.767473][ T8173]  dump_stack_lvl+0xd6/0x122
[  167.772107][ T8173]  dump_stack+0x11/0x1b
[  167.776303][ T8173]  should_fail+0x23c/0x250
[  167.780694][ T8173]  ? mempool_alloc_slab+0x16/0x20
[  167.785697][ T8173]  __should_failslab+0x81/0x90
[  167.790439][ T8173]  should_failslab+0x5/0x20
[  167.794944][ T8173]  kmem_cache_alloc+0x4f/0x320
[  167.799792][ T8173]  mempool_alloc_slab+0x16/0x20
[  167.804683][ T8173]  ? mempool_free+0x130/0x130
[  167.809404][ T8173]  mempool_alloc+0x9d/0x310
[  167.813951][ T8173]  bio_alloc_bioset+0xcc/0x560
[  167.818833][ T8173]  submit_bh_wbc+0x133/0x320
[  167.823402][ T8173]  ? mark_buffer_dirty+0x190/0x260
[  167.828490][ T8173]  __sync_dirty_buffer+0x136/0x1e0
[  167.833592][ T8173]  sync_dirty_buffer+0x16/0x20
[  167.838332][ T8173]  fat_mirror_bhs+0x24b/0x330
[  167.842988][ T8173]  fat_ent_write+0xc2/0xd0
[  167.847469][ T8173]  fat_chain_add+0x15b/0x410
[  167.852064][ T8173]  fat_get_block+0x48d/0x610
[  167.856668][ T8173]  __block_write_begin_int+0x4c5/0x1010
[  167.862198][ T8173]  ? fat_block_truncate_page+0x30/0x30
[  167.867800][ T8173]  cont_write_begin+0x4cf/0x7b0
[  167.872719][ T8173]  ? __get_user_nocheck_1+0x6/0x10
[  167.877830][ T8173]  fat_write_begin+0x61/0xf0
[  167.882455][ T8173]  ? fat_block_truncate_page+0x30/0x30
[  167.887970][ T8173]  generic_perform_write+0x1c8/0x400
[  167.893239][ T8173]  ? fat_write_begin+0xf0/0xf0
[  167.897984][ T8173]  __generic_file_write_iter+0xf7/0x2b0
[  167.903514][ T8173]  ? generic_write_checks+0x250/0x290
[  167.908869][ T8173]  generic_file_write_iter+0x75/0x130
[  167.914292][ T8173]  do_iter_readv_writev+0x2de/0x380
[  167.919484][ T8173]  do_iter_write+0x192/0x5c0
[  167.924131][ T8173]  ? import_iovec+0xb8/0xd0
[  167.928640][ T8173]  do_pwritev+0x235/0x440
[  167.932955][ T8173]  ? debug_smp_processor_id+0x18/0x20
[  167.938306][ T8173]  ? fpregs_assert_state_consistent+0x7e/0x90
[  167.944512][ T8173]  __x64_sys_pwritev2+0x7e/0xa0
[  167.949356][ T8173]  do_syscall_64+0x44/0xd0
[  167.953844][ T8173]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  167.959990][ T8173] RIP: 0033:0x7fbba9ab7ae9
[  167.964393][ T8173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  167.983982][ T8173] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  167.992388][ T8173] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  168.000347][ T8173] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  168.008297][ T8173] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  168.016257][ T8173] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  168.024215][ T8173] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  168.032168][ T8173]  </TASK>
[  168.114446][ T8184] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
07:40:48 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:48 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xb00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:48 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan3\x00'})
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:48 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 45)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:48 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="a12125c2", @ANYRES16=r2, @ANYBLOB="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"], 0x34}}, 0x0)

07:40:48 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xc00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  168.212508][ T8198] loop4: detected capacity change from 0 to 16
[  168.232639][ T8198] FAULT_INJECTION: forcing a failure.
[  168.232639][ T8198] name failslab, interval 1, probability 0, space 0, times 0
[  168.245315][ T8198] CPU: 0 PID: 8198 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:48 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xd00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  168.255446][ T8198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  168.265498][ T8198] Call Trace:
[  168.268768][ T8198]  <TASK>
[  168.271697][ T8198]  dump_stack_lvl+0xd6/0x122
[  168.276293][ T8198]  dump_stack+0x11/0x1b
[  168.280451][ T8198]  should_fail+0x23c/0x250
[  168.284872][ T8198]  ? mempool_alloc_slab+0x16/0x20
[  168.289973][ T8198]  __should_failslab+0x81/0x90
[  168.294888][ T8198]  should_failslab+0x5/0x20
[  168.299392][ T8198]  kmem_cache_alloc+0x4f/0x320
[  168.304156][ T8198]  mempool_alloc_slab+0x16/0x20
[  168.309072][ T8198]  ? mempool_free+0x130/0x130
[  168.313775][ T8198]  mempool_alloc+0x9d/0x310
[  168.318352][ T8198]  bio_alloc_bioset+0xcc/0x560
[  168.323142][ T8198]  ? __getblk_gfp+0x3f/0x530
[  168.327763][ T8198]  submit_bh_wbc+0x133/0x320
[  168.332430][ T8198]  ? mark_buffer_dirty+0x190/0x260
[  168.337531][ T8198]  write_dirty_buffer+0xde/0xf0
[  168.342365][ T8198]  fat_sync_bhs+0x52/0x160
[  168.346779][ T8198]  fat_alloc_clusters+0x95a/0xab0
[  168.351826][ T8198]  fat_get_block+0x267/0x610
[  168.356397][ T8198]  __block_write_begin_int+0x4c5/0x1010
[  168.362017][ T8198]  ? fat_block_truncate_page+0x30/0x30
[  168.367535][ T8198]  cont_write_begin+0x4cf/0x7b0
[  168.372451][ T8198]  ? __get_user_nocheck_1+0x6/0x10
[  168.377643][ T8198]  fat_write_begin+0x61/0xf0
[  168.382212][ T8198]  ? fat_block_truncate_page+0x30/0x30
[  168.387653][ T8198]  generic_perform_write+0x1c8/0x400
[  168.392918][ T8198]  ? fat_write_begin+0xf0/0xf0
[  168.397662][ T8198]  __generic_file_write_iter+0xf7/0x2b0
[  168.403207][ T8198]  ? generic_write_checks+0x250/0x290
[  168.408622][ T8198]  generic_file_write_iter+0x75/0x130
[  168.413992][ T8198]  do_iter_readv_writev+0x2de/0x380
[  168.419185][ T8198]  do_iter_write+0x192/0x5c0
[  168.423840][ T8198]  ? import_iovec+0xb8/0xd0
[  168.428415][ T8198]  do_pwritev+0x235/0x440
[  168.432730][ T8198]  ? debug_smp_processor_id+0x18/0x20
[  168.438103][ T8198]  ? fpregs_assert_state_consistent+0x7e/0x90
[  168.444227][ T8198]  __x64_sys_pwritev2+0x7e/0xa0
[  168.449090][ T8198]  do_syscall_64+0x44/0xd0
[  168.453535][ T8198]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  168.459431][ T8198] RIP: 0033:0x7fbba9ab7ae9
[  168.463895][ T8198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  168.483690][ T8198] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  168.492093][ T8198] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  168.500142][ T8198] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  168.508125][ T8198] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  168.516107][ T8198] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  168.524130][ T8198] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  168.532098][ T8198]  </TASK>
07:40:48 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:48 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xe00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:48 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0xf8, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MLSLVLLST={0xa8, 0x8, 0x0, 0x1, [{0x12, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x23663ca0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5e3d250}]}, {0x14}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5ad2180c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x4, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1000b2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x0, 0x5, 0x512df300}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x32c18142}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x0, 0x5, 0x822ce87}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x33452abc}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6f}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_MTYPE={0x0, 0x2, 0x1}]}, 0xf8}, 0x1, 0x0, 0x0, 0xc000}, 0x20008014)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:48 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r2, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)

07:40:48 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xe5a, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:49 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:49 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 46)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:49 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xe5b, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:49 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:49 executing program 1:
r0 = syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f00000000c0), 0x800)
io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000002100000009001f5c88771c830d18a691ea4594d94014b3fd317d33c31c00000500200000"], 0x34}}, 0x0)

07:40:49 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xf00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  169.066922][ T8243] loop4: detected capacity change from 0 to 16
[  169.076155][   T24] audit: type=1400 audit(1637998849.378:277): avc:  denied  { open } for  pid=8241 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  169.095699][   T24] audit: type=1400 audit(1637998849.378:278): avc:  denied  { kernel } for  pid=8241 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
07:40:49 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x1100, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  169.131340][ T8243] FAULT_INJECTION: forcing a failure.
[  169.131340][ T8243] name failslab, interval 1, probability 0, space 0, times 0
[  169.144094][ T8243] CPU: 0 PID: 8243 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  169.154189][ T8243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  169.164256][ T8243] Call Trace:
[  169.167577][ T8243]  <TASK>
[  169.170500][ T8243]  dump_stack_lvl+0xd6/0x122
[  169.175197][ T8243]  dump_stack+0x11/0x1b
[  169.179354][ T8243]  should_fail+0x23c/0x250
[  169.183771][ T8243]  ? mempool_alloc_slab+0x16/0x20
[  169.188802][ T8243]  __should_failslab+0x81/0x90
[  169.193579][ T8243]  should_failslab+0x5/0x20
[  169.198084][ T8243]  kmem_cache_alloc+0x4f/0x320
[  169.202897][ T8243]  mempool_alloc_slab+0x16/0x20
[  169.207822][ T8243]  ? mempool_free+0x130/0x130
[  169.212482][ T8243]  mempool_alloc+0x9d/0x310
[  169.216986][ T8243]  bio_alloc_bioset+0xcc/0x560
[  169.221745][ T8243]  submit_bh_wbc+0x133/0x320
[  169.226368][ T8243]  ? mark_buffer_dirty+0x190/0x260
[  169.231480][ T8243]  __sync_dirty_buffer+0x136/0x1e0
[  169.236575][ T8243]  sync_dirty_buffer+0x16/0x20
[  169.241340][ T8243]  fat_mirror_bhs+0x24b/0x330
[  169.245995][ T8243]  fat_alloc_clusters+0x9ad/0xab0
[  169.251001][ T8243]  fat_get_block+0x267/0x610
[  169.255567][ T8243]  __block_write_begin_int+0x4c5/0x1010
[  169.261179][ T8243]  ? fat_block_truncate_page+0x30/0x30
[  169.266663][ T8243]  cont_write_begin+0x4cf/0x7b0
[  169.271563][ T8243]  ? __get_user_nocheck_1+0x6/0x10
[  169.276741][ T8243]  fat_write_begin+0x61/0xf0
[  169.281321][ T8243]  ? fat_block_truncate_page+0x30/0x30
[  169.286758][ T8243]  generic_perform_write+0x1c8/0x400
[  169.292047][ T8243]  ? fat_write_begin+0xf0/0xf0
[  169.296849][ T8243]  __generic_file_write_iter+0xf7/0x2b0
[  169.302374][ T8243]  ? generic_write_checks+0x250/0x290
[  169.307723][ T8243]  generic_file_write_iter+0x75/0x130
[  169.313073][ T8243]  do_iter_readv_writev+0x2de/0x380
[  169.318252][ T8243]  do_iter_write+0x192/0x5c0
[  169.322882][ T8243]  ? import_iovec+0xb8/0xd0
[  169.327457][ T8243]  do_pwritev+0x235/0x440
[  169.331837][ T8243]  ? debug_smp_processor_id+0x18/0x20
[  169.337187][ T8243]  ? fpregs_assert_state_consistent+0x7e/0x90
[  169.343254][ T8243]  __x64_sys_pwritev2+0x7e/0xa0
[  169.348158][ T8243]  do_syscall_64+0x44/0xd0
[  169.352577][ T8243]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  169.358481][ T8243] RIP: 0033:0x7fbba9ab7ae9
[  169.362888][ T8243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  169.382471][ T8243] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  169.390895][ T8243] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  169.398847][ T8243] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  169.406806][ T8243] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  169.414767][ T8243] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  169.422733][ T8243] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
07:40:49 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:49 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x1200, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  169.430687][ T8243]  </TASK>
07:40:49 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x2000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:49 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r3)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x2}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)
sendmsg$IPSET_CMD_TEST(r4, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x1a8, 0xb, 0x6, 0x401, 0x0, 0x0, {0x3, 0x0, 0x8}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x100}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x1}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x9}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x7a}}]}, @IPSET_ATTR_LINENO={0x8}, @IPSET_ATTR_DATA={0x40, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x2}, @IPSET_ATTR_COMMENT={0x11, 0x1a, 'NLBL_CIPSOv4\x00'}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x1d}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x81}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x81}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}]}, @IPSET_ATTR_ADT={0x84, 0x8, 0x0, 0x1, [{0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x11, 0x1a, 'NLBL_CIPSOv4\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x8}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PROTO={0x5, 0x7, 0x1}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast2}}}, {0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_IFACE={0x14, 0x17, 'macvtap0\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e21}}]}, @IPSET_ATTR_ADT={0x74, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x1}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e20}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0xff}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz1\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0xda}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz1\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @random="99d0f34f11be"}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x3ff}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x4000}, 0x84)

07:40:49 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000), 0xffffffffffffffff)

07:40:50 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:50 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x2500, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:50 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 47)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:50 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), r1)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r4, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x1c, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0xd0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r1)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r7, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000088", @ANYRES16=r8, @ANYBLOB="020029bd7000fbdbdf25310000000a0001007770616e330000000500350000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4040}, 0x4040840)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="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"], 0x34}}, 0x0)

07:40:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="34004ab2", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  169.935603][ T8289] loop4: detected capacity change from 0 to 16
[  169.970662][ T8289] FAULT_INJECTION: forcing a failure.
[  169.970662][ T8289] name failslab, interval 1, probability 0, space 0, times 0
07:40:50 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:50 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x4800, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  169.983509][ T8289] CPU: 0 PID: 8289 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  169.993574][ T8289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  170.003627][ T8289] Call Trace:
[  170.006953][ T8289]  <TASK>
[  170.009881][ T8289]  dump_stack_lvl+0xd6/0x122
[  170.014473][ T8289]  dump_stack+0x11/0x1b
[  170.018670][ T8289]  should_fail+0x23c/0x250
[  170.023085][ T8289]  ? mempool_alloc_slab+0x16/0x20
[  170.028112][ T8289]  __should_failslab+0x81/0x90
[  170.032877][ T8289]  should_failslab+0x5/0x20
[  170.037382][ T8289]  kmem_cache_alloc+0x4f/0x320
[  170.042170][ T8289]  mempool_alloc_slab+0x16/0x20
[  170.047087][ T8289]  ? mempool_free+0x130/0x130
[  170.051765][ T8289]  mempool_alloc+0x9d/0x310
[  170.056323][ T8289]  bio_alloc_bioset+0xcc/0x560
[  170.061085][ T8289]  submit_bh_wbc+0x133/0x320
[  170.065752][ T8289]  ? mark_buffer_dirty+0x190/0x260
[  170.070866][ T8289]  write_dirty_buffer+0xde/0xf0
[  170.075700][ T8289]  fat_sync_bhs+0x52/0x160
[  170.080098][ T8289]  fat_ent_write+0x85/0xd0
[  170.084503][ T8289]  fat_chain_add+0x15b/0x410
[  170.089070][ T8289]  fat_get_block+0x48d/0x610
[  170.093640][ T8289]  __block_write_begin_int+0x4c5/0x1010
[  170.099220][ T8289]  ? fat_block_truncate_page+0x30/0x30
[  170.104679][ T8289]  cont_write_begin+0x4cf/0x7b0
[  170.109512][ T8289]  ? __get_user_nocheck_1+0x6/0x10
[  170.114607][ T8289]  fat_write_begin+0x61/0xf0
[  170.119256][ T8289]  ? fat_block_truncate_page+0x30/0x30
[  170.124698][ T8289]  generic_perform_write+0x1c8/0x400
[  170.129970][ T8289]  ? fat_write_begin+0xf0/0xf0
[  170.134711][ T8289]  __generic_file_write_iter+0xf7/0x2b0
[  170.140240][ T8289]  ? generic_write_checks+0x250/0x290
[  170.145676][ T8289]  generic_file_write_iter+0x75/0x130
[  170.151041][ T8289]  do_iter_readv_writev+0x2de/0x380
[  170.156332][ T8289]  do_iter_write+0x192/0x5c0
[  170.160909][ T8289]  ? import_iovec+0xb8/0xd0
[  170.165467][ T8289]  do_pwritev+0x235/0x440
[  170.169775][ T8289]  ? debug_smp_processor_id+0x18/0x20
[  170.175124][ T8289]  ? fpregs_assert_state_consistent+0x7e/0x90
[  170.181210][ T8289]  __x64_sys_pwritev2+0x7e/0xa0
[  170.186041][ T8289]  do_syscall_64+0x44/0xd0
[  170.190487][ T8289]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  170.196362][ T8289] RIP: 0033:0x7fbba9ab7ae9
[  170.200784][ T8289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  170.220372][ T8289] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  170.228918][ T8289] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  170.236869][ T8289] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  170.244876][ T8289] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  170.252843][ T8289] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  170.260979][ T8289] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  170.268951][ T8289]  </TASK>
07:40:50 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800)

07:40:50 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x4c00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:50 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 48)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:50 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x5401, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  170.447868][ T8329] loop4: detected capacity change from 0 to 16
[  170.459768][ T8329] FAULT_INJECTION: forcing a failure.
[  170.459768][ T8329] name failslab, interval 1, probability 0, space 0, times 0
[  170.472516][ T8329] CPU: 0 PID: 8329 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  170.482558][ T8329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  170.492681][ T8329] Call Trace:
[  170.496013][ T8329]  <TASK>
[  170.498973][ T8329]  dump_stack_lvl+0xd6/0x122
[  170.503545][ T8329]  dump_stack+0x11/0x1b
[  170.507728][ T8329]  should_fail+0x23c/0x250
[  170.512225][ T8329]  ? mempool_alloc_slab+0x16/0x20
[  170.517340][ T8329]  __should_failslab+0x81/0x90
[  170.522109][ T8329]  should_failslab+0x5/0x20
[  170.526644][ T8329]  kmem_cache_alloc+0x4f/0x320
[  170.531510][ T8329]  mempool_alloc_slab+0x16/0x20
[  170.536455][ T8329]  ? mempool_free+0x130/0x130
[  170.541177][ T8329]  mempool_alloc+0x9d/0x310
[  170.545683][ T8329]  bio_alloc_bioset+0xcc/0x560
[  170.550426][ T8329]  submit_bh_wbc+0x133/0x320
[  170.555010][ T8329]  ? mark_buffer_dirty+0x190/0x260
[  170.560103][ T8329]  __sync_dirty_buffer+0x136/0x1e0
[  170.565196][ T8329]  sync_dirty_buffer+0x16/0x20
[  170.570022][ T8329]  fat_mirror_bhs+0x24b/0x330
[  170.574683][ T8329]  fat_ent_write+0xc2/0xd0
[  170.579091][ T8329]  fat_chain_add+0x15b/0x410
[  170.583673][ T8329]  fat_get_block+0x48d/0x610
[  170.588244][ T8329]  __block_write_begin_int+0x4c5/0x1010
[  170.593832][ T8329]  ? fat_block_truncate_page+0x30/0x30
[  170.599312][ T8329]  cont_write_begin+0x4cf/0x7b0
[  170.604178][ T8329]  ? __get_user_nocheck_1+0x6/0x10
[  170.609336][ T8329]  fat_write_begin+0x61/0xf0
[  170.613981][ T8329]  ? fat_block_truncate_page+0x30/0x30
[  170.619471][ T8329]  generic_perform_write+0x1c8/0x400
[  170.624814][ T8329]  ? fat_write_begin+0xf0/0xf0
[  170.629555][ T8329]  __generic_file_write_iter+0xf7/0x2b0
[  170.635164][ T8329]  ? generic_write_checks+0x250/0x290
[  170.640539][ T8329]  generic_file_write_iter+0x75/0x130
[  170.645984][ T8329]  do_iter_readv_writev+0x2de/0x380
[  170.651169][ T8329]  do_iter_write+0x192/0x5c0
[  170.655824][ T8329]  ? import_iovec+0xb8/0xd0
[  170.660318][ T8329]  do_pwritev+0x235/0x440
[  170.664670][ T8329]  ? debug_smp_processor_id+0x18/0x20
[  170.670029][ T8329]  ? fpregs_assert_state_consistent+0x7e/0x90
[  170.676132][ T8329]  __x64_sys_pwritev2+0x7e/0xa0
[  170.680963][ T8329]  do_syscall_64+0x44/0xd0
[  170.685369][ T8329]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  170.691389][ T8329] RIP: 0033:0x7fbba9ab7ae9
[  170.695784][ T8329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  170.715484][ T8329] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  170.723884][ T8329] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  170.731897][ T8329] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  170.739863][ T8329] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
07:40:51 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x0, 0x0)

07:40:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="040000005f0757201b184ca24249805a9e90866e30bafec6357ccbfb0ddd969fd4378ae3f097f1234010d514c19985f9bddbe961361588b24cb61e61778e6a2cc336bc078a51f3c285a966a68e154f9c1981f560a8d076cb1e28784bde7263a04c6a34c94989786044961e6ee5d64dfd69719f5093c5d86486fe6d043493e20762930770f5b5437a476e85e0b2ac020fc2e09289407e6e9996f0d3f2ce7bbcd359adb32a94adcc9c024ad9f86601c99caf9c47b86c53afd7", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c00050000000001000000001453e2dee416af6b0fdd4a80451b283ae71d85154d29958cf3cb05cad0a6fde464b205619f3d29b43e7229e42c04ff039eb5eb2c519c"], 0x34}}, 0x0)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20009}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r3, 0x154, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010102}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_DOMAIN={0x6, 0x1, '{\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)

07:40:51 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r2)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r2)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000400)={'wpan0\x00', <r6=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, r5, 0x20, 0x70bd2b, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x7}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040014}, 0x40)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r7)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r8, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="2343e4bb3e4029afbeda47a179b201417f328c00b1089b0ee89bbcb4eb2aaec80b15de57761f90e1b62cc71eed5f8aa7b3740b34d9ffe33c6c6f69d6f8ce6f84324238bb832ffa9280beefefa5505600548834a2713e2b4dab24b5418b8c66470733e2d24bed5ed3e8453d70135892b8369c81f183d80b49ee6dc86f355358777fe3a9f57a637ac395a8c270969f", @ANYRESDEC=r1, @ANYBLOB="010000000000000000002100000009001f017068796b0000000005002000000000000c031e0000000000009147a054a800000000000000000000000000000000000000000000080000", @ANYRES32=r3], 0x34}, 0x1, 0x0, 0x0, 0x40051}, 0x4040004)

07:40:51 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x5a0e, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  170.747866][ T8329] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  170.755830][ T8329] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  170.763808][ T8329]  </TASK>
07:40:51 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x5b0e, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000040)={'wpan0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan3\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x6c, r1, 0x114, 0x70bd2d, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x6}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x6}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2a}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa3}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa1}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa2}]}, 0x6c}, 0x1, 0x0, 0x0, 0x200000c0}, 0x20044840)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r4, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="04002cbd7000fedbdf2511000000050012001f0000000500120000000000"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r3)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:51 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x6000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:51 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x34788, 0x0)

07:40:51 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 49)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x34, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xffff}]}]}, 0x34}}, 0x0)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x555f}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

07:40:51 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="03080000", @ANYRES16=r3, @ANYBLOB="010000000000000000000d00000006000800000000000500070000000000050018000000000006000a00000000000500170000000000"], 0x3c}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xffff}]}]}, 0x34}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r8, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r1, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)={0x7c, 0x0, 0x2, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_LEVEL={0xc, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x5}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_LEVEL={0x34, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x3}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x2}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20004000}, 0x850)
r11 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010000000000000000002180000009001f00706879310000000005002000000000000c000500000000000000eaff"], 0x34}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan3\x00', <r12=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="81000000", @ANYRES16=0x0, @ANYBLOB="020027bd7000fedbdf251800000008000300", @ANYRES32=r12, @ANYBLOB="6800258005000200050000000500020001000000300001800c000500010400000000000005000200030000000500020001000000080001000200000008000400040000002400030026c9863cd24ad0b569c427a75ad51b21e067f5b8efb43f8112a0b95e96ea264d0c00060000000000000000000c000600030000000000000008000300", @ANYRES32=0x0, @ANYBLOB], 0xa4}, 0x1, 0x0, 0x0, 0x80}, 0xf917fd3af1669890)

[  171.218541][ T8362] loop4: detected capacity change from 0 to 16
[  171.241790][ T8364] validate_nla: 38 callbacks suppressed
[  171.241804][ T8364] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  171.255540][ T8364] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  171.257420][ T8362] FAULT_INJECTION: forcing a failure.
[  171.257420][ T8362] name failslab, interval 1, probability 0, space 0, times 0
[  171.276286][ T8362] CPU: 0 PID: 8362 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  171.286396][ T8362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  171.296514][ T8362] Call Trace:
[  171.299775][ T8362]  <TASK>
[  171.302753][ T8362]  dump_stack_lvl+0xd6/0x122
[  171.307324][ T8362]  dump_stack+0x11/0x1b
[  171.311528][ T8362]  should_fail+0x23c/0x250
[  171.315921][ T8362]  ? mempool_alloc_slab+0x16/0x20
[  171.321093][ T8362]  __should_failslab+0x81/0x90
[  171.325844][ T8362]  should_failslab+0x5/0x20
[  171.330381][ T8362]  kmem_cache_alloc+0x4f/0x320
[  171.335144][ T8362]  mempool_alloc_slab+0x16/0x20
[  171.339978][ T8362]  ? mempool_free+0x130/0x130
[  171.344678][ T8362]  mempool_alloc+0x9d/0x310
[  171.349181][ T8362]  bio_alloc_bioset+0xcc/0x560
[  171.353923][ T8362]  ? __getblk_gfp+0x3f/0x530
[  171.358548][ T8362]  submit_bh_wbc+0x133/0x320
[  171.363198][ T8362]  ? mark_buffer_dirty+0x190/0x260
[  171.368369][ T8362]  write_dirty_buffer+0xde/0xf0
[  171.373199][ T8362]  fat_sync_bhs+0x52/0x160
[  171.377592][ T8362]  fat_alloc_clusters+0x95a/0xab0
[  171.382594][ T8362]  fat_get_block+0x267/0x610
[  171.387164][ T8362]  __block_write_begin_int+0x4c5/0x1010
[  171.392688][ T8362]  ? fat_block_truncate_page+0x30/0x30
[  171.398185][ T8362]  cont_write_begin+0x4cf/0x7b0
[  171.403054][ T8362]  ? __get_user_nocheck_1+0x6/0x10
[  171.408170][ T8362]  fat_write_begin+0x61/0xf0
[  171.412812][ T8362]  ? fat_block_truncate_page+0x30/0x30
[  171.418371][ T8362]  generic_perform_write+0x1c8/0x400
[  171.423721][ T8362]  ? fat_write_begin+0xf0/0xf0
[  171.428465][ T8362]  __generic_file_write_iter+0xf7/0x2b0
[  171.434043][ T8362]  ? generic_write_checks+0x250/0x290
[  171.439394][ T8362]  generic_file_write_iter+0x75/0x130
[  171.444765][ T8362]  do_iter_readv_writev+0x2de/0x380
[  171.450014][ T8362]  do_iter_write+0x192/0x5c0
[  171.454674][ T8362]  ? import_iovec+0xb8/0xd0
[  171.459157][ T8362]  do_pwritev+0x235/0x440
[  171.463466][ T8362]  ? debug_smp_processor_id+0x18/0x20
[  171.468923][ T8362]  ? fpregs_assert_state_consistent+0x7e/0x90
[  171.475096][ T8362]  __x64_sys_pwritev2+0x7e/0xa0
[  171.480629][ T8362]  do_syscall_64+0x44/0xd0
[  171.485035][ T8362]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  171.490981][ T8362] RIP: 0033:0x7fbba9ab7ae9
[  171.495377][ T8362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  171.514991][ T8362] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  171.523410][ T8362] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  171.531362][ T8362] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  171.539505][ T8362] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  171.547468][ T8362] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  171.555417][ T8362] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  171.563385][ T8362]  </TASK>
07:40:51 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x0, 0x0)

07:40:51 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x6800, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:51 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 50)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:52 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r5)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  171.702879][ T8380] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  171.711033][ T8380] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  171.735159][ T8386] loop4: detected capacity change from 0 to 16
[  171.766319][ T8386] FAULT_INJECTION: forcing a failure.
[  171.766319][ T8386] name failslab, interval 1, probability 0, space 0, times 0
[  171.779108][ T8386] CPU: 1 PID: 8386 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  171.789174][ T8386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  171.799230][ T8386] Call Trace:
[  171.802508][ T8386]  <TASK>
[  171.805462][ T8386]  dump_stack_lvl+0xd6/0x122
[  171.810070][ T8386]  dump_stack+0x11/0x1b
[  171.814228][ T8386]  should_fail+0x23c/0x250
[  171.818644][ T8386]  ? mempool_alloc_slab+0x16/0x20
[  171.823752][ T8386]  __should_failslab+0x81/0x90
[  171.828523][ T8386]  should_failslab+0x5/0x20
[  171.833030][ T8386]  kmem_cache_alloc+0x4f/0x320
[  171.837846][ T8386]  mempool_alloc_slab+0x16/0x20
[  171.842736][ T8386]  ? mempool_free+0x130/0x130
[  171.847419][ T8386]  mempool_alloc+0x9d/0x310
[  171.852003][ T8386]  bio_alloc_bioset+0xcc/0x560
[  171.856769][ T8386]  ? __getblk_gfp+0x3f/0x530
[  171.861471][ T8386]  submit_bh_wbc+0x133/0x320
07:40:52 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000002c0), r2)
sendmsg$NLBL_CALIPSO_C_ADD(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x24, r4, 0x1, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x24}}, 0x0)
sendmsg$NLBL_CALIPSO_C_ADD(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r4, 0x0, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$inet(0x2, 0x4000000000000001, 0x0)
dup2(r6, r5)
getsockopt$SO_BINDTODEVICE(r5, 0x6, 0x6, &(0x7f0000000000), 0x20a154cc)
sendmsg$NL80211_CMD_ASSOCIATE(r5, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4260b6a72ce38b10}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)={0x44, 0x0, 0x10, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x1000, 0x0, 0x4, 0x0, {0x2, 0xab, 0x0, 0x8}, 0x401, 0x3}}, @NL80211_ATTR_IE={0xe, 0x2a, [@cf={0x4, 0x6, {0x0, 0x5, 0x0, 0x9}}, @supported_rates]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4080}, 0x48040)

07:40:52 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x6c00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  171.866061][ T8386]  ? mark_buffer_dirty+0x190/0x260
[  171.871178][ T8386]  write_dirty_buffer+0xde/0xf0
[  171.876097][ T8386]  fat_sync_bhs+0x52/0x160
[  171.880527][ T8386]  fat_alloc_clusters+0x95a/0xab0
[  171.885555][ T8386]  fat_get_block+0x267/0x610
[  171.890149][ T8386]  __block_write_begin_int+0x4c5/0x1010
[  171.895724][ T8386]  ? fat_block_truncate_page+0x30/0x30
[  171.901189][ T8386]  cont_write_begin+0x4cf/0x7b0
[  171.906044][ T8386]  ? __get_user_nocheck_1+0x6/0x10
[  171.911161][ T8386]  fat_write_begin+0x61/0xf0
07:40:52 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x7400, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  171.913759][ T8392] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  171.915792][ T8386]  ? fat_block_truncate_page+0x30/0x30
[  171.915818][ T8386]  generic_perform_write+0x1c8/0x400
[  171.915844][ T8386]  ? fat_write_begin+0xf0/0xf0
[  171.915865][ T8386]  __generic_file_write_iter+0xf7/0x2b0
[  171.923949][ T8392] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  171.929364][ T8386]  ? generic_write_checks+0x250/0x290
[  171.958300][ T8386]  generic_file_write_iter+0x75/0x130
[  171.963723][ T8386]  do_iter_readv_writev+0x2de/0x380
[  171.968946][ T8386]  do_iter_write+0x192/0x5c0
[  171.973613][ T8386]  ? import_iovec+0xb8/0xd0
[  171.975288][ T8397] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  171.978197][ T8386]  do_pwritev+0x235/0x440
[  171.978222][ T8386]  ? debug_smp_processor_id+0x18/0x20
[  171.986283][ T8397] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  171.990571][ T8386]  ? fpregs_assert_state_consistent+0x7e/0x90
[  172.010015][ T8386]  __x64_sys_pwritev2+0x7e/0xa0
07:40:52 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x7a00, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  172.014878][ T8386]  do_syscall_64+0x44/0xd0
[  172.019325][ T8386]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  172.025285][ T8386] RIP: 0033:0x7fbba9ab7ae9
[  172.029723][ T8386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  172.045312][ T8404] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  172.049403][ T8386] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
07:40:52 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x0, 0x0)

07:40:52 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x34000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  172.049427][ T8386] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  172.049439][ T8386] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  172.057523][ T8404] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  172.065886][ T8386] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  172.065900][ T8386] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  172.065912][ T8386] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  172.113816][ T8386]  </TASK>
07:40:52 executing program 1:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x80540, 0x0)
io_uring_enter(r0, 0x4e26, 0x7d6f, 0x1, &(0x7f0000000040)={[0x9]}, 0x8)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x900c41}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x58, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_SECCTX={0x1f, 0x7, 'system_u:object_r:var_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast2}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0}, @NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x80)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:52 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x400300, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:52 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x0, 0x0)

07:40:52 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="34000000616a3295d0cfdba54e5426a82efee939a72019f624db08f9786d9df631126f71567b7455ae6af1a5af678c2ef27c04679ff9e52d3eb4ee483144e08e55edb12d8d2123df3cdc3dd56b4cc7700db69aa76d2c4884f7f32b5d18851b680722263a30f70ac4f980274e6837134412c59d5ef047fc9aa2e7c9f3fee3747403b68f3e2321ba131cf9c2c4ed676c072efe10b2ec0339f179480bb47b2b2076542c4468f83b22d4805b9559b13caad276bd6f3312fc037fac37d51eefb927ac845a15bb90bdc35c3e31c3b9351c368c7a29df230411f9abaaa2c374e5919813ddc173fa25d8788b5435c96113cc6b411bb7", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r5, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)={0x4c, 0x0, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private0}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x20}}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @ipv4={'\x00', '\xff\xff', @loopback}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x240040c0}, 0x0)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000003c0), r0)
sendmsg$IEEE802154_START_REQ(r3, &(0x7f0000000480)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x3c, r6, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x6}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x3}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x1f}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x2}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x200080c0}, 0x20000000)

07:40:52 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xe0ffff, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:52 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000200)='environ\x00')
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_GET(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x3c, r8, 0x1, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x4}}}]}, 0x3c}}, 0x0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r6, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x6c, r8, 0x8, 0x70bd27, 0x25dfdbfb, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x8}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40800}, 0x10)
sendmsg$IEEE802154_LIST_IFACE(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x40, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}]}, 0x40}, 0x1, 0x0, 0x0, 0x14000}, 0x40000)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r9)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="8e68e500f8451ab81f10055fc2048c216fd4209940f5e1a9978949f3305f4d109b", @ANYRES16=r10, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

07:40:52 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 51)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:52 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r4, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000004}, 0x20004084)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

07:40:52 executing program 0:
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x14, r2, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x8014}, 0x0)

[  172.546366][ T8435] loop4: detected capacity change from 0 to 16
07:40:52 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x1000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  172.608953][ T8435] FAULT_INJECTION: forcing a failure.
[  172.608953][ T8435] name failslab, interval 1, probability 0, space 0, times 0
[  172.621675][ T8435] CPU: 1 PID: 8435 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  172.631749][ T8435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  172.641839][ T8435] Call Trace:
[  172.645119][ T8435]  <TASK>
[  172.648122][ T8435]  dump_stack_lvl+0xd6/0x122
[  172.652730][ T8435]  dump_stack+0x11/0x1b
[  172.656893][ T8435]  should_fail+0x23c/0x250
[  172.661304][ T8435]  ? mempool_alloc_slab+0x16/0x20
[  172.666397][ T8435]  __should_failslab+0x81/0x90
[  172.671220][ T8435]  should_failslab+0x5/0x20
[  172.675717][ T8435]  kmem_cache_alloc+0x4f/0x320
[  172.680736][ T8435]  mempool_alloc_slab+0x16/0x20
[  172.685608][ T8435]  ? mempool_free+0x130/0x130
[  172.690261][ T8435]  mempool_alloc+0x9d/0x310
[  172.694832][ T8435]  bio_alloc_bioset+0xcc/0x560
[  172.699604][ T8435]  submit_bh_wbc+0x133/0x320
[  172.704174][ T8435]  ? mark_buffer_dirty+0x190/0x260
[  172.709268][ T8435]  write_dirty_buffer+0xde/0xf0
[  172.714411][ T8435]  fat_sync_bhs+0x52/0x160
[  172.718865][ T8435]  fat_ent_write+0x85/0xd0
[  172.723328][ T8435]  fat_chain_add+0x15b/0x410
[  172.727916][ T8435]  fat_get_block+0x48d/0x610
[  172.732554][ T8435]  __block_write_begin_int+0x4c5/0x1010
[  172.738110][ T8435]  ? fat_block_truncate_page+0x30/0x30
[  172.743550][ T8435]  cont_write_begin+0x4cf/0x7b0
[  172.748381][ T8435]  ? __get_user_nocheck_1+0x6/0x10
[  172.753565][ T8435]  fat_write_begin+0x61/0xf0
[  172.758205][ T8435]  ? fat_block_truncate_page+0x30/0x30
[  172.763841][ T8435]  generic_perform_write+0x1c8/0x400
[  172.769842][ T8435]  ? fat_write_begin+0xf0/0xf0
[  172.774705][ T8435]  __generic_file_write_iter+0xf7/0x2b0
[  172.780311][ T8435]  ? generic_write_checks+0x250/0x290
[  172.785695][ T8435]  generic_file_write_iter+0x75/0x130
[  172.791132][ T8435]  do_iter_readv_writev+0x2de/0x380
[  172.796311][ T8435]  do_iter_write+0x192/0x5c0
[  172.800974][ T8435]  ? import_iovec+0xb8/0xd0
[  172.805488][ T8435]  do_pwritev+0x235/0x440
[  172.809816][ T8435]  ? debug_smp_processor_id+0x18/0x20
[  172.815215][ T8435]  ? fpregs_assert_state_consistent+0x7e/0x90
[  172.821311][ T8435]  __x64_sys_pwritev2+0x7e/0xa0
[  172.826221][ T8435]  do_syscall_64+0x44/0xd0
[  172.830648][ T8435]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  172.836556][ T8435] RIP: 0033:0x7fbba9ab7ae9
[  172.840977][ T8435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  172.860705][ T8435] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  172.869116][ T8435] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  172.877078][ T8435] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  172.885033][ T8435] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  172.893013][ T8435] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  172.901014][ T8435] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  172.908969][ T8435]  </TASK>
07:40:53 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x0, 0x0)

07:40:53 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x2000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x97, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x140c0}, 0x0)

07:40:53 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x3000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:53 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x4000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x2, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xffffffffffffff34, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x10000)

07:40:53 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 52)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:53 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000000), r1)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000080), r0)
sendmsg$NLBL_CALIPSO_C_REMOVE(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r3, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008001}, 0xc004)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  173.453780][ T8479] loop4: detected capacity change from 0 to 16
07:40:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r2)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3400fc00", @ANYRES16=r3, @ANYBLOB="010000000000706879310000000005002000000000000c00050000000000619ba4a83fd356c60000000000000000"], 0x34}}, 0x4000)

[  173.501437][ T8479] FAULT_INJECTION: forcing a failure.
[  173.501437][ T8479] name failslab, interval 1, probability 0, space 0, times 0
[  173.514133][ T8479] CPU: 0 PID: 8479 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  173.524222][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  173.534270][ T8479] Call Trace:
[  173.537541][ T8479]  <TASK>
[  173.540468][ T8479]  dump_stack_lvl+0xd6/0x122
[  173.545059][ T8479]  dump_stack+0x11/0x1b
07:40:53 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x5000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  173.549305][ T8479]  should_fail+0x23c/0x250
[  173.553719][ T8479]  ? mempool_alloc_slab+0x16/0x20
[  173.558748][ T8479]  __should_failslab+0x81/0x90
[  173.563583][ T8479]  should_failslab+0x5/0x20
[  173.568090][ T8479]  kmem_cache_alloc+0x4f/0x320
[  173.572892][ T8479]  mempool_alloc_slab+0x16/0x20
[  173.577801][ T8479]  ? mempool_free+0x130/0x130
[  173.582529][ T8479]  mempool_alloc+0x9d/0x310
[  173.587127][ T8479]  bio_alloc_bioset+0xcc/0x560
[  173.591889][ T8479]  submit_bh_wbc+0x133/0x320
[  173.596529][ T8479]  ? mark_buffer_dirty+0x190/0x260
[  173.601698][ T8479]  write_dirty_buffer+0xde/0xf0
[  173.606559][ T8479]  fat_sync_bhs+0x52/0x160
[  173.610979][ T8479]  fat_ent_write+0x85/0xd0
[  173.615484][ T8479]  fat_chain_add+0x15b/0x410
[  173.620084][ T8479]  fat_get_block+0x48d/0x610
[  173.624802][ T8479]  __block_write_begin_int+0x4c5/0x1010
[  173.630386][ T8479]  ? fat_block_truncate_page+0x30/0x30
[  173.635913][ T8479]  cont_write_begin+0x4cf/0x7b0
[  173.640762][ T8479]  ? __get_user_nocheck_1+0x6/0x10
[  173.645999][ T8479]  fat_write_begin+0x61/0xf0
07:40:53 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x6000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  173.650588][ T8479]  ? fat_block_truncate_page+0x30/0x30
[  173.656128][ T8479]  generic_perform_write+0x1c8/0x400
[  173.661422][ T8479]  ? fat_write_begin+0xf0/0xf0
[  173.666248][ T8479]  __generic_file_write_iter+0xf7/0x2b0
[  173.671860][ T8479]  ? generic_write_checks+0x250/0x290
[  173.677255][ T8479]  generic_file_write_iter+0x75/0x130
[  173.682733][ T8479]  do_iter_readv_writev+0x2de/0x380
[  173.687938][ T8479]  do_iter_write+0x192/0x5c0
[  173.692586][ T8479]  ? import_iovec+0xb8/0xd0
[  173.697121][ T8479]  do_pwritev+0x235/0x440
[  173.701503][ T8479]  ? debug_smp_processor_id+0x18/0x20
[  173.706875][ T8479]  ? fpregs_assert_state_consistent+0x7e/0x90
[  173.712953][ T8479]  __x64_sys_pwritev2+0x7e/0xa0
[  173.717954][ T8479]  do_syscall_64+0x44/0xd0
[  173.722428][ T8479]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  173.728350][ T8479] RIP: 0033:0x7fbba9ab7ae9
[  173.732759][ T8479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
07:40:54 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x7000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  173.752460][ T8479] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  173.760873][ T8479] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  173.768911][ T8479] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  173.776953][ T8479] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  173.784920][ T8479] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  173.792887][ T8479] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  173.800876][ T8479]  </TASK>
07:40:54 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x0, 0x0)

07:40:54 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x8000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:54 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, 0x0, 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:40:54 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x38, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x2}}, @NFCTH_TUPLE={0x4}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x38}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRESDEC=r2, @ANYRES16=r2, @ANYRESOCT=r3], 0x34}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x34, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xffff}]}]}, 0x34}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan4\x00', <r8=>0x0})
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r11, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r12=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r9, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x88, r10, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r12}, @NL802154_ATTR_SEC_DEVKEY={0x6c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x5c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x1ff}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x10001}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x38, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xfffc}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}]}]}]}, 0x88}}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, r5, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000000)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000200)={'wpan1\x00', <r13=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r9, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000480)={0x104, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_LEVEL={0x4c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x7}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x31}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x65}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x3}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x1f}]}, @NL802154_ATTR_SEC_LEVEL={0x34, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x5}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x2}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_LEVEL={0x34, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x1}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x2}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x2}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r13}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x104}, 0x1, 0x0, 0x0, 0x4010}, 0x840)

07:40:54 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 53)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:54 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x9000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  174.037037][ T8522] loop4: detected capacity change from 0 to 16
[  174.057071][ T8522] FAULT_INJECTION: forcing a failure.
[  174.057071][ T8522] name failslab, interval 1, probability 0, space 0, times 0
[  174.069797][ T8522] CPU: 0 PID: 8522 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
07:40:54 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000000c0), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4044025)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="9713f000", @ANYRES16=r4, @ANYBLOB="010000000000000000002100000009001f00706879310001000005002000000000000c0005000000000200000000580627c2e6e8cf509c7124f0ad1205890063076eb29105d081c6307f00b0fdad3bc1599647f8050903ebaefcfcd891c48a1f6223936abb2915e392cca5"], 0x34}}, 0x0)

[  174.079917][ T8522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  174.089970][ T8522] Call Trace:
[  174.093253][ T8522]  <TASK>
[  174.096179][ T8522]  dump_stack_lvl+0xd6/0x122
[  174.100842][ T8522]  dump_stack+0x11/0x1b
[  174.104999][ T8522]  should_fail+0x23c/0x250
[  174.109490][ T8522]  ? mempool_alloc_slab+0x16/0x20
[  174.114522][ T8522]  __should_failslab+0x81/0x90
[  174.119290][ T8522]  should_failslab+0x5/0x20
[  174.123856][ T8522]  kmem_cache_alloc+0x4f/0x320
[  174.128691][ T8522]  mempool_alloc_slab+0x16/0x20
[  174.133549][ T8522]  ? mempool_free+0x130/0x130
[  174.138247][ T8522]  mempool_alloc+0x9d/0x310
[  174.142805][ T8522]  bio_alloc_bioset+0xcc/0x560
[  174.147591][ T8522]  ? __getblk_gfp+0x3f/0x530
[  174.152292][ T8522]  submit_bh_wbc+0x133/0x320
[  174.156883][ T8522]  ? mark_buffer_dirty+0x190/0x260
[  174.161998][ T8522]  write_dirty_buffer+0xde/0xf0
[  174.166857][ T8522]  fat_sync_bhs+0x52/0x160
[  174.171277][ T8522]  fat_alloc_clusters+0x95a/0xab0
[  174.176327][ T8522]  fat_get_block+0x267/0x610
[  174.180922][ T8522]  __block_write_begin_int+0x4c5/0x1010
07:40:54 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xa000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  174.186477][ T8522]  ? fat_block_truncate_page+0x30/0x30
[  174.191985][ T8522]  cont_write_begin+0x4cf/0x7b0
[  174.196836][ T8522]  ? __get_user_nocheck_1+0x6/0x10
[  174.201997][ T8522]  fat_write_begin+0x61/0xf0
[  174.206600][ T8522]  ? fat_block_truncate_page+0x30/0x30
[  174.212058][ T8522]  generic_perform_write+0x1c8/0x400
[  174.217355][ T8522]  ? fat_write_begin+0xf0/0xf0
[  174.222121][ T8522]  __generic_file_write_iter+0xf7/0x2b0
[  174.227682][ T8522]  ? generic_write_checks+0x250/0x290
[  174.233067][ T8522]  generic_file_write_iter+0x75/0x130
[  174.238528][ T8522]  do_iter_readv_writev+0x2de/0x380
[  174.243784][ T8522]  do_iter_write+0x192/0x5c0
[  174.248421][ T8522]  ? import_iovec+0xb8/0xd0
[  174.252928][ T8522]  do_pwritev+0x235/0x440
[  174.257329][ T8522]  ? debug_smp_processor_id+0x18/0x20
[  174.262713][ T8522]  ? fpregs_assert_state_consistent+0x7e/0x90
[  174.268858][ T8522]  __x64_sys_pwritev2+0x7e/0xa0
[  174.273739][ T8522]  do_syscall_64+0x44/0xd0
[  174.278164][ T8522]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  174.284130][ T8522] RIP: 0033:0x7fbba9ab7ae9
[  174.288548][ T8522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  174.308160][ T8522] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  174.316578][ T8522] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  174.324559][ T8522] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
07:40:54 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r3)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r6)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  174.332531][ T8522] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  174.340571][ T8522] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  174.348618][ T8522] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  174.356619][ T8522]  </TASK>
07:40:54 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xb000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:54 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xc000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:54 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 54)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  174.534631][ T8551] loop4: detected capacity change from 0 to 16
[  174.556778][ T8551] FAULT_INJECTION: forcing a failure.
[  174.556778][ T8551] name failslab, interval 1, probability 0, space 0, times 0
[  174.570098][ T8551] CPU: 1 PID: 8551 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  174.580193][ T8551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  174.590244][ T8551] Call Trace:
[  174.593518][ T8551]  <TASK>
[  174.596446][ T8551]  dump_stack_lvl+0xd6/0x122
[  174.601116][ T8551]  dump_stack+0x11/0x1b
[  174.605405][ T8551]  should_fail+0x23c/0x250
[  174.609882][ T8551]  ? mempool_alloc_slab+0x16/0x20
[  174.614913][ T8551]  __should_failslab+0x81/0x90
[  174.619683][ T8551]  should_failslab+0x5/0x20
[  174.624193][ T8551]  kmem_cache_alloc+0x4f/0x320
[  174.628958][ T8551]  mempool_alloc_slab+0x16/0x20
[  174.633916][ T8551]  ? mempool_free+0x130/0x130
[  174.638599][ T8551]  mempool_alloc+0x9d/0x310
[  174.643112][ T8551]  bio_alloc_bioset+0xcc/0x560
[  174.647910][ T8551]  ? submit_bio_noacct+0x49f/0x4e0
[  174.653486][ T8551]  submit_bh_wbc+0x133/0x320
[  174.658125][ T8551]  ? mark_buffer_dirty+0x190/0x260
[  174.663244][ T8551]  __sync_dirty_buffer+0x136/0x1e0
[  174.668360][ T8551]  sync_dirty_buffer+0x16/0x20
[  174.673127][ T8551]  fat_mirror_bhs+0x24b/0x330
[  174.677851][ T8551]  fat_alloc_clusters+0x9ad/0xab0
[  174.682888][ T8551]  fat_get_block+0x267/0x610
[  174.687500][ T8551]  __block_write_begin_int+0x4c5/0x1010
[  174.693066][ T8551]  ? fat_block_truncate_page+0x30/0x30
[  174.698578][ T8551]  cont_write_begin+0x4cf/0x7b0
[  174.703524][ T8551]  ? __get_user_nocheck_1+0x6/0x10
[  174.708652][ T8551]  fat_write_begin+0x61/0xf0
[  174.713317][ T8551]  ? fat_block_truncate_page+0x30/0x30
[  174.718776][ T8551]  generic_perform_write+0x1c8/0x400
[  174.724107][ T8551]  ? fat_write_begin+0xf0/0xf0
[  174.728908][ T8551]  __generic_file_write_iter+0xf7/0x2b0
[  174.734532][ T8551]  ? generic_write_checks+0x250/0x290
[  174.739950][ T8551]  generic_file_write_iter+0x75/0x130
[  174.745615][ T8551]  do_iter_readv_writev+0x2de/0x380
[  174.750818][ T8551]  do_iter_write+0x192/0x5c0
[  174.755415][ T8551]  ? import_iovec+0xb8/0xd0
[  174.759971][ T8551]  do_pwritev+0x235/0x440
[  174.764341][ T8551]  ? debug_smp_processor_id+0x18/0x20
[  174.769720][ T8551]  ? fpregs_assert_state_consistent+0x7e/0x90
[  174.775793][ T8551]  __x64_sys_pwritev2+0x7e/0xa0
[  174.780645][ T8551]  do_syscall_64+0x44/0xd0
[  174.785082][ T8551]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  174.791084][ T8551] RIP: 0033:0x7fbba9ab7ae9
[  174.795495][ T8551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  174.815176][ T8551] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  174.823644][ T8551] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
07:40:55 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r1, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_MGMT_A_DOMAIN={0x9, 0x1, '&*&@\x00'}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @mcast1}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @remote}, @NLBL_MGMT_A_DOMAIN={0x6, 0x1, '\'\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}]}, 0x74}, 0x1, 0x0, 0x0, 0x240008d0}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_LISTDEF(r2, &(0x7f0000000500)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r1, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xffffffffffffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4090}, 0x8c0)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r6, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x58, r7, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x4004850)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="0700001b2793f7b4baa7554297c800", @ANYRES16=r3, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c000500000000000000000009001f007068793100000000"], 0x40}}, 0x0)

07:40:55 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xd000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:55 executing program 3:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x7, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:55 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x2000000)

[  174.831673][ T8551] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  174.839664][ T8551] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  174.847721][ T8551] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  174.855826][ T8551] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  174.863850][ T8551]  </TASK>
07:40:55 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xe000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:55 executing program 0:
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000700)='.log\x00', 0x121300, 0x1)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000740)={0x5c, 0x16, '\x00', [@hao={0xc9, 0x10, @local}, @padn={0x1, 0x2, [0x0, 0x0]}, @generic={0xff, 0x9d, "5f45078f52905bff8ca7f2484b7675733799345a341550dbe9b60290cab840375e79d5a45d44730e248caeda6dc77ba6a180e0262749cc51cac842bd94040cb45168919c96e9ec5a652d022fd08ee0b22486484d7a4a0bf0db2ed8aad4ec9a9a445cfccd1d39c0731d4434598b0ad8051c5fc90a755a07f6c6c02ac5384521c8428ea4c50540755a1edcfd8431a3f6d28283d0dee78cb5dd0bbbdaca10"}]}, 0xc0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x80000001, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0xc000010}, 0xc000)

07:40:55 executing program 3:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x7, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:55 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xf000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:55 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:55 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 1)

07:40:55 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 55)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:55 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x10000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:55 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 1)

[  175.120118][ T8592] FAULT_INJECTION: forcing a failure.
[  175.120118][ T8592] name failslab, interval 1, probability 0, space 0, times 0
[  175.132805][ T8592] CPU: 1 PID: 8592 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  175.142869][ T8592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  175.152923][ T8592] Call Trace:
[  175.156201][ T8592]  <TASK>
[  175.159130][ T8592]  dump_stack_lvl+0xd6/0x122
[  175.163725][ T8592]  dump_stack+0x11/0x1b
[  175.167952][ T8592]  should_fail+0x23c/0x250
[  175.172368][ T8592]  ? dst_alloc+0x101/0x160
[  175.176869][ T8592]  __should_failslab+0x81/0x90
[  175.182143][ T8592]  should_failslab+0x5/0x20
[  175.186740][ T8592]  kmem_cache_alloc+0x4f/0x320
[  175.191524][ T8592]  dst_alloc+0x101/0x160
[  175.195778][ T8592]  __mkroute_output+0x45c/0xd30
[  175.200637][ T8592]  ip_route_output_key_hash_rcu+0x8f4/0x950
[  175.206557][ T8592]  ip_route_output_flow+0xaf/0x160
[  175.211684][ T8592]  udp_sendmsg+0x1050/0x14c0
[  175.216362][ T8592]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  175.221218][ T8592]  udp_sendpage+0x93/0x330
[  175.225633][ T8592]  ? udplite_getfrag+0x90/0x90
[  175.228718][ T8606] FAULT_INJECTION: forcing a failure.
[  175.228718][ T8606] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.230491][ T8592]  inet_sendpage+0x7f/0xc0
[  175.230519][ T8592]  ? inet_sendmsg+0x80/0x80
[  175.252471][ T8592]  kernel_sendpage+0x187/0x200
[  175.257275][ T8592]  ? inet_sendmsg+0x80/0x80
[  175.261763][ T8592]  sock_sendpage+0x5a/0x70
[  175.266192][ T8592]  pipe_to_sendpage+0x128/0x160
[  175.271102][ T8592]  ? sock_fasync+0xc0/0xc0
[  175.275501][ T8592]  __splice_from_pipe+0x207/0x500
[  175.280546][ T8592]  ? generic_splice_sendpage+0xd0/0xd0
[  175.285996][ T8592]  generic_splice_sendpage+0x94/0xd0
[  175.291270][ T8592]  ? iter_file_splice_write+0x790/0x790
[  175.296820][ T8592]  do_splice+0xa0e/0xde0
[  175.301122][ T8592]  ? proc_fail_nth_write+0x127/0x150
[  175.306392][ T8592]  ? __rcu_read_unlock+0x5c/0x290
[  175.311481][ T8592]  ? __fget_light+0x219/0x260
[  175.316206][ T8592]  __se_sys_splice+0x2bd/0x3a0
[  175.321043][ T8592]  __x64_sys_splice+0x74/0x80
[  175.325770][ T8592]  do_syscall_64+0x44/0xd0
[  175.330202][ T8592]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  175.336127][ T8592] RIP: 0033:0x7fb7f78d8ae9
[  175.340524][ T8592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  175.360115][ T8592] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  175.368526][ T8592] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  175.376502][ T8592] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  175.384464][ T8592] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  175.392418][ T8592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.400384][ T8592] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  175.408422][ T8592]  </TASK>
[  175.411473][ T8606] CPU: 0 PID: 8606 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  175.411911][ T8594] loop4: detected capacity change from 0 to 16
[  175.421544][ T8606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  175.421574][ T8606] Call Trace:
[  175.421581][ T8606]  <TASK>
[  175.443962][ T8606]  dump_stack_lvl+0xd6/0x122
[  175.448580][ T8606]  dump_stack+0x11/0x1b
[  175.452856][ T8606]  should_fail+0x23c/0x250
[  175.457293][ T8606]  should_fail_usercopy+0x16/0x20
[  175.462307][ T8606]  copy_page_from_iter_atomic+0x2f1/0xc60
[  175.468107][ T8606]  generic_perform_write+0x211/0x400
[  175.473384][ T8606]  ? ext4_da_write_begin+0x590/0x590
[  175.478744][ T8606]  ext4_buffered_write_iter+0x25b/0x380
[  175.484286][ T8606]  ext4_file_write_iter+0x2e7/0x1200
[  175.489609][ T8606]  ? debug_smp_processor_id+0x18/0x20
[  175.495017][ T8606]  ? try_charge_memcg+0x9de/0xa50
[  175.500035][ T8606]  ? should_fail+0xd6/0x250
[  175.504526][ T8606]  ? _copy_from_user+0x94/0xd0
[  175.509316][ T8606]  do_iter_readv_writev+0x2de/0x380
[  175.514501][ T8606]  do_iter_write+0x192/0x5c0
[  175.519211][ T8606]  ? import_iovec+0xb8/0xd0
[  175.523699][ T8606]  do_pwritev+0x235/0x440
[  175.528014][ T8606]  ? debug_smp_processor_id+0x18/0x20
[  175.533377][ T8606]  ? fpregs_assert_state_consistent+0x7e/0x90
[  175.539542][ T8606]  __x64_sys_pwritev2+0x7e/0xa0
[  175.544402][ T8606]  do_syscall_64+0x44/0xd0
[  175.548801][ T8606]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  175.554790][ T8606] RIP: 0033:0x7fbba9ab7ae9
[  175.559188][ T8606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  175.578843][ T8606] RSP: 002b:00007fbba780d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  175.587236][ T8606] RAX: ffffffffffffffda RBX: 00007fbba9bcb020 RCX: 00007fbba9ab7ae9
[  175.595234][ T8606] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  175.603246][ T8606] RBP: 00007fbba780d1d0 R08: 0000000000000000 R09: 0000000000000000
[  175.611198][ T8606] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
07:40:55 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x11000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:55 executing program 1:
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
dup2(r1, r0)
getsockopt$SO_BINDTODEVICE(r0, 0x6, 0x6, &(0x7f0000000000), 0x20a154cc)
setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000000)=@gcm_256={{0x304}, "e9e798ab2290c299", "e526f78b1354407fd10dd37421d96aac6c70527636c2791289e0ffb225e90c14", "2d6874c4", "43cf96a0394b0566"}, 0x38)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000046fc0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r2=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r3=>0x0}, {<r4=>0x0}], 0x5, "844f02135c482c"})
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000200)=@in={0x2, 0x0, @private}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000400)={<r6=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000600)={0x0, r6, "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", "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"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000004f080)={<r7=>0x0, 0x0, "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", "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"})
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f0000000200)=@in={0x2, 0x0, @private}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r8, 0x81f8943c, &(0x7f0000000400)={<r9=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000600)={0x0, r9, "030e72aef08ee95c03b6282d2bf82630af937f189e4b156abdaa75761f30caf50800b8807b556abe758685c266fadd88b154240d1a7a0065daf5fe8e28be24f8cfd6a06ef2bae584b7e1240e2bf16b1b3da424b1a03c3af8b12dab123c08378172a8cb95a557ad52deea9eaba23cda2fd696d0eb2cd4a41ade7406c173ce928f759e32c6e9d5976f3fe00cf106cd09d86084ffea3bcd9c51c6bed84f1db147d95abf1fbc39180ad8741f9f2218eba038ecd3712bf7eef80b36e9ce461f2d526338e1c3f4a86c28b814bb11893395a807ec40e03cdd4199b6859d994e6a259e4392d463706e03a7147fad491735f8a8bd1f74879c01ceb6caf20aa996e71c672f", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000050080)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6, r7}, {}, {r9}], 0x4, "8780c75254058f"})
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r11)
sendmsg$IEEE802154_ADD_IFACE(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r12, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:55 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x12000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  175.619152][ T8606] R13: 00007fff1efbb32f R14: 00007fbba780d300 R15: 0000000000022000
[  175.627110][ T8606]  </TASK>
[  175.631110][ T8610] FAULT_INJECTION: forcing a failure.
[  175.631110][ T8610] name failslab, interval 1, probability 0, space 0, times 0
[  175.643821][ T8610] CPU: 1 PID: 8610 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  175.654121][ T8610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  175.664165][ T8610] Call Trace:
[  175.667510][ T8610]  <TASK>
[  175.670440][ T8610]  dump_stack_lvl+0xd6/0x122
[  175.675034][ T8610]  dump_stack+0x11/0x1b
[  175.679179][ T8610]  should_fail+0x23c/0x250
[  175.683664][ T8610]  ? dst_alloc+0x101/0x160
[  175.688088][ T8610]  __should_failslab+0x81/0x90
[  175.692913][ T8610]  should_failslab+0x5/0x20
[  175.697415][ T8610]  kmem_cache_alloc+0x4f/0x320
[  175.702439][ T8610]  dst_alloc+0x101/0x160
[  175.706676][ T8610]  __mkroute_output+0x45c/0xd30
[  175.711524][ T8610]  ip_route_output_key_hash_rcu+0x8f4/0x950
[  175.717505][ T8610]  ip_route_output_flow+0xaf/0x160
[  175.722617][ T8610]  udp_sendmsg+0x1050/0x14c0
[  175.727208][ T8610]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  175.732053][ T8610]  udp_sendpage+0x93/0x330
[  175.736563][ T8610]  ? udplite_getfrag+0x90/0x90
[  175.741390][ T8610]  inet_sendpage+0x7f/0xc0
[  175.745870][ T8610]  ? inet_sendmsg+0x80/0x80
[  175.750369][ T8610]  kernel_sendpage+0x187/0x200
[  175.755213][ T8610]  ? inet_sendmsg+0x80/0x80
[  175.759784][ T8610]  sock_sendpage+0x5a/0x70
[  175.764317][ T8610]  pipe_to_sendpage+0x128/0x160
[  175.769164][ T8610]  ? sock_fasync+0xc0/0xc0
[  175.773570][ T8610]  __splice_from_pipe+0x207/0x500
[  175.778672][ T8610]  ? generic_splice_sendpage+0xd0/0xd0
[  175.784160][ T8610]  generic_splice_sendpage+0x94/0xd0
[  175.789476][ T8610]  ? iter_file_splice_write+0x790/0x790
[  175.795032][ T8610]  do_splice+0xa0e/0xde0
[  175.799269][ T8610]  ? proc_fail_nth_write+0x127/0x150
[  175.804549][ T8610]  ? __rcu_read_unlock+0x5c/0x290
[  175.809618][ T8610]  ? __fget_light+0x219/0x260
[  175.814306][ T8610]  __se_sys_splice+0x2bd/0x3a0
[  175.819182][ T8610]  __x64_sys_splice+0x74/0x80
[  175.823858][ T8610]  do_syscall_64+0x44/0xd0
[  175.828271][ T8610]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  175.834253][ T8610] RIP: 0033:0x7f7710020ae9
[  175.838661][ T8610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  175.858365][ T8610] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
07:40:55 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f007068793100000000050020000000f790e100000c00050000000090f4000000"], 0x34}}, 0x0)

07:40:56 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 56)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:56 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x20000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  175.866950][ T8610] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  175.874919][ T8610] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  175.882935][ T8610] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  175.890989][ T8610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.898980][ T8610] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  175.906950][ T8610]  </TASK>
07:40:56 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 2)

07:40:56 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="34081200ad65a44a0370d00a03f283de77870484bfc546bde8a43d352604936d524dae24d58c44c1b29a539a6b6ed1a02d4b334e0641f97ecff00218400984c7aced2ed61826ff333c55c58936b2deee66eed1ff825596bd3206dcea150dc4651325d81df83bc26f2c", @ANYRES16=r2, @ANYBLOB="0100000000000000000021000000e8001f007068793100000000050000000000000c0005000000000000000000"], 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_SET_MACPARAMS(r3, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x24, r2, 0x8, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x45}, @IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x8081}, 0x8000000)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
sendmsg$NLBL_UNLABEL_C_LIST(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40081}, 0x8044)

07:40:56 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_PAN_ID(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x300, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x8010)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000380)={'wpan4\x00'})
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r1)
sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x4c, r5, 0x2, 0x70bd25, 0x25dfdbfe, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000081}, 0x4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x2}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYRES32=r6, @ANYRES16=r2, @ANYBLOB="01000000000000000000000000ccd31f00706879310000000005ec1f00000000000c00050000000000f80000e0"], 0x34}}, 0x0)

[  175.947584][ T8620] loop4: detected capacity change from 0 to 16
[  176.006129][ T8620] FAULT_INJECTION: forcing a failure.
[  176.006129][ T8620] name failslab, interval 1, probability 0, space 0, times 0
[  176.018826][ T8620] CPU: 0 PID: 8620 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  176.028920][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  176.039073][ T8620] Call Trace:
[  176.042348][ T8620]  <TASK>
[  176.045303][ T8620]  dump_stack_lvl+0xd6/0x122
[  176.049932][ T8620]  dump_stack+0x11/0x1b
07:40:56 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x25000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:56 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="34000000a1ffba72a718daf5b760d5861efd820ea2d3b3544fdaa27b6de126daee6939e776df75e684b665805892827902b86e4f2f1c4eb91fca34347feaea09580e744043241601a84cac9ef3659332094a0a9d9aa5ece356e5ad9fe9cb24068244e5304519aee9ff010000000000009a910371fd3b9ae81b28ec60e403a31111b161b9f91264bd671ad358a41f2418bbda", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  176.054089][ T8620]  should_fail+0x23c/0x250
[  176.058507][ T8620]  ? mempool_alloc_slab+0x16/0x20
[  176.063663][ T8620]  __should_failslab+0x81/0x90
[  176.068511][ T8620]  should_failslab+0x5/0x20
[  176.073058][ T8620]  kmem_cache_alloc+0x4f/0x320
[  176.077825][ T8620]  ? blk_mq_submit_bio+0xdeb/0x1470
[  176.083035][ T8620]  mempool_alloc_slab+0x16/0x20
[  176.087984][ T8620]  ? mempool_free+0x130/0x130
[  176.092671][ T8620]  mempool_alloc+0x9d/0x310
[  176.097253][ T8620]  bio_alloc_bioset+0xcc/0x560
[  176.102038][ T8620]  submit_bh_wbc+0x133/0x320
[  176.106631][ T8620]  ? mark_buffer_dirty+0x190/0x260
[  176.111753][ T8620]  __sync_dirty_buffer+0x136/0x1e0
[  176.116961][ T8620]  sync_dirty_buffer+0x16/0x20
[  176.121804][ T8620]  fat_mirror_bhs+0x24b/0x330
[  176.126536][ T8620]  fat_ent_write+0xc2/0xd0
[  176.130957][ T8620]  fat_chain_add+0x15b/0x410
[  176.135552][ T8620]  fat_get_block+0x48d/0x610
[  176.140189][ T8620]  __block_write_begin_int+0x4c5/0x1010
[  176.145831][ T8620]  ? fat_block_truncate_page+0x30/0x30
[  176.151405][ T8620]  cont_write_begin+0x4cf/0x7b0
[  176.156238][ T8620]  ? __get_user_nocheck_1+0x6/0x10
[  176.161341][ T8620]  fat_write_begin+0x61/0xf0
[  176.166090][ T8620]  ? fat_block_truncate_page+0x30/0x30
[  176.171559][ T8620]  generic_perform_write+0x1c8/0x400
[  176.176827][ T8620]  ? fat_write_begin+0xf0/0xf0
[  176.181629][ T8620]  __generic_file_write_iter+0xf7/0x2b0
[  176.187311][ T8620]  ? generic_write_checks+0x250/0x290
[  176.192662][ T8620]  generic_file_write_iter+0x75/0x130
[  176.198020][ T8620]  do_iter_readv_writev+0x2de/0x380
[  176.203282][ T8620]  do_iter_write+0x192/0x5c0
[  176.207853][ T8620]  ? import_iovec+0xb8/0xd0
[  176.212366][ T8620]  do_pwritev+0x235/0x440
[  176.216682][ T8620]  ? debug_smp_processor_id+0x18/0x20
[  176.222158][ T8620]  ? fpregs_assert_state_consistent+0x7e/0x90
[  176.228215][ T8620]  __x64_sys_pwritev2+0x7e/0xa0
[  176.233047][ T8620]  do_syscall_64+0x44/0xd0
[  176.237440][ T8620]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  176.243319][ T8620] RIP: 0033:0x7fbba9ab7ae9
[  176.247727][ T8620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  176.267379][ T8620] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  176.275794][ T8620] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  176.283777][ T8620] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  176.291739][ T8620] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  176.299713][ T8620] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  176.307687][ T8620] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  176.315654][ T8620]  </TASK>
[  176.322636][ T8641] FAULT_INJECTION: forcing a failure.
[  176.322636][ T8641] name failslab, interval 1, probability 0, space 0, times 0
[  176.335329][ T8641] CPU: 1 PID: 8641 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  176.345389][ T8641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
07:40:56 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 2)

07:40:56 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r4, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x7}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000010)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000662a000000050020c4f900000000000c0005000004000000000000000000002a0000000000"], 0x34}}, 0x40)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

07:40:56 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x34, r2, 0x300, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:56 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x48000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  176.355467][ T8641] Call Trace:
[  176.358807][ T8641]  <TASK>
[  176.361732][ T8641]  dump_stack_lvl+0xd6/0x122
[  176.366369][ T8641]  dump_stack+0x11/0x1b
[  176.370589][ T8641]  should_fail+0x23c/0x250
[  176.375000][ T8641]  __should_failslab+0x81/0x90
[  176.379778][ T8641]  should_failslab+0x5/0x20
[  176.384300][ T8641]  kmem_cache_alloc_node+0x61/0x2d0
[  176.389498][ T8641]  ? __alloc_skb+0xf0/0x450
[  176.394132][ T8641]  __alloc_skb+0xf0/0x450
[  176.398464][ T8641]  alloc_skb_with_frags+0x90/0x390
07:40:56 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = socket(0xf, 0x80000, 0x66)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$int_in(r4, 0x5452, &(0x7f0000000040)=0x9)
r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080), 0x28040, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=@newtclass={0x38, 0x28, 0x2, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xa, 0xfff1}, {0x5}, {0xfff2, 0x9}}, [@TCA_RATE={0x6, 0x5, {0x7, 0x1}}, @tclass_kind_options=@c_mqprio={0xb}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048080}, 0x40000)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000000)='netdevsim0\x00', 0x10)
sendto$unix(r3, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@abs, 0x6e)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  176.403575][ T8641]  sock_alloc_send_pskb+0x436/0x4e0
[  176.408831][ T8641]  sock_alloc_send_skb+0x2d/0x40
[  176.413779][ T8641]  __ip_append_data+0x136f/0x1de0
[  176.418867][ T8641]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  176.423771][ T8641]  ? ipv4_mtu+0x1c3/0x1f0
[  176.428139][ T8641]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  176.432992][ T8641]  ip_append_data+0x126/0x150
[  176.437750][ T8641]  udp_sendmsg+0x284/0x14c0
[  176.442286][ T8641]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  176.447138][ T8641]  udp_sendpage+0x93/0x330
[  176.451560][ T8641]  ? udplite_getfrag+0x90/0x90
[  176.456320][ T8641]  inet_sendpage+0x7f/0xc0
[  176.460787][ T8641]  ? inet_sendmsg+0x80/0x80
[  176.465164][ T8651] validate_nla: 52 callbacks suppressed
[  176.465175][ T8651] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  176.465290][ T8641]  kernel_sendpage+0x187/0x200
[  176.470879][ T8651] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  176.478876][ T8641]  ? inet_sendmsg+0x80/0x80
[  176.496140][ T8641]  sock_sendpage+0x5a/0x70
[  176.500636][ T8641]  pipe_to_sendpage+0x128/0x160
07:40:56 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 57)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:56 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x4c000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  176.505526][ T8641]  ? sock_fasync+0xc0/0xc0
[  176.509991][ T8641]  __splice_from_pipe+0x207/0x500
[  176.515025][ T8641]  ? generic_splice_sendpage+0xd0/0xd0
[  176.520493][ T8641]  generic_splice_sendpage+0x94/0xd0
[  176.524446][ T8653] FAULT_INJECTION: forcing a failure.
[  176.524446][ T8653] name failslab, interval 1, probability 0, space 0, times 0
[  176.525780][ T8641]  ? iter_file_splice_write+0x790/0x790
[  176.543910][ T8641]  do_splice+0xa0e/0xde0
[  176.548235][ T8641]  ? proc_fail_nth_write+0x127/0x150
[  176.553547][ T8641]  ? __rcu_read_unlock+0x5c/0x290
[  176.558573][ T8641]  ? __fget_light+0x219/0x260
[  176.563242][ T8641]  __se_sys_splice+0x2bd/0x3a0
[  176.567997][ T8641]  __x64_sys_splice+0x74/0x80
[  176.572704][ T8641]  do_syscall_64+0x44/0xd0
[  176.577196][ T8641]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  176.583115][ T8641] RIP: 0033:0x7fb7f78d8ae9
[  176.587525][ T8641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  176.607187][ T8641] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  176.615660][ T8641] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  176.623625][ T8641] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  176.631587][ T8641] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  176.639545][ T8641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.647598][ T8641] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  176.655565][ T8641]  </TASK>
[  176.658654][ T8653] CPU: 0 PID: 8653 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  176.668745][ T8653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  176.677820][ T8663] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  176.678877][ T8653] Call Trace:
[  176.678885][ T8653]  <TASK>
[  176.678891][ T8653]  dump_stack_lvl+0xd6/0x122
[  176.687220][ T8663] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  176.690435][ T8653]  dump_stack+0x11/0x1b
[  176.690481][ T8653]  should_fail+0x23c/0x250
[  176.690498][ T8653]  __should_failslab+0x81/0x90
[  176.719368][ T8653]  should_failslab+0x5/0x20
[  176.723863][ T8653]  kmem_cache_alloc_node+0x61/0x2d0
[  176.729092][ T8653]  ? __alloc_skb+0xf0/0x450
[  176.733595][ T8653]  __alloc_skb+0xf0/0x450
[  176.737936][ T8653]  alloc_skb_with_frags+0x90/0x390
[  176.743084][ T8653]  sock_alloc_send_pskb+0x436/0x4e0
[  176.748267][ T8653]  sock_alloc_send_skb+0x2d/0x40
[  176.753193][ T8653]  __ip_append_data+0x136f/0x1de0
[  176.758211][ T8653]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  176.763081][ T8653]  ? ipv4_mtu+0x1c3/0x1f0
[  176.767412][ T8653]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  176.772270][ T8653]  ip_append_data+0x126/0x150
[  176.776956][ T8653]  udp_sendmsg+0x284/0x14c0
[  176.781516][ T8653]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  176.786350][ T8653]  udp_sendpage+0x93/0x330
[  176.790909][ T8653]  ? udplite_getfrag+0x90/0x90
[  176.795675][ T8653]  inet_sendpage+0x7f/0xc0
[  176.800152][ T8653]  ? inet_sendmsg+0x80/0x80
[  176.804634][ T8653]  kernel_sendpage+0x187/0x200
[  176.809390][ T8653]  ? inet_sendmsg+0x80/0x80
[  176.813936][ T8653]  sock_sendpage+0x5a/0x70
[  176.819042][ T8653]  pipe_to_sendpage+0x128/0x160
[  176.824139][ T8653]  ? sock_fasync+0xc0/0xc0
[  176.828561][ T8653]  __splice_from_pipe+0x207/0x500
[  176.833570][ T8653]  ? generic_splice_sendpage+0xd0/0xd0
[  176.839142][ T8653]  generic_splice_sendpage+0x94/0xd0
[  176.844422][ T8653]  ? iter_file_splice_write+0x790/0x790
[  176.849948][ T8653]  do_splice+0xa0e/0xde0
[  176.854235][ T8653]  ? proc_fail_nth_write+0x127/0x150
[  176.859499][ T8653]  ? __rcu_read_unlock+0x5c/0x290
[  176.864534][ T8653]  ? __fget_light+0x219/0x260
[  176.869207][ T8653]  __se_sys_splice+0x2bd/0x3a0
[  176.873953][ T8653]  __x64_sys_splice+0x74/0x80
[  176.878638][ T8653]  do_syscall_64+0x44/0xd0
[  176.883087][ T8653]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  176.888987][ T8653] RIP: 0033:0x7f7710020ae9
[  176.893381][ T8653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  176.912989][ T8653] RSP: 002b:00007f770dd55188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  176.921399][ T8653] RAX: ffffffffffffffda RBX: 00007f77101340e0 RCX: 00007f7710020ae9
[  176.929453][ T8653] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  176.937475][ T8653] RBP: 00007f770dd551d0 R08: 0000000000034788 R09: 0000000000000000
[  176.945495][ T8653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
07:40:57 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 3)

07:40:57 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x54010000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  176.953538][ T8653] R13: 00007ffe007e931f R14: 00007f770dd55300 R15: 0000000000022000
[  176.961494][ T8653]  </TASK>
07:40:57 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x5a0e0000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  176.986626][ T8666] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  176.994815][ T8666] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  177.035968][ T8674] loop4: detected capacity change from 0 to 16
[  177.038185][ T8675] FAULT_INJECTION: forcing a failure.
[  177.038185][ T8675] name failslab, interval 1, probability 0, space 0, times 0
[  177.054796][ T8675] CPU: 1 PID: 8675 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  177.062031][ T8677] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  177.064913][ T8675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  177.064928][ T8675] Call Trace:
[  177.064934][ T8675]  <TASK>
[  177.073010][ T8677] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  177.083026][ T8675]  dump_stack_lvl+0xd6/0x122
[  177.083053][ T8675]  dump_stack+0x11/0x1b
[  177.083070][ T8675]  should_fail+0x23c/0x250
[  177.096266][ T8674] FAULT_INJECTION: forcing a failure.
[  177.096266][ T8674] name failslab, interval 1, probability 0, space 0, times 0
[  177.097406][ T8675]  __should_failslab+0x81/0x90
[  177.127766][ T8675]  should_failslab+0x5/0x20
[  177.132274][ T8675]  kmem_cache_alloc_node_trace+0x61/0x310
[  177.138047][ T8675]  ? __kmalloc_node_track_caller+0x30/0x40
[  177.143850][ T8675]  __kmalloc_node_track_caller+0x30/0x40
[  177.149537][ T8675]  ? alloc_skb_with_frags+0x90/0x390
[  177.154808][ T8675]  __alloc_skb+0x19d/0x450
[  177.159220][ T8675]  alloc_skb_with_frags+0x90/0x390
[  177.164316][ T8675]  sock_alloc_send_pskb+0x436/0x4e0
[  177.169504][ T8675]  sock_alloc_send_skb+0x2d/0x40
[  177.174447][ T8675]  __ip_append_data+0x136f/0x1de0
[  177.179456][ T8675]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  177.184351][ T8675]  ? ipv4_mtu+0x1c3/0x1f0
[  177.188747][ T8675]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  177.193592][ T8675]  ip_append_data+0x126/0x150
[  177.198249][ T8675]  udp_sendmsg+0x284/0x14c0
[  177.202739][ T8675]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  177.207577][ T8675]  udp_sendpage+0x93/0x330
[  177.211987][ T8675]  ? udplite_getfrag+0x90/0x90
[  177.216765][ T8675]  inet_sendpage+0x7f/0xc0
[  177.221166][ T8675]  ? inet_sendmsg+0x80/0x80
[  177.225662][ T8675]  kernel_sendpage+0x187/0x200
[  177.230420][ T8675]  ? inet_sendmsg+0x80/0x80
[  177.234948][ T8675]  sock_sendpage+0x5a/0x70
[  177.239366][ T8675]  pipe_to_sendpage+0x128/0x160
[  177.244220][ T8675]  ? sock_fasync+0xc0/0xc0
[  177.248677][ T8675]  __splice_from_pipe+0x207/0x500
[  177.253686][ T8675]  ? generic_splice_sendpage+0xd0/0xd0
[  177.259131][ T8675]  generic_splice_sendpage+0x94/0xd0
[  177.264466][ T8675]  ? iter_file_splice_write+0x790/0x790
[  177.270006][ T8675]  do_splice+0xa0e/0xde0
[  177.274258][ T8675]  ? proc_fail_nth_write+0x127/0x150
[  177.279610][ T8675]  ? __rcu_read_unlock+0x5c/0x290
[  177.284620][ T8675]  ? __fget_light+0x219/0x260
[  177.289350][ T8675]  __se_sys_splice+0x2bd/0x3a0
[  177.294100][ T8675]  __x64_sys_splice+0x74/0x80
[  177.298905][ T8675]  do_syscall_64+0x44/0xd0
[  177.303406][ T8675]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  177.309354][ T8675] RIP: 0033:0x7fb7f78d8ae9
[  177.313752][ T8675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  177.333415][ T8675] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  177.341828][ T8675] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  177.349780][ T8675] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  177.357732][ T8675] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  177.365685][ T8675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.373637][ T8675] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  177.381654][ T8675]  </TASK>
[  177.384654][ T8674] CPU: 0 PID: 8674 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  177.395047][ T8674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  177.405147][ T8674] Call Trace:
[  177.408421][ T8674]  <TASK>
[  177.411346][ T8674]  dump_stack_lvl+0xd6/0x122
[  177.415977][ T8674]  dump_stack+0x11/0x1b
[  177.420133][ T8674]  should_fail+0x23c/0x250
[  177.424643][ T8674]  ? mempool_alloc_slab+0x16/0x20
[  177.429689][ T8674]  __should_failslab+0x81/0x90
07:40:57 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

07:40:57 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x5b0e0000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  177.434545][ T8674]  should_failslab+0x5/0x20
[  177.439082][ T8674]  kmem_cache_alloc+0x4f/0x320
[  177.444036][ T8674]  mempool_alloc_slab+0x16/0x20
[  177.448921][ T8674]  ? mempool_free+0x130/0x130
[  177.453611][ T8674]  mempool_alloc+0x9d/0x310
[  177.454129][ T8685] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  177.458116][ T8674]  bio_alloc_bioset+0xcc/0x560
[  177.458193][ T8674]  ? __getblk_gfp+0x3f/0x530
[  177.466288][ T8685] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  177.470983][ T8674]  submit_bh_wbc+0x133/0x320
[  177.471005][ T8674]  ? mark_buffer_dirty+0x190/0x260
[  177.493298][ T8674]  write_dirty_buffer+0xde/0xf0
[  177.498233][ T8674]  fat_sync_bhs+0x52/0x160
[  177.502730][ T8674]  fat_alloc_clusters+0x95a/0xab0
[  177.507822][ T8674]  fat_get_block+0x267/0x610
[  177.512429][ T8674]  __block_write_begin_int+0x4c5/0x1010
[  177.517958][ T8674]  ? fat_block_truncate_page+0x30/0x30
[  177.523465][ T8674]  cont_write_begin+0x4cf/0x7b0
[  177.528337][ T8674]  ? __get_user_nocheck_1+0x6/0x10
[  177.533445][ T8674]  fat_write_begin+0x61/0xf0
[  177.538073][ T8674]  ? fat_block_truncate_page+0x30/0x30
[  177.543522][ T8674]  generic_perform_write+0x1c8/0x400
[  177.548898][ T8674]  ? fat_write_begin+0xf0/0xf0
[  177.553681][ T8674]  __generic_file_write_iter+0xf7/0x2b0
[  177.559243][ T8674]  ? generic_write_checks+0x250/0x290
[  177.564653][ T8674]  generic_file_write_iter+0x75/0x130
[  177.570131][ T8674]  do_iter_readv_writev+0x2de/0x380
[  177.575387][ T8674]  do_iter_write+0x192/0x5c0
[  177.579967][ T8674]  ? import_iovec+0xb8/0xd0
[  177.584489][ T8674]  do_pwritev+0x235/0x440
[  177.588797][ T8674]  ? debug_smp_processor_id+0x18/0x20
[  177.594198][ T8674]  ? fpregs_assert_state_consistent+0x7e/0x90
[  177.600317][ T8674]  __x64_sys_pwritev2+0x7e/0xa0
[  177.605158][ T8674]  do_syscall_64+0x44/0xd0
[  177.609568][ T8674]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  177.615496][ T8674] RIP: 0033:0x7fbba9ab7ae9
[  177.619923][ T8674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  177.639651][ T8674] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  177.648176][ T8674] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  177.656162][ T8674] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  177.664128][ T8674] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  177.672153][ T8674] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  177.680119][ T8674] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
07:40:58 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 3)

07:40:58 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x60000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:58 executing program 0:
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x4, @local, 'macvtap0\x00'}})
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x1c, 0x0, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000010)
sendmsg$NLBL_CALIPSO_C_LIST(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x811}, 0x4000)

[  177.688074][ T8674]  </TASK>
07:40:58 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x68000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:58 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x6c000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  177.790108][ T8704] FAULT_INJECTION: forcing a failure.
[  177.790108][ T8704] name failslab, interval 1, probability 0, space 0, times 0
[  177.802769][ T8704] CPU: 1 PID: 8704 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  177.812836][ T8704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  177.822947][ T8704] Call Trace:
[  177.826220][ T8704]  <TASK>
[  177.829181][ T8704]  dump_stack_lvl+0xd6/0x122
[  177.833804][ T8704]  dump_stack+0x11/0x1b
07:40:58 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 58)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:58 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)={0x41c, 0x0, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x50, 0x8, 0x0, 0x1, [{0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x75be8ec7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x65f8e549}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7701eabd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x46}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x348f1e01}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x17e1ea16}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x44, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x88, 0x8, 0x0, 0x1, [{0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x59}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7c1b273a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a9d2da8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7686291e}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa0}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xe34963c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x198e0520}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x70266d21}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x81}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4485db71}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x44, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1845d85a}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x22710aab}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x11}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x72c33519}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x48}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x79416398}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbd}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xc0, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x84d227f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x227a9a48}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6fc8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x69bbb3b2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x43d2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3a3c70f7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x73a137e9}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xebb7289}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53ae3672}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4e88}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8238}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7577}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8ad4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5fe5a73a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe3a2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47567653}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3071fce9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xad62}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x45f8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5329d2c9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8000}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb6a7}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x14c, 0x8, 0x0, 0x1, [{0x54, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1ef1b2aa}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xab}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x11}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x779ec7c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x94}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ec91137}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x263804bd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3dde30e7}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x39}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xda}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5ecda087}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x335fa80a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4836741e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x792b4c30}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xdc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x290ce5bc}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b438d0a}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1e}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7aa55baa}]}, {0x4}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x26b7c364}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x31a381ad}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x13841b1}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x53f8fd47}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5327cee1}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5329b2bc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1972a516}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x37139f72}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7e8bbd65}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x63}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1d79cb12}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x29}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x8c, 0x8, 0x0, 0x1, [{0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xda}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x79fd51bd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x367c551f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x16}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2b00a250}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x77}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x56}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x749e3ad0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6fd1b904}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x81}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xba1c667}]}]}]}, 0x41c}, 0x1, 0x0, 0x0, 0x4004804}, 0x4000)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000200), r4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r7, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000700)={0x4c, 0x0, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa3}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4800)

[  177.837964][ T8704]  should_fail+0x23c/0x250
[  177.842467][ T8704]  __should_failslab+0x81/0x90
[  177.847292][ T8704]  should_failslab+0x5/0x20
[  177.851820][ T8704]  kmem_cache_alloc_node_trace+0x61/0x310
[  177.857611][ T8704]  ? __kmalloc_node_track_caller+0x30/0x40
[  177.863451][ T8704]  __kmalloc_node_track_caller+0x30/0x40
[  177.869094][ T8704]  ? alloc_skb_with_frags+0x90/0x390
[  177.874466][ T8704]  __alloc_skb+0x19d/0x450
[  177.878969][ T8704]  alloc_skb_with_frags+0x90/0x390
[  177.884212][ T8704]  sock_alloc_send_pskb+0x436/0x4e0
[  177.889458][ T8704]  sock_alloc_send_skb+0x2d/0x40
[  177.894402][ T8704]  __ip_append_data+0x136f/0x1de0
[  177.899503][ T8704]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  177.904405][ T8704]  ? ipv4_mtu+0x1c3/0x1f0
[  177.908750][ T8704]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  177.913603][ T8704]  ip_append_data+0x126/0x150
[  177.918338][ T8704]  udp_sendmsg+0x284/0x14c0
[  177.922859][ T8704]  ? ip_skb_dst_mtu+0x3f0/0x3f0
[  177.927762][ T8704]  udp_sendpage+0x93/0x330
[  177.932216][ T8704]  ? udplite_getfrag+0x90/0x90
[  177.936958][ T8704]  inet_sendpage+0x7f/0xc0
[  177.941513][ T8704]  ? inet_sendmsg+0x80/0x80
[  177.946021][ T8704]  kernel_sendpage+0x187/0x200
[  177.950814][ T8704]  ? inet_sendmsg+0x80/0x80
[  177.955295][ T8704]  sock_sendpage+0x5a/0x70
[  177.959759][ T8704]  pipe_to_sendpage+0x128/0x160
[  177.964612][ T8704]  ? sock_fasync+0xc0/0xc0
[  177.969035][ T8704]  __splice_from_pipe+0x207/0x500
[  177.974056][ T8704]  ? generic_splice_sendpage+0xd0/0xd0
[  177.980015][ T8704]  generic_splice_sendpage+0x94/0xd0
[  177.985291][ T8704]  ? iter_file_splice_write+0x790/0x790
[  177.990828][ T8704]  do_splice+0xa0e/0xde0
[  177.995065][ T8704]  ? proc_fail_nth_write+0x127/0x150
[  178.000343][ T8704]  ? __rcu_read_unlock+0x5c/0x290
[  178.005346][ T8704]  ? __fget_light+0x219/0x260
[  178.010001][ T8704]  __se_sys_splice+0x2bd/0x3a0
[  178.014747][ T8704]  __x64_sys_splice+0x74/0x80
[  178.019427][ T8704]  do_syscall_64+0x44/0xd0
[  178.023913][ T8704]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  178.029842][ T8704] RIP: 0033:0x7f7710020ae9
[  178.034235][ T8704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  178.054095][ T8704] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  178.062490][ T8704] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  178.070449][ T8704] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  178.078851][ T8704] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
07:40:58 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 4)

07:40:58 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x74000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  178.086816][ T8704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.094810][ T8704] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  178.102800][ T8704]  </TASK>
07:40:58 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x7a000000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  178.158248][ T8727] loop4: detected capacity change from 0 to 16
[  178.187119][ T8729] FAULT_INJECTION: forcing a failure.
[  178.187119][ T8729] name failslab, interval 1, probability 0, space 0, times 0
07:40:58 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x9effffff, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:58 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xefffffff, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  178.199790][ T8729] CPU: 1 PID: 8729 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  178.210123][ T8729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  178.220299][ T8729] Call Trace:
[  178.223578][ T8729]  <TASK>
[  178.226528][ T8729]  dump_stack_lvl+0xd6/0x122
[  178.231137][ T8729]  dump_stack+0x11/0x1b
[  178.235368][ T8729]  should_fail+0x23c/0x250
[  178.239784][ T8729]  __should_failslab+0x81/0x90
[  178.244554][ T8729]  should_failslab+0x5/0x20
[  178.249106][ T8729]  kmem_cache_alloc_node+0x61/0x2d0
[  178.254314][ T8729]  ? release_sock+0x104/0x110
[  178.259015][ T8729]  ? __alloc_skb+0xf0/0x450
[  178.263521][ T8729]  __alloc_skb+0xf0/0x450
[  178.267942][ T8729]  sock_wmalloc+0x77/0xb0
[  178.272401][ T8729]  ip_append_page+0x685/0xa30
[  178.277077][ T8729]  udp_sendpage+0x11a/0x330
[  178.281600][ T8729]  ? udplite_getfrag+0x90/0x90
[  178.286360][ T8729]  inet_sendpage+0x7f/0xc0
[  178.290906][ T8729]  ? inet_sendmsg+0x80/0x80
[  178.295413][ T8729]  kernel_sendpage+0x187/0x200
[  178.300190][ T8729]  ? inet_sendmsg+0x80/0x80
[  178.304695][ T8729]  sock_sendpage+0x5a/0x70
[  178.309110][ T8729]  pipe_to_sendpage+0x128/0x160
[  178.313961][ T8729]  ? sock_fasync+0xc0/0xc0
[  178.318377][ T8729]  __splice_from_pipe+0x207/0x500
[  178.318665][ T8727] FAULT_INJECTION: forcing a failure.
[  178.318665][ T8727] name failslab, interval 1, probability 0, space 0, times 0
[  178.323414][ T8729]  ? generic_splice_sendpage+0xd0/0xd0
[  178.323456][ T8729]  generic_splice_sendpage+0x94/0xd0
[  178.346708][ T8729]  ? iter_file_splice_write+0x790/0x790
[  178.352273][ T8729]  do_splice+0xa0e/0xde0
[  178.356505][ T8729]  ? proc_fail_nth_write+0x127/0x150
[  178.361806][ T8729]  ? __rcu_read_unlock+0x5c/0x290
[  178.366815][ T8729]  ? __fget_light+0x219/0x260
[  178.371479][ T8729]  __se_sys_splice+0x2bd/0x3a0
[  178.376239][ T8729]  __x64_sys_splice+0x74/0x80
[  178.380972][ T8729]  do_syscall_64+0x44/0xd0
[  178.385455][ T8729]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  178.391364][ T8729] RIP: 0033:0x7fb7f78d8ae9
[  178.395919][ T8729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  178.415519][ T8729] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  178.423959][ T8729] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  178.431912][ T8729] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  178.439885][ T8729] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  178.448089][ T8729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.456039][ T8729] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  178.464059][ T8729]  </TASK>
[  178.467062][ T8727] CPU: 0 PID: 8727 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  178.477174][ T8727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  178.487475][ T8727] Call Trace:
[  178.490752][ T8727]  <TASK>
[  178.493666][ T8727]  dump_stack_lvl+0xd6/0x122
[  178.498239][ T8727]  dump_stack+0x11/0x1b
[  178.502458][ T8727]  should_fail+0x23c/0x250
[  178.506867][ T8727]  ? mempool_alloc_slab+0x16/0x20
[  178.511886][ T8727]  __should_failslab+0x81/0x90
[  178.516661][ T8727]  should_failslab+0x5/0x20
[  178.521236][ T8727]  kmem_cache_alloc+0x4f/0x320
[  178.526010][ T8727]  mempool_alloc_slab+0x16/0x20
[  178.530857][ T8727]  ? mempool_free+0x130/0x130
[  178.535578][ T8727]  mempool_alloc+0x9d/0x310
[  178.540098][ T8727]  bio_alloc_bioset+0xcc/0x560
[  178.544919][ T8727]  ? submit_bio_noacct+0x49f/0x4e0
[  178.550015][ T8727]  submit_bh_wbc+0x133/0x320
[  178.554666][ T8727]  ? mark_buffer_dirty+0x190/0x260
[  178.559761][ T8727]  __sync_dirty_buffer+0x136/0x1e0
[  178.564914][ T8727]  sync_dirty_buffer+0x16/0x20
[  178.569792][ T8727]  fat_mirror_bhs+0x24b/0x330
[  178.574455][ T8727]  fat_alloc_clusters+0x9ad/0xab0
[  178.579464][ T8727]  fat_get_block+0x267/0x610
[  178.584070][ T8727]  __block_write_begin_int+0x4c5/0x1010
[  178.589679][ T8727]  ? fat_block_truncate_page+0x30/0x30
[  178.595164][ T8727]  cont_write_begin+0x4cf/0x7b0
[  178.600067][ T8727]  ? __get_user_nocheck_1+0x6/0x10
[  178.605158][ T8727]  fat_write_begin+0x61/0xf0
[  178.609742][ T8727]  ? fat_block_truncate_page+0x30/0x30
[  178.615235][ T8727]  generic_perform_write+0x1c8/0x400
[  178.620516][ T8727]  ? fat_write_begin+0xf0/0xf0
[  178.625348][ T8727]  __generic_file_write_iter+0xf7/0x2b0
[  178.630877][ T8727]  ? generic_write_checks+0x250/0x290
[  178.636251][ T8727]  generic_file_write_iter+0x75/0x130
[  178.641679][ T8727]  do_iter_readv_writev+0x2de/0x380
[  178.646865][ T8727]  do_iter_write+0x192/0x5c0
[  178.651572][ T8727]  ? import_iovec+0xb8/0xd0
[  178.656054][ T8727]  do_pwritev+0x235/0x440
[  178.660390][ T8727]  ? debug_smp_processor_id+0x18/0x20
[  178.665764][ T8727]  ? fpregs_assert_state_consistent+0x7e/0x90
[  178.671877][ T8727]  __x64_sys_pwritev2+0x7e/0xa0
[  178.676770][ T8727]  do_syscall_64+0x44/0xd0
[  178.681215][ T8727]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  178.687145][ T8727] RIP: 0033:0x7fbba9ab7ae9
[  178.691544][ T8727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  178.711145][ T8727] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  178.719615][ T8727] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  178.727611][ T8727] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  178.735579][ T8727] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  178.743586][ T8727] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  178.751539][ T8727] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
07:40:59 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 4)

07:40:59 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xf0ffffff, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:59 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000), r2)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_LIST(r5, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x90, r3, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'tunl0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast2}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_to_bridge\x00'}, @NLBL_UNLABEL_A_SECCTX={0x25, 0x7, 'system_u:object_r:dpkg_lock_t:s0\x00'}]}, 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x8010)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  178.759669][ T8727]  </TASK>
07:40:59 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, r6, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:40:59 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xffffe000, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:59 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 59)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:40:59 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xffffff7f, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  178.882256][ T8765] FAULT_INJECTION: forcing a failure.
[  178.882256][ T8765] name failslab, interval 1, probability 0, space 0, times 0
[  178.894924][ T8765] CPU: 0 PID: 8765 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  178.904989][ T8765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  178.915144][ T8765] Call Trace:
[  178.918487][ T8765]  <TASK>
[  178.921430][ T8765]  dump_stack_lvl+0xd6/0x122
[  178.926024][ T8765]  dump_stack+0x11/0x1b
[  178.930265][ T8765]  should_fail+0x23c/0x250
[  178.934694][ T8765]  __should_failslab+0x81/0x90
[  178.939457][ T8765]  should_failslab+0x5/0x20
[  178.943966][ T8765]  kmem_cache_alloc_node+0x61/0x2d0
[  178.949266][ T8765]  ? release_sock+0x104/0x110
[  178.953941][ T8765]  ? __alloc_skb+0xf0/0x450
[  178.958445][ T8765]  __alloc_skb+0xf0/0x450
[  178.962776][ T8765]  sock_wmalloc+0x77/0xb0
[  178.967138][ T8765]  ip_append_page+0x685/0xa30
[  178.971852][ T8765]  udp_sendpage+0x11a/0x330
[  178.976366][ T8765]  ? udplite_getfrag+0x90/0x90
[  178.981120][ T8765]  inet_sendpage+0x7f/0xc0
[  178.985612][ T8765]  ? inet_sendmsg+0x80/0x80
[  178.990094][ T8765]  kernel_sendpage+0x187/0x200
[  178.994881][ T8765]  ? inet_sendmsg+0x80/0x80
[  178.999405][ T8765]  sock_sendpage+0x5a/0x70
[  179.003814][ T8765]  pipe_to_sendpage+0x128/0x160
[  179.008640][ T8765]  ? sock_fasync+0xc0/0xc0
[  179.013053][ T8765]  __splice_from_pipe+0x207/0x500
[  179.018072][ T8765]  ? generic_splice_sendpage+0xd0/0xd0
[  179.023613][ T8765]  generic_splice_sendpage+0x94/0xd0
[  179.028877][ T8765]  ? iter_file_splice_write+0x790/0x790
[  179.034402][ T8765]  do_splice+0xa0e/0xde0
[  179.038637][ T8765]  ? proc_fail_nth_write+0x127/0x150
[  179.043980][ T8765]  ? __rcu_read_unlock+0x5c/0x290
[  179.049063][ T8765]  ? __fget_light+0x219/0x260
[  179.053719][ T8765]  __se_sys_splice+0x2bd/0x3a0
[  179.058591][ T8765]  __x64_sys_splice+0x74/0x80
[  179.063420][ T8765]  do_syscall_64+0x44/0xd0
[  179.067822][ T8765]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  179.073796][ T8765] RIP: 0033:0x7f7710020ae9
[  179.078188][ T8765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  179.098045][ T8765] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  179.106481][ T8765] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  179.114438][ T8765] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  179.122409][ T8765] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
07:40:59 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 5)

07:40:59 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xffffff9e, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:40:59 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADDDEF(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f0000001580)={0x88, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0x27}}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010101}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x2}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @local}]}, 0x88}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_LIST_PHY(r4, &(0x7f00000016c0)={&(0x7f0000000200), 0xc, &(0x7f0000001680)={&(0x7f0000001640)={0x14, r6, 0x100, 0x70bd27, 0x25dfdbff, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24001800}, 0x50)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001780)={&(0x7f0000001740)={0x3c, 0x0, 0x0, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x80}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x400c800}, 0x0)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)={0x12b4, 0x0, 0x5, 0x5, 0x0, 0x0, {0x3, 0x0, 0x6}, [{{0x254, 0x1, {{0x3, 0x6}, 0x40, 0x2, 0xc, 0x5, 0x1a, 'syz1\x00', "9b365c2812e2048fe762f268a01740ff435e4dabbe420401cb7d4519dcdf7c57", "43e7d7474ebc44e4aa151cc435e0bdc6280a0ad6eced106e583ba3ea0c8d51b5", [{0xff1c, 0x1, {0x0, 0x7}}, {0x6, 0x8001, {0x2, 0x5870}}, {0x20, 0x3a8, {0x1, 0x3}}, {0x7, 0x2, {0x3, 0xbf}}, {0x2, 0x81, {0x3, 0x80000000}}, {0x6, 0x8, {0x1, 0x4}}, {0x1, 0xb7c, {0x3, 0xfffffffb}}, {0x0, 0xb8, {0x1, 0x3ff}}, {0x8, 0x1, {0x0, 0x403}}, {0x3f, 0x200, {0x0, 0xe6}}, {0xc396, 0xff, {0x1, 0x101}}, {0x7, 0xff, {0x5, 0x54f}}, {0xd86, 0x3, {0x1, 0x6}}, {0x8000, 0x5, {0x1, 0xfff}}, {0x7, 0xdab6, {0x2, 0x53a}}, {0x7a09, 0x1, {0x3, 0x7}}, {0x8, 0x86, {0x2, 0x2}}, {0x2, 0x7, {0x2, 0xc2a1ead}}, {0x81, 0xfff9, {0x2, 0x6}}, {0x1, 0x2, {0x0, 0x9}}, {0xfffd, 0x7ff, {0x0, 0x1}}, {0x4, 0x100, {0x2, 0x7}}, {0x68ab, 0x9, {0x2, 0x2}}, {0x7ff, 0x3f, {0x2, 0xffffff80}}, {0x66, 0x1ff, {0x3, 0x87}}, {0x3, 0xec82, {0x0, 0x393c448c}}, {0x5, 0x800, {0x0, 0x3}}, {0xffff, 0x1f, {0x3, 0xd1}}, {0x3, 0x8001, {0x2, 0x80000001}}, {0x1, 0x5, {0x2, 0x2}}, {0x1000, 0x1, {0x2, 0x1ff}}, {0x8, 0x6e, {0x3, 0x5}}, {0xd1, 0x3, {0x3, 0x5ff1}}, {0x1, 0x8bb, {0x0, 0x5}}, {0x0, 0x463, {0x1, 0x5}}, {0xffff, 0x200, {0x3, 0x3}}, {0x0, 0x79}, {0xef5, 0x804, {0xb3ff7056b6289be7, 0x3}}, {0x1, 0x9, {0x3, 0x10000}}, {0x1, 0x3, {0x2}}]}}}, {{0x254, 0x1, {{0x3, 0x8}, 0x67, 0x2, 0x3ff, 0x1f, 0xffff, 'syz1\x00', "918c074a07e98d06c904fcd3401981cd73b2dbc5b5995a9cee58c448abc48f0c", "13ca16e92ccbd6509081846f89028740d16a0cc122b16de4477ce2bf8856d2cd", [{0x6, 0x0, {0x0, 0x1}}, {0x80, 0x1, {0x3, 0x6}}, {0x76f0, 0x3e3, {0x3, 0x8}}, {0x0, 0xf2a5, {0x2, 0x33}}, {0x3f, 0x9, {0x1}}, {0x5, 0x7, {0x1, 0xf50e}}, {0xa37f, 0x1, {0x0, 0xb6d}}, {0x79, 0x1f, {0x2, 0x8001}}, {0x5, 0x4, {0x3, 0x401}}, {0x893, 0x9, {0x0, 0x10000}}, {0x9, 0x8, {0x1, 0x3}}, {0x7, 0x1, {0x1, 0xe6c0}}, {0x6, 0x0, {0x1, 0x3}}, {0x1000, 0x9}, {0x4, 0x26, {0x2, 0x9}}, {0x6, 0x4, {0x2, 0x72}}, {0x9, 0x0, {0x0, 0x6}}, {0xfff, 0x4, {0x1}}, {0x2, 0x6f42, {0x2, 0x1}}, {0x100, 0xff, {0x0, 0x36}}, {0x7bc0, 0x4, {0x1}}, {0x5, 0x9, {0x2, 0x100}}, {0xfc00, 0xfff8, {0x1, 0x8}}, {0x3, 0x8, {0x2, 0xcb}}, {0x7, 0x756, {0x3}}, {0x7, 0x1, {0x1, 0x80000000}}, {0x1000, 0x6, {0x1, 0x5}}, {0x6, 0x7, {0x1, 0xffff}}, {0xff80, 0x5b10, {0x2, 0x100}}, {0x5, 0x5, {0x2, 0xfff}}, {0x9, 0xff, {0x1, 0x400}}, {0x8, 0x8000, {0x2, 0x6}}, {0x7, 0x3f, {0x3, 0xfffffff8}}, {0x8, 0x7f, {0x3, 0xa70}}, {0x0, 0x553, {0x2, 0x9}}, {0x1, 0x50f, {0x0, 0x6}}, {0x4, 0x1}, {0x6, 0x7, {0x1, 0x9}}, {0x3, 0x0, {0x1, 0x7}}, {0x6, 0x7, {0x2, 0x1ff}}]}}}, {{0x254, 0x1, {{0x1, 0x6}, 0x6, 0x0, 0x0, 0x0, 0xc, 'syz0\x00', "3842d29027e5f2d5b0ccc81f2f6ea0a2834740f6a19ae55121201133a15045f7", "f91bce367ad8c3fb435ed6167a4e3ec14c66fa3696acdd96ebbd1a6a5f6b2e1b", [{0xc000, 0x5, {0x3, 0x7f}}, {0x7, 0x7fff, {0x0, 0x77a7fb8e}}, {0x0, 0x4, {0x3, 0x9}}, {0x3, 0x1, {0x3, 0xbffc}}, {0x4, 0x6, {0x1, 0x6}}, {0xcd9f, 0x81, {0x2, 0x754f}}, {0x101, 0x4e7f, {0x3, 0x40}}, {0x0, 0x80, {0x3, 0xe49}}, {0x7ff, 0x1, {0x0, 0x7}}, {0x5, 0x401, {0x2, 0x6}}, {0x8, 0x2, {0x2, 0x5}}, {0x800, 0x2fbb, {0x0, 0xfffffffb}}, {0x719, 0x1, {0x2, 0x8000}}, {0x200, 0x1f, {0x2, 0x8}}, {0x2, 0x4, {0x2, 0x5}}, {0xff, 0x1a04, {0x3, 0x1}}, {0x665f, 0x0, {0x3, 0x1000}}, {0x2, 0xc00, {0x1}}, {0x9, 0x81, {0x1, 0xcb8ff60}}, {0xfff9, 0x8, {0x0, 0x800}}, {0xfb4, 0x3, {0x0, 0x8}}, {0x200, 0xfff9, {0x2, 0xd2}}, {0x4, 0x2, {0x1, 0xb1cc}}, {0xfff, 0x8, {0x3, 0x7}}, {0x5, 0x1, {0x1, 0x3}}, {0x2, 0x400, {0x2, 0x1ff}}, {0x101, 0x4, {0x1, 0x4}}, {0x59c, 0x3, {0x1}}, {0x6, 0x4, {0x0, 0xfffffff7}}, {0x7, 0x8, {0x2, 0x7}}, {0x507a, 0x0, {0x3, 0x400}}, {0x1f, 0x9, {0x3, 0x1503}}, {0x3, 0x784a, {0x0, 0x8}}, {0x19, 0x1, {0x1, 0x9}}, {0x7, 0x7, {0x2, 0x4118}}, {0x3, 0x0, {0x1, 0x180000}}, {0x5e17, 0x3, {0x0, 0x5}}, {0x3ff, 0xff, {0x0, 0xad}}, {0x6, 0x80, {0x2, 0x5}}, {0x40, 0x8, {0x2, 0x4}}]}}}, {{0x254, 0x1, {{0x1, 0x3}, 0xa, 0x9, 0x2, 0x8, 0x21, 'syz0\x00', "ed41ea1d9ed26d622786a98d5879fb424276f886a2ac1f88667624984d8c7016", "4eba1d06a4d164caa3900982388dabe38bd91e63176f9aef5710a437483cc2e1", [{0x1f, 0x9, {0x3, 0x4}}, {0x8001, 0xb45, {0x2, 0x1}}, {0x6, 0x4, {0x1, 0x9}}, {0x8, 0x8, {0x1, 0x20}}, {0x7, 0xa89, {0x3, 0x3}}, {0x0, 0x8, {0x1, 0x9}}, {0x7ff, 0x0, {0x1, 0x5}}, {0x800, 0x7fff, {0x2, 0x2}}, {0x7, 0x7f, {0x2, 0x9}}, {0x9, 0x2, {0x1, 0x7b}}, {0x81, 0x7, {0x0, 0x9000000}}, {0x1, 0x9, {0x3, 0x1ff}}, {0x20, 0x1000, {0x1, 0x80000000}}, {0x8, 0x9, {0x2, 0xcf}}, {0x0, 0x1f, {0x2, 0x9}}, {0x1, 0x800, {0x1, 0x8000}}, {0x8000, 0x79, {0x2, 0x8}}, {0xa9, 0x4010, {0x2, 0x3}}, {0x3, 0xadc6, {0x0, 0x2}}, {0x2, 0x0, {0x0, 0x4}}, {0x6, 0x9, {0x2, 0x1ff}}, {0x3f, 0x6, {0x0, 0xe2}}, {0x0, 0xe7d3, {0x2, 0x4}}, {0x8db4, 0x7fff, {0x1, 0x10001}}, {0x0, 0x8, {0x1, 0x4}}, {0x5, 0xfffd, {0x1, 0x2000}}, {0x9, 0x7f, {0x0, 0xfffffffb}}, {0x3, 0x3f, {0x1, 0x800}}, {0x3, 0x1000, {0x1}}, {0x7ff, 0x100, {0x1, 0x8}}, {0x1000, 0x0, {0x1, 0x2f47}}, {0xfff7, 0x59af, {0x2, 0x2}}, {0x7, 0x3f, {0x2}}, {0x8, 0x1f, {0x3, 0x7fff}}, {0x6, 0x5, {0x0, 0x1f}}, {0x100, 0x400, {0x1, 0x3ff}}, {0x400, 0x338e, {0x2, 0x6}}, {0x2, 0x401, {0x3, 0x80}}, {0xdc2, 0x7fff, {0x2, 0x100}}, {0x1, 0x38, {0x1, 0xfffffff7}}]}}}, {{0x254, 0x1, {{0x1, 0x3ff}, 0x99, 0xbd, 0x784c, 0x100, 0x9, 'syz0\x00', "f5af998558491274b2c9818d4868eaa7ea26206533d544101361b3e1e3e08b38", "5e18be9d95c10552645d46cfb61b6de10319239a8f6816bce28d99540d2f4f6b", [{0xa7, 0x5, {0x3, 0x14000}}, {0x3, 0xfdee, {0x2, 0x1}}, {0x8b, 0x1, {0x1, 0x6}}, {0x0, 0xfffc, {0x1, 0x6}}, {0xd98, 0x7, {0x2, 0x6}}, {0x3, 0xfffc, {0x5381fc2450642146, 0xfff}}, {0x7, 0x9, {0x0, 0x4}}, {0x3, 0x101, {0x1, 0x21}}, {0xfff9, 0x9, {0x2, 0xe}}, {0x9, 0xdb, {0x2, 0x1}}, {0x1000, 0x72b4, {0x1, 0x10000}}, {0x2, 0x5, {0x1, 0x1000}}, {0x5, 0x2, {0x2, 0x1}}, {0x5, 0x0, {0x2}}, {0x2, 0x4e5, {0x3, 0xb729}}, {0xfffc, 0x88e, {0x1, 0x3}}, {0x2, 0x80, {0x0, 0x205}}, {0xdb0, 0x1ff, {0x2, 0x3}}, {0x6, 0x5, {0x0, 0x1}}, {0xf801, 0xffff, {0x1, 0x6}}, {0x4, 0x3f, {0x2, 0x5}}, {0x8, 0x3f, {0x3, 0x10001}}, {0x8001, 0xffff, {0x2, 0x7f}}, {0xee86, 0x1, {0x2}}, {0xf4ce, 0x7fff, {0x2, 0x17}}, {0x24f, 0x1, {0x2, 0x7fffffff}}, {0x7fff, 0x0, {0x2, 0x2}}, {0x9, 0xff01, {0x2, 0xe44}}, {0x7, 0x3, {0x3, 0x8}}, {0x9742, 0x2, {0x1, 0xfffff000}}, {0xccc3, 0x1, {0xf21bf6a339fb62ae, 0x8001}}, {0x97, 0x7fff, {0x0, 0x9}}, {0x31f, 0x5, {0x0, 0xd5}}, {0x7, 0x4, {0x3, 0x1}}, {0x5, 0x2000, {0x2, 0x10000}}, {0x80, 0x9, {0x0, 0xbb}}, {0x1, 0x8000, {0x2, 0x9}}, {0x9, 0x8, {0x3, 0x81}}, {0xc07, 0x3, {0x0, 0x3}}, {0x3, 0x87, {0x2, 0x2}}]}}}, {{0x254, 0x1, {{0x1, 0xfffffff7}, 0x3, 0x9, 0x1, 0x4, 0x15, 'syz0\x00', "bc01428402d54063cb61c2bd7df79cb43dd3a55109c11dea7fc14f84e4250571", "664185a6f02ff920b1e93324c59035d9959954128b0236ebd58c87d5ddc79343", [{0xbc, 0x1, {0x0, 0x7}}, {0x40, 0x4, {0x3, 0xfffffffe}}, {0x7ff, 0x1f, {0x2, 0x8}}, {0x1, 0x5, {0x0, 0xfffffffd}}, {0x1, 0x400, {0x0, 0x1}}, {0x0, 0x1f, {0x0, 0xfffffff7}}, {0x80, 0x1, {0x3, 0x3f}}, {0xff, 0x1, {0x0, 0x4}}, {0x3, 0x4, {0x1, 0x7}}, {0x2, 0x92, {0x3, 0xff}}, {0xcd6d, 0x2}, {0xac87, 0x8}, {0x2, 0x5, {0x0, 0x3ff}}, {0x9212, 0xb3, {0x3, 0x6}}, {0x9, 0x4, {0x1, 0x10000}}, {0x3, 0xfe41, {0x2, 0x10001}}, {0x3, 0x9, {0x3, 0x9}}, {0x1f, 0x668, {0x3}}, {0x7ff, 0x0, {0x1, 0x9}}, {0x1, 0x5, {0x0, 0x86a}}, {0x1, 0xff69, {0x1, 0x4}}, {0x3, 0xc1, {0x0, 0x400}}, {0x80, 0xdb3f, {0x2, 0x9}}, {0x1000, 0x6, {0x3, 0x1}}, {0x4, 0xcd43, {0x0, 0x10000}}, {0x6, 0x3, {0x1, 0x4}}, {0x3, 0xffff, {0x1, 0x5cf4}}, {0x0, 0x80, {0x1, 0x7}}, {0x5, 0x4, {0x2, 0x4}}, {0x3ff, 0x2, {0x1, 0x101}}, {0x3, 0xff7f, {0x2, 0xd33}}, {0x101, 0x9, {0x1, 0xffffffe1}}, {0x2, 0x8, {0x3}}, {0x2, 0x8000, {0x3, 0x7}}, {0x2, 0x3ff, {0x2, 0x348bc39c}}, {0x4, 0x9, {0x3, 0x1}}, {0xdc3a, 0x9, {0x0, 0x1}}, {0xfffa, 0x8, {0x2, 0x6}}, {0x8001, 0x3f, {0x1, 0xfff}}, {0x2, 0x8d3, {0x3, 0xfffffffa}}]}}}, {{0x254, 0x1, {{0x1, 0x200}, 0x2, 0x7f, 0x7ff, 0x6, 0x1b, 'syz0\x00', "88785ee1196a5b6739a17c549dd536b75c33a014d1d7b86b7ba5999a451211f7", "62d11bf475f9750bff227f2264d9a7a693d11a75e6017bc9866588b73a085fe7", [{0x9, 0x0, {0x3, 0x9}}, {0x80, 0x401, {0x2, 0x6}}, {0x40, 0x5, {0x0, 0x1f}}, {0x1, 0x5, {0x1, 0x9}}, {0x3, 0x800, {0x0, 0x4}}, {0x7fff, 0x7, {0x2, 0x1}}, {0x6fc, 0xc8f3, {0x1, 0x7}}, {0x101, 0x101, {0x1}}, {0x18f, 0x5, {0x1, 0x8}}, {0x5, 0x3b2, {0x1, 0x1}}, {0x4, 0x4, {0x3, 0x8}}, {0x7fff, 0x30a, {0x0, 0x6}}, {0x40, 0x4, {0x2, 0x6}}, {0xf63, 0x380, {0x2, 0x81}}, {0x4, 0x3ff, {0x1, 0x39}}, {0x8fe2, 0x7, {0x2, 0x5}}, {0x6, 0x8, {0x3, 0x4}}, {0x7, 0x216, {0x1, 0x4}}, {0xb592, 0x2, {0x0, 0x2}}, {0x0, 0x8000, {0x0, 0x7ff}}, {0x0, 0x0, {0x0, 0x7ff}}, {0x2, 0x4, {0x1, 0x8}}, {0x9b71, 0x9, {0x0, 0x3}}, {0x400, 0x1, {0x1, 0xff}}, {0x5, 0x7729, {0x0, 0x4}}, {0x9106, 0x401, {0x0, 0x8000}}, {0x1, 0x5, {0x0, 0x1}}, {0x9, 0x3000, {0x1, 0x7957}}, {0xf800, 0x5, {0x2, 0x5}}, {0x1000, 0x401, {0x2, 0x7e}}, {0xfff, 0x4, {0x1, 0x22}}, {0x9cf, 0xfffc, {0x1, 0x10001}}, {0x1, 0x5, {0x2, 0x6}}, {0xfff7, 0x8000, {0x1, 0x400}}, {0x6, 0x34f, {0x1, 0x3}}, {0x81, 0x7f, {0x3}}, {0x400, 0x6f2, {0x1, 0x9}}, {0x8, 0x0, {0x0, 0x9}}, {0xc652, 0x5eab, {0x2, 0x7}}, {0xfff8, 0x3, {0x0, 0x9}}]}}}, {{0x254, 0x1, {{0x3, 0xc2e}, 0xff, 0xff, 0x1f, 0x6, 0x13, 'syz0\x00', "3de6af598050b2da9a857ebfbb60872a1bb7c464f7a97b97831a7da32dceed00", "bd0fef52d5dbca8108a0cfe37d60c28babe38f101db408e94cf607773e48a243", [{0x1, 0x81, {0x3, 0xce07}}, {0x81, 0x9, {0x3, 0x7ff}}, {0xff2c, 0x9a, {0x2, 0x70}}, {0x4a, 0x7, {0x1, 0x6d8}}, {0x0, 0x9, {0x1, 0x8}}, {0x8f, 0x8000, {0x0, 0x2}}, {0xfff8, 0x80, {0x3, 0x2}}, {0x0, 0x1, {0x1, 0xffffffff}}, {0x2, 0x9, {0x2}}, {0x80, 0xfffb, {0x2, 0x3}}, {0x100, 0x5e9, {0x3, 0x1}}, {0x16, 0x3, {0x1, 0x1}}, {0x2d, 0xf5bb, {0x1, 0x80000001}}, {0xfffc, 0x9, {0x0, 0x6}}, {0x5, 0x0, {0x4, 0x8}}, {0x8, 0x6, {0x0, 0x7}}, {0x4, 0x82, {0x3, 0xfff}}, {0x8, 0x1f, {0x2, 0xfffffffb}}, {0xfffe, 0x9, {0x1, 0x7}}, {0x2, 0x4, {0x0, 0x4}}, {0xda1e, 0x3, {0x2}}, {0x3, 0x3f, {0x1, 0x7}}, {0x9, 0x81, {0x0, 0x9}}, {0x57, 0x9, {0x0, 0x6}}, {0x7f, 0x7f, {0x0, 0x8}}, {0x7, 0x55, {0x3, 0x200}}, {0x1, 0x0, {0x3, 0x1}}, {0x4000, 0x6, {0x1, 0x6}}, {0x4, 0x0, {0x3, 0x9}}, {0x401, 0x0, {0x2}}, {0x1f, 0x5, {0x3, 0x4}}, {0x7, 0x80, {0x1, 0x2}}, {0x1, 0x0, {0x2, 0x2}}, {0xff, 0x8, {0x2, 0x5}}, {0x7, 0x9, {0x0, 0x100}}, {0xffff, 0x7, {0x0, 0x8}}, {0xff, 0x1, {0x3, 0x1}}, {0x1, 0x34e, {0x1, 0xe110}}, {0x8, 0x1, {0x1, 0x6a}}, {0x0, 0x8000, {0x0, 0x1}}]}}}]}, 0x12b4}, 0x1, 0x0, 0x0, 0x5}, 0x4080)

[  179.130397][ T8765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.138349][ T8765] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  179.146308][ T8765]  </TASK>
[  179.169209][ T8775] loop4: detected capacity change from 0 to 16
07:40:59 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, r3, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xffff}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r6)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r7, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, &(0x7f00000002c0)={&(0x7f0000000100), 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x14, 0x0, 0x800, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x5}, 0x20000000)

07:40:59 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xffffffef, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  179.208405][ T8775] FAULT_INJECTION: forcing a failure.
[  179.208405][ T8775] name failslab, interval 1, probability 0, space 0, times 0
[  179.221137][ T8775] CPU: 0 PID: 8775 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  179.231324][ T8775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  179.241393][ T8775] Call Trace:
[  179.244671][ T8775]  <TASK>
[  179.247605][ T8775]  dump_stack_lvl+0xd6/0x122
[  179.252196][ T8775]  dump_stack+0x11/0x1b
[  179.256351][ T8775]  should_fail+0x23c/0x250
[  179.260767][ T8775]  ? mempool_alloc_slab+0x16/0x20
[  179.265828][ T8775]  __should_failslab+0x81/0x90
[  179.269435][ T8786] FAULT_INJECTION: forcing a failure.
[  179.269435][ T8786] name failslab, interval 1, probability 0, space 0, times 0
[  179.270596][ T8775]  should_failslab+0x5/0x20
[  179.287719][ T8775]  kmem_cache_alloc+0x4f/0x320
[  179.292560][ T8775]  mempool_alloc_slab+0x16/0x20
[  179.297416][ T8775]  ? mempool_free+0x130/0x130
[  179.302111][ T8775]  mempool_alloc+0x9d/0x310
[  179.306676][ T8775]  bio_alloc_bioset+0xcc/0x560
[  179.311440][ T8775]  submit_bh_wbc+0x133/0x320
[  179.316014][ T8775]  ? mark_buffer_dirty+0x190/0x260
[  179.321124][ T8775]  write_dirty_buffer+0xde/0xf0
[  179.325992][ T8775]  fat_sync_bhs+0x52/0x160
[  179.330395][ T8775]  fat_ent_write+0x85/0xd0
[  179.334845][ T8775]  fat_chain_add+0x15b/0x410
[  179.339422][ T8775]  fat_get_block+0x48d/0x610
[  179.344060][ T8775]  __block_write_begin_int+0x4c5/0x1010
[  179.349595][ T8775]  ? fat_block_truncate_page+0x30/0x30
[  179.355039][ T8775]  cont_write_begin+0x4cf/0x7b0
[  179.359874][ T8775]  ? __get_user_nocheck_1+0x6/0x10
[  179.365019][ T8775]  fat_write_begin+0x61/0xf0
[  179.369684][ T8775]  ? fat_block_truncate_page+0x30/0x30
[  179.375125][ T8775]  generic_perform_write+0x1c8/0x400
[  179.380470][ T8775]  ? fat_write_begin+0xf0/0xf0
[  179.385220][ T8775]  __generic_file_write_iter+0xf7/0x2b0
[  179.390845][ T8775]  ? generic_write_checks+0x250/0x290
[  179.396274][ T8775]  generic_file_write_iter+0x75/0x130
[  179.401679][ T8775]  do_iter_readv_writev+0x2de/0x380
[  179.406883][ T8775]  do_iter_write+0x192/0x5c0
[  179.411530][ T8775]  ? import_iovec+0xb8/0xd0
[  179.416017][ T8775]  do_pwritev+0x235/0x440
[  179.420384][ T8775]  ? debug_smp_processor_id+0x18/0x20
[  179.425807][ T8775]  ? fpregs_assert_state_consistent+0x7e/0x90
[  179.431870][ T8775]  __x64_sys_pwritev2+0x7e/0xa0
[  179.436703][ T8775]  do_syscall_64+0x44/0xd0
[  179.441150][ T8775]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  179.447031][ T8775] RIP: 0033:0x7fbba9ab7ae9
[  179.451433][ T8775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  179.471116][ T8775] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  179.479525][ T8775] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  179.487479][ T8775] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  179.495627][ T8775] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  179.503642][ T8775] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  179.511663][ T8775] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  179.519619][ T8775]  </TASK>
[  179.522622][ T8786] CPU: 1 PID: 8786 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  179.533041][ T8786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  179.543091][ T8786] Call Trace:
[  179.546364][ T8786]  <TASK>
[  179.549298][ T8786]  dump_stack_lvl+0xd6/0x122
[  179.553983][ T8786]  dump_stack+0x11/0x1b
[  179.558130][ T8786]  should_fail+0x23c/0x250
[  179.562550][ T8786]  __should_failslab+0x81/0x90
[  179.567332][ T8786]  should_failslab+0x5/0x20
[  179.571849][ T8786]  kmem_cache_alloc_node_trace+0x61/0x310
[  179.577567][ T8786]  ? __kmalloc_node_track_caller+0x30/0x40
[  179.583409][ T8786]  __kmalloc_node_track_caller+0x30/0x40
[  179.589089][ T8786]  ? sock_wmalloc+0x77/0xb0
[  179.593604][ T8786]  __alloc_skb+0x19d/0x450
[  179.598045][ T8786]  sock_wmalloc+0x77/0xb0
[  179.602376][ T8786]  ip_append_page+0x685/0xa30
[  179.607117][ T8786]  udp_sendpage+0x11a/0x330
[  179.611618][ T8786]  ? udplite_getfrag+0x90/0x90
[  179.616376][ T8786]  inet_sendpage+0x7f/0xc0
[  179.620797][ T8786]  ? inet_sendmsg+0x80/0x80
[  179.625299][ T8786]  kernel_sendpage+0x187/0x200
[  179.630063][ T8786]  ? inet_sendmsg+0x80/0x80
[  179.634564][ T8786]  sock_sendpage+0x5a/0x70
[  179.638960][ T8786]  pipe_to_sendpage+0x128/0x160
[  179.643836][ T8786]  ? sock_fasync+0xc0/0xc0
[  179.648231][ T8786]  __splice_from_pipe+0x207/0x500
[  179.653347][ T8786]  ? generic_splice_sendpage+0xd0/0xd0
[  179.658829][ T8786]  generic_splice_sendpage+0x94/0xd0
[  179.664096][ T8786]  ? iter_file_splice_write+0x790/0x790
[  179.669630][ T8786]  do_splice+0xa0e/0xde0
[  179.673878][ T8786]  ? proc_fail_nth_write+0x127/0x150
[  179.679230][ T8786]  ? __rcu_read_unlock+0x5c/0x290
[  179.684264][ T8786]  ? __fget_light+0x219/0x260
[  179.688921][ T8786]  __se_sys_splice+0x2bd/0x3a0
[  179.693682][ T8786]  __x64_sys_splice+0x74/0x80
[  179.698349][ T8786]  do_syscall_64+0x44/0xd0
[  179.702749][ T8786]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  179.708674][ T8786] RIP: 0033:0x7fb7f78d8ae9
[  179.713080][ T8786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  179.732745][ T8786] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  179.741315][ T8786] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  179.749279][ T8786] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
07:41:00 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 5)

07:41:00 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 60)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:00 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0xfffffff0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  179.757293][ T8786] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  179.765246][ T8786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.773205][ T8786] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  179.781539][ T8786]  </TASK>
07:41:00 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:00 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x2}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  179.838739][ T8805] loop4: detected capacity change from 0 to 16
[  179.869167][ T8814] FAULT_INJECTION: forcing a failure.
[  179.869167][ T8814] name failslab, interval 1, probability 0, space 0, times 0
07:41:00 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x400000, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x10000000}, 0x0)

07:41:00 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x3}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  179.882013][ T8814] CPU: 0 PID: 8814 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  179.892140][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  179.902200][ T8814] Call Trace:
[  179.905472][ T8814]  <TASK>
[  179.908397][ T8814]  dump_stack_lvl+0xd6/0x122
[  179.912991][ T8814]  dump_stack+0x11/0x1b
[  179.917148][ T8814]  should_fail+0x23c/0x250
[  179.921568][ T8814]  __should_failslab+0x81/0x90
[  179.926406][ T8814]  should_failslab+0x5/0x20
[  179.930909][ T8814]  kmem_cache_alloc_node_trace+0x61/0x310
[  179.936895][ T8814]  ? __kmalloc_node_track_caller+0x30/0x40
[  179.942703][ T8814]  __kmalloc_node_track_caller+0x30/0x40
[  179.948337][ T8814]  ? sock_wmalloc+0x77/0xb0
[  179.952938][ T8814]  __alloc_skb+0x19d/0x450
[  179.957353][ T8814]  sock_wmalloc+0x77/0xb0
[  179.961684][ T8814]  ip_append_page+0x685/0xa30
[  179.966369][ T8814]  udp_sendpage+0x11a/0x330
[  179.970986][ T8814]  ? udplite_getfrag+0x90/0x90
[  179.975745][ T8814]  inet_sendpage+0x7f/0xc0
[  179.980210][ T8814]  ? inet_sendmsg+0x80/0x80
[  179.984713][ T8814]  kernel_sendpage+0x187/0x200
[  179.989500][ T8814]  ? inet_sendmsg+0x80/0x80
[  179.994020][ T8814]  sock_sendpage+0x5a/0x70
[  179.998462][ T8814]  pipe_to_sendpage+0x128/0x160
[  180.003314][ T8814]  ? sock_fasync+0xc0/0xc0
[  180.007746][ T8814]  __splice_from_pipe+0x207/0x500
[  180.011881][ T8805] FAULT_INJECTION: forcing a failure.
[  180.011881][ T8805] name failslab, interval 1, probability 0, space 0, times 0
[  180.012867][ T8814]  ? generic_splice_sendpage+0xd0/0xd0
[  180.030895][ T8814]  generic_splice_sendpage+0x94/0xd0
[  180.036253][ T8814]  ? iter_file_splice_write+0x790/0x790
[  180.041844][ T8814]  do_splice+0xa0e/0xde0
[  180.046080][ T8814]  ? proc_fail_nth_write+0x127/0x150
[  180.051352][ T8814]  ? __rcu_read_unlock+0x5c/0x290
[  180.056369][ T8814]  ? __fget_light+0x219/0x260
[  180.061040][ T8814]  __se_sys_splice+0x2bd/0x3a0
[  180.065816][ T8814]  __x64_sys_splice+0x74/0x80
[  180.070485][ T8814]  do_syscall_64+0x44/0xd0
[  180.074901][ T8814]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  180.080841][ T8814] RIP: 0033:0x7f7710020ae9
[  180.085249][ T8814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  180.104841][ T8814] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  180.113502][ T8814] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  180.121456][ T8814] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  180.129410][ T8814] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  180.137395][ T8814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.145352][ T8814] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  180.153351][ T8814]  </TASK>
[  180.156387][ T8805] CPU: 1 PID: 8805 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  180.166527][ T8805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  180.176591][ T8805] Call Trace:
[  180.179877][ T8805]  <TASK>
[  180.182800][ T8805]  dump_stack_lvl+0xd6/0x122
[  180.187379][ T8805]  dump_stack+0x11/0x1b
[  180.191572][ T8805]  should_fail+0x23c/0x250
[  180.195980][ T8805]  ? mempool_alloc_slab+0x16/0x20
[  180.201014][ T8805]  __should_failslab+0x81/0x90
[  180.205764][ T8805]  should_failslab+0x5/0x20
[  180.210323][ T8805]  kmem_cache_alloc+0x4f/0x320
[  180.215078][ T8805]  mempool_alloc_slab+0x16/0x20
[  180.219952][ T8805]  ? mempool_free+0x130/0x130
[  180.224729][ T8805]  mempool_alloc+0x9d/0x310
[  180.229218][ T8805]  bio_alloc_bioset+0xcc/0x560
[  180.233961][ T8805]  submit_bh_wbc+0x133/0x320
[  180.238607][ T8805]  ? mark_buffer_dirty+0x190/0x260
[  180.243717][ T8805]  __sync_dirty_buffer+0x136/0x1e0
[  180.248881][ T8805]  sync_dirty_buffer+0x16/0x20
[  180.253648][ T8805]  fat_mirror_bhs+0x24b/0x330
[  180.258317][ T8805]  fat_ent_write+0xc2/0xd0
[  180.262710][ T8805]  fat_chain_add+0x15b/0x410
[  180.267409][ T8805]  fat_get_block+0x48d/0x610
[  180.272057][ T8805]  __block_write_begin_int+0x4c5/0x1010
[  180.277647][ T8805]  ? fat_block_truncate_page+0x30/0x30
[  180.283100][ T8805]  cont_write_begin+0x4cf/0x7b0
[  180.287931][ T8805]  ? __get_user_nocheck_1+0x6/0x10
[  180.293023][ T8805]  fat_write_begin+0x61/0xf0
[  180.297592][ T8805]  ? fat_block_truncate_page+0x30/0x30
[  180.303046][ T8805]  generic_perform_write+0x1c8/0x400
[  180.308327][ T8805]  ? fat_write_begin+0xf0/0xf0
[  180.313089][ T8805]  __generic_file_write_iter+0xf7/0x2b0
[  180.318614][ T8805]  ? generic_write_checks+0x250/0x290
[  180.323966][ T8805]  generic_file_write_iter+0x75/0x130
[  180.329387][ T8805]  do_iter_readv_writev+0x2de/0x380
[  180.334588][ T8805]  do_iter_write+0x192/0x5c0
[  180.339238][ T8805]  ? import_iovec+0xb8/0xd0
[  180.343734][ T8805]  do_pwritev+0x235/0x440
[  180.348054][ T8805]  ? debug_smp_processor_id+0x18/0x20
[  180.353452][ T8805]  ? fpregs_assert_state_consistent+0x7e/0x90
[  180.359496][ T8805]  __x64_sys_pwritev2+0x7e/0xa0
[  180.364400][ T8805]  do_syscall_64+0x44/0xd0
[  180.368848][ T8805]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  180.374719][ T8805] RIP: 0033:0x7fbba9ab7ae9
[  180.379121][ T8805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  180.398703][ T8805] RSP: 002b:00007fbba782e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  180.407093][ T8805] RAX: ffffffffffffffda RBX: 00007fbba9bcaf60 RCX: 00007fbba9ab7ae9
[  180.415064][ T8805] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[  180.423031][ T8805] RBP: 00007fbba782e1d0 R08: 0000000000000000 R09: 0000000000000000
[  180.431038][ T8805] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
07:41:00 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 6)

07:41:00 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009003f007068000c0015000000000000000000"], 0x34}}, 0x0)

07:41:00 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x4}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:00 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  180.439071][ T8805] R13: 00007fff1efbb32f R14: 00007fbba782e300 R15: 0000000000022000
[  180.447035][ T8805]  </TASK>
07:41:00 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
dup2(r4, r3)
getsockopt$SO_BINDTODEVICE(r3, 0x6, 0x6, &(0x7f0000000000), 0x20a154cc)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_KEY(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, r5, 0x4, 0x70bd26, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "6141cdd525"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_SEQ={0x9, 0xa, "09099b27d1"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "71bef16447"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "832f8d4f7f"}, @NL80211_ATTR_KEY_TYPE={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x8010}, 0x20)

[  180.543131][ T8844] FAULT_INJECTION: forcing a failure.
[  180.543131][ T8844] name failslab, interval 1, probability 0, space 0, times 0
[  180.555812][ T8844] CPU: 1 PID: 8844 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  180.565952][ T8844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  180.576005][ T8844] Call Trace:
[  180.579310][ T8844]  <TASK>
[  180.582240][ T8844]  dump_stack_lvl+0xd6/0x122
[  180.586890][ T8844]  dump_stack+0x11/0x1b
[  180.591063][ T8844]  should_fail+0x23c/0x250
[  180.595591][ T8844]  __should_failslab+0x81/0x90
[  180.600444][ T8844]  should_failslab+0x5/0x20
[  180.604988][ T8844]  kmem_cache_alloc_node+0x61/0x2d0
[  180.610250][ T8844]  ? __alloc_skb+0xf0/0x450
[  180.614765][ T8844]  __alloc_skb+0xf0/0x450
[  180.619103][ T8844]  sock_wmalloc+0x77/0xb0
[  180.623435][ T8844]  ip_append_page+0x685/0xa30
[  180.628115][ T8844]  udp_sendpage+0x11a/0x330
[  180.632713][ T8844]  ? udplite_getfrag+0x90/0x90
[  180.637560][ T8844]  inet_sendpage+0x7f/0xc0
[  180.642097][ T8844]  ? inet_sendmsg+0x80/0x80
[  180.646669][ T8844]  kernel_sendpage+0x187/0x200
[  180.651427][ T8844]  ? inet_sendmsg+0x80/0x80
[  180.655932][ T8844]  sock_sendpage+0x5a/0x70
[  180.660342][ T8844]  pipe_to_sendpage+0x128/0x160
[  180.665189][ T8844]  ? sock_fasync+0xc0/0xc0
[  180.669583][ T8844]  __splice_from_pipe+0x207/0x500
[  180.674620][ T8844]  ? generic_splice_sendpage+0xd0/0xd0
[  180.680067][ T8844]  generic_splice_sendpage+0x94/0xd0
[  180.685382][ T8844]  ? iter_file_splice_write+0x790/0x790
[  180.690931][ T8844]  do_splice+0xa0e/0xde0
[  180.695198][ T8844]  ? proc_fail_nth_write+0x127/0x150
[  180.700645][ T8844]  ? __rcu_read_unlock+0x5c/0x290
[  180.705737][ T8844]  ? __fget_light+0x219/0x260
[  180.710453][ T8844]  __se_sys_splice+0x2bd/0x3a0
[  180.715232][ T8844]  __x64_sys_splice+0x74/0x80
[  180.719887][ T8844]  do_syscall_64+0x44/0xd0
[  180.724299][ T8844]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  180.730198][ T8844] RIP: 0033:0x7fb7f78d8ae9
[  180.734590][ T8844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  180.754189][ T8844] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  180.762748][ T8844] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  180.770700][ T8844] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  180.778647][ T8844] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
07:41:01 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 6)

07:41:01 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x5}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:01 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0) (fail_nth: 61)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:01 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$net_dm(&(0x7f00000004c0), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NET_DM_CMD_START(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x14, r6, 0x1}, 0x14}}, 0x0)
sendmsg$NET_DM_CMD_STOP(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r6, 0x1}, 0x14}}, 0x0)
sendmsg$NET_DM_CMD_START(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r6, 0x100, 0x70bd2a, 0x25dfdbff, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x400c011}, 0x20000001)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r8)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r9, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:01 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x6}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  180.786593][ T8844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.794566][ T8844] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  180.802516][ T8844]  </TASK>
07:41:01 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x7}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:01 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r4=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r2, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000040)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x4c, 0x0, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r6)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r7, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  180.874150][ T8862] loop4: detected capacity change from 0 to 16
[  180.887667][ T8864] FAULT_INJECTION: forcing a failure.
[  180.887667][ T8864] name failslab, interval 1, probability 0, space 0, times 0
[  180.900311][ T8864] CPU: 1 PID: 8864 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  180.910388][ T8864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  180.920474][ T8864] Call Trace:
[  180.923835][ T8864]  <TASK>
[  180.926762][ T8864]  dump_stack_lvl+0xd6/0x122
[  180.931466][ T8864]  dump_stack+0x11/0x1b
[  180.935630][ T8864]  should_fail+0x23c/0x250
[  180.940048][ T8864]  __should_failslab+0x81/0x90
[  180.944869][ T8864]  should_failslab+0x5/0x20
[  180.949357][ T8864]  kmem_cache_alloc_node+0x61/0x2d0
[  180.954537][ T8864]  ? __alloc_skb+0xf0/0x450
[  180.959036][ T8864]  __alloc_skb+0xf0/0x450
[  180.963372][ T8864]  sock_wmalloc+0x77/0xb0
[  180.967687][ T8864]  ip_append_page+0x685/0xa30
[  180.972428][ T8864]  udp_sendpage+0x11a/0x330
[  180.976914][ T8864]  ? udplite_getfrag+0x90/0x90
[  180.981729][ T8864]  inet_sendpage+0x7f/0xc0
[  180.986153][ T8864]  ? inet_sendmsg+0x80/0x80
[  180.990707][ T8864]  kernel_sendpage+0x187/0x200
[  180.995463][ T8864]  ? inet_sendmsg+0x80/0x80
[  180.999952][ T8864]  sock_sendpage+0x5a/0x70
[  181.004401][ T8864]  pipe_to_sendpage+0x128/0x160
[  181.009238][ T8864]  ? sock_fasync+0xc0/0xc0
[  181.013717][ T8864]  __splice_from_pipe+0x207/0x500
[  181.018765][ T8864]  ? generic_splice_sendpage+0xd0/0xd0
[  181.024210][ T8864]  generic_splice_sendpage+0x94/0xd0
[  181.029480][ T8864]  ? iter_file_splice_write+0x790/0x790
[  181.035009][ T8864]  do_splice+0xa0e/0xde0
[  181.039293][ T8864]  ? proc_fail_nth_write+0x127/0x150
[  181.044692][ T8864]  ? __rcu_read_unlock+0x5c/0x290
[  181.049762][ T8864]  ? __fget_light+0x219/0x260
[  181.054440][ T8864]  __se_sys_splice+0x2bd/0x3a0
[  181.059190][ T8864]  __x64_sys_splice+0x74/0x80
[  181.063852][ T8864]  do_syscall_64+0x44/0xd0
[  181.068258][ T8864]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  181.074154][ T8864] RIP: 0033:0x7f7710020ae9
[  181.078550][ T8864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  181.098203][ T8864] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  181.106698][ T8864] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  181.114692][ T8864] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  181.122658][ T8864] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  181.130610][ T8864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.138566][ T8864] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  181.146524][ T8864]  </TASK>
[  181.158696][ T8872] FAULT_INJECTION: forcing a failure.
[  181.158696][ T8872] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.171875][ T8872] CPU: 1 PID: 8872 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  181.181970][ T8872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  181.192013][ T8872] Call Trace:
[  181.195276][ T8872]  <TASK>
[  181.198184][ T8872]  dump_stack_lvl+0xd6/0x122
[  181.202816][ T8872]  dump_stack+0x11/0x1b
[  181.207040][ T8872]  should_fail+0x23c/0x250
[  181.211448][ T8872]  should_fail_usercopy+0x16/0x20
[  181.216497][ T8872]  copy_page_from_iter_atomic+0x2f1/0xc60
[  181.222202][ T8872]  generic_perform_write+0x211/0x400
[  181.227502][ T8872]  ? ext4_da_write_begin+0x590/0x590
[  181.232778][ T8872]  ext4_buffered_write_iter+0x25b/0x380
[  181.238299][ T8872]  ext4_file_write_iter+0x2e7/0x1200
[  181.243611][ T8872]  ? debug_smp_processor_id+0x18/0x20
[  181.249006][ T8872]  ? delay_tsc+0x96/0xe0
[  181.253232][ T8872]  ? should_fail+0xd6/0x250
[  181.257728][ T8872]  ? _copy_from_user+0x94/0xd0
[  181.262582][ T8872]  do_iter_readv_writev+0x2de/0x380
[  181.267774][ T8872]  do_iter_write+0x192/0x5c0
[  181.272362][ T8872]  ? import_iovec+0xb8/0xd0
[  181.276855][ T8872]  do_pwritev+0x235/0x440
[  181.281168][ T8872]  ? debug_smp_processor_id+0x18/0x20
[  181.286585][ T8872]  ? fpregs_assert_state_consistent+0x7e/0x90
[  181.292651][ T8872]  __x64_sys_pwritev2+0x7e/0xa0
[  181.297496][ T8872]  do_syscall_64+0x44/0xd0
[  181.301891][ T8872]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  181.307795][ T8872] RIP: 0033:0x7fbba9ab7ae9
[  181.312210][ T8872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  181.331799][ T8872] RSP: 002b:00007fbba780d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  181.340226][ T8872] RAX: ffffffffffffffda RBX: 00007fbba9bcb020 RCX: 00007fbba9ab7ae9
[  181.348226][ T8872] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000005
[  181.356173][ T8872] RBP: 00007fbba780d1d0 R08: 0000000000000000 R09: 0000000000000000
[  181.364397][ T8872] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
07:41:01 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 7)

07:41:01 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x8}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  181.372362][ T8872] R13: 00007fff1efbb32f R14: 00007fbba780d300 R15: 0000000000022000
[  181.380445][ T8872]  </TASK>
07:41:01 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x9}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  181.437170][ T8877] validate_nla: 40 callbacks suppressed
[  181.437183][ T8877] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  181.450936][ T8877] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  181.500721][ T8885] FAULT_INJECTION: forcing a failure.
[  181.500721][ T8885] name failslab, interval 1, probability 0, space 0, times 0
[  181.513366][ T8885] CPU: 0 PID: 8885 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  181.516699][ T8886] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  181.523449][ T8885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  181.523531][ T8885] Call Trace:
[  181.523537][ T8885]  <TASK>
[  181.523543][ T8885]  dump_stack_lvl+0xd6/0x122
[  181.531630][ T8886] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  181.541642][ T8885]  dump_stack+0x11/0x1b
[  181.541665][ T8885]  should_fail+0x23c/0x250
[  181.541681][ T8885]  __should_failslab+0x81/0x90
[  181.573792][ T8885]  should_failslab+0x5/0x20
[  181.578300][ T8885]  kmem_cache_alloc_node_trace+0x61/0x310
[  181.584016][ T8885]  ? __kmalloc_node_track_caller+0x30/0x40
[  181.589871][ T8885]  __kmalloc_node_track_caller+0x30/0x40
[  181.595548][ T8885]  ? sock_wmalloc+0x77/0xb0
[  181.600057][ T8885]  __alloc_skb+0x19d/0x450
[  181.604535][ T8885]  sock_wmalloc+0x77/0xb0
[  181.608898][ T8885]  ip_append_page+0x685/0xa30
[  181.613573][ T8885]  udp_sendpage+0x11a/0x330
[  181.618080][ T8885]  ? udplite_getfrag+0x90/0x90
[  181.622843][ T8885]  inet_sendpage+0x7f/0xc0
[  181.627268][ T8885]  ? inet_sendmsg+0x80/0x80
[  181.631771][ T8885]  kernel_sendpage+0x187/0x200
[  181.636533][ T8885]  ? inet_sendmsg+0x80/0x80
[  181.641068][ T8885]  sock_sendpage+0x5a/0x70
[  181.645479][ T8885]  pipe_to_sendpage+0x128/0x160
[  181.650402][ T8885]  ? sock_fasync+0xc0/0xc0
[  181.654812][ T8885]  __splice_from_pipe+0x207/0x500
[  181.660009][ T8885]  ? generic_splice_sendpage+0xd0/0xd0
[  181.665461][ T8885]  generic_splice_sendpage+0x94/0xd0
[  181.670794][ T8885]  ? iter_file_splice_write+0x790/0x790
[  181.676355][ T8885]  do_splice+0xa0e/0xde0
[  181.680605][ T8885]  ? proc_fail_nth_write+0x127/0x150
[  181.685892][ T8885]  ? __rcu_read_unlock+0x5c/0x290
[  181.691044][ T8885]  ? __fget_light+0x219/0x260
[  181.695840][ T8885]  __se_sys_splice+0x2bd/0x3a0
07:41:01 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), r1)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00a325bd7000fcdb01261e0000000c0006000300000003000000"], 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000200), r3)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), r0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, @out_args}, './file0\x00'})
sendmsg$NL80211_CMD_START_NAN(r4, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000840}, 0x40040)

07:41:02 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0xa}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  181.700725][ T8885]  __x64_sys_splice+0x74/0x80
[  181.705403][ T8885]  do_syscall_64+0x44/0xd0
[  181.709831][ T8885]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  181.715726][ T8885] RIP: 0033:0x7fb7f78d8ae9
[  181.720220][ T8885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  181.739960][ T8885] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
07:41:02 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 7)

07:41:02 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  181.748376][ T8885] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  181.756347][ T8885] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  181.764312][ T8885] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  181.772278][ T8885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.780258][ T8885] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  181.788228][ T8885]  </TASK>
07:41:02 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0xb}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  181.819313][ T8892] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  181.827603][ T8892] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  181.866101][ T8900] FAULT_INJECTION: forcing a failure.
[  181.866101][ T8900] name failslab, interval 1, probability 0, space 0, times 0
[  181.875142][ T8901] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  181.878762][ T8900] CPU: 1 PID: 8900 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  181.886855][ T8901] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  181.896832][ T8900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  181.896844][ T8900] Call Trace:
[  181.896850][ T8900]  <TASK>
[  181.896856][ T8900]  dump_stack_lvl+0xd6/0x122
[  181.925787][ T8900]  dump_stack+0x11/0x1b
[  181.930023][ T8900]  should_fail+0x23c/0x250
[  181.934435][ T8900]  __should_failslab+0x81/0x90
[  181.939268][ T8900]  should_failslab+0x5/0x20
[  181.941948][ T8907] loop4: detected capacity change from 0 to 16
[  181.943895][ T8900]  kmem_cache_alloc_node_trace+0x61/0x310
[  181.955745][ T8900]  ? __kmalloc_node_track_caller+0x30/0x40
[  181.961554][ T8900]  __kmalloc_node_track_caller+0x30/0x40
[  181.967197][ T8900]  ? sock_wmalloc+0x77/0xb0
[  181.971685][ T8900]  __alloc_skb+0x19d/0x450
[  181.976088][ T8900]  sock_wmalloc+0x77/0xb0
[  181.980425][ T8900]  ip_append_page+0x685/0xa30
[  181.985098][ T8900]  udp_sendpage+0x11a/0x330
[  181.989586][ T8900]  ? udplite_getfrag+0x90/0x90
[  181.994331][ T8900]  inet_sendpage+0x7f/0xc0
[  181.998787][ T8900]  ? inet_sendmsg+0x80/0x80
[  182.003343][ T8900]  kernel_sendpage+0x187/0x200
[  182.008094][ T8900]  ? inet_sendmsg+0x80/0x80
[  182.012587][ T8900]  sock_sendpage+0x5a/0x70
[  182.016986][ T8900]  pipe_to_sendpage+0x128/0x160
[  182.021859][ T8900]  ? sock_fasync+0xc0/0xc0
[  182.026289][ T8900]  __splice_from_pipe+0x207/0x500
[  182.031300][ T8900]  ? generic_splice_sendpage+0xd0/0xd0
[  182.036785][ T8900]  generic_splice_sendpage+0x94/0xd0
[  182.042107][ T8900]  ? iter_file_splice_write+0x790/0x790
[  182.047645][ T8900]  do_splice+0xa0e/0xde0
[  182.051953][ T8900]  ? proc_fail_nth_write+0x127/0x150
[  182.057234][ T8900]  ? __rcu_read_unlock+0x5c/0x290
[  182.062243][ T8900]  ? __fget_light+0x219/0x260
[  182.066906][ T8900]  __se_sys_splice+0x2bd/0x3a0
[  182.071804][ T8900]  __x64_sys_splice+0x74/0x80
[  182.076509][ T8900]  do_syscall_64+0x44/0xd0
[  182.080910][ T8900]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  182.086909][ T8900] RIP: 0033:0x7f7710020ae9
[  182.091320][ T8900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
07:41:02 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0xc}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:02 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x1d8, r5, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x1bc, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x872c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3b8b6e65}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf66b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdb7b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3924}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e38e19b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x934d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x74c74ede}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x44b22031}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x537}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x624}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb106ba2}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa578}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5f22}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4ee0d6a7}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x63a8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb30c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdac3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc8b2}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdcc0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xdf2d7e7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe1ad}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x54c859d7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe9b7}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x22a68a9c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x91b5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x191e700f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6b638b1f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4fa}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x48523330}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc386}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6585}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7314a010}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x44c9a364}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2c7}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x93c7}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7672}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x107919a2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x90be}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b1d7b60}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6623c1f3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x165}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5158}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce57}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3779}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x24081449}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4feaa7f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5031c4ba}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x57bb25e6}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x8000}, 0x4000)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  182.111221][ T8900] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  182.119622][ T8900] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  182.127609][ T8900] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  182.135617][ T8900] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  182.143598][ T8900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.151574][ T8900] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  182.159609][ T8900]  </TASK>
07:41:02 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0xd}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  182.197433][ T8912] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  182.205629][ T8912] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:41:02 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0xe}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:02 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 8)

07:41:02 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x34, 0x0, 0x2, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0xd0}, 0x20000000)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r4 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r4, &(0x7f00000005c0)={0xfffffffffffffffc, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x70, r5, 0x800, 0x70bd2d, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x8}}]}, 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x4000080)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r6)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x44, 0x0, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x4}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x8000}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x7fffffff}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x81}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x60000}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x8}]}, 0x44}}, 0x80)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3400000058cef456520e2278ce2dca7fc88a7bff44463d42722d70f47a8bf363749b64ec016141d5dc00276bebb26972255a5c8c40e094bd4d0708769f4996ca338e89beb53f073b0788cbc49b9a9bccb0d918f81c81c8a28c5e1d5fce48b89b4c88b6f72b3c1e4c1b4ea7cf7479c95fe970550cc3511fb8c16e344b7440e56fb5d4748b114c42e87ccbff3ab3b7f43efad16af3ccdfa95865c575b313f6871e3f30339005bfc18fd4f6480b85d81cabc3fe2cb1093e50a353fc31d03260", @ANYRES16=r8, @ANYBLOB="010000000000000000001e00000008000300", @ANYRES32=r10, @ANYBLOB="180024800c000200000000000000000008000100ffff0000"], 0x34}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r6, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x54, r8, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVKEY={0x40, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x1}, @NL802154_DEVKEY_ATTR_ID={0x34, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x28, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}]}, @NL802154_KEY_ID_ATTR_MODE={0x8}]}]}]}, 0xfffffffffffffe96}, 0x1, 0x0, 0x0, 0x808}, 0x44854)

07:41:02 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0xf}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:02 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r5)

[  182.395525][ T8933] FAULT_INJECTION: forcing a failure.
[  182.395525][ T8933] name failslab, interval 1, probability 0, space 0, times 0
[  182.408265][ T8933] CPU: 1 PID: 8933 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  182.418341][ T8933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  182.428390][ T8933] Call Trace:
[  182.431662][ T8933]  <TASK>
[  182.434670][ T8933]  dump_stack_lvl+0xd6/0x122
[  182.439338][ T8933]  dump_stack+0x11/0x1b
[  182.443490][ T8933]  should_fail+0x23c/0x250
[  182.447899][ T8933]  ? __nf_conntrack_alloc+0xd0/0x280
[  182.453185][ T8933]  __should_failslab+0x81/0x90
[  182.457988][ T8933]  should_failslab+0x5/0x20
[  182.462534][ T8933]  kmem_cache_alloc+0x4f/0x320
[  182.467304][ T8933]  ? __rcu_read_unlock+0x45/0x290
[  182.472394][ T8933]  __nf_conntrack_alloc+0xd0/0x280
[  182.477516][ T8933]  init_conntrack+0x1da/0xb30
[  182.482219][ T8933]  resolve_normal_ct+0x502/0x610
[  182.487322][ T8933]  nf_conntrack_in+0x1c5/0x88f
07:41:02 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x10}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  182.492092][ T8933]  ipv4_conntrack_local+0xc2/0x120
[  182.497294][ T8933]  ? ipv4_conntrack_in+0x20/0x20
[  182.502316][ T8933]  nf_hook_slow+0x72/0x170
[  182.506855][ T8933]  __ip_local_out+0x27b/0x2a0
[  182.511535][ T8933]  ? __ip_local_out+0x2a0/0x2a0
[  182.516391][ T8933]  ip_send_skb+0x2c/0xe0
[  182.520632][ T8933]  udp_send_skb+0x62d/0x860
[  182.525143][ T8933]  udp_sendpage+0x22c/0x330
[  182.529646][ T8933]  ? udplite_getfrag+0x90/0x90
[  182.534438][ T8933]  inet_sendpage+0x7f/0xc0
[  182.538859][ T8933]  ? inet_sendmsg+0x80/0x80
[  182.543357][ T8933]  kernel_sendpage+0x187/0x200
[  182.548173][ T8933]  ? inet_sendmsg+0x80/0x80
[  182.552703][ T8933]  sock_sendpage+0x5a/0x70
[  182.557101][ T8933]  pipe_to_sendpage+0x128/0x160
[  182.562030][ T8933]  ? sock_fasync+0xc0/0xc0
[  182.566425][ T8933]  __splice_from_pipe+0x207/0x500
[  182.571440][ T8933]  ? generic_splice_sendpage+0xd0/0xd0
[  182.576880][ T8933]  generic_splice_sendpage+0x94/0xd0
[  182.582211][ T8933]  ? iter_file_splice_write+0x790/0x790
[  182.587752][ T8933]  do_splice+0xa0e/0xde0
[  182.591982][ T8933]  ? proc_fail_nth_write+0x127/0x150
[  182.597258][ T8933]  ? __rcu_read_unlock+0x5c/0x290
[  182.602259][ T8933]  ? __fget_light+0x219/0x260
[  182.606979][ T8933]  __se_sys_splice+0x2bd/0x3a0
[  182.611722][ T8933]  __x64_sys_splice+0x74/0x80
[  182.616392][ T8933]  do_syscall_64+0x44/0xd0
[  182.620785][ T8933]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  182.626817][ T8933] RIP: 0033:0x7fb7f78d8ae9
[  182.631216][ T8933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  182.650890][ T8933] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  182.659302][ T8933] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  182.667267][ T8933] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  182.675285][ T8933] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  182.683233][ T8933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
07:41:03 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 8)

07:41:03 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x11}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x12}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  182.691187][ T8933] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  182.699208][ T8933]  </TASK>
[  182.754119][ T8957] loop4: detected capacity change from 0 to 16
[  182.772241][ T8962] FAULT_INJECTION: forcing a failure.
[  182.772241][ T8962] name failslab, interval 1, probability 0, space 0, times 0
[  182.784967][ T8962] CPU: 1 PID: 8962 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  182.795117][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  182.805161][ T8962] Call Trace:
[  182.808426][ T8962]  <TASK>
[  182.811339][ T8962]  dump_stack_lvl+0xd6/0x122
[  182.815918][ T8962]  dump_stack+0x11/0x1b
[  182.820102][ T8962]  should_fail+0x23c/0x250
[  182.824513][ T8962]  ? __nf_conntrack_alloc+0xd0/0x280
[  182.829806][ T8962]  __should_failslab+0x81/0x90
[  182.834608][ T8962]  should_failslab+0x5/0x20
[  182.839109][ T8962]  kmem_cache_alloc+0x4f/0x320
[  182.843928][ T8962]  ? __rcu_read_unlock+0x45/0x290
[  182.848981][ T8962]  __nf_conntrack_alloc+0xd0/0x280
[  182.854093][ T8962]  init_conntrack+0x1da/0xb30
[  182.858798][ T8962]  resolve_normal_ct+0x502/0x610
[  182.863800][ T8962]  nf_conntrack_in+0x1c5/0x88f
[  182.868615][ T8962]  ipv4_conntrack_local+0xc2/0x120
[  182.873711][ T8962]  ? ipv4_conntrack_in+0x20/0x20
[  182.878643][ T8962]  nf_hook_slow+0x72/0x170
[  182.883043][ T8962]  __ip_local_out+0x27b/0x2a0
[  182.887705][ T8962]  ? __ip_local_out+0x2a0/0x2a0
[  182.892603][ T8962]  ip_send_skb+0x2c/0xe0
[  182.896896][ T8962]  udp_send_skb+0x62d/0x860
[  182.901392][ T8962]  udp_sendpage+0x22c/0x330
[  182.905904][ T8962]  ? udplite_getfrag+0x90/0x90
[  182.910654][ T8962]  inet_sendpage+0x7f/0xc0
[  182.915055][ T8962]  ? inet_sendmsg+0x80/0x80
[  182.919598][ T8962]  kernel_sendpage+0x187/0x200
[  182.924412][ T8962]  ? inet_sendmsg+0x80/0x80
[  182.928903][ T8962]  sock_sendpage+0x5a/0x70
[  182.933369][ T8962]  pipe_to_sendpage+0x128/0x160
[  182.938206][ T8962]  ? sock_fasync+0xc0/0xc0
[  182.942603][ T8962]  __splice_from_pipe+0x207/0x500
[  182.947786][ T8962]  ? generic_splice_sendpage+0xd0/0xd0
[  182.953315][ T8962]  generic_splice_sendpage+0x94/0xd0
[  182.958584][ T8962]  ? iter_file_splice_write+0x790/0x790
[  182.964147][ T8962]  do_splice+0xa0e/0xde0
[  182.968435][ T8962]  ? proc_fail_nth_write+0x127/0x150
[  182.973796][ T8962]  ? __rcu_read_unlock+0x5c/0x290
[  182.978813][ T8962]  ? __fget_light+0x219/0x260
[  182.983474][ T8962]  __se_sys_splice+0x2bd/0x3a0
[  182.988308][ T8962]  __x64_sys_splice+0x74/0x80
[  182.992967][ T8962]  do_syscall_64+0x44/0xd0
[  182.997366][ T8962]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  183.003273][ T8962] RIP: 0033:0x7f7710020ae9
[  183.007667][ T8962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  183.027295][ T8962] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  183.035761][ T8962] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  183.043715][ T8962] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  183.051666][ T8962] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  183.059619][ T8962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.067582][ T8962] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  183.075537][ T8962]  </TASK>
07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x25}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:03 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_LIST_IFACE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r3, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x91)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x48}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:03 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 9)

07:41:03 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010000000000010000002100000009001f007068793100000008000000000000004fbfe4f1b7ca62713412000000c3bb2747b2b594d1914a454726170cc073e78790a5c0d65703b8946e1384771e4b5028d1f0b2e80a098604093d89ea17589569e46b107af4b078d3e8be1a3ed80ac09876101f9978571af90611a50aaf1946f9f206b5b27f5889be27439f16b174f0d874c0409a96d5bbaffa3b2994114e7276359c49d8734d6af1cf53135a2f966162905379675c9b6928adac6816f1afe86d2c63009e"], 0x34}, 0x1, 0x0, 0x0, 0x4008081}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000000), r1)

07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x4c}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x60}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:03 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="4400000039dfc0daeda009b11ceba8d3be68f067df7181903f05463f7613d8248c86659206ab7f54070cf485d321cbe0f99e52833fb00f0d95f146204c46715d8d85dfa8f4e67faf17993204ccf4828c89b5ec0eadcd3c68829182dd8838ba2f5bea8fd755af755167bca1bf0817a1317e5cf54ff032e27fa9c7841d8ec7f22b8f457c90e4ba08b36c4491aaa4a1cd02651972d00d31e119e75caf99344610a804222217", @ANYRES16=r2, @ANYBLOB="10002cbd7000fcdbdf25210000000c0005000203aaaaaaaaaaaa0a0001007770616e3300000009001f0070687930000000000c0005000202aaaaaaaaaaaa"], 0x44}}, 0x2000c000)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), r3)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r8, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r11=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)={0x4c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_SEC_DEVKEY={0x30, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x20, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}]}]}]}]}, 0x4c}}, 0x0)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r1, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x1c, 0x0, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0xd0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000300)={'wpan1\x00', <r12=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x140, r6, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_DEVKEY={0x2c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x1}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xffff}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}]}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_DEVKEY={0xc, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x8000}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_SEC_DEVKEY={0xa8, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x30, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}, @NL802154_DEVKEY_ATTR_ID={0x4c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x3c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0x100}}]}]}, @NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}]}, 0x140}, 0x1, 0x0, 0x0, 0x56876a0f5518457b}, 0x20000011)

[  183.266099][ T8993] FAULT_INJECTION: forcing a failure.
[  183.266099][ T8993] name failslab, interval 1, probability 0, space 0, times 0
[  183.278829][ T8993] CPU: 1 PID: 8993 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  183.288957][ T8993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  183.299063][ T8993] Call Trace:
[  183.302338][ T8993]  <TASK>
[  183.305264][ T8993]  dump_stack_lvl+0xd6/0x122
[  183.309935][ T8993]  dump_stack+0x11/0x1b
[  183.314101][ T8993]  should_fail+0x23c/0x250
[  183.318513][ T8993]  ? nf_ct_ext_add+0x145/0x1f0
[  183.323338][ T8993]  __should_failslab+0x81/0x90
[  183.328103][ T8993]  should_failslab+0x5/0x20
[  183.332683][ T8993]  __kmalloc_track_caller+0x6d/0x370
[  183.337996][ T8993]  krealloc+0x3f/0xa0
[  183.342028][ T8993]  nf_ct_ext_add+0x145/0x1f0
[  183.346722][ T8993]  init_conntrack+0x4d4/0xb30
[  183.351431][ T8993]  resolve_normal_ct+0x502/0x610
[  183.356378][ T8993]  nf_conntrack_in+0x1c5/0x88f
[  183.361200][ T8993]  ipv4_conntrack_local+0xc2/0x120
[  183.366312][ T8993]  ? ipv4_conntrack_in+0x20/0x20
[  183.371248][ T8993]  nf_hook_slow+0x72/0x170
[  183.375659][ T8993]  __ip_local_out+0x27b/0x2a0
[  183.380333][ T8993]  ? __ip_local_out+0x2a0/0x2a0
[  183.385179][ T8993]  ip_send_skb+0x2c/0xe0
[  183.389463][ T8993]  udp_send_skb+0x62d/0x860
[  183.393970][ T8993]  udp_sendpage+0x22c/0x330
[  183.398493][ T8993]  ? udplite_getfrag+0x90/0x90
[  183.403249][ T8993]  inet_sendpage+0x7f/0xc0
[  183.407663][ T8993]  ? inet_sendmsg+0x80/0x80
[  183.412256][ T8993]  kernel_sendpage+0x187/0x200
[  183.417114][ T8993]  ? inet_sendmsg+0x80/0x80
[  183.421614][ T8993]  sock_sendpage+0x5a/0x70
[  183.426073][ T8993]  pipe_to_sendpage+0x128/0x160
[  183.430970][ T8993]  ? sock_fasync+0xc0/0xc0
[  183.435390][ T8993]  __splice_from_pipe+0x207/0x500
[  183.440419][ T8993]  ? generic_splice_sendpage+0xd0/0xd0
[  183.445886][ T8993]  generic_splice_sendpage+0x94/0xd0
[  183.451272][ T8993]  ? iter_file_splice_write+0x790/0x790
[  183.456870][ T8993]  do_splice+0xa0e/0xde0
[  183.461188][ T8993]  ? proc_fail_nth_write+0x127/0x150
[  183.466480][ T8993]  ? __rcu_read_unlock+0x5c/0x290
[  183.471553][ T8993]  ? __fget_light+0x219/0x260
[  183.476231][ T8993]  __se_sys_splice+0x2bd/0x3a0
[  183.481069][ T8993]  __x64_sys_splice+0x74/0x80
[  183.485742][ T8993]  do_syscall_64+0x44/0xd0
[  183.490156][ T8993]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  183.496062][ T8993] RIP: 0033:0x7fb7f78d8ae9
[  183.500468][ T8993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  183.520073][ T8993] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  183.528545][ T8993] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  183.536636][ T8993] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  183.544608][ T8993] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  183.552626][ T8993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
07:41:03 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 9)

[  183.560632][ T8993] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  183.568660][ T8993]  </TASK>
07:41:03 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x68}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:03 executing program 1:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)=@getlink={0xec, 0x12, 0x1, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x4000, 0x46aac}, [@IFLA_ADDRESS={0xa, 0x1, @remote}, @IFLA_AF_SPEC={0x70, 0x1a, 0x0, 0x1, [@AF_MPLS={0x4}, @AF_BRIDGE={0x4}, @AF_MPLS={0x4}, @AF_INET6={0x3c, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x80}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x5}, @IFLA_INET6_TOKEN={0x14, 0x7, @private0}]}, @AF_BRIDGE={0x4}, @AF_INET={0x20, 0x2, 0x0, 0x1, {0x1c, 0x1, 0x0, 0x1, [{0x8, 0x1d, 0x0, 0x0, 0x7f}, {0x8, 0x1e, 0x0, 0x0, 0x5}, {0x8, 0xd, 0x0, 0x0, 0x5}]}}]}, @IFLA_WEIGHT={0x8, 0xf, 0x5582}, @IFLA_MAP={0x24, 0xe, {0xaefa, 0x10001, 0x4, 0x3, 0x67, 0xfe}}, @IFLA_GROUP={0x8, 0x1b, 0x1f}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0xff}, @IFLA_ALT_IFNAME={0x14, 0x35, 'ip6erspan0\x00'}]}, 0xec}, 0x1, 0x0, 0x0, 0x20000011}, 0x810)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:03 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x6c}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  183.666800][ T9017] FAULT_INJECTION: forcing a failure.
[  183.666800][ T9017] name failslab, interval 1, probability 0, space 0, times 0
[  183.679455][ T9017] CPU: 1 PID: 9017 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  183.683238][ T9019] loop4: detected capacity change from 0 to 16
[  183.689594][ T9017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  183.689609][ T9017] Call Trace:
[  183.689615][ T9017]  <TASK>
[  183.689623][ T9017]  dump_stack_lvl+0xd6/0x122
[  183.716567][ T9017]  dump_stack+0x11/0x1b
[  183.720728][ T9017]  should_fail+0x23c/0x250
[  183.725175][ T9017]  ? nf_ct_ext_add+0x145/0x1f0
[  183.729932][ T9017]  __should_failslab+0x81/0x90
[  183.734689][ T9017]  should_failslab+0x5/0x20
[  183.739187][ T9017]  __kmalloc_track_caller+0x6d/0x370
[  183.744544][ T9017]  krealloc+0x3f/0xa0
[  183.748514][ T9017]  nf_ct_ext_add+0x145/0x1f0
[  183.753116][ T9017]  init_conntrack+0x56f/0xb30
[  183.757808][ T9017]  resolve_normal_ct+0x502/0x610
[  183.762806][ T9017]  nf_conntrack_in+0x1c5/0x88f
[  183.767555][ T9017]  ipv4_conntrack_local+0xc2/0x120
[  183.772714][ T9017]  ? ipv4_conntrack_in+0x20/0x20
[  183.777654][ T9017]  nf_hook_slow+0x72/0x170
[  183.782120][ T9017]  __ip_local_out+0x27b/0x2a0
[  183.786782][ T9017]  ? __ip_local_out+0x2a0/0x2a0
[  183.791613][ T9017]  ip_send_skb+0x2c/0xe0
[  183.795882][ T9017]  udp_send_skb+0x62d/0x860
[  183.800376][ T9017]  udp_sendpage+0x22c/0x330
[  183.804866][ T9017]  ? udplite_getfrag+0x90/0x90
[  183.809613][ T9017]  inet_sendpage+0x7f/0xc0
[  183.814064][ T9017]  ? inet_sendmsg+0x80/0x80
[  183.818552][ T9017]  kernel_sendpage+0x187/0x200
[  183.823298][ T9017]  ? inet_sendmsg+0x80/0x80
[  183.827841][ T9017]  sock_sendpage+0x5a/0x70
[  183.832238][ T9017]  pipe_to_sendpage+0x128/0x160
[  183.837072][ T9017]  ? sock_fasync+0xc0/0xc0
[  183.841471][ T9017]  __splice_from_pipe+0x207/0x500
[  183.846549][ T9017]  ? generic_splice_sendpage+0xd0/0xd0
[  183.851993][ T9017]  generic_splice_sendpage+0x94/0xd0
[  183.857344][ T9017]  ? iter_file_splice_write+0x790/0x790
[  183.862884][ T9017]  do_splice+0xa0e/0xde0
[  183.867111][ T9017]  ? proc_fail_nth_write+0x127/0x150
[  183.872470][ T9017]  ? __rcu_read_unlock+0x5c/0x290
[  183.877476][ T9017]  ? __fget_light+0x219/0x260
[  183.882141][ T9017]  __se_sys_splice+0x2bd/0x3a0
[  183.886890][ T9017]  __x64_sys_splice+0x74/0x80
[  183.891627][ T9017]  do_syscall_64+0x44/0xd0
[  183.896028][ T9017]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  183.901946][ T9017] RIP: 0033:0x7f7710020ae9
[  183.906346][ T9017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  183.925969][ T9017] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  183.934385][ T9017] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  183.942394][ T9017] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  183.950347][ T9017] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  183.958311][ T9017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
07:41:04 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x74}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  183.966265][ T9017] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  183.974225][ T9017]  </TASK>
07:41:04 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x7a}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:04 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 10)

07:41:04 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f0070687931000000000500000000000c000500000000538f054e00000000000000"], 0x34}}, 0x0)

07:41:04 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r1)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}]}, 0x34}}, 0x0)

07:41:04 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="34010000", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), r3)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r7, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r5, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r2, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x6}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x48000)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000040)={'wpan3\x00'})
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000000)={'wpan3\x00'})

[  184.145171][ T9040] FAULT_INJECTION: forcing a failure.
[  184.145171][ T9040] name failslab, interval 1, probability 0, space 0, times 0
[  184.157824][ T9040] CPU: 1 PID: 9040 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  184.167910][ T9040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  184.177965][ T9040] Call Trace:
[  184.181244][ T9040]  <TASK>
[  184.184210][ T9040]  dump_stack_lvl+0xd6/0x122
[  184.188802][ T9040]  dump_stack+0x11/0x1b
07:41:04 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r0)
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1040}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r3, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x6}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x80}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="34000300", @ANYRES16=r4, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  184.193024][ T9040]  should_fail+0x23c/0x250
[  184.197442][ T9040]  ? skb_clone+0x12c/0x1f0
[  184.201865][ T9040]  __should_failslab+0x81/0x90
[  184.206683][ T9040]  should_failslab+0x5/0x20
[  184.211287][ T9040]  kmem_cache_alloc+0x4f/0x320
[  184.216047][ T9040]  skb_clone+0x12c/0x1f0
[  184.220350][ T9040]  ip_mc_output+0x13e/0x360
[  184.224860][ T9040]  ? __ip_local_out+0x2a0/0x2a0
[  184.229710][ T9040]  ip_send_skb+0x6e/0xe0
[  184.233977][ T9040]  udp_send_skb+0x62d/0x860
[  184.238574][ T9040]  udp_sendpage+0x22c/0x330
[  184.243111][ T9040]  ? udplite_getfrag+0x90/0x90
[  184.247921][ T9040]  inet_sendpage+0x7f/0xc0
[  184.252347][ T9040]  ? inet_sendmsg+0x80/0x80
[  184.256852][ T9040]  kernel_sendpage+0x187/0x200
[  184.261701][ T9040]  ? inet_sendmsg+0x80/0x80
[  184.266205][ T9040]  sock_sendpage+0x5a/0x70
[  184.270616][ T9040]  pipe_to_sendpage+0x128/0x160
[  184.275493][ T9040]  ? sock_fasync+0xc0/0xc0
[  184.279902][ T9040]  __splice_from_pipe+0x207/0x500
[  184.284931][ T9040]  ? generic_splice_sendpage+0xd0/0xd0
[  184.290396][ T9040]  generic_splice_sendpage+0x94/0xd0
[  184.295766][ T9040]  ? iter_file_splice_write+0x790/0x790
[  184.301305][ T9040]  do_splice+0xa0e/0xde0
[  184.305545][ T9040]  ? proc_fail_nth_write+0x127/0x150
[  184.310832][ T9040]  ? __rcu_read_unlock+0x5c/0x290
[  184.315861][ T9040]  ? __fget_light+0x219/0x260
[  184.320571][ T9040]  __se_sys_splice+0x2bd/0x3a0
[  184.325368][ T9040]  __x64_sys_splice+0x74/0x80
[  184.330160][ T9040]  do_syscall_64+0x44/0xd0
[  184.334584][ T9040]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  184.340580][ T9040] RIP: 0033:0x7fb7f78d8ae9
[  184.344988][ T9040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  184.364635][ T9040] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  184.373046][ T9040] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  184.381059][ T9040] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
07:41:04 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 10)

07:41:04 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x100, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc804}, 0x20044801)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}]}, 0x34}}, 0x0)

07:41:04 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:04 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

07:41:04 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  184.389139][ T9040] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  184.397104][ T9040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.405069][ T9040] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  184.413037][ T9040]  </TASK>
07:41:04 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[], 0x38}}, 0x4008090)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_DISASSOCIATE_REQ(r5, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r1, 0x1, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x4000000)

07:41:04 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f0070687931000000000500200000feffff0b00050000000000000000001573c6739994158e3045ada9800002e85d1b94e193e253da107f79451692c705969d368670853900000000"], 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r3)
sendmsg$IEEE802154_DISASSOCIATE_REQ(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r2, 0x300, 0x70bd29, 0x25dfdbfc, {}, [@IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0202}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000011}, 0x10)

[  184.494797][ T9062] loop4: detected capacity change from 0 to 16
[  184.591386][ T9075] FAULT_INJECTION: forcing a failure.
[  184.591386][ T9075] name failslab, interval 1, probability 0, space 0, times 0
[  184.604053][ T9075] CPU: 1 PID: 9075 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  184.614193][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  184.624271][ T9075] Call Trace:
[  184.627544][ T9075]  <TASK>
[  184.630463][ T9075]  dump_stack_lvl+0xd6/0x122
[  184.635058][ T9075]  dump_stack+0x11/0x1b
[  184.639263][ T9075]  should_fail+0x23c/0x250
[  184.643708][ T9075]  ? skb_clone+0x12c/0x1f0
[  184.648132][ T9075]  __should_failslab+0x81/0x90
[  184.652952][ T9075]  should_failslab+0x5/0x20
[  184.657470][ T9075]  kmem_cache_alloc+0x4f/0x320
[  184.662212][ T9075]  skb_clone+0x12c/0x1f0
[  184.666438][ T9075]  ip_mc_output+0x13e/0x360
[  184.670916][ T9075]  ? __ip_local_out+0x2a0/0x2a0
[  184.675802][ T9075]  ip_send_skb+0x6e/0xe0
[  184.680021][ T9075]  udp_send_skb+0x62d/0x860
[  184.684531][ T9075]  udp_sendpage+0x22c/0x330
[  184.689052][ T9075]  ? udplite_getfrag+0x90/0x90
[  184.693863][ T9075]  inet_sendpage+0x7f/0xc0
[  184.698261][ T9075]  ? inet_sendmsg+0x80/0x80
[  184.702806][ T9075]  kernel_sendpage+0x187/0x200
[  184.707549][ T9075]  ? inet_sendmsg+0x80/0x80
[  184.712047][ T9075]  sock_sendpage+0x5a/0x70
[  184.716488][ T9075]  pipe_to_sendpage+0x128/0x160
[  184.721345][ T9075]  ? sock_fasync+0xc0/0xc0
[  184.725745][ T9075]  __splice_from_pipe+0x207/0x500
[  184.730780][ T9075]  ? generic_splice_sendpage+0xd0/0xd0
[  184.736263][ T9075]  generic_splice_sendpage+0x94/0xd0
[  184.741557][ T9075]  ? iter_file_splice_write+0x790/0x790
[  184.747085][ T9075]  do_splice+0xa0e/0xde0
[  184.751312][ T9075]  ? proc_fail_nth_write+0x127/0x150
[  184.756589][ T9075]  ? __rcu_read_unlock+0x5c/0x290
[  184.761592][ T9075]  ? __fget_light+0x219/0x260
[  184.766247][ T9075]  __se_sys_splice+0x2bd/0x3a0
[  184.771019][ T9075]  __x64_sys_splice+0x74/0x80
[  184.775672][ T9075]  do_syscall_64+0x44/0xd0
[  184.780086][ T9075]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  184.785955][ T9075] RIP: 0033:0x7f7710020ae9
[  184.790348][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  184.809972][ T9075] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  184.818478][ T9075] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  184.826505][ T9075] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  184.834509][ T9075] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  184.842619][ T9075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.850567][ T9075] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  184.858576][ T9075]  </TASK>
07:41:05 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 11)

07:41:05 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x2}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:05 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3422ff0f377c468ec59896f99d0f90c6918e15532e50735ba75698800327e5aebf8ea841c5d3dfce36d0f941620036fd39112e6ab91221bc234ab8bf71ce7a53f8b156173c1f6888e87d85f20a01a97d7742e9b43547ca5bfed847c01ed2567d8b009a450dda957af0989bddf847082e86b6ec0b142ddbef4abfdf57859faaf66d215689e50753a400890e45dfd3bae360a08999289fc2d0ab26cebf41864cd08cbe43f869da3617281ea5a08f8f4d922942f74f", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

07:41:05 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_CCA_MODE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_CCA_OPT={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040}, 0x40000)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:05 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252fc4ba1f6fc3a377354b89e92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  184.957591][ T9084] loop4: detected capacity change from 0 to 16
[  185.000304][ T9090] FAULT_INJECTION: forcing a failure.
[  185.000304][ T9090] name failslab, interval 1, probability 0, space 0, times 0
[  185.012995][ T9090] CPU: 0 PID: 9090 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  185.023110][ T9090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  185.033158][ T9090] Call Trace:
[  185.036432][ T9090]  <TASK>
[  185.039434][ T9090]  dump_stack_lvl+0xd6/0x122
[  185.044090][ T9090]  dump_stack+0x11/0x1b
[  185.048274][ T9090]  should_fail+0x23c/0x250
[  185.052690][ T9090]  ? dst_alloc+0x101/0x160
[  185.057179][ T9090]  __should_failslab+0x81/0x90
[  185.061944][ T9090]  should_failslab+0x5/0x20
[  185.066449][ T9090]  kmem_cache_alloc+0x4f/0x320
[  185.071213][ T9090]  ? nf_confirm+0x22b/0x250
[  185.075715][ T9090]  dst_alloc+0x101/0x160
[  185.080096][ T9090]  rt_dst_clone+0x3c/0x2d0
[  185.084512][ T9090]  NF_HOOK+0x7d/0x200
[  185.088495][ T9090]  ? NF_HOOK+0x200/0x200
[  185.092738][ T9090]  ip_mc_output+0x16d/0x360
[  185.097242][ T9090]  ? __ip_local_out+0x2a0/0x2a0
[  185.102175][ T9090]  ip_send_skb+0x6e/0xe0
[  185.106480][ T9090]  udp_send_skb+0x62d/0x860
[  185.111013][ T9090]  udp_sendpage+0x22c/0x330
[  185.115540][ T9090]  ? udplite_getfrag+0x90/0x90
[  185.120357][ T9090]  inet_sendpage+0x7f/0xc0
[  185.124786][ T9090]  ? inet_sendmsg+0x80/0x80
[  185.129339][ T9090]  kernel_sendpage+0x187/0x200
[  185.134121][ T9090]  ? inet_sendmsg+0x80/0x80
[  185.138665][ T9090]  sock_sendpage+0x5a/0x70
[  185.143095][ T9090]  pipe_to_sendpage+0x128/0x160
[  185.147924][ T9090]  ? sock_fasync+0xc0/0xc0
[  185.152362][ T9090]  __splice_from_pipe+0x207/0x500
[  185.157447][ T9090]  ? generic_splice_sendpage+0xd0/0xd0
[  185.162978][ T9090]  generic_splice_sendpage+0x94/0xd0
[  185.168456][ T9090]  ? iter_file_splice_write+0x790/0x790
[  185.173980][ T9090]  do_splice+0xa0e/0xde0
[  185.178236][ T9090]  ? proc_fail_nth_write+0x127/0x150
[  185.183635][ T9090]  ? __rcu_read_unlock+0x5c/0x290
[  185.188732][ T9090]  ? __fget_light+0x219/0x260
[  185.193410][ T9090]  __se_sys_splice+0x2bd/0x3a0
[  185.198153][ T9090]  __x64_sys_splice+0x74/0x80
[  185.202813][ T9090]  do_syscall_64+0x44/0xd0
[  185.207289][ T9090]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  185.213251][ T9090] RIP: 0033:0x7fb7f78d8ae9
[  185.217652][ T9090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  185.237273][ T9090] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  185.245733][ T9090] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  185.253701][ T9090] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  185.261696][ T9090] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  185.269666][ T9090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  185.277716][ T9090] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  185.285670][ T9090]  </TASK>
07:41:05 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 11)

07:41:05 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x3}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:05 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:05 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="3d0d3a1940d7614bd81d32e685010000000000fedbdf252100000009001f00706879310055728ef721bdf1290000000c000500008c3aed19e902000000000000613da4c1e4e95f44d6291861094067c8dc74cdafd4a64e2bffff83000000003fa47721d33d50"], 0x34}}, 0x0)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r1)
sendmsg$IEEE802154_LIST_PHY(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x100, 0x70bd28, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2000c850}, 0x24058080)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_START_REQ(r0, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r5, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0xf6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24044020}, 0x40)

07:41:05 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010007000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)

07:41:05 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x4}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:05 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3400e700", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  185.392216][ T9099] loop4: detected capacity change from 0 to 16
[  185.497205][ T9118] FAULT_INJECTION: forcing a failure.
[  185.497205][ T9118] name failslab, interval 1, probability 0, space 0, times 0
[  185.509868][ T9118] CPU: 0 PID: 9118 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  185.519934][ T9118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  185.529995][ T9118] Call Trace:
[  185.533269][ T9118]  <TASK>
[  185.536196][ T9118]  dump_stack_lvl+0xd6/0x122
[  185.540792][ T9118]  dump_stack+0x11/0x1b
[  185.544994][ T9118]  should_fail+0x23c/0x250
[  185.549409][ T9118]  ? dst_alloc+0x101/0x160
[  185.553822][ T9118]  __should_failslab+0x81/0x90
[  185.558659][ T9118]  should_failslab+0x5/0x20
[  185.563164][ T9118]  kmem_cache_alloc+0x4f/0x320
[  185.567925][ T9118]  ? nf_confirm+0x22b/0x250
[  185.572421][ T9118]  dst_alloc+0x101/0x160
[  185.576656][ T9118]  rt_dst_clone+0x3c/0x2d0
[  185.581124][ T9118]  NF_HOOK+0x7d/0x200
[  185.585124][ T9118]  ? NF_HOOK+0x200/0x200
[  185.589359][ T9118]  ip_mc_output+0x16d/0x360
[  185.593856][ T9118]  ? __ip_local_out+0x2a0/0x2a0
[  185.598699][ T9118]  ip_send_skb+0x6e/0xe0
[  185.603023][ T9118]  udp_send_skb+0x62d/0x860
[  185.607532][ T9118]  udp_sendpage+0x22c/0x330
[  185.612033][ T9118]  ? udplite_getfrag+0x90/0x90
[  185.616798][ T9118]  inet_sendpage+0x7f/0xc0
[  185.621214][ T9118]  ? inet_sendmsg+0x80/0x80
[  185.625725][ T9118]  kernel_sendpage+0x187/0x200
[  185.630490][ T9118]  ? inet_sendmsg+0x80/0x80
[  185.634988][ T9118]  sock_sendpage+0x5a/0x70
[  185.639450][ T9118]  pipe_to_sendpage+0x128/0x160
[  185.644281][ T9118]  ? sock_fasync+0xc0/0xc0
[  185.648766][ T9118]  __splice_from_pipe+0x207/0x500
[  185.653791][ T9118]  ? generic_splice_sendpage+0xd0/0xd0
[  185.659282][ T9118]  generic_splice_sendpage+0x94/0xd0
[  185.664691][ T9118]  ? iter_file_splice_write+0x790/0x790
[  185.670284][ T9118]  do_splice+0xa0e/0xde0
[  185.674520][ T9118]  ? proc_fail_nth_write+0x127/0x150
[  185.679782][ T9118]  ? __rcu_read_unlock+0x5c/0x290
[  185.684898][ T9118]  ? __fget_light+0x219/0x260
[  185.689595][ T9118]  __se_sys_splice+0x2bd/0x3a0
[  185.694340][ T9118]  __x64_sys_splice+0x74/0x80
[  185.699018][ T9118]  do_syscall_64+0x44/0xd0
[  185.703428][ T9118]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  185.709303][ T9118] RIP: 0033:0x7f7710020ae9
[  185.713760][ T9118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  185.733378][ T9118] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
07:41:06 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 12)

07:41:06 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x5}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:06 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x48854)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:06 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x34, r4, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xffff}]}]}, 0x34}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r8, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xa4, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_LEVEL={0x14, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8}]}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_LEVEL={0x2c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x4}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x6}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x91}, 0x4000000)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:06 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  185.741807][ T9118] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  185.749962][ T9118] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  185.757933][ T9118] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  185.765906][ T9118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  185.773856][ T9118] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  185.781822][ T9118]  </TASK>
[  185.848056][ T9133] loop4: detected capacity change from 0 to 16
[  185.861809][ T9135] FAULT_INJECTION: forcing a failure.
[  185.861809][ T9135] name failslab, interval 1, probability 0, space 0, times 0
[  185.874533][ T9135] CPU: 0 PID: 9135 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  185.884601][ T9135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  185.894748][ T9135] Call Trace:
[  185.898037][ T9135]  <TASK>
[  185.900962][ T9135]  dump_stack_lvl+0xd6/0x122
[  185.905555][ T9135]  dump_stack+0x11/0x1b
[  185.909706][ T9135]  should_fail+0x23c/0x250
[  185.914127][ T9135]  ? skb_clone+0x12c/0x1f0
[  185.918549][ T9135]  __should_failslab+0x81/0x90
[  185.923320][ T9135]  should_failslab+0x5/0x20
[  185.927832][ T9135]  kmem_cache_alloc+0x4f/0x320
[  185.932603][ T9135]  skb_clone+0x12c/0x1f0
[  185.936859][ T9135]  dev_queue_xmit_nit+0x155/0x600
[  185.941933][ T9135]  xmit_one+0x71/0x2f0
[  185.946021][ T9135]  __dev_queue_xmit+0x869/0xf70
[  185.950875][ T9135]  dev_queue_xmit+0x13/0x20
[  185.955376][ T9135]  ip_finish_output2+0x705/0xb40
[  185.960313][ T9135]  ip_do_fragment+0xf54/0x1010
[  185.965078][ T9135]  ? ip_fragment+0x130/0x130
[  185.969667][ T9135]  ip_fragment+0xd2/0x130
[  185.974007][ T9135]  ip_finish_output+0x20e/0x240
[  185.978913][ T9135]  ? ip_mc_output+0x291/0x360
[  185.983618][ T9135]  ip_mc_output+0x2a7/0x360
[  185.988136][ T9135]  ? ip_mc_finish_output+0x130/0x130
[  185.993490][ T9135]  ip_send_skb+0x6e/0xe0
[  185.997724][ T9135]  udp_send_skb+0x62d/0x860
[  186.002216][ T9135]  udp_sendpage+0x22c/0x330
[  186.006727][ T9135]  ? udplite_getfrag+0x90/0x90
[  186.011509][ T9135]  inet_sendpage+0x7f/0xc0
[  186.015904][ T9135]  ? inet_sendmsg+0x80/0x80
[  186.020422][ T9135]  kernel_sendpage+0x187/0x200
[  186.025167][ T9135]  ? inet_sendmsg+0x80/0x80
[  186.029658][ T9135]  sock_sendpage+0x5a/0x70
[  186.034073][ T9135]  pipe_to_sendpage+0x128/0x160
[  186.038967][ T9135]  ? sock_fasync+0xc0/0xc0
[  186.043362][ T9135]  __splice_from_pipe+0x207/0x500
[  186.048396][ T9135]  ? generic_splice_sendpage+0xd0/0xd0
[  186.053834][ T9135]  generic_splice_sendpage+0x94/0xd0
[  186.059102][ T9135]  ? iter_file_splice_write+0x790/0x790
[  186.064628][ T9135]  do_splice+0xa0e/0xde0
[  186.068869][ T9135]  ? proc_fail_nth_write+0x127/0x150
[  186.074183][ T9135]  ? __rcu_read_unlock+0x5c/0x290
[  186.079262][ T9135]  ? __fget_light+0x219/0x260
[  186.083917][ T9135]  __se_sys_splice+0x2bd/0x3a0
[  186.088731][ T9135]  __x64_sys_splice+0x74/0x80
[  186.093507][ T9135]  do_syscall_64+0x44/0xd0
[  186.097924][ T9135]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  186.103804][ T9135] RIP: 0033:0x7fb7f78d8ae9
[  186.108196][ T9135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  186.127780][ T9135] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  186.136167][ T9135] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  186.144155][ T9135] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  186.152114][ T9135] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  186.160063][ T9135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  186.168008][ T9135] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  186.175962][ T9135]  </TASK>
07:41:06 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 12)

07:41:06 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x6}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:06 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:06 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$NLBL_UNLABEL_C_STATICADD(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x20, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @local}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40005}, 0x4)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:06 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x7}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  186.305623][ T9145] loop4: detected capacity change from 0 to 16
[  186.372420][ T9154] FAULT_INJECTION: forcing a failure.
[  186.372420][ T9154] name failslab, interval 1, probability 0, space 0, times 0
[  186.385063][ T9154] CPU: 0 PID: 9154 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  186.395128][ T9154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  186.405182][ T9154] Call Trace:
[  186.408470][ T9154]  <TASK>
[  186.411396][ T9154]  dump_stack_lvl+0xd6/0x122
[  186.415989][ T9154]  dump_stack+0x11/0x1b
[  186.420144][ T9154]  should_fail+0x23c/0x250
[  186.424559][ T9154]  ? skb_clone+0x12c/0x1f0
[  186.429011][ T9154]  __should_failslab+0x81/0x90
[  186.433889][ T9154]  should_failslab+0x5/0x20
[  186.438394][ T9154]  kmem_cache_alloc+0x4f/0x320
[  186.443175][ T9154]  skb_clone+0x12c/0x1f0
[  186.447421][ T9154]  dev_queue_xmit_nit+0x155/0x600
[  186.452518][ T9154]  xmit_one+0x71/0x2f0
[  186.456584][ T9154]  __dev_queue_xmit+0x869/0xf70
[  186.461437][ T9154]  dev_queue_xmit+0x13/0x20
[  186.465942][ T9154]  ip_finish_output2+0x705/0xb40
07:41:06 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x8}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:06 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xac, 0x0, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @loopback}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xa}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0x2b}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private0}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @local}]}, 0xac}, 0x1, 0x0, 0x0, 0x801}, 0x1)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  186.470917][ T9154]  ip_do_fragment+0xf54/0x1010
[  186.475741][ T9154]  ? ip_fragment+0x130/0x130
[  186.480332][ T9154]  ip_fragment+0xd2/0x130
[  186.484675][ T9154]  ip_finish_output+0x20e/0x240
[  186.489522][ T9154]  ? ip_mc_output+0x291/0x360
[  186.494224][ T9154]  ip_mc_output+0x2a7/0x360
[  186.498807][ T9154]  ? ip_mc_finish_output+0x130/0x130
[  186.504088][ T9154]  ip_send_skb+0x6e/0xe0
[  186.505268][ T9159] validate_nla: 44 callbacks suppressed
[  186.505279][ T9159] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  186.508324][ T9154]  udp_send_skb+0x62d/0x860
[  186.513919][ T9159] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  186.521910][ T9154]  udp_sendpage+0x22c/0x330
[  186.521933][ T9154]  ? udplite_getfrag+0x90/0x90
[  186.521949][ T9154]  inet_sendpage+0x7f/0xc0
[  186.522003][ T9154]  ? inet_sendmsg+0x80/0x80
[  186.552734][ T9154]  kernel_sendpage+0x187/0x200
[  186.557495][ T9154]  ? inet_sendmsg+0x80/0x80
[  186.561996][ T9154]  sock_sendpage+0x5a/0x70
[  186.566454][ T9154]  pipe_to_sendpage+0x128/0x160
[  186.571408][ T9154]  ? sock_fasync+0xc0/0xc0
[  186.575823][ T9154]  __splice_from_pipe+0x207/0x500
[  186.580865][ T9154]  ? generic_splice_sendpage+0xd0/0xd0
[  186.586320][ T9154]  generic_splice_sendpage+0x94/0xd0
[  186.591699][ T9154]  ? iter_file_splice_write+0x790/0x790
[  186.597246][ T9154]  do_splice+0xa0e/0xde0
[  186.601482][ T9154]  ? proc_fail_nth_write+0x127/0x150
[  186.606821][ T9154]  ? __rcu_read_unlock+0x5c/0x290
[  186.611849][ T9154]  ? __fget_light+0x219/0x260
[  186.616610][ T9154]  __se_sys_splice+0x2bd/0x3a0
[  186.621367][ T9154]  __x64_sys_splice+0x74/0x80
[  186.626156][ T9154]  do_syscall_64+0x44/0xd0
[  186.630553][ T9154]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  186.636577][ T9154] RIP: 0033:0x7f7710020ae9
[  186.640983][ T9154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  186.660585][ T9154] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
07:41:07 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 13)

07:41:07 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:07 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x9}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  186.669001][ T9154] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  186.676963][ T9154] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  186.684938][ T9154] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  186.692932][ T9154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  186.700897][ T9154] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  186.708888][ T9154]  </TASK>
07:41:07 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0xa}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  186.750808][ T9171] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  186.758889][ T9171] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:41:07 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="570068c2", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  186.793493][ T9177] loop4: detected capacity change from 0 to 16
[  186.800148][ T9178] FAULT_INJECTION: forcing a failure.
[  186.800148][ T9178] name failslab, interval 1, probability 0, space 0, times 0
[  186.812899][ T9178] CPU: 0 PID: 9178 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  186.822966][ T9178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  186.833014][ T9178] Call Trace:
[  186.836285][ T9178]  <TASK>
[  186.839200][ T9178]  dump_stack_lvl+0xd6/0x122
[  186.843840][ T9178]  dump_stack+0x11/0x1b
[  186.848050][ T9178]  should_fail+0x23c/0x250
[  186.852465][ T9178]  __should_failslab+0x81/0x90
[  186.857224][ T9178]  should_failslab+0x5/0x20
[  186.861722][ T9178]  kmem_cache_alloc_node_trace+0x61/0x310
[  186.867425][ T9178]  ? __kmalloc_node_track_caller+0x30/0x40
[  186.873260][ T9178]  __kmalloc_node_track_caller+0x30/0x40
[  186.878879][ T9178]  ? ip_frag_next+0x8e/0x4a0
[  186.883482][ T9178]  __alloc_skb+0x19d/0x450
[  186.887944][ T9178]  ip_frag_next+0x8e/0x4a0
[  186.892356][ T9178]  ip_do_fragment+0x529/0x1010
[  186.897109][ T9178]  ? ip_fragment+0x130/0x130
[  186.901697][ T9178]  ip_fragment+0xd2/0x130
[  186.906045][ T9178]  ip_finish_output+0x20e/0x240
[  186.910878][ T9178]  ? ip_mc_output+0x291/0x360
[  186.915543][ T9178]  ip_mc_output+0x2a7/0x360
[  186.920027][ T9178]  ? ip_mc_finish_output+0x130/0x130
[  186.925294][ T9178]  ip_send_skb+0x6e/0xe0
[  186.929515][ T9178]  udp_send_skb+0x62d/0x860
[  186.934107][ T9178]  udp_sendpage+0x22c/0x330
[  186.938672][ T9178]  ? udplite_getfrag+0x90/0x90
[  186.943429][ T9178]  inet_sendpage+0x7f/0xc0
[  186.947829][ T9178]  ? inet_sendmsg+0x80/0x80
[  186.952319][ T9178]  kernel_sendpage+0x187/0x200
[  186.957142][ T9178]  ? inet_sendmsg+0x80/0x80
[  186.961632][ T9178]  sock_sendpage+0x5a/0x70
[  186.966070][ T9178]  pipe_to_sendpage+0x128/0x160
[  186.970905][ T9178]  ? sock_fasync+0xc0/0xc0
[  186.975403][ T9178]  __splice_from_pipe+0x207/0x500
[  186.980429][ T9178]  ? generic_splice_sendpage+0xd0/0xd0
[  186.985940][ T9178]  generic_splice_sendpage+0x94/0xd0
[  186.991226][ T9178]  ? iter_file_splice_write+0x790/0x790
[  186.996780][ T9178]  do_splice+0xa0e/0xde0
[  187.001004][ T9178]  ? proc_fail_nth_write+0x127/0x150
[  187.006277][ T9178]  ? __rcu_read_unlock+0x5c/0x290
[  187.011318][ T9178]  ? __fget_light+0x219/0x260
[  187.015979][ T9178]  __se_sys_splice+0x2bd/0x3a0
[  187.020731][ T9178]  __x64_sys_splice+0x74/0x80
[  187.025392][ T9178]  do_syscall_64+0x44/0xd0
[  187.029800][ T9178]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  187.035725][ T9178] RIP: 0033:0x7fb7f78d8ae9
[  187.040123][ T9178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  187.059732][ T9178] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  187.068128][ T9178] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  187.076079][ T9178] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  187.084057][ T9178] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  187.092011][ T9178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  187.099971][ T9178] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  187.107926][ T9178]  </TASK>
07:41:07 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 13)

07:41:07 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000800)={0x35c, r3, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_MLSLVLLST={0xa0, 0x8, 0x0, 0x1, [{0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7cce700d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x45756639}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4f}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x35}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x64}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2c55e93}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x57}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x8c00590}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x73b552e2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x26457dd4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x86}]}, {0x4}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x55}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x15c, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x10cfc3c3}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3cb2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x42ebc335}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c997b9d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x164833c3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3a554564}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x32f26925}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd901}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6e1a8022}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9269}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8847}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2e46}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8a5f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb162}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf38}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf974}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6c5f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2d6c}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x37a0f819}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2ec5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4673d14d}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x171}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6730}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b43d94a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x749f}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x72f8657a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e20cb3c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x67198f54}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ecd248f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47325708}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xada4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x745f}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c31f2e7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3306c059}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe0bb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x70c8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa51c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4a215ed}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0x134, 0xc, 0x0, 0x1, [{0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x67ac}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1b3c}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x368e62eb}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5595ef79}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x443b8647}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9923}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x157a0d0d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5bf1a59b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9edf}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8ac6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8ad6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3eed}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd10f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6726}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9072}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x642c66b9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x47ea}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2841}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xffba}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5709}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9053}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd376}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2efe39b0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf20a}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x288fa381}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2030}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x497b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x37c86c33}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x649e597a}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1a4}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x746c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e889770}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddcc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x10344240}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x35c}, 0x1, 0x0, 0x0, 0x4000}, 0x20000084)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f00000007c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000640)={0x158, r5, 0x300, 0x70bd28, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0x134, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x16ee00fd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa0c0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x162fcde8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x42900810}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x494e6313}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa2ea}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x39d4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeeee}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe921}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf234}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8ed6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6b6e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf8f9}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x45e7}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd2a6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7663a9e4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x68c4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9634}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc3be}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7c17761f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x43311f1d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc68c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa44f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3634de43}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x21fdb1f4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x10c2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x76e01956}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2b022c5c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7cafc28}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5406}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6eab5efd}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x16afa185}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4df8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1841}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x158}, 0x1, 0x0, 0x0, 0x5}, 0x800)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:07 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:07 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0xb}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  187.150842][ T9184] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  187.158941][ T9184] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  187.223454][ T9196] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  187.231771][ T9196] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  187.253199][ T9201] FAULT_INJECTION: forcing a failure.
[  187.253199][ T9201] name failslab, interval 1, probability 0, space 0, times 0
[  187.265830][ T9201] CPU: 1 PID: 9201 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  187.275902][ T9201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  187.285958][ T9201] Call Trace:
[  187.289241][ T9201]  <TASK>
[  187.292165][ T9201]  dump_stack_lvl+0xd6/0x122
[  187.296781][ T9201]  dump_stack+0x11/0x1b
[  187.300934][ T9201]  should_fail+0x23c/0x250
[  187.305347][ T9201]  ? skb_clone+0x12c/0x1f0
[  187.309769][ T9201]  __should_failslab+0x81/0x90
[  187.314531][ T9201]  should_failslab+0x5/0x20
[  187.319151][ T9201]  kmem_cache_alloc+0x4f/0x320
07:41:07 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0xc}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:07 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  187.323916][ T9201]  skb_clone+0x12c/0x1f0
[  187.328158][ T9201]  ip_check_defrag+0x214/0x3d0
[  187.333007][ T9201]  packet_rcv_fanout+0xcb/0xa40
[  187.337899][ T9201]  ? __copy_skb_header+0x275/0x2c0
[  187.343009][ T9201]  ? __skb_clone+0x2db/0x300
[  187.347600][ T9201]  ? packet_direct_xmit+0x1a0/0x1a0
[  187.352794][ T9201]  dev_queue_xmit_nit+0x392/0x600
[  187.357820][ T9201]  xmit_one+0x71/0x2f0
[  187.361886][ T9201]  __dev_queue_xmit+0x869/0xf70
[  187.366767][ T9201]  ? delay_tsc+0x96/0xe0
07:41:07 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0xd}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  187.371018][ T9201]  dev_queue_xmit+0x13/0x20
[  187.375594][ T9201]  ip_finish_output2+0x705/0xb40
[  187.377990][ T9204] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  187.380530][ T9201]  ip_do_fragment+0xf54/0x1010
[  187.380554][ T9201]  ? ip_fragment+0x130/0x130
[  187.380572][ T9201]  ip_fragment+0xd2/0x130
[  187.388617][ T9204] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  187.393362][ T9201]  ip_finish_output+0x20e/0x240
[  187.393384][ T9201]  ? ip_mc_output+0x291/0x360
[  187.419846][ T9201]  ip_mc_output+0x2a7/0x360
[  187.424357][ T9201]  ? ip_mc_finish_output+0x130/0x130
[  187.429643][ T9201]  ip_send_skb+0x6e/0xe0
[  187.433901][ T9201]  udp_send_skb+0x62d/0x860
[  187.438598][ T9201]  udp_sendpage+0x22c/0x330
[  187.443100][ T9201]  ? udplite_getfrag+0x90/0x90
[  187.447861][ T9201]  inet_sendpage+0x7f/0xc0
[  187.452315][ T9201]  ? inet_sendmsg+0x80/0x80
[  187.456840][ T9201]  kernel_sendpage+0x187/0x200
[  187.461647][ T9201]  ? inet_sendmsg+0x80/0x80
[  187.466132][ T9201]  sock_sendpage+0x5a/0x70
[  187.470535][ T9201]  pipe_to_sendpage+0x128/0x160
[  187.475364][ T9201]  ? sock_fasync+0xc0/0xc0
[  187.479893][ T9201]  __splice_from_pipe+0x207/0x500
[  187.484945][ T9201]  ? generic_splice_sendpage+0xd0/0xd0
[  187.490403][ T9201]  generic_splice_sendpage+0x94/0xd0
[  187.495705][ T9201]  ? iter_file_splice_write+0x790/0x790
[  187.501242][ T9201]  do_splice+0xa0e/0xde0
[  187.505530][ T9201]  ? proc_fail_nth_write+0x127/0x150
[  187.510801][ T9201]  ? __rcu_read_unlock+0x5c/0x290
[  187.515811][ T9201]  ? __fget_light+0x219/0x260
[  187.520481][ T9201]  __se_sys_splice+0x2bd/0x3a0
[  187.525247][ T9201]  __x64_sys_splice+0x74/0x80
[  187.529970][ T9201]  do_syscall_64+0x44/0xd0
[  187.534454][ T9201]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  187.540400][ T9201] RIP: 0033:0x7f7710020ae9
[  187.544791][ T9201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  187.564388][ T9201] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
07:41:07 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 14)

07:41:07 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0xe}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  187.572820][ T9201] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  187.580776][ T9201] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  187.588728][ T9201] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  187.596826][ T9201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  187.604777][ T9201] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  187.612881][ T9201]  </TASK>
07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0xf}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  187.659426][ T9218] loop4: detected capacity change from 0 to 16
[  187.720423][ T9228] FAULT_INJECTION: forcing a failure.
[  187.720423][ T9228] name failslab, interval 1, probability 0, space 0, times 0
[  187.733072][ T9228] CPU: 0 PID: 9228 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  187.743167][ T9228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  187.753229][ T9228] Call Trace:
[  187.756501][ T9228]  <TASK>
[  187.759426][ T9228]  dump_stack_lvl+0xd6/0x122
[  187.764093][ T9228]  dump_stack+0x11/0x1b
07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x10}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:08 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000040), r1)
sendmsg$NLBL_CALIPSO_C_ADD(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r3, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40080}, 0x50)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
r7 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000200), r1)
sendmsg$NLBL_CALIPSO_C_ADD(r6, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, r7, 0x100, 0x70bd27, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4814}, 0x4040880)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  187.768294][ T9228]  should_fail+0x23c/0x250
[  187.772777][ T9228]  ? skb_clone+0x12c/0x1f0
[  187.777226][ T9228]  __should_failslab+0x81/0x90
[  187.782015][ T9228]  should_failslab+0x5/0x20
[  187.786521][ T9228]  kmem_cache_alloc+0x4f/0x320
[  187.791287][ T9228]  skb_clone+0x12c/0x1f0
[  187.795582][ T9228]  dev_queue_xmit_nit+0x155/0x600
[  187.800679][ T9228]  xmit_one+0x71/0x2f0
[  187.804748][ T9228]  __dev_queue_xmit+0x869/0xf70
[  187.809597][ T9228]  ? ip_frag_next+0x34d/0x4a0
[  187.814382][ T9228]  dev_queue_xmit+0x13/0x20
[  187.818909][ T9228]  ip_finish_output2+0x705/0xb40
[  187.823887][ T9228]  ip_do_fragment+0x5e6/0x1010
[  187.828652][ T9228]  ? ip_fragment+0x130/0x130
[  187.833222][ T9228]  ip_fragment+0xd2/0x130
[  187.837593][ T9228]  ip_finish_output+0x20e/0x240
[  187.842581][ T9228]  ? ip_mc_output+0x291/0x360
[  187.847258][ T9228]  ip_mc_output+0x2a7/0x360
[  187.851810][ T9228]  ? ip_mc_finish_output+0x130/0x130
[  187.857104][ T9228]  ip_send_skb+0x6e/0xe0
[  187.861339][ T9228]  udp_send_skb+0x62d/0x860
[  187.865842][ T9228]  udp_sendpage+0x22c/0x330
[  187.870411][ T9228]  ? udplite_getfrag+0x90/0x90
[  187.875151][ T9228]  inet_sendpage+0x7f/0xc0
[  187.879637][ T9228]  ? inet_sendmsg+0x80/0x80
[  187.884194][ T9228]  kernel_sendpage+0x187/0x200
[  187.888940][ T9228]  ? inet_sendmsg+0x80/0x80
[  187.893577][ T9228]  sock_sendpage+0x5a/0x70
[  187.898060][ T9228]  pipe_to_sendpage+0x128/0x160
[  187.902891][ T9228]  ? sock_fasync+0xc0/0xc0
[  187.907364][ T9228]  __splice_from_pipe+0x207/0x500
[  187.912399][ T9228]  ? generic_splice_sendpage+0xd0/0xd0
[  187.917840][ T9228]  generic_splice_sendpage+0x94/0xd0
[  187.923104][ T9228]  ? iter_file_splice_write+0x790/0x790
[  187.928698][ T9228]  do_splice+0xa0e/0xde0
[  187.932995][ T9228]  ? proc_fail_nth_write+0x127/0x150
[  187.938308][ T9228]  ? __rcu_read_unlock+0x5c/0x290
[  187.943382][ T9228]  ? __fget_light+0x219/0x260
[  187.948128][ T9228]  __se_sys_splice+0x2bd/0x3a0
[  187.952876][ T9228]  __x64_sys_splice+0x74/0x80
[  187.957537][ T9228]  do_syscall_64+0x44/0xd0
[  187.962017][ T9228]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  187.968003][ T9228] RIP: 0033:0x7fb7f78d8ae9
[  187.972465][ T9228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  187.992159][ T9228] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  188.000658][ T9228] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  188.008639][ T9228] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
07:41:08 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 14)

[  188.016602][ T9228] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  188.024557][ T9228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  188.032529][ T9228] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  188.040508][ T9228]  </TASK>
07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x11}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:08 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), r2)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0x8, 0x8, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x3c}}, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)={0x2d4, r4, 0x1, 0x70bd27, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSLVLLST={0x94, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8f}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x37001e40}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c1fbb9e}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x57}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x90}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x759bc750}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x114424a0}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5d42c62c}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1440e1cd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xef}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3626373f}]}]}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x18c, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x60}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5e0416f0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a8fcb65}]}, {0x54, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x87}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6cf13676}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x561b444e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78a32a5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2d7b40d9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x86}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x46f58d8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1fd84cc9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6b651bb1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x63}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3dab9859}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x40fe585f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xee}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x74}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x50}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x757b9b07}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x70}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x46}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2d36bcb2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78b999d5}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x288f6bfd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x50df04e6}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x787088d3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5fff6cfb}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6af7252e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7e73476c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xb4554f3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2e51143c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3cc5ab8e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x58e092f7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x22}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x62b5ae66}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x30eb1824}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x24, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3536aefb}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3c51}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60801a01}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}]}, 0x2d4}, 0x1, 0x0, 0x0, 0x81}, 0x80010)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r5)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x12}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  188.115309][ T9252] FAULT_INJECTION: forcing a failure.
[  188.115309][ T9252] name failslab, interval 1, probability 0, space 0, times 0
[  188.127942][ T9252] CPU: 0 PID: 9252 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  188.138016][ T9252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  188.148067][ T9252] Call Trace:
[  188.151343][ T9252]  <TASK>
[  188.154266][ T9252]  dump_stack_lvl+0xd6/0x122
[  188.158873][ T9252]  dump_stack+0x11/0x1b
07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x25}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  188.163054][ T9252]  should_fail+0x23c/0x250
[  188.167516][ T9252]  ? inet_frag_find+0x338/0xbe0
[  188.172433][ T9252]  __should_failslab+0x81/0x90
[  188.177197][ T9252]  should_failslab+0x5/0x20
[  188.181781][ T9252]  kmem_cache_alloc+0x4f/0x320
[  188.186546][ T9252]  inet_frag_find+0x338/0xbe0
[  188.191283][ T9252]  ? ip_expire+0x350/0x350
[  188.195700][ T9252]  ? ip4_key_hashfn+0x110/0x110
[  188.200553][ T9252]  ? ip4_obj_hashfn+0x110/0x110
[  188.205463][ T9252]  ip_defrag+0x1c1/0x1160
[  188.209817][ T9252]  ? __copy_skb_header+0x275/0x2c0
[  188.214950][ T9252]  ip_check_defrag+0x2cb/0x3d0
[  188.219856][ T9252]  packet_rcv_fanout+0xcb/0xa40
[  188.224712][ T9252]  ? __copy_skb_header+0x275/0x2c0
[  188.229830][ T9252]  ? __skb_clone+0x2db/0x300
[  188.234440][ T9252]  ? packet_direct_xmit+0x1a0/0x1a0
[  188.239642][ T9252]  dev_queue_xmit_nit+0x392/0x600
[  188.244769][ T9252]  xmit_one+0x71/0x2f0
[  188.248840][ T9252]  __dev_queue_xmit+0x869/0xf70
[  188.253748][ T9252]  dev_queue_xmit+0x13/0x20
[  188.258343][ T9252]  ip_finish_output2+0x705/0xb40
[  188.263310][ T9252]  ip_do_fragment+0xf54/0x1010
[  188.268101][ T9252]  ? ip_fragment+0x130/0x130
[  188.272690][ T9252]  ip_fragment+0xd2/0x130
[  188.277075][ T9252]  ip_finish_output+0x20e/0x240
[  188.277495][ T9250] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  188.281920][ T9252]  ? ip_mc_output+0x291/0x360
[  188.281940][ T9252]  ip_mc_output+0x2a7/0x360
[  188.300358][ T9252]  ? ip_mc_finish_output+0x130/0x130
[  188.305696][ T9252]  ip_send_skb+0x6e/0xe0
[  188.309946][ T9252]  udp_send_skb+0x62d/0x860
07:41:08 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x48}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  188.314472][ T9252]  udp_sendpage+0x22c/0x330
[  188.319022][ T9252]  ? udplite_getfrag+0x90/0x90
[  188.323786][ T9252]  inet_sendpage+0x7f/0xc0
[  188.328243][ T9252]  ? inet_sendmsg+0x80/0x80
[  188.332785][ T9252]  kernel_sendpage+0x187/0x200
[  188.337662][ T9252]  ? inet_sendmsg+0x80/0x80
[  188.342274][ T9252]  sock_sendpage+0x5a/0x70
[  188.346689][ T9252]  pipe_to_sendpage+0x128/0x160
[  188.351552][ T9252]  ? sock_fasync+0xc0/0xc0
[  188.355974][ T9252]  __splice_from_pipe+0x207/0x500
[  188.361006][ T9252]  ? generic_splice_sendpage+0xd0/0xd0
[  188.366461][ T9252]  generic_splice_sendpage+0x94/0xd0
[  188.371748][ T9252]  ? iter_file_splice_write+0x790/0x790
[  188.377294][ T9252]  do_splice+0xa0e/0xde0
[  188.381530][ T9252]  ? proc_fail_nth_write+0x127/0x150
[  188.386871][ T9252]  ? __rcu_read_unlock+0x5c/0x290
[  188.391879][ T9252]  ? __fget_light+0x219/0x260
[  188.396598][ T9252]  __se_sys_splice+0x2bd/0x3a0
[  188.401407][ T9252]  __x64_sys_splice+0x74/0x80
[  188.406151][ T9252]  do_syscall_64+0x44/0xd0
[  188.410570][ T9252]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  188.416551][ T9252] RIP: 0033:0x7f7710020ae9
[  188.421013][ T9252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  188.440624][ T9252] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  188.449143][ T9252] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  188.457099][ T9252] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  188.465066][ T9252] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  188.473065][ T9252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  188.481192][ T9252] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  188.489226][ T9252]  </TASK>
07:41:08 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 15)

07:41:08 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\t\b\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r1)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_DEV(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="02002dbd7000ffdadf251900000008000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=r7, @ANYBLOB="0c0006000300000003000000"], 0x40}, 0x1, 0x0, 0x0, 0x884}, 0x24000000)

07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x4c}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  188.493208][   T24] audit: type=1400 audit(1637998868.798:279): avc:  denied  { recv } for  pid=9243 comm="syz-executor.3" saddr=10.128.0.163 src=34812 daddr=10.128.1.2 dest=22 netif=eth0 scontext=system_u:system_r:initrc_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x60}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  188.538077][   T24] audit: type=1400 audit(1637998868.838:280): avc:  denied  { read } for  pid=9269 comm="syz-executor.1" dev="nsfs" ino=4026532541 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  188.559738][   T24] audit: type=1400 audit(1637998868.838:281): avc:  denied  { open } for  pid=9269 comm="syz-executor.1" path="net:[4026532541]" dev="nsfs" ino=4026532541 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
07:41:08 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x68}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  188.585629][ T9281] FAULT_INJECTION: forcing a failure.
[  188.585629][ T9281] name failslab, interval 1, probability 0, space 0, times 0
[  188.598251][ T9281] CPU: 0 PID: 9281 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  188.608376][ T9281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  188.618432][ T9281] Call Trace:
[  188.621739][ T9281]  <TASK>
[  188.624697][ T9281]  dump_stack_lvl+0xd6/0x122
[  188.629367][ T9281]  dump_stack+0x11/0x1b
[  188.633529][ T9281]  should_fail+0x23c/0x250
[  188.637944][ T9281]  ? skb_clone+0x12c/0x1f0
[  188.642439][ T9281]  __should_failslab+0x81/0x90
[  188.647311][ T9281]  should_failslab+0x5/0x20
[  188.651813][ T9281]  kmem_cache_alloc+0x4f/0x320
[  188.656768][ T9281]  skb_clone+0x12c/0x1f0
[  188.661003][ T9281]  dev_queue_xmit_nit+0x155/0x600
[  188.666093][ T9281]  xmit_one+0x71/0x2f0
[  188.670148][ T9281]  __dev_queue_xmit+0x869/0xf70
[  188.675027][ T9281]  dev_queue_xmit+0x13/0x20
[  188.679555][ T9281]  ip_finish_output2+0x705/0xb40
[  188.684490][ T9281]  ip_do_fragment+0xf54/0x1010
[  188.689296][ T9281]  ? ip_fragment+0x130/0x130
[  188.693868][ T9281]  ip_fragment+0xd2/0x130
[  188.698201][ T9281]  ip_finish_output+0x20e/0x240
[  188.703041][ T9281]  ? ip_mc_output+0x291/0x360
[  188.707778][ T9281]  ip_mc_output+0x2a7/0x360
[  188.712259][ T9281]  ? ip_mc_finish_output+0x130/0x130
[  188.717609][ T9281]  ip_send_skb+0x6e/0xe0
[  188.721861][ T9281]  udp_send_skb+0x62d/0x860
[  188.726358][ T9281]  udp_sendpage+0x22c/0x330
[  188.730858][ T9281]  ? udplite_getfrag+0x90/0x90
[  188.735774][ T9281]  inet_sendpage+0x7f/0xc0
[  188.740247][ T9281]  ? inet_sendmsg+0x80/0x80
[  188.744756][ T9281]  kernel_sendpage+0x187/0x200
[  188.749513][ T9281]  ? inet_sendmsg+0x80/0x80
[  188.753997][ T9281]  sock_sendpage+0x5a/0x70
[  188.758404][ T9281]  pipe_to_sendpage+0x128/0x160
[  188.763236][ T9281]  ? sock_fasync+0xc0/0xc0
[  188.767660][ T9281]  __splice_from_pipe+0x207/0x500
[  188.772738][ T9281]  ? generic_splice_sendpage+0xd0/0xd0
[  188.778176][ T9281]  generic_splice_sendpage+0x94/0xd0
[  188.783511][ T9281]  ? iter_file_splice_write+0x790/0x790
[  188.789037][ T9281]  do_splice+0xa0e/0xde0
[  188.793292][ T9281]  ? proc_fail_nth_write+0x127/0x150
[  188.798585][ T9281]  ? __rcu_read_unlock+0x5c/0x290
[  188.803621][ T9281]  ? __fget_light+0x219/0x260
[  188.808334][ T9281]  __se_sys_splice+0x2bd/0x3a0
[  188.813157][ T9281]  __x64_sys_splice+0x74/0x80
[  188.817826][ T9281]  do_syscall_64+0x44/0xd0
[  188.822227][ T9281]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  188.828132][ T9281] RIP: 0033:0x7fb7f78d8ae9
[  188.832525][ T9281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  188.852170][ T9281] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  188.860564][ T9281] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  188.868550][ T9281] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  188.876504][ T9281] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
07:41:09 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 15)

07:41:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x6c}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  188.884641][ T9281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  188.892603][ T9281] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  188.900565][ T9281]  </TASK>
07:41:09 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x85, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0xd29000, &(0x7f0000000200), 0x0, 0x0, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x74}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:09 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r2, 0xa00, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_MGMT_A_DOMAIN={0x11, 0x1, '802.15.4 MAC\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xc804}, 0x40000)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0xffffffffffffffa3}, @IEEE802154_ATTR_DEV_TYPE={0x5}]}, 0x30}}, 0x0)

[  188.932762][ T9300] loop4: detected capacity change from 0 to 16
[  188.991200][ T9304] FAULT_INJECTION: forcing a failure.
[  188.991200][ T9304] name failslab, interval 1, probability 0, space 0, times 0
[  189.000785][   T24] audit: type=1400 audit(1637998869.298:282): avc:  denied  { read } for  pid=1477 comm="dhcpcd" name="n455" dev="tmpfs" ino=10022 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  189.003891][ T9304] CPU: 1 PID: 9304 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  189.026970][   T24] audit: type=1400 audit(1637998869.308:283): avc:  denied  { open } for  pid=1477 comm="dhcpcd" path="/run/udev/data/n455" dev="tmpfs" ino=10022 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  189.035714][ T9304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  189.035750][ T9304] Call Trace:
[  189.035757][ T9304]  <TASK>
[  189.035763][ T9304]  dump_stack_lvl+0xd6/0x122
[  189.035787][ T9304]  dump_stack+0x11/0x1b
[  189.058777][   T24] audit: type=1400 audit(1637998869.308:284): avc:  denied  { getattr } for  pid=1477 comm="dhcpcd" path="/run/udev/data/n455" dev="tmpfs" ino=10022 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  189.068894][ T9304]  should_fail+0x23c/0x250
[  189.111872][ T9304]  ? inet_frag_find+0x338/0xbe0
[  189.116785][ T9304]  __should_failslab+0x81/0x90
[  189.121604][ T9304]  should_failslab+0x5/0x20
[  189.126215][ T9304]  kmem_cache_alloc+0x4f/0x320
[  189.130989][ T9304]  inet_frag_find+0x338/0xbe0
[  189.135677][ T9304]  ? ip_expire+0x350/0x350
[  189.140094][ T9304]  ? ip4_key_hashfn+0x110/0x110
[  189.144942][ T9304]  ? ip4_obj_hashfn+0x110/0x110
[  189.149800][ T9304]  ip_defrag+0x1c1/0x1160
[  189.154174][ T9304]  ? __copy_skb_header+0x275/0x2c0
[  189.159290][ T9304]  ip_check_defrag+0x2cb/0x3d0
[  189.164171][ T9304]  packet_rcv_fanout+0xcb/0xa40
[  189.169062][ T9304]  ? __copy_skb_header+0x275/0x2c0
[  189.174178][ T9304]  ? __skb_clone+0x2db/0x300
[  189.178819][ T9304]  ? packet_direct_xmit+0x1a0/0x1a0
[  189.184099][ T9304]  dev_queue_xmit_nit+0x392/0x600
07:41:09 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x7a}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  189.189123][ T9304]  xmit_one+0x71/0x2f0
[  189.193190][ T9304]  __dev_queue_xmit+0x869/0xf70
[  189.198123][ T9304]  dev_queue_xmit+0x13/0x20
[  189.202625][ T9304]  ip_finish_output2+0x705/0xb40
[  189.207566][ T9304]  ip_do_fragment+0xf54/0x1010
[  189.212329][ T9304]  ? ip_fragment+0x130/0x130
[  189.217070][ T9304]  ip_fragment+0xd2/0x130
[  189.221396][ T9304]  ip_finish_output+0x20e/0x240
[  189.226267][ T9304]  ? ip_mc_output+0x291/0x360
[  189.231040][ T9304]  ip_mc_output+0x2a7/0x360
[  189.235541][ T9304]  ? ip_mc_finish_output+0x130/0x130
[  189.240925][ T9304]  ip_send_skb+0x6e/0xe0
[  189.245246][ T9304]  udp_send_skb+0x62d/0x860
[  189.249754][ T9304]  udp_sendpage+0x22c/0x330
[  189.254253][ T9304]  ? udplite_getfrag+0x90/0x90
[  189.259054][ T9304]  inet_sendpage+0x7f/0xc0
[  189.263473][ T9304]  ? inet_sendmsg+0x80/0x80
[  189.267977][ T9304]  kernel_sendpage+0x187/0x200
[  189.272746][ T9304]  ? inet_sendmsg+0x80/0x80
[  189.277250][ T9304]  sock_sendpage+0x5a/0x70
[  189.281795][ T9304]  pipe_to_sendpage+0x128/0x160
[  189.286625][ T9304]  ? sock_fasync+0xc0/0xc0
[  189.291043][ T9304]  __splice_from_pipe+0x207/0x500
[  189.296054][ T9304]  ? generic_splice_sendpage+0xd0/0xd0
[  189.301506][ T9304]  generic_splice_sendpage+0x94/0xd0
[  189.306825][ T9304]  ? iter_file_splice_write+0x790/0x790
[  189.312512][ T9304]  do_splice+0xa0e/0xde0
[  189.316910][ T9304]  ? proc_fail_nth_write+0x127/0x150
[  189.322203][ T9304]  ? __rcu_read_unlock+0x5c/0x290
[  189.327327][ T9304]  ? __fget_light+0x219/0x260
[  189.332044][ T9304]  __se_sys_splice+0x2bd/0x3a0
[  189.336893][ T9304]  __x64_sys_splice+0x74/0x80
[  189.341606][ T9304]  do_syscall_64+0x44/0xd0
[  189.346024][ T9304]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  189.351968][ T9304] RIP: 0033:0x7f7710020ae9
[  189.356409][ T9304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  189.376136][ T9304] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  189.384572][ T9304] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
07:41:09 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 16)

07:41:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:09 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  189.392563][ T9304] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  189.400594][ T9304] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  189.408623][ T9304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  189.416591][ T9304] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  189.424623][ T9304]  </TASK>
07:41:09 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  189.497895][ T9332] loop4: detected capacity change from 0 to 16
[  189.502403][ T9335] FAULT_INJECTION: forcing a failure.
[  189.502403][ T9335] name failslab, interval 1, probability 0, space 0, times 0
[  189.516678][ T9335] CPU: 1 PID: 9335 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  189.526743][ T9335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  189.536793][ T9335] Call Trace:
[  189.540061][ T9335]  <TASK>
[  189.542982][ T9335]  dump_stack_lvl+0xd6/0x122
[  189.547602][ T9335]  dump_stack+0x11/0x1b
[  189.551793][ T9335]  should_fail+0x23c/0x250
[  189.556197][ T9335]  ? skb_clone+0x12c/0x1f0
[  189.560624][ T9335]  __should_failslab+0x81/0x90
[  189.565519][ T9335]  should_failslab+0x5/0x20
[  189.570086][ T9335]  kmem_cache_alloc+0x4f/0x320
[  189.574948][ T9335]  skb_clone+0x12c/0x1f0
[  189.579181][ T9335]  dev_queue_xmit_nit+0x155/0x600
[  189.584205][ T9335]  xmit_one+0x71/0x2f0
[  189.588273][ T9335]  __dev_queue_xmit+0x869/0xf70
[  189.593115][ T9335]  ? macvlan_broadcast+0x415/0x430
[  189.598313][ T9335]  dev_queue_xmit_accel+0x19/0x20
[  189.603389][ T9335]  macvlan_start_xmit+0x2b3/0x3d0
[  189.608410][ T9335]  xmit_one+0x105/0x2f0
[  189.612564][ T9335]  __dev_queue_xmit+0x869/0xf70
[  189.617400][ T9335]  dev_queue_xmit+0x13/0x20
[  189.621934][ T9335]  ip_finish_output2+0x705/0xb40
[  189.626858][ T9335]  ip_do_fragment+0xf54/0x1010
[  189.631618][ T9335]  ? ip_fragment+0x130/0x130
[  189.636331][ T9335]  ip_fragment+0xd2/0x130
[  189.640644][ T9335]  ip_finish_output+0x20e/0x240
[  189.645523][ T9335]  ? ip_mc_output+0x291/0x360
[  189.650182][ T9335]  ip_mc_output+0x2a7/0x360
[  189.654669][ T9335]  ? ip_mc_finish_output+0x130/0x130
[  189.660022][ T9335]  ip_send_skb+0x6e/0xe0
[  189.664250][ T9335]  udp_send_skb+0x62d/0x860
[  189.668746][ T9335]  udp_sendpage+0x22c/0x330
[  189.673351][ T9335]  ? udplite_getfrag+0x90/0x90
[  189.678126][ T9335]  inet_sendpage+0x7f/0xc0
[  189.682540][ T9335]  ? inet_sendmsg+0x80/0x80
[  189.687034][ T9335]  kernel_sendpage+0x187/0x200
[  189.691791][ T9335]  ? inet_sendmsg+0x80/0x80
[  189.696353][ T9335]  sock_sendpage+0x5a/0x70
[  189.700790][ T9335]  pipe_to_sendpage+0x128/0x160
[  189.705665][ T9335]  ? sock_fasync+0xc0/0xc0
[  189.710095][ T9335]  __splice_from_pipe+0x207/0x500
[  189.715107][ T9335]  ? generic_splice_sendpage+0xd0/0xd0
[  189.720556][ T9335]  generic_splice_sendpage+0x94/0xd0
[  189.725827][ T9335]  ? iter_file_splice_write+0x790/0x790
[  189.731358][ T9335]  do_splice+0xa0e/0xde0
[  189.735599][ T9335]  ? debug_smp_processor_id+0x18/0x20
[  189.741206][ T9335]  ? delay_tsc+0x96/0xe0
[  189.745510][ T9335]  ? __se_sys_splice+0xb7/0x3a0
[  189.750449][ T9335]  __se_sys_splice+0x2bd/0x3a0
[  189.755218][ T9335]  __x64_sys_splice+0x74/0x80
[  189.759890][ T9335]  do_syscall_64+0x44/0xd0
[  189.764304][ T9335]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  189.770240][ T9335] RIP: 0033:0x7fb7f78d8ae9
[  189.774636][ T9335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
07:41:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  189.794227][ T9335] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  189.802628][ T9335] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  189.810644][ T9335] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  189.818601][ T9335] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  189.826553][ T9335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  189.834518][ T9335] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  189.842547][ T9335]  </TASK>
07:41:10 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 16)

07:41:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  189.948215][ T9354] FAULT_INJECTION: forcing a failure.
[  189.948215][ T9354] name failslab, interval 1, probability 0, space 0, times 0
[  189.960891][ T9354] CPU: 0 PID: 9354 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  189.970958][ T9354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  189.981014][ T9354] Call Trace:
[  189.984290][ T9354]  <TASK>
[  189.987215][ T9354]  dump_stack_lvl+0xd6/0x122
[  189.991811][ T9354]  dump_stack+0x11/0x1b
[  189.996017][ T9354]  should_fail+0x23c/0x250
[  190.000435][ T9354]  ? skb_clone+0x12c/0x1f0
[  190.004852][ T9354]  __should_failslab+0x81/0x90
[  190.009651][ T9354]  should_failslab+0x5/0x20
[  190.014153][ T9354]  kmem_cache_alloc+0x4f/0x320
[  190.018999][ T9354]  skb_clone+0x12c/0x1f0
[  190.023274][ T9354]  ip_check_defrag+0x214/0x3d0
[  190.028051][ T9354]  packet_rcv_fanout+0xcb/0xa40
[  190.032979][ T9354]  ? __copy_skb_header+0x275/0x2c0
[  190.038212][ T9354]  ? __skb_clone+0x2db/0x300
[  190.042812][ T9354]  ? packet_direct_xmit+0x1a0/0x1a0
[  190.047991][ T9354]  dev_queue_xmit_nit+0x392/0x600
[  190.053009][ T9354]  xmit_one+0x71/0x2f0
[  190.057058][ T9354]  __dev_queue_xmit+0x869/0xf70
[  190.061892][ T9354]  dev_queue_xmit+0x13/0x20
[  190.066452][ T9354]  ip_finish_output2+0x705/0xb40
[  190.071371][ T9354]  ip_do_fragment+0xf54/0x1010
[  190.076135][ T9354]  ? ip_fragment+0x130/0x130
[  190.080807][ T9354]  ip_fragment+0xd2/0x130
[  190.085191][ T9354]  ip_finish_output+0x20e/0x240
[  190.090054][ T9354]  ? ip_mc_output+0x291/0x360
[  190.094705][ T9354]  ip_mc_output+0x2a7/0x360
[  190.099182][ T9354]  ? ip_mc_finish_output+0x130/0x130
[  190.104496][ T9354]  ip_send_skb+0x6e/0xe0
[  190.108712][ T9354]  udp_send_skb+0x62d/0x860
[  190.113261][ T9354]  udp_sendpage+0x22c/0x330
[  190.117781][ T9354]  ? udplite_getfrag+0x90/0x90
[  190.122520][ T9354]  inet_sendpage+0x7f/0xc0
[  190.126918][ T9354]  ? inet_sendmsg+0x80/0x80
[  190.131538][ T9354]  kernel_sendpage+0x187/0x200
[  190.136278][ T9354]  ? inet_sendmsg+0x80/0x80
[  190.140846][ T9354]  sock_sendpage+0x5a/0x70
[  190.145246][ T9354]  pipe_to_sendpage+0x128/0x160
[  190.150076][ T9354]  ? sock_fasync+0xc0/0xc0
[  190.154514][ T9354]  __splice_from_pipe+0x207/0x500
[  190.159522][ T9354]  ? generic_splice_sendpage+0xd0/0xd0
[  190.164958][ T9354]  generic_splice_sendpage+0x94/0xd0
[  190.170234][ T9354]  ? iter_file_splice_write+0x790/0x790
[  190.175762][ T9354]  do_splice+0xa0e/0xde0
[  190.179992][ T9354]  ? proc_fail_nth_write+0x127/0x150
[  190.185273][ T9354]  ? __rcu_read_unlock+0x5c/0x290
[  190.190282][ T9354]  ? __fget_light+0x219/0x260
[  190.195052][ T9354]  __se_sys_splice+0x2bd/0x3a0
[  190.199873][ T9354]  __x64_sys_splice+0x74/0x80
[  190.204546][ T9354]  do_syscall_64+0x44/0xd0
[  190.208941][ T9354]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  190.214817][ T9354] RIP: 0033:0x7f7710020ae9
[  190.219226][ T9354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  190.238807][ T9354] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
07:41:10 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
sendmsg$IEEE802154_SCAN_REQ(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r2, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DURATION={0x5, 0x15, 0x3f}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x4001)

07:41:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:10 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354bdbe92aba53e94c40dda2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:10 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 17)

[  190.247222][ T9354] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  190.255233][ T9354] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  190.263183][ T9354] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  190.271131][ T9354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  190.279139][ T9354] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  190.287187][ T9354]  </TASK>
07:41:10 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r5)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x38, r7, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}]}, 0x38}}, 0x0)
sendmsg$NL802154_CMD_SET_CCA_MODE(r5, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, 0x0, 0x300, 0x70bd26, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_CCA_OPT={0x8}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x20004100}, 0x2)
sendmsg$NLBL_MGMT_C_ADD(r5, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c000000a3b7008700"/27, @ANYRES16=0x0, @ANYBLOB="0400c4d00000fedbdf25010000000900010070687931000000000a0001002c232e5d2d000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x880)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r11, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r10, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x5c, r10, 0x2, 0x70bd28, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4008080}, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00040000", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

07:41:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  190.364987][ T9366] loop4: detected capacity change from 0 to 16
07:41:10 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), r0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x74, r3, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @remote}, @NLBL_UNLABEL_A_IFACE={0x14}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @NLBL_UNLABEL_A_SECCTX={0x28, 0x7, 'system_u:object_r:modem_device_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}]}, 0x74}, 0x1, 0x0, 0x0, 0x400b4}, 0x4004)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x30, r4, 0x1, 0x0, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x83}, 0x1, 0x0, 0x0, 0x844}, 0xc080)

[  190.423419][ T9376] FAULT_INJECTION: forcing a failure.
[  190.423419][ T9376] name failslab, interval 1, probability 0, space 0, times 0
[  190.436135][ T9376] CPU: 1 PID: 9376 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  190.446251][ T9376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  190.456304][ T9376] Call Trace:
[  190.459579][ T9376]  <TASK>
[  190.462506][ T9376]  dump_stack_lvl+0xd6/0x122
[  190.467124][ T9376]  dump_stack+0x11/0x1b
07:41:10 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r2, 0x10, 0x70bd27, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x880}, 0x20008004)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="26050030", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r4, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)={0x44, 0x0, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'ip6_vti0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x44}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000740)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {0x9}}, './file0\x00'})
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r5, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

07:41:10 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  190.471279][ T9376]  should_fail+0x23c/0x250
[  190.475769][ T9376]  ? skb_clone+0x12c/0x1f0
[  190.480263][ T9376]  __should_failslab+0x81/0x90
[  190.485093][ T9376]  should_failslab+0x5/0x20
[  190.489602][ T9376]  kmem_cache_alloc+0x4f/0x320
[  190.494373][ T9376]  skb_clone+0x12c/0x1f0
[  190.498676][ T9376]  ip_check_defrag+0x214/0x3d0
[  190.503448][ T9376]  packet_rcv_fanout+0xcb/0xa40
[  190.508343][ T9376]  ? __copy_skb_header+0x275/0x2c0
[  190.513562][ T9376]  ? __skb_clone+0x2db/0x300
[  190.518297][ T9376]  ? packet_direct_xmit+0x1a0/0x1a0
07:41:10 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  190.523500][ T9376]  dev_queue_xmit_nit+0x392/0x600
[  190.528551][ T9376]  xmit_one+0x71/0x2f0
[  190.532645][ T9376]  __dev_queue_xmit+0x869/0xf70
[  190.537513][ T9376]  ? debug_smp_processor_id+0x18/0x20
[  190.542897][ T9376]  ? macvlan_broadcast+0x415/0x430
[  190.548087][ T9376]  dev_queue_xmit_accel+0x19/0x20
[  190.553112][ T9376]  macvlan_start_xmit+0x2b3/0x3d0
[  190.558173][ T9376]  xmit_one+0x105/0x2f0
[  190.562324][ T9376]  __dev_queue_xmit+0x869/0xf70
[  190.567183][ T9376]  dev_queue_xmit+0x13/0x20
[  190.571789][ T9376]  ip_finish_output2+0x705/0xb40
[  190.576782][ T9376]  ip_do_fragment+0xf54/0x1010
[  190.581547][ T9376]  ? ip_fragment+0x130/0x130
[  190.586141][ T9376]  ip_fragment+0xd2/0x130
[  190.590472][ T9376]  ip_finish_output+0x20e/0x240
[  190.595321][ T9376]  ? ip_mc_output+0x291/0x360
[  190.600027][ T9376]  ip_mc_output+0x2a7/0x360
[  190.604526][ T9376]  ? ip_mc_finish_output+0x130/0x130
[  190.609837][ T9376]  ip_send_skb+0x6e/0xe0
[  190.614148][ T9376]  udp_send_skb+0x62d/0x860
[  190.618660][ T9376]  udp_sendpage+0x22c/0x330
[  190.623158][ T9376]  ? udplite_getfrag+0x90/0x90
[  190.627920][ T9376]  inet_sendpage+0x7f/0xc0
[  190.632343][ T9376]  ? inet_sendmsg+0x80/0x80
[  190.636846][ T9376]  kernel_sendpage+0x187/0x200
[  190.641621][ T9376]  ? inet_sendmsg+0x80/0x80
[  190.646194][ T9376]  sock_sendpage+0x5a/0x70
[  190.650689][ T9376]  pipe_to_sendpage+0x128/0x160
[  190.655540][ T9376]  ? sock_fasync+0xc0/0xc0
[  190.660026][ T9376]  __splice_from_pipe+0x207/0x500
[  190.665098][ T9376]  ? generic_splice_sendpage+0xd0/0xd0
[  190.670634][ T9376]  generic_splice_sendpage+0x94/0xd0
[  190.675922][ T9376]  ? iter_file_splice_write+0x790/0x790
[  190.681456][ T9376]  do_splice+0xa0e/0xde0
[  190.685734][ T9376]  ? proc_fail_nth_write+0x127/0x150
[  190.691030][ T9376]  ? __rcu_read_unlock+0x5c/0x290
[  190.696038][ T9376]  ? __fget_light+0x219/0x260
[  190.700905][ T9376]  __se_sys_splice+0x2bd/0x3a0
[  190.705766][ T9376]  __x64_sys_splice+0x74/0x80
[  190.710488][ T9376]  do_syscall_64+0x44/0xd0
[  190.714914][ T9376]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  190.720893][ T9376] RIP: 0033:0x7fb7f78d8ae9
[  190.725329][ T9376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  190.745008][ T9376] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  190.753417][ T9376] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  190.761367][ T9376] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
07:41:11 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 17)

07:41:11 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:11 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  190.769402][ T9376] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  190.777452][ T9376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  190.785401][ T9376] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  190.793353][ T9376]  </TASK>
07:41:11 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  190.839063][ T9401] loop4: detected capacity change from 0 to 16
[  190.877261][ T9405] FAULT_INJECTION: forcing a failure.
[  190.877261][ T9405] name failslab, interval 1, probability 0, space 0, times 0
[  190.889932][ T9405] CPU: 0 PID: 9405 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  190.900013][ T9405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  190.910064][ T9405] Call Trace:
[  190.913344][ T9405]  <TASK>
[  190.916266][ T9405]  dump_stack_lvl+0xd6/0x122
[  190.920865][ T9405]  dump_stack+0x11/0x1b
[  190.925068][ T9405]  should_fail+0x23c/0x250
[  190.929482][ T9405]  ? skb_clone+0x12c/0x1f0
[  190.933908][ T9405]  __should_failslab+0x81/0x90
07:41:11 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xd828}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0302}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4008000)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r3, 0x1, 0x70bd2b, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0x0, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_DEV_NAME={0x0, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000004)

[  190.938865][ T9405]  should_failslab+0x5/0x20
[  190.943483][ T9405]  kmem_cache_alloc+0x4f/0x320
[  190.948249][ T9405]  skb_clone+0x12c/0x1f0
[  190.952585][ T9405]  dev_queue_xmit_nit+0x155/0x600
[  190.957689][ T9405]  xmit_one+0x71/0x2f0
[  190.961760][ T9405]  __dev_queue_xmit+0x869/0xf70
[  190.966611][ T9405]  dev_queue_xmit+0x13/0x20
[  190.971170][ T9405]  ip_finish_output2+0x705/0xb40
[  190.976155][ T9405]  ip_do_fragment+0xf54/0x1010
[  190.980944][ T9405]  ? ip_fragment+0x130/0x130
[  190.985562][ T9405]  ip_fragment+0xd2/0x130
[  190.989895][ T9405]  ip_finish_output+0x20e/0x240
[  190.994737][ T9405]  ? ip_mc_output+0x291/0x360
[  190.999432][ T9405]  ip_mc_output+0x2a7/0x360
[  191.003932][ T9405]  ? ip_mc_finish_output+0x130/0x130
[  191.009341][ T9405]  ip_send_skb+0x6e/0xe0
[  191.013580][ T9405]  udp_send_skb+0x62d/0x860
[  191.018169][ T9405]  udp_sendpage+0x22c/0x330
[  191.022715][ T9405]  ? udplite_getfrag+0x90/0x90
[  191.027474][ T9405]  inet_sendpage+0x7f/0xc0
[  191.031887][ T9405]  ? inet_sendmsg+0x80/0x80
[  191.036425][ T9405]  kernel_sendpage+0x187/0x200
[  191.041245][ T9405]  ? inet_sendmsg+0x80/0x80
[  191.045990][ T9405]  sock_sendpage+0x5a/0x70
[  191.050436][ T9405]  pipe_to_sendpage+0x128/0x160
[  191.055333][ T9405]  ? sock_fasync+0xc0/0xc0
[  191.059753][ T9405]  __splice_from_pipe+0x207/0x500
[  191.064784][ T9405]  ? generic_splice_sendpage+0xd0/0xd0
[  191.070304][ T9405]  generic_splice_sendpage+0x94/0xd0
[  191.075590][ T9405]  ? iter_file_splice_write+0x790/0x790
[  191.081136][ T9405]  do_splice+0xa0e/0xde0
[  191.085443][ T9405]  ? proc_fail_nth_write+0x127/0x150
[  191.090776][ T9405]  ? __rcu_read_unlock+0x5c/0x290
[  191.095795][ T9405]  ? __fget_light+0x219/0x260
[  191.100521][ T9405]  __se_sys_splice+0x2bd/0x3a0
[  191.105266][ T9405]  __x64_sys_splice+0x74/0x80
[  191.109935][ T9405]  do_syscall_64+0x44/0xd0
[  191.114348][ T9405]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  191.120274][ T9405] RIP: 0033:0x7f7710020ae9
[  191.124679][ T9405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  191.144423][ T9405] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  191.152813][ T9405] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  191.160812][ T9405] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  191.168759][ T9405] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  191.176785][ T9405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
07:41:11 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 18)

07:41:11 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:11 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  191.184735][ T9405] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  191.192688][ T9405]  </TASK>
07:41:11 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xb}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x14, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r1)
sendmsg$IEEE802154_ASSOCIATE_REQ(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x34, r3, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0xffff}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x6}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0x555c}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r0)
sendmsg$IEEE802154_ADD_IFACE(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="04b400", @ANYRESOCT, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  191.227778][ T9411] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'.
[  191.252498][ T9425] loop4: detected capacity change from 0 to 16
[  191.284852][ T9426] FAULT_INJECTION: forcing a failure.
[  191.284852][ T9426] name failslab, interval 1, probability 0, space 0, times 0
[  191.297508][ T9426] CPU: 1 PID: 9426 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  191.307570][ T9426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  191.317619][ T9426] Call Trace:
[  191.320928][ T9426]  <TASK>
[  191.323849][ T9426]  dump_stack_lvl+0xd6/0x122
[  191.328450][ T9426]  dump_stack+0x11/0x1b
[  191.332609][ T9426]  should_fail+0x23c/0x250
[  191.337028][ T9426]  ? skb_clone+0x12c/0x1f0
[  191.341446][ T9426]  __should_failslab+0x81/0x90
[  191.346213][ T9426]  should_failslab+0x5/0x20
[  191.350715][ T9426]  kmem_cache_alloc+0x4f/0x320
[  191.355522][ T9426]  skb_clone+0x12c/0x1f0
[  191.359857][ T9426]  dev_queue_xmit_nit+0x155/0x600
[  191.364904][ T9426]  xmit_one+0x71/0x2f0
[  191.369017][ T9426]  __dev_queue_xmit+0x869/0xf70
[  191.373870][ T9426]  dev_queue_xmit+0x13/0x20
[  191.378377][ T9426]  ip_finish_output2+0x705/0xb40
[  191.383393][ T9426]  ip_do_fragment+0xf54/0x1010
[  191.388153][ T9426]  ? ip_fragment+0x130/0x130
[  191.392740][ T9426]  ip_fragment+0xd2/0x130
[  191.397105][ T9426]  ip_finish_output+0x20e/0x240
[  191.401988][ T9426]  ? ip_mc_output+0x291/0x360
[  191.406663][ T9426]  ip_mc_output+0x2a7/0x360
[  191.411163][ T9426]  ? ip_mc_finish_output+0x130/0x130
[  191.416472][ T9426]  ip_send_skb+0x6e/0xe0
[  191.420732][ T9426]  udp_send_skb+0x62d/0x860
[  191.425239][ T9426]  udp_sendpage+0x22c/0x330
[  191.429774][ T9426]  ? udplite_getfrag+0x90/0x90
[  191.434533][ T9426]  inet_sendpage+0x7f/0xc0
[  191.439009][ T9426]  ? inet_sendmsg+0x80/0x80
[  191.443518][ T9426]  kernel_sendpage+0x187/0x200
[  191.448372][ T9426]  ? inet_sendmsg+0x80/0x80
[  191.452929][ T9426]  sock_sendpage+0x5a/0x70
[  191.457390][ T9426]  pipe_to_sendpage+0x128/0x160
[  191.462238][ T9426]  ? sock_fasync+0xc0/0xc0
[  191.466719][ T9426]  __splice_from_pipe+0x207/0x500
[  191.471745][ T9426]  ? generic_splice_sendpage+0xd0/0xd0
[  191.477203][ T9426]  generic_splice_sendpage+0x94/0xd0
[  191.482492][ T9426]  ? iter_file_splice_write+0x790/0x790
[  191.488040][ T9426]  do_splice+0xa0e/0xde0
[  191.492281][ T9426]  ? proc_fail_nth_write+0x127/0x150
[  191.497568][ T9426]  ? __rcu_read_unlock+0x5c/0x290
[  191.502624][ T9426]  ? __fget_light+0x219/0x260
[  191.507301][ T9426]  __se_sys_splice+0x2bd/0x3a0
[  191.512066][ T9426]  __x64_sys_splice+0x74/0x80
[  191.516746][ T9426]  do_syscall_64+0x44/0xd0
[  191.521165][ T9426]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  191.527066][ T9426] RIP: 0033:0x7fb7f78d8ae9
[  191.531594][ T9426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  191.551248][ T9426] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  191.559663][ T9426] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  191.567640][ T9426] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  191.575615][ T9426] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
07:41:11 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan0\x00'})
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  191.583589][ T9426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  191.591605][ T9426] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  191.599583][ T9426]  </TASK>
07:41:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r7)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r7, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x54, r6, 0x800, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_KEY={0x18, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "cf5dff21a3d2353054cea5ae20276e0c"}]}, @NL802154_ATTR_SEC_KEY={0x20, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "6078c03e38e3d2083ace263857fddb97"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x9}]}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x4042040}, 0x40)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r2, 0x1}, 0x14}}, 0x0)
sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x38, 0x0, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfc}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7ff}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}]}, 0x38}, 0x1, 0x0, 0x0, 0x40044}, 0x80)

[  191.658058][ T9432] validate_nla: 50 callbacks suppressed
[  191.658087][ T9432] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  191.671870][ T9432] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:41:12 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 18)

07:41:12 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000300), r0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000100), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADD(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x14c, r4, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_DOMAIN={0x106, 0x1, '\x02\x80\fl\x14\x10\xbc\x90;\xa8F\xcd3\xb86e_qS\r\xbc\x88;\x14afZa7-\xbf\xf4\xd2\n\x8a\xcdB\xd2\xa61\x1a\n{\xa5#|1@2FMr\xf6=\xa7\x88\x1a<\xf5\x93\xb6\xaf\xd0 L\xba\x95H\xf9\xe4\xb7[)\x19#\xb4\x83\xb7D\x1c\vCR\xf6ibs\xc3\xa4\xb0\xe0l\x95\x7f\xa3\x18\xf7\x04\xd2)\xe6@\xaa\xe0\xcet\x99\x1d\x17\xe5&\xe7h#\xbc9\xd2u.h%\xbf\".aD\xf8)5\xf47\x87p\x18\xf4\x95\x0e\xa1SY\n\xfbn\xbe\xb1\x9ef\xfe\xae\x14\xb2\x13\x88\x06\xbd\a\xb4\x90\xf2\xc5\x04+\x86l\x1e\x83\x1aA\x95\xd0\x0e\x03/\xde\x1a\xccNT\xf4\xad\x99\x83\xaf\x81Nz\xb2@\x1e\x82>:\xc9n\xe8\x16,\xccu\a(h>\x015\xadd\xce\x99k{\x91\xd9[B\xd3\x1f>{\xf6.\xa3d\xce\x7f\xb0\xaa\xe6~\xf45\xd4v7z\xffJ\xdeN\xd7\xb1\xa2t\xacj\xb8h\xe5\x98\xb6\xf3\xa0\xe0\xbc\x1d\x00\x0f\xf7'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast1={0x1c, 0x1, '\x00', 0x8}}, @NLBL_MGMT_A_IPV6MASK={0x4, 0x6, @mcast2={0xf}}]}, 0x14c}}, 0x0)
sendmsg$NLBL_MGMT_C_ADDDEF(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0004280300afda14df250400dec214000500fc0100d5fe2f00000000000000000020000000"], 0x28}, 0x1, 0x0, 0x0, 0x850}, 0x48004)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r6)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r6)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r7)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r8, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRES16=r8, @ANYBLOB="00022cbd7000ffdbdf252e00000005002e00010000000c002d000202aaaaaaaaaaaa0c002d000200aaaaaaaaaaaa0c002d000202aaaaaaaaaaaa05002b00010000000a0001007770616e34000000"], 0x54}}, 0x8000)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r10, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), 0xffffffffffffffff)

07:41:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xc}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  191.752220][ T9444] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
07:41:12 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), r3)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000180), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x3c, r5, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0x8, 0x8, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x3c}}, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)={0x130, r5, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0xa4, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb4}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x8458104}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2bf2a6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x39205437}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x48}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x79}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x53}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1f}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3dcdcbec}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f17b531}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x73}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x236ed71b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x68ec4be3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x79}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x58, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1b}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56fd323a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x75}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5582ef94}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1699ae5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7796c75a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x30c13ea1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe4}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x130}, 0x1, 0x0, 0x0, 0x4020}, 0x40)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  191.799070][ T9446] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  191.807299][ T9446] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  191.840477][ T9454] FAULT_INJECTION: forcing a failure.
[  191.840477][ T9454] name failslab, interval 1, probability 0, space 0, times 0
[  191.853290][ T9454] CPU: 0 PID: 9454 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  191.863390][ T9454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  191.873480][ T9454] Call Trace:
[  191.876753][ T9454]  <TASK>
[  191.879686][ T9454]  dump_stack_lvl+0xd6/0x122
[  191.884372][ T9454]  dump_stack+0x11/0x1b
[  191.888606][ T9454]  should_fail+0x23c/0x250
[  191.893025][ T9454]  __should_failslab+0x81/0x90
[  191.897812][ T9454]  should_failslab+0x5/0x20
[  191.902345][ T9454]  kmem_cache_alloc_node_trace+0x61/0x310
[  191.908067][ T9454]  ? __kmalloc_node_track_caller+0x30/0x40
[  191.913915][ T9454]  __kmalloc_node_track_caller+0x30/0x40
[  191.919580][ T9454]  ? ip_frag_next+0x8e/0x4a0
[  191.924201][ T9454]  __alloc_skb+0x19d/0x450
[  191.928651][ T9454]  ip_frag_next+0x8e/0x4a0
[  191.933152][ T9454]  ip_do_fragment+0x636/0x1010
[  191.937964][ T9454]  ? ip_fragment+0x130/0x130
[  191.942553][ T9454]  ip_fragment+0xd2/0x130
[  191.946882][ T9454]  ip_finish_output+0x20e/0x240
[  191.951766][ T9454]  ? ip_mc_output+0x291/0x360
[  191.956447][ T9454]  ip_mc_output+0x2a7/0x360
[  191.960949][ T9454]  ? ip_mc_finish_output+0x130/0x130
[  191.966235][ T9454]  ip_send_skb+0x6e/0xe0
[  191.970514][ T9454]  udp_send_skb+0x62d/0x860
[  191.975026][ T9454]  udp_sendpage+0x22c/0x330
[  191.979532][ T9454]  ? udplite_getfrag+0x90/0x90
[  191.984367][ T9454]  inet_sendpage+0x7f/0xc0
07:41:12 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  191.988796][ T9454]  ? inet_sendmsg+0x80/0x80
[  191.993365][ T9454]  kernel_sendpage+0x187/0x200
[  191.998123][ T9454]  ? inet_sendmsg+0x80/0x80
[  192.002681][ T9454]  sock_sendpage+0x5a/0x70
[  192.007096][ T9454]  pipe_to_sendpage+0x128/0x160
[  192.011950][ T9454]  ? sock_fasync+0xc0/0xc0
[  192.016367][ T9454]  __splice_from_pipe+0x207/0x500
[  192.021438][ T9454]  ? generic_splice_sendpage+0xd0/0xd0
[  192.026960][ T9454]  generic_splice_sendpage+0x94/0xd0
[  192.032250][ T9454]  ? iter_file_splice_write+0x790/0x790
[  192.037858][ T9454]  do_splice+0xa0e/0xde0
[  192.042130][ T9454]  ? proc_fail_nth_write+0x127/0x150
[  192.047417][ T9454]  ? __rcu_read_unlock+0x5c/0x290
[  192.052440][ T9454]  ? __fget_light+0x219/0x260
[  192.057146][ T9454]  __se_sys_splice+0x2bd/0x3a0
[  192.061918][ T9454]  __x64_sys_splice+0x74/0x80
[  192.066598][ T9454]  do_syscall_64+0x44/0xd0
[  192.071074][ T9454]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  192.076972][ T9454] RIP: 0033:0x7f7710020ae9
[  192.081385][ T9454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  192.101005][ T9454] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  192.109419][ T9454] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  192.117576][ T9454] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  192.125554][ T9454] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  192.133526][ T9454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
07:41:12 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 19)

07:41:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xd}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  192.141495][ T9454] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  192.149477][ T9454]  </TASK>
[  192.174670][ T9451] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  192.196709][ T9461] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  192.204249][ T9466] loop4: detected capacity change from 0 to 16
[  192.204843][ T9461] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  192.238350][ T9469] FAULT_INJECTION: forcing a failure.
[  192.238350][ T9469] name failslab, interval 1, probability 0, space 0, times 0
[  192.250987][ T9469] CPU: 1 PID: 9469 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  192.261057][ T9469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  192.271113][ T9469] Call Trace:
[  192.274393][ T9469]  <TASK>
[  192.277393][ T9469]  dump_stack_lvl+0xd6/0x122
[  192.282131][ T9469]  dump_stack+0x11/0x1b
07:41:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xe}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  192.286286][ T9469]  should_fail+0x23c/0x250
[  192.290703][ T9469]  ? skb_clone+0x12c/0x1f0
[  192.295204][ T9469]  __should_failslab+0x81/0x90
[  192.299973][ T9469]  should_failslab+0x5/0x20
[  192.304570][ T9469]  kmem_cache_alloc+0x4f/0x320
[  192.309398][ T9469]  ? __rcu_read_unlock+0x5c/0x290
[  192.314433][ T9469]  skb_clone+0x12c/0x1f0
[  192.318736][ T9469]  ip_check_defrag+0x214/0x3d0
[  192.323569][ T9469]  packet_rcv_fanout+0xcb/0xa40
[  192.328423][ T9469]  ? __copy_skb_header+0x275/0x2c0
[  192.333619][ T9469]  ? __skb_clone+0x2db/0x300
[  192.338216][ T9469]  ? packet_direct_xmit+0x1a0/0x1a0
[  192.343416][ T9469]  dev_queue_xmit_nit+0x392/0x600
[  192.348443][ T9469]  xmit_one+0x71/0x2f0
[  192.352517][ T9469]  __dev_queue_xmit+0x869/0xf70
[  192.357372][ T9469]  dev_queue_xmit+0x13/0x20
[  192.361903][ T9469]  ip_finish_output2+0x705/0xb40
[  192.366929][ T9469]  ip_do_fragment+0xf54/0x1010
[  192.371729][ T9469]  ? ip_fragment+0x130/0x130
[  192.376430][ T9469]  ip_fragment+0xd2/0x130
[  192.380763][ T9469]  ip_finish_output+0x20e/0x240
[  192.384369][ T9472] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  192.385608][ T9469]  ? ip_mc_output+0x291/0x360
[  192.393703][ T9472] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  192.398423][ T9469]  ip_mc_output+0x2a7/0x360
[  192.398444][ T9469]  ? ip_mc_finish_output+0x130/0x130
[  192.398462][ T9469]  ip_send_skb+0x6e/0xe0
[  192.411439][ T9473] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  192.416249][ T9469]  udp_send_skb+0x62d/0x860
[  192.416281][ T9469]  udp_sendpage+0x22c/0x330
07:41:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xf}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:12 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  192.420526][ T9473] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  192.428559][ T9469]  ? udplite_getfrag+0x90/0x90
[  192.450412][ T9469]  inet_sendpage+0x7f/0xc0
[  192.454884][ T9469]  ? inet_sendmsg+0x80/0x80
[  192.459390][ T9469]  kernel_sendpage+0x187/0x200
[  192.464255][ T9469]  ? inet_sendmsg+0x80/0x80
[  192.468799][ T9469]  sock_sendpage+0x5a/0x70
[  192.473282][ T9469]  pipe_to_sendpage+0x128/0x160
[  192.478139][ T9469]  ? sock_fasync+0xc0/0xc0
[  192.482553][ T9469]  __splice_from_pipe+0x207/0x500
07:41:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  192.487573][ T9469]  ? generic_splice_sendpage+0xd0/0xd0
[  192.493133][ T9469]  generic_splice_sendpage+0x94/0xd0
[  192.498416][ T9469]  ? iter_file_splice_write+0x790/0x790
[  192.503960][ T9469]  do_splice+0xa0e/0xde0
[  192.508202][ T9469]  ? proc_fail_nth_write+0x127/0x150
[  192.513626][ T9469]  ? __rcu_read_unlock+0x5c/0x290
[  192.518694][ T9469]  ? __fget_light+0x219/0x260
[  192.523393][ T9469]  __se_sys_splice+0x2bd/0x3a0
[  192.528155][ T9469]  __x64_sys_splice+0x74/0x80
[  192.532908][ T9469]  do_syscall_64+0x44/0xd0
07:41:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x11}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  192.537326][ T9469]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  192.543279][ T9469] RIP: 0033:0x7fb7f78d8ae9
[  192.547683][ T9469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  192.567359][ T9469] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  192.575830][ T9469] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  192.583806][ T9469] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  192.591828][ T9469] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  192.599841][ T9469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  192.607884][ T9469] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  192.615845][ T9469]  </TASK>
07:41:12 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 19)

07:41:12 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x12}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:12 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}]}, 0x34}}, 0x0)

[  192.621887][   T24] audit: type=1400 audit(1637998872.928:285): avc:  denied  { recv } for  pid=9463 comm="syz-executor.5" saddr=10.128.0.163 src=44475 daddr=10.128.1.2 dest=51202 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  192.697980][ T9500] loop4: detected capacity change from 0 to 16
[  192.704708][ T9459] ==================================================================
[  192.712799][ T9459] BUG: KCSAN: data-race in netlink_recvmsg / netlink_recvmsg
[  192.720183][ T9459] 
[  192.722503][ T9459] read to 0xffff88813b722338 of 8 bytes by task 9499 on cpu 1:
[  192.730037][ T9459]  netlink_recvmsg+0x10f/0x810
[  192.734806][ T9459]  __sys_recvfrom+0x204/0x2c0
[  192.739491][ T9459]  __x64_sys_recvfrom+0x74/0x90
[  192.744378][ T9459]  do_syscall_64+0x44/0xd0
[  192.748798][ T9459]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  192.754871][ T9459] 
[  192.757188][ T9459] write to 0xffff88813b722338 of 8 bytes by task 9459 on cpu 0:
[  192.764823][ T9459]  netlink_recvmsg+0x150/0x810
[  192.769619][ T9459]  __sys_recvfrom+0x204/0x2c0
[  192.772692][   T24] audit: type=1400 audit(1637998873.078:286): avc:  denied  { egress } for  pid=18 comm="ksoftirqd/1" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  192.774328][ T9459]  __x64_sys_recvfrom+0x74/0x90
[  192.797708][   T24] audit: type=1400 audit(1637998873.078:287): avc:  denied  { sendto } for  pid=18 comm="ksoftirqd/1" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  192.802514][ T9459]  do_syscall_64+0x44/0xd0
[  192.802538][ T9459]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  192.835941][ T9459] 
[  192.838258][ T9459] value changed: 0x0000000000000000 -> 0x0000000000001000
[  192.845353][ T9459] 
[  192.847665][ T9459] Reported by Kernel Concurrency Sanitizer on:
[  192.853801][ T9459] CPU: 0 PID: 9459 Comm: syz-executor.1 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  192.863860][ T9459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  192.865140][ T9508] FAULT_INJECTION: forcing a failure.
[  192.865140][ T9508] name failslab, interval 1, probability 0, space 0, times 0
[  192.873910][ T9459] ==================================================================
[  192.894799][ T9508] CPU: 1 PID: 9508 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  192.904860][ T9508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  192.914904][ T9508] Call Trace:
[  192.918179][ T9508]  <TASK>
[  192.921174][ T9508]  dump_stack_lvl+0xd6/0x122
[  192.925852][ T9508]  dump_stack+0x11/0x1b
[  192.930006][ T9508]  should_fail+0x23c/0x250
[  192.934416][ T9508]  ? skb_clone+0x12c/0x1f0
[  192.938847][ T9508]  __should_failslab+0x81/0x90
[  192.943610][ T9508]  should_failslab+0x5/0x20
[  192.948118][ T9508]  kmem_cache_alloc+0x4f/0x320
[  192.952970][ T9508]  skb_clone+0x12c/0x1f0
[  192.957220][ T9508]  inet_frag_reasm_prepare+0x3e/0x630
[  192.962609][ T9508]  ? ip4_obj_hashfn+0x110/0x110
[  192.967484][ T9508]  ? ip_expire+0x350/0x350
[  192.971957][ T9508]  ? ip4_key_hashfn+0x110/0x110
[  192.976810][ T9508]  ? ip4_obj_hashfn+0x110/0x110
[  192.981720][ T9508]  ip_defrag+0xd40/0x1160
[  192.986050][ T9508]  ip_check_defrag+0x2cb/0x3d0
[  192.990852][ T9508]  packet_rcv_fanout+0xcb/0xa40
[  192.995727][ T9508]  ? __copy_skb_header+0x275/0x2c0
[  193.000891][ T9508]  ? __skb_clone+0x2db/0x300
[  193.005476][ T9508]  ? packet_direct_xmit+0x1a0/0x1a0
[  193.010665][ T9508]  dev_queue_xmit_nit+0x392/0x600
[  193.015746][ T9508]  xmit_one+0x71/0x2f0
[  193.019811][ T9508]  __dev_queue_xmit+0x869/0xf70
[  193.024646][ T9508]  dev_queue_xmit+0x13/0x20
[  193.029145][ T9508]  ip_finish_output2+0x705/0xb40
[  193.034088][ T9508]  ip_do_fragment+0xf54/0x1010
[  193.038841][ T9508]  ? ip_fragment+0x130/0x130
[  193.043415][ T9508]  ip_fragment+0xd2/0x130
[  193.047719][ T9508]  ip_finish_output+0x20e/0x240
[  193.052546][ T9508]  ? ip_mc_output+0x291/0x360
[  193.057269][ T9508]  ip_mc_output+0x2a7/0x360
[  193.061746][ T9508]  ? ip_mc_finish_output+0x130/0x130
[  193.067029][ T9508]  ip_send_skb+0x6e/0xe0
[  193.071261][ T9508]  udp_send_skb+0x62d/0x860
[  193.075854][ T9508]  udp_sendpage+0x22c/0x330
[  193.080360][ T9508]  ? udplite_getfrag+0x90/0x90
[  193.085147][ T9508]  inet_sendpage+0x7f/0xc0
[  193.089585][ T9508]  ? inet_sendmsg+0x80/0x80
[  193.094070][ T9508]  kernel_sendpage+0x187/0x200
[  193.098892][ T9508]  ? inet_sendmsg+0x80/0x80
[  193.103395][ T9508]  sock_sendpage+0x5a/0x70
[  193.107805][ T9508]  pipe_to_sendpage+0x128/0x160
[  193.112642][ T9508]  ? sock_fasync+0xc0/0xc0
[  193.117101][ T9508]  __splice_from_pipe+0x207/0x500
[  193.122106][ T9508]  ? generic_splice_sendpage+0xd0/0xd0
[  193.127549][ T9508]  generic_splice_sendpage+0x94/0xd0
[  193.132923][ T9508]  ? iter_file_splice_write+0x790/0x790
[  193.138503][ T9508]  do_splice+0xa0e/0xde0
[  193.142788][ T9508]  ? proc_fail_nth_write+0x127/0x150
[  193.148058][ T9508]  ? __rcu_read_unlock+0x5c/0x290
[  193.153079][ T9508]  ? __fget_light+0x219/0x260
[  193.157819][ T9508]  __se_sys_splice+0x2bd/0x3a0
[  193.162629][ T9508]  __x64_sys_splice+0x74/0x80
[  193.167356][ T9508]  do_syscall_64+0x44/0xd0
[  193.171789][ T9508]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  193.177707][ T9508] RIP: 0033:0x7f7710020ae9
[  193.182115][ T9508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  193.201708][ T9508] RSP: 002b:00007f770dd55188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  193.210112][ T9508] RAX: ffffffffffffffda RBX: 00007f77101340e0 RCX: 00007f7710020ae9
[  193.218199][ T9508] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  193.226316][ T9508] RBP: 00007f770dd551d0 R08: 0000000000034788 R09: 0000000000000000
[  193.234304][ T9508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  193.242265][ T9508] R13: 00007ffe007e931f R14: 00007f770dd55300 R15: 0000000000022000
[  193.250223][ T9508]  </TASK>
07:41:13 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x25}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:13 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000210000000900000000000c000500000000000000000000002200"/46], 0x34}}, 0x0)

07:41:13 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 20)

07:41:13 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000040), r1)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  193.326400][ T9519] loop4: detected capacity change from 0 to 16
[  193.365441][ T9526] FAULT_INJECTION: forcing a failure.
07:41:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan3\x00'})
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x38, r2, 0x20, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0xf9}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x2004c804)

[  193.365441][ T9526] name failslab, interval 1, probability 0, space 0, times 0
[  193.378158][ T9526] CPU: 0 PID: 9526 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  193.388312][ T9526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  193.398506][ T9526] Call Trace:
[  193.401810][ T9526]  <TASK>
[  193.404743][ T9526]  dump_stack_lvl+0xd6/0x122
[  193.409389][ T9526]  dump_stack+0x11/0x1b
[  193.413548][ T9526]  should_fail+0x23c/0x250
[  193.417970][ T9526]  ? skb_clone+0x12c/0x1f0
07:41:13 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x48}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  193.422480][ T9526]  __should_failslab+0x81/0x90
[  193.427246][ T9526]  should_failslab+0x5/0x20
[  193.431788][ T9526]  kmem_cache_alloc+0x4f/0x320
[  193.436557][ T9526]  skb_clone+0x12c/0x1f0
[  193.440846][ T9526]  macvlan_broadcast+0x187/0x430
[  193.445790][ T9526]  macvlan_start_xmit+0x1f1/0x3d0
[  193.450874][ T9526]  xmit_one+0x105/0x2f0
[  193.455027][ T9526]  __dev_queue_xmit+0x869/0xf70
[  193.459917][ T9526]  dev_queue_xmit+0x13/0x20
[  193.464418][ T9526]  ip_finish_output2+0x705/0xb40
[  193.469382][ T9526]  ip_do_fragment+0xf54/0x1010
[  193.474158][ T9526]  ? ip_fragment+0x130/0x130
[  193.478907][ T9526]  ip_fragment+0xd2/0x130
[  193.483234][ T9526]  ip_finish_output+0x20e/0x240
[  193.488117][ T9526]  ? ip_mc_output+0x291/0x360
[  193.492801][ T9526]  ip_mc_output+0x2a7/0x360
[  193.497334][ T9526]  ? ip_mc_finish_output+0x130/0x130
[  193.502734][ T9526]  ip_send_skb+0x6e/0xe0
[  193.507041][ T9526]  udp_send_skb+0x62d/0x860
[  193.511550][ T9526]  udp_sendpage+0x22c/0x330
[  193.516053][ T9526]  ? udplite_getfrag+0x90/0x90
[  193.520814][ T9526]  inet_sendpage+0x7f/0xc0
07:41:13 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4c}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  193.525235][ T9526]  ? inet_sendmsg+0x80/0x80
[  193.529739][ T9526]  kernel_sendpage+0x187/0x200
[  193.534504][ T9526]  ? inet_sendmsg+0x80/0x80
[  193.539018][ T9526]  sock_sendpage+0x5a/0x70
[  193.543438][ T9526]  pipe_to_sendpage+0x128/0x160
[  193.548363][ T9526]  ? sock_fasync+0xc0/0xc0
[  193.552872][ T9526]  __splice_from_pipe+0x207/0x500
[  193.557898][ T9526]  ? generic_splice_sendpage+0xd0/0xd0
[  193.563388][ T9526]  generic_splice_sendpage+0x94/0xd0
[  193.568730][ T9526]  ? iter_file_splice_write+0x790/0x790
07:41:13 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  193.574289][ T9526]  do_splice+0xa0e/0xde0
[  193.578612][ T9526]  ? proc_fail_nth_write+0x127/0x150
[  193.583908][ T9526]  ? __rcu_read_unlock+0x5c/0x290
[  193.588931][ T9526]  ? __fget_light+0x219/0x260
[  193.593668][ T9526]  __se_sys_splice+0x2bd/0x3a0
[  193.598523][ T9526]  __x64_sys_splice+0x74/0x80
[  193.603243][ T9526]  do_syscall_64+0x44/0xd0
[  193.607670][ T9526]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  193.613660][ T9526] RIP: 0033:0x7fb7f78d8ae9
[  193.618071][ T9526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  193.637700][ T9526] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  193.646144][ T9526] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  193.654098][ T9526] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  193.662050][ T9526] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  193.670003][ T9526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
07:41:14 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 20)

07:41:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x60}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x68}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  193.677985][ T9526] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  193.685950][ T9526]  </TASK>
07:41:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6c}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  193.759671][ T9556] loop4: detected capacity change from 0 to 16
[  193.761281][ T9557] FAULT_INJECTION: forcing a failure.
[  193.761281][ T9557] name failslab, interval 1, probability 0, space 0, times 0
[  193.778593][ T9557] CPU: 1 PID: 9557 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  193.788658][ T9557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  193.798753][ T9557] Call Trace:
[  193.802032][ T9557]  <TASK>
[  193.804960][ T9557]  dump_stack_lvl+0xd6/0x122
[  193.809554][ T9557]  dump_stack+0x11/0x1b
[  193.813765][ T9557]  should_fail+0x23c/0x250
[  193.818197][ T9557]  __should_failslab+0x81/0x90
[  193.823021][ T9557]  should_failslab+0x5/0x20
[  193.827526][ T9557]  kmem_cache_alloc_node_trace+0x61/0x310
[  193.833279][ T9557]  ? __kmalloc_node_track_caller+0x30/0x40
[  193.839184][ T9557]  __kmalloc_node_track_caller+0x30/0x40
[  193.844820][ T9557]  ? inet_frag_reasm_prepare+0x1fb/0x630
[  193.850452][ T9557]  pskb_expand_head+0xca/0x8b0
[  193.855223][ T9557]  ? kmem_cache_free+0x65/0x110
[  193.860108][ T9557]  ? __kfree_skb+0xfe/0x150
[  193.864683][ T9557]  inet_frag_reasm_prepare+0x1fb/0x630
[  193.870268][ T9557]  ? ip_expire+0x350/0x350
[  193.874699][ T9557]  ? ip4_key_hashfn+0x110/0x110
[  193.879584][ T9557]  ? ip4_obj_hashfn+0x110/0x110
[  193.884466][ T9557]  ip_defrag+0xd40/0x1160
[  193.888851][ T9557]  ip_check_defrag+0x2cb/0x3d0
[  193.893665][ T9557]  packet_rcv_fanout+0xcb/0xa40
[  193.898547][ T9557]  ? __copy_skb_header+0x275/0x2c0
[  193.903854][ T9557]  ? __skb_clone+0x2db/0x300
07:41:14 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x74}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  193.908527][ T9557]  ? packet_direct_xmit+0x1a0/0x1a0
[  193.913729][ T9557]  dev_queue_xmit_nit+0x392/0x600
[  193.918792][ T9557]  xmit_one+0x71/0x2f0
[  193.922953][ T9557]  __dev_queue_xmit+0x869/0xf70
[  193.927915][ T9557]  dev_queue_xmit+0x13/0x20
[  193.932420][ T9557]  ip_finish_output2+0x705/0xb40
[  193.937355][ T9557]  ip_do_fragment+0xf54/0x1010
[  193.942203][ T9557]  ? ip_fragment+0x130/0x130
[  193.946843][ T9557]  ip_fragment+0xd2/0x130
[  193.951171][ T9557]  ip_finish_output+0x20e/0x240
[  193.956075][ T9557]  ? ip_mc_output+0x291/0x360
[  193.960747][ T9557]  ip_mc_output+0x2a7/0x360
[  193.965249][ T9557]  ? ip_mc_finish_output+0x130/0x130
[  193.970559][ T9557]  ip_send_skb+0x6e/0xe0
[  193.974801][ T9557]  udp_send_skb+0x62d/0x860
[  193.979315][ T9557]  udp_sendpage+0x22c/0x330
[  193.983889][ T9557]  ? udplite_getfrag+0x90/0x90
[  193.988655][ T9557]  inet_sendpage+0x7f/0xc0
[  193.993082][ T9557]  ? inet_sendmsg+0x80/0x80
[  193.997588][ T9557]  kernel_sendpage+0x187/0x200
[  194.002357][ T9557]  ? inet_sendmsg+0x80/0x80
[  194.006871][ T9557]  sock_sendpage+0x5a/0x70
[  194.011286][ T9557]  pipe_to_sendpage+0x128/0x160
[  194.016139][ T9557]  ? sock_fasync+0xc0/0xc0
[  194.020534][ T9557]  __splice_from_pipe+0x207/0x500
[  194.025645][ T9557]  ? generic_splice_sendpage+0xd0/0xd0
[  194.031161][ T9557]  generic_splice_sendpage+0x94/0xd0
[  194.036520][ T9557]  ? iter_file_splice_write+0x790/0x790
[  194.042066][ T9557]  do_splice+0xa0e/0xde0
[  194.046370][ T9557]  ? proc_fail_nth_write+0x127/0x150
[  194.051701][ T9557]  ? __rcu_read_unlock+0x5c/0x290
[  194.056716][ T9557]  ? __fget_light+0x219/0x260
[  194.061391][ T9557]  __se_sys_splice+0x2bd/0x3a0
[  194.066179][ T9557]  __x64_sys_splice+0x74/0x80
[  194.070841][ T9557]  do_syscall_64+0x44/0xd0
[  194.075252][ T9557]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  194.081126][ T9557] RIP: 0033:0x7f7710020ae9
[  194.085520][ T9557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
07:41:14 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 21)

[  194.105232][ T9557] RSP: 002b:00007f770dd76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  194.114076][ T9557] RAX: ffffffffffffffda RBX: 00007f7710134020 RCX: 00007f7710020ae9
[  194.122049][ T9557] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  194.130011][ T9557] RBP: 00007f770dd761d0 R08: 0000000000034788 R09: 0000000000000000
[  194.137985][ T9557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  194.145947][ T9557] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  194.153904][ T9557]  </TASK>
07:41:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x0, 0x8}, 0x14}}, 0x4000)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), r0)
sendmsg$NL802154_CMD_SET_TX_POWER(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)={0x54, r4, 0x100, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x3bc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x54}, 0x1, 0x0, 0x0, 0x200c0084}, 0x20004090)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000380), r6)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x3f}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x8}]}, 0x3c}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r5)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)

07:41:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x7a}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  194.209531][ T9575] loop4: detected capacity change from 0 to 16
[  194.238602][ T9580] FAULT_INJECTION: forcing a failure.
[  194.238602][ T9580] name failslab, interval 1, probability 0, space 0, times 0
07:41:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x16c, 0x0, 0x238, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x38, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8959}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf3df}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5b20cec7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbc49}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7bcae437}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7f2ce966}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x68, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x146d}]}, {0x4}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1bb28cf4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6c731a0c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x63f2bd93}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf028}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34482c4f}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50520239}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x660c765e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3488}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x400}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xb0, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfa}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x17eb52d6}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x90}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xba}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x20000c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x301525f1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x62}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ffe6e74}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}]}, {0x54, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5bbf974b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xac}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x33be96f7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x97}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3d07a849}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x59bb99ce}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x22}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}]}, 0x16c}, 0x1, 0x0, 0x0, 0x40}, 0x20000941)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100c8008000100fcffffff"], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x24000040)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000006d5b0c04c955a10000e3ae203adb3ffb44bd002100000009001700706879310000000005002000000009000000000000e4cb2512"], 0x34}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)

[  194.251241][ T9580] CPU: 0 PID: 9580 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  194.261305][ T9580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  194.271354][ T9580] Call Trace:
[  194.274699][ T9580]  <TASK>
[  194.277636][ T9580]  dump_stack_lvl+0xd6/0x122
[  194.282283][ T9580]  dump_stack+0x11/0x1b
[  194.286435][ T9580]  should_fail+0x23c/0x250
[  194.290849][ T9580]  ? skb_clone+0x12c/0x1f0
[  194.295298][ T9580]  __should_failslab+0x81/0x90
[  194.300069][ T9580]  should_failslab+0x5/0x20
[  194.304586][ T9580]  kmem_cache_alloc+0x4f/0x320
07:41:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100ff2000000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$NLBL_UNLABEL_C_LIST(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, 0x0, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @remote}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @remote}, @NLBL_UNLABEL_A_SECCTX={0x23, 0x7, 'system_u:object_r:su_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'syzkaller1\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)

[  194.309449][ T9580]  skb_clone+0x12c/0x1f0
[  194.313804][ T9580]  dev_queue_xmit_nit+0x155/0x600
[  194.318933][ T9580]  xmit_one+0x71/0x2f0
[  194.323301][ T9580]  __dev_queue_xmit+0x869/0xf70
[  194.328228][ T9580]  ? debug_smp_processor_id+0x18/0x20
[  194.333603][ T9580]  ? macvlan_broadcast+0x415/0x430
[  194.338740][ T9580]  dev_queue_xmit_accel+0x19/0x20
[  194.343831][ T9580]  macvlan_start_xmit+0x2b3/0x3d0
[  194.348939][ T9580]  xmit_one+0x105/0x2f0
[  194.353096][ T9580]  __dev_queue_xmit+0x869/0xf70
07:41:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="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", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

[  194.357953][ T9580]  dev_queue_xmit+0x13/0x20
[  194.362457][ T9580]  ip_finish_output2+0x705/0xb40
[  194.367468][ T9580]  ip_do_fragment+0xf54/0x1010
[  194.372227][ T9580]  ? ip_fragment+0x130/0x130
[  194.376815][ T9580]  ip_fragment+0xd2/0x130
[  194.381169][ T9580]  ip_finish_output+0x20e/0x240
[  194.386021][ T9580]  ? ip_mc_output+0x291/0x360
[  194.390813][ T9580]  ip_mc_output+0x2a7/0x360
[  194.395404][ T9580]  ? ip_mc_finish_output+0x130/0x130
[  194.400693][ T9580]  ip_send_skb+0x6e/0xe0
[  194.405126][ T9580]  udp_send_skb+0x62d/0x860
[  194.409646][ T9580]  udp_sendpage+0x22c/0x330
[  194.414172][ T9580]  ? udplite_getfrag+0x90/0x90
[  194.418995][ T9580]  inet_sendpage+0x7f/0xc0
[  194.423412][ T9580]  ? inet_sendmsg+0x80/0x80
[  194.427916][ T9580]  kernel_sendpage+0x187/0x200
[  194.432696][ T9580]  ? inet_sendmsg+0x80/0x80
[  194.437239][ T9580]  sock_sendpage+0x5a/0x70
[  194.441655][ T9580]  pipe_to_sendpage+0x128/0x160
[  194.446575][ T9580]  ? sock_fasync+0xc0/0xc0
[  194.451022][ T9580]  __splice_from_pipe+0x207/0x500
[  194.456120][ T9580]  ? generic_splice_sendpage+0xd0/0xd0
[  194.461625][ T9580]  generic_splice_sendpage+0x94/0xd0
[  194.467021][ T9580]  ? iter_file_splice_write+0x790/0x790
[  194.472590][ T9580]  do_splice+0xa0e/0xde0
[  194.476837][ T9580]  ? proc_fail_nth_write+0x127/0x150
[  194.482123][ T9580]  ? __rcu_read_unlock+0x5c/0x290
[  194.487221][ T9580]  ? __fget_light+0x219/0x260
[  194.491934][ T9580]  __se_sys_splice+0x2bd/0x3a0
[  194.496701][ T9580]  __x64_sys_splice+0x74/0x80
[  194.501404][ T9580]  do_syscall_64+0x44/0xd0
[  194.505826][ T9580]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  194.511843][ T9580] RIP: 0033:0x7fb7f78d8ae9
[  194.516257][ T9580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  194.535887][ T9580] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  194.544301][ T9580] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  194.552346][ T9580] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
07:41:14 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 21)

07:41:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
r3 = syz_open_dev$vcsa(&(0x7f0000000000), 0x4, 0x48c80)
sendmsg$FOU_CMD_GET(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x87}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}]}, 0x24}, 0x1, 0x0, 0x0, 0x42801}, 0xd4)

07:41:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_ADD(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x30)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, 0x0, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_LIST_PHY(r4, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x14, r6, 0x10, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x4000000)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:14 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x154}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:14 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x300}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  194.560313][ T9580] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  194.568277][ T9580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  194.576266][ T9580] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  194.584223][ T9580]  </TASK>
[  194.654707][ T9611] FAULT_INJECTION: forcing a failure.
[  194.654707][ T9611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.667794][ T9611] CPU: 0 PID: 9611 Comm: syz-executor.3 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  194.671671][ T9614] loop4: detected capacity change from 0 to 16
[  194.677858][ T9611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  194.677872][ T9611] Call Trace:
[  194.677878][ T9611]  <TASK>
[  194.677885][ T9611]  dump_stack_lvl+0xd6/0x122
[  194.677910][ T9611]  dump_stack+0x11/0x1b
[  194.708987][ T9611]  should_fail+0x23c/0x250
[  194.713394][ T9611]  should_fail_usercopy+0x16/0x20
[  194.718404][ T9611]  _copy_to_user+0x1c/0x90
[  194.722823][ T9611]  simple_read_from_buffer+0xab/0x120
[  194.728243][ T9611]  proc_fail_nth_read+0x10d/0x150
[  194.733324][ T9611]  ? proc_fault_inject_write+0x230/0x230
[  194.739024][ T9611]  vfs_read+0x1e6/0x750
[  194.743169][ T9611]  ? __fget_light+0x219/0x260
[  194.747833][ T9611]  ksys_read+0xd9/0x190
[  194.752027][ T9611]  __x64_sys_read+0x3e/0x50
[  194.756535][ T9611]  do_syscall_64+0x44/0xd0
[  194.760938][ T9611]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  194.766928][ T9611] RIP: 0033:0x7f770ffd369c
[  194.771326][ T9611] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  194.790958][ T9611] RSP: 002b:00007f770dd76170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  194.799463][ T9611] RAX: ffffffffffffffda RBX: 0000000000001000 RCX: 00007f770ffd369c
[  194.807417][ T9611] RDX: 000000000000000f RSI: 00007f770dd761e0 RDI: 0000000000000007
[  194.815371][ T9611] RBP: 00007f770dd761d0 R08: 0000000000000000 R09: 0000000000000000
[  194.823411][ T9611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  194.831363][ T9611] R13: 00007ffe007e931f R14: 00007f770dd76300 R15: 0000000000022000
[  194.839403][ T9611]  </TASK>
07:41:15 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 22)

07:41:15 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0)

07:41:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x500}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:15 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan0\x00'})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b30106000000000000000080", @ANYRES16=r5, @ANYBLOB="01e7ffffffffff0100002100000009001f00706879310000000005002000000000000c000500000000000000000041510f77948aec7f8414cfd0cf2f211376bb3c4f4fbb211cc08e0e1f6f6214ea5de4a581157ad54790894ef0b3b11adef2300bdbecfe0d25a9a7a04aa4292e6b031419af7b15c2ea3383f383d7f45bcd96592c013a85268ebe4131b824062f80326e0541d69f7651c035677c44", @ANYBLOB="9148014551158de1655148c2c5f0f66f9aa73af87adc25332926235bc64848c61f1e76a27c", @ANYRES32], 0x34}}, 0x0)

07:41:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x34, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xffff}]}]}, 0x34}}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x34, r7, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xffff}]}]}, 0x34}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x64, 0x0, 0x4, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_KEY={0x14, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x9}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x20}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x64}, 0x1, 0x0, 0x0, 0x8040}, 0x4050004)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r10, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:15 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000000)={'wpan3\x00'})
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100004009001f00706879310000000005002000000000002c0005000000000000000000"], 0x34}}, 0x0)

07:41:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x600}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:15 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="252ec4ba1f6fc3a377354b89e92aba53e94c40dba2e7ece6cbea92b2db507af6145606497bc2585ad63e7ce25d3e239b8fe0976b482f70164f2b193ba3aed604c8b8f0565fa807aa3111b0f563b9b6e485ed61faca59c304020ae971925a1403056f78a8c4e6f67c3aeb359237f209422558126bea9463ecae8bd4e1cd72d93a0e47f0859fed0787a3690e4ec1f9a173f10f359032b8ffe01b0ec6d7c74230c7248f32dd9d6f074639d2c60e935c355040b5fbb01175690b233adf49c0ccd6d2441c9bb6a427dcf301fd955ce8f1cc2a899b9c6c72b96fdd058dfd43054955b6114e51220a89abbee944edfc62958cee19a15e4d34201f213ee868e7da5478def31e3f789836739dce3151e226b6308528c6ac896e5b5cd5458314becc9985c1ea8cf379c5e7e1e588a411645287487f8e78767cd0359f162d71e86fc824e4136f54ad6a7a818e9480f5085f35f987a52fc84ee694c7f69463b5f3680c1101df49aa365dde3c859971ae2a58cbb5cca074801a8904cd6534281e5c0b1d95bc05f7e324a04e9c3474ac8f828b070db96d4093a3cef4ff2220c05beb81c92b74bcde4f3b3dbb59a2911cc8010ae76b98aad178331b6ef841b46c129f045f689de5af66bdee85ee69158c0185803d1fba6dcd76d64f0c29feed43ac28c6da0bd5afcd84923253398c7aef25de5c82677c0e6b6578e8c47529d15422d2", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x700}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  195.140346][ T9647] FAULT_INJECTION: forcing a failure.
[  195.140346][ T9647] name failslab, interval 1, probability 0, space 0, times 0
[  195.152986][ T9647] CPU: 1 PID: 9647 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  195.163051][ T9647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  195.173139][ T9647] Call Trace:
[  195.176416][ T9647]  <TASK>
[  195.179346][ T9647]  dump_stack_lvl+0xd6/0x122
[  195.183992][ T9647]  dump_stack+0x11/0x1b
07:41:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x900}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  195.188198][ T9647]  should_fail+0x23c/0x250
[  195.192618][ T9647]  ? skb_clone+0x12c/0x1f0
[  195.197043][ T9647]  __should_failslab+0x81/0x90
[  195.201824][ T9647]  should_failslab+0x5/0x20
[  195.206352][ T9647]  kmem_cache_alloc+0x4f/0x320
[  195.211114][ T9647]  skb_clone+0x12c/0x1f0
[  195.215372][ T9647]  ip_check_defrag+0x214/0x3d0
[  195.220191][ T9647]  packet_rcv_fanout+0xcb/0xa40
[  195.225179][ T9647]  ? __copy_skb_header+0x275/0x2c0
[  195.230297][ T9647]  ? __skb_clone+0x2db/0x300
[  195.234890][ T9647]  ? packet_direct_xmit+0x1a0/0x1a0
07:41:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  195.240091][ T9647]  dev_queue_xmit_nit+0x392/0x600
[  195.245124][ T9647]  xmit_one+0x71/0x2f0
[  195.249259][ T9647]  __dev_queue_xmit+0x869/0xf70
[  195.254190][ T9647]  ? debug_smp_processor_id+0x18/0x20
[  195.259711][ T9647]  ? macvlan_broadcast+0x415/0x430
[  195.264919][ T9647]  dev_queue_xmit_accel+0x19/0x20
[  195.269961][ T9647]  macvlan_start_xmit+0x2b3/0x3d0
[  195.274992][ T9647]  xmit_one+0x105/0x2f0
[  195.279218][ T9647]  __dev_queue_xmit+0x869/0xf70
[  195.284079][ T9647]  dev_queue_xmit+0x13/0x20
07:41:15 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xb00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  195.288647][ T9647]  ip_finish_output2+0x705/0xb40
[  195.293608][ T9647]  ip_do_fragment+0xf54/0x1010
[  195.298420][ T9647]  ? ip_fragment+0x130/0x130
[  195.303007][ T9647]  ip_fragment+0xd2/0x130
[  195.307336][ T9647]  ip_finish_output+0x20e/0x240
[  195.312253][ T9647]  ? ip_mc_output+0x291/0x360
[  195.317095][ T9647]  ip_mc_output+0x2a7/0x360
[  195.321597][ T9647]  ? ip_mc_finish_output+0x130/0x130
[  195.326977][ T9647]  ip_send_skb+0x6e/0xe0
[  195.331218][ T9647]  udp_send_skb+0x62d/0x860
[  195.335744][ T9647]  udp_sendpage+0x22c/0x330
[  195.340243][ T9647]  ? udplite_getfrag+0x90/0x90
[  195.345032][ T9647]  inet_sendpage+0x7f/0xc0
[  195.349471][ T9647]  ? inet_sendmsg+0x80/0x80
[  195.353965][ T9647]  kernel_sendpage+0x187/0x200
[  195.358716][ T9647]  ? inet_sendmsg+0x80/0x80
[  195.363257][ T9647]  sock_sendpage+0x5a/0x70
[  195.367741][ T9647]  pipe_to_sendpage+0x128/0x160
[  195.372581][ T9647]  ? sock_fasync+0xc0/0xc0
[  195.377020][ T9647]  __splice_from_pipe+0x207/0x500
[  195.382041][ T9647]  ? generic_splice_sendpage+0xd0/0xd0
[  195.387487][ T9647]  generic_splice_sendpage+0x94/0xd0
[  195.392752][ T9647]  ? iter_file_splice_write+0x790/0x790
[  195.398397][ T9647]  do_splice+0xa0e/0xde0
[  195.402744][ T9647]  ? proc_fail_nth_write+0x127/0x150
[  195.408015][ T9647]  ? __rcu_read_unlock+0x5c/0x290
[  195.413023][ T9647]  ? __fget_light+0x219/0x260
[  195.417746][ T9647]  __se_sys_splice+0x2bd/0x3a0
[  195.422507][ T9647]  __x64_sys_splice+0x74/0x80
[  195.427180][ T9647]  do_syscall_64+0x44/0xd0
[  195.431607][ T9647]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  195.437597][ T9647] RIP: 0033:0x7fb7f78d8ae9
[  195.442193][ T9647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  195.461818][ T9647] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  195.470213][ T9647] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  195.478252][ T9647] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  195.486206][ T9647] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  195.494166][ T9647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  195.502143][ T9647] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  195.510127][ T9647]  </TASK>
[  195.525455][ T9648] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  195.554169][ T9670] loop4: detected capacity change from 0 to 16
07:41:16 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 23)

07:41:16 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="5800000000090101000000000000000000000000100004800800014000000002040002000c000280050001000000000090ce75a90e89650714000280080001000000000008000200ac14140008000540000000000900010073797a3100000000"], 0x58}}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="e9954831d28f7bd5e71797c2b7dd9410acfc9668ee335de30d4cbc5075984e27bbdc2583efaf5494ac6bc8dfc7fa0821ae2adc590e52f2653ba1f7ecd09ecd0665f3e71afa44a44e620041f31eb8ffc3f6ae56cadcca64cdfbcc181deb7cd24ba1115d18148d20c90e7825eb8f00cbd8922694b1b4c484e67895912061969e12b06133e853357427c6396430bf2266979efc066ecffc0b97a3889d24a6eced2bdbdf9515bd16491982a12e811dea611e92e8f73ad5d97811cd", @ANYRES16=r2, @ANYRES64=r0], 0x34}}, 0x0)

07:41:16 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000002000000000002100000009001f00706879310000000005002000000000000c0005000000000100000000c3bfe78b7e56d9e97ece13c6a44a1c9b713af0ddcd0bc733aed359eb460064479177885800000000000000043ce3bea09742b888668ebe69882bf982765329c3ca61f9e1e553057fe0cf886225b21ad75aa374b8328adc666c85d7613491b2a58e0c07ac8fb0fdf3c7a1612e0bd18b78a81501c6b91097"], 0x34}}, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x54, 0x0, 0x4, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x3c}}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @local}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x40)

07:41:16 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:16 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xc00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:16 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0xffffffffffffffff, 0x0)

[  195.938145][ T9677] loop4: detected capacity change from 0 to 16
[  195.950929][ T9682] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
07:41:16 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0xb3cf23f053f08e81, 0x70bd29, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x20}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x840}, 0x80)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), r0)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000540), r0)
sendmsg$IEEE802154_DISASSOCIATE_REQ(r1, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1004}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x50, r3, 0x439, 0x70bd26, 0x25dfdbff, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_REASON={0x5, 0x12, 0x5}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0x100}}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa2}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000800}, 0x20000000)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x1fc, r2, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0xc4, 0x8, 0x0, 0x1, [{0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1eac08c7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x77}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x824660}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa8}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x18a14d44}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4c}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4be20b3c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x12}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x47aeb6da}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x779d47f1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xff}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6f9ac02b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x19}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa4}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x31}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0xd0, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cd9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x335af5d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6790f7b4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x559039aa}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f17}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7c7869b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c09bbab}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x16a70d3b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5ba6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4780e683}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x11f7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe6d5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x538}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1f256dee}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xfb4a5cd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xde3d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xeddd2db}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x8bcc5f5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6830}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1f730c54}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xedd2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xfffffff9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6faa1e7a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x31b0d071}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x54, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1e45771e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa791}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x51e4083f}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xd4b8e8a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x168a257}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18a9aaf0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x9f36021}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7726}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa5cb}]}]}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x40001}, 0x40000)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:16 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xd00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  196.025789][ T9682] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[  196.035936][ T9696] FAULT_INJECTION: forcing a failure.
[  196.035936][ T9696] name failslab, interval 1, probability 0, space 0, times 0
[  196.048624][ T9696] CPU: 0 PID: 9696 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  196.058795][ T9696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  196.068850][ T9696] Call Trace:
[  196.072145][ T9696]  <TASK>
07:41:16 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000180)={'wpan3\x00'})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
sendmsg$NLBL_MGMT_C_ADD(r3, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @mcast1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8840)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r5)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000040)={'wpan4\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEV(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x20040010)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="a46986178000000000008001002702e9835e4f2766d5205b71bf2c50d595163d2d165865bf7433382cdad40821903ca6b2c3f9aae2387488aea94eaa8703903c9d5c3e634d1a6219e6b37688aaf2cb515c4447d6dcaaf7ce5bdb7300cb0500c88e10500016643d387b996def921829c49ae51444057a5aa82708321b77ee8b3d0a650730", @ANYRES16=r4, @ANYBLOB="010000000000fc0f0000210000000a0001007770616e3300000005002000000000000500200000000000"], 0x30}}, 0x0)

[  196.075143][ T9696]  dump_stack_lvl+0xd6/0x122
[  196.079815][ T9696]  dump_stack+0x11/0x1b
[  196.083977][ T9696]  should_fail+0x23c/0x250
[  196.088390][ T9696]  ? skb_clone+0x12c/0x1f0
[  196.092820][ T9696]  __should_failslab+0x81/0x90
[  196.097653][ T9696]  should_failslab+0x5/0x20
[  196.102169][ T9696]  kmem_cache_alloc+0x4f/0x320
[  196.107025][ T9696]  skb_clone+0x12c/0x1f0
[  196.111268][ T9696]  dev_queue_xmit_nit+0x155/0x600
[  196.116360][ T9696]  xmit_one+0x71/0x2f0
[  196.120430][ T9696]  __dev_queue_xmit+0x869/0xf70
07:41:16 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000100), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADD(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x14c, r6, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_DOMAIN={0x106, 0x1, '\x02\x80\fl\x14\x10\xbc\x90;\xa8F\xcd3\xb86e_qS\r\xbc\x88;\x14afZa7-\xbf\xf4\xd2\n\x8a\xcdB\xd2\xa61\x1a\n{\xa5#|1@2FMr\xf6=\xa7\x88\x1a<\xf5\x93\xb6\xaf\xd0 L\xba\x95H\xf9\xe4\xb7[)\x19#\xb4\x83\xb7D\x1c\vCR\xf6ibs\xc3\xa4\xb0\xe0l\x95\x7f\xa3\x18\xf7\x04\xd2)\xe6@\xaa\xe0\xcet\x99\x1d\x17\xe5&\xe7h#\xbc9\xd2u.h%\xbf\".aD\xf8)5\xf47\x87p\x18\xf4\x95\x0e\xa1SY\n\xfbn\xbe\xb1\x9ef\xfe\xae\x14\xb2\x13\x88\x06\xbd\a\xb4\x90\xf2\xc5\x04+\x86l\x1e\x83\x1aA\x95\xd0\x0e\x03/\xde\x1a\xccNT\xf4\xad\x99\x83\xaf\x81Nz\xb2@\x1e\x82>:\xc9n\xe8\x16,\xccu\a(h>\x015\xadd\xce\x99k{\x91\xd9[B\xd3\x1f>{\xf6.\xa3d\xce\x7f\xb0\xaa\xe6~\xf45\xd4v7z\xffJ\xdeN\xd7\xb1\xa2t\xacj\xb8h\xe5\x98\xb6\xf3\xa0\xe0\xbc\x1d\x00\x0f\xf7'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast1={0x1c, 0x1, '\x00', 0x8}}, @NLBL_MGMT_A_IPV6MASK={0x4, 0x6, @mcast2={0xf}}]}, 0x14c}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0x70, r6, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @empty}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast1}, @NLBL_MGMT_A_FAMILY={0x6}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @empty}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast2}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @empty}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @local}]}, 0x70}}, 0x800)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_SET_MACPARAMS(r8, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r3, 0x400, 0x70bd29, 0x25dfdbff, {}, [@IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x40004)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r1, 0x0, 0x0, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x81)

07:41:16 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x8010}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c001249", @ANYRES16=r2, @ANYBLOB="010000000000000000000d00000006000800000000000500070000000000050018000000000006000a00000000000500170000000000"], 0x3c}}, 0x0)
sendmsg$IEEE802154_START_REQ(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x64, r2, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x17}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x1}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x80}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x17}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x7f}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x13}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x19}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x2}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x4}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x40}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000}, 0x10)

[  196.125307][ T9696]  dev_queue_xmit+0x13/0x20
[  196.129811][ T9696]  ip_finish_output2+0x705/0xb40
[  196.134827][ T9696]  ip_do_fragment+0xf54/0x1010
[  196.139701][ T9696]  ? ip_fragment+0x130/0x130
[  196.144289][ T9696]  ip_fragment+0xd2/0x130
[  196.148662][ T9696]  ip_finish_output+0x20e/0x240
[  196.153514][ T9696]  ? ip_mc_output+0x291/0x360
[  196.158188][ T9696]  ip_mc_output+0x2a7/0x360
[  196.162687][ T9696]  ? ip_mc_finish_output+0x130/0x130
[  196.167973][ T9696]  ip_send_skb+0x6e/0xe0
07:41:16 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  196.172229][ T9696]  udp_send_skb+0x62d/0x860
[  196.176736][ T9696]  udp_sendpage+0x22c/0x330
[  196.181380][ T9696]  ? udplite_getfrag+0x90/0x90
[  196.186137][ T9696]  inet_sendpage+0x7f/0xc0
[  196.190575][ T9696]  ? inet_sendmsg+0x80/0x80
[  196.195075][ T9696]  kernel_sendpage+0x187/0x200
[  196.199896][ T9696]  ? inet_sendmsg+0x80/0x80
[  196.204402][ T9696]  sock_sendpage+0x5a/0x70
[  196.208895][ T9696]  pipe_to_sendpage+0x128/0x160
[  196.213746][ T9696]  ? sock_fasync+0xc0/0xc0
[  196.218181][ T9696]  __splice_from_pipe+0x207/0x500
[  196.223250][ T9696]  ? generic_splice_sendpage+0xd0/0xd0
[  196.228710][ T9696]  generic_splice_sendpage+0x94/0xd0
[  196.233998][ T9696]  ? iter_file_splice_write+0x790/0x790
[  196.237242][ T9705] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  196.239571][ T9696]  do_splice+0xa0e/0xde0
[  196.239595][ T9696]  ? proc_fail_nth_write+0x127/0x150
[  196.239642][ T9696]  ? __rcu_read_unlock+0x5c/0x290
[  196.239661][ T9696]  ? __fget_light+0x219/0x260
[  196.268105][ T9696]  __se_sys_splice+0x2bd/0x3a0
[  196.272880][ T9696]  __x64_sys_splice+0x74/0x80
[  196.277633][ T9696]  do_syscall_64+0x44/0xd0
[  196.282075][ T9696]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  196.288037][ T9696] RIP: 0033:0x7fb7f78d8ae9
[  196.292458][ T9696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  196.313868][ T9696] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  196.322416][ T9696] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  196.330387][ T9696] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  196.338353][ T9696] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  196.346306][ T9696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  196.354276][ T9696] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  196.362232][ T9696]  </TASK>
[  196.399054][ T9713] loop4: detected capacity change from 0 to 16
07:41:17 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 24)

07:41:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xe00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:17 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:17 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000080)={'wpan0\x00', <r4=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x58, r3, 0x2, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x2}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3f}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x8010}, 0xc0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r6)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r7, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r5, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x44, r7, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa1}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0x300}}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0xa28}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000}, 0x8004)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:17 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:17 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x2)

07:41:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xe5a}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  196.834785][ T9724] loop4: detected capacity change from 0 to 16
[  196.860497][ T9723] validate_nla: 42 callbacks suppressed
[  196.860511][ T9723] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  196.874225][ T9723] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  196.912487][ T9734] FAULT_INJECTION: forcing a failure.
[  196.912487][ T9734] name failslab, interval 1, probability 0, space 0, times 0
[  196.925124][ T9734] CPU: 0 PID: 9734 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  196.929462][ T9736] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  196.935187][ T9734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  196.943334][ T9736] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
07:41:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xe5b}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  196.953432][ T9734] Call Trace:
[  196.953442][ T9734]  <TASK>
[  196.953447][ T9734]  dump_stack_lvl+0xd6/0x122
[  196.972336][ T9734]  dump_stack+0x11/0x1b
[  196.976493][ T9734]  should_fail+0x23c/0x250
[  196.980911][ T9734]  ? skb_clone+0x12c/0x1f0
[  196.985400][ T9734]  __should_failslab+0x81/0x90
[  196.990231][ T9734]  should_failslab+0x5/0x20
[  196.994782][ T9734]  kmem_cache_alloc+0x4f/0x320
[  196.999585][ T9734]  ? __rcu_read_unlock+0x5c/0x290
[  197.004725][ T9734]  skb_clone+0x12c/0x1f0
07:41:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0xf00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  197.007972][ T9741] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  197.008967][ T9734]  ip_check_defrag+0x214/0x3d0
[  197.017099][ T9741] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  197.021822][ T9734]  packet_rcv_fanout+0xcb/0xa40
[  197.021855][ T9734]  ? __copy_skb_header+0x275/0x2c0
[  197.039809][ T9734]  ? __skb_clone+0x2db/0x300
[  197.044437][ T9734]  ? packet_direct_xmit+0x1a0/0x1a0
[  197.049638][ T9734]  dev_queue_xmit_nit+0x392/0x600
[  197.054661][ T9734]  xmit_one+0x71/0x2f0
[  197.058728][ T9734]  __dev_queue_xmit+0x869/0xf70
[  197.063619][ T9734]  dev_queue_xmit+0x13/0x20
[  197.068127][ T9734]  ip_finish_output2+0x705/0xb40
[  197.070602][ T9746] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  197.073128][ T9734]  ip_do_fragment+0xf54/0x1010
[  197.073152][ T9734]  ? ip_fragment+0x130/0x130
[  197.081216][ T9746] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  197.085949][ T9734]  ip_fragment+0xd2/0x130
[  197.102857][ T9734]  ip_finish_output+0x20e/0x240
[  197.107741][ T9734]  ? ip_mc_output+0x291/0x360
07:41:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1100}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  197.112415][ T9734]  ip_mc_output+0x2a7/0x360
[  197.116923][ T9734]  ? ip_mc_finish_output+0x130/0x130
[  197.122204][ T9734]  ip_send_skb+0x6e/0xe0
[  197.126445][ T9734]  udp_send_skb+0x62d/0x860
[  197.130964][ T9734]  udp_sendpage+0x22c/0x330
[  197.135470][ T9734]  ? udplite_getfrag+0x90/0x90
[  197.140249][ T9734]  inet_sendpage+0x7f/0xc0
[  197.145078][ T9734]  ? inet_sendmsg+0x80/0x80
[  197.149632][ T9734]  kernel_sendpage+0x187/0x200
[  197.154408][ T9734]  ? inet_sendmsg+0x80/0x80
[  197.158991][ T9734]  sock_sendpage+0x5a/0x70
07:41:17 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  197.163480][ T9734]  pipe_to_sendpage+0x128/0x160
[  197.168362][ T9734]  ? sock_fasync+0xc0/0xc0
[  197.172775][ T9734]  __splice_from_pipe+0x207/0x500
[  197.177802][ T9734]  ? generic_splice_sendpage+0xd0/0xd0
[  197.183399][ T9734]  generic_splice_sendpage+0x94/0xd0
[  197.188795][ T9734]  ? iter_file_splice_write+0x790/0x790
[  197.194354][ T9734]  do_splice+0xa0e/0xde0
[  197.198695][ T9734]  ? proc_fail_nth_write+0x127/0x150
[  197.199956][ T9752] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
07:41:17 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1200}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  197.204002][ T9734]  ? __rcu_read_unlock+0x5c/0x290
[  197.204027][ T9734]  ? __fget_light+0x219/0x260
[  197.212157][ T9752] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  197.217227][ T9734]  __se_sys_splice+0x2bd/0x3a0
[  197.234675][ T9734]  __x64_sys_splice+0x74/0x80
[  197.239433][ T9734]  do_syscall_64+0x44/0xd0
[  197.243920][ T9734]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  197.249835][ T9734] RIP: 0033:0x7fb7f78d8ae9
[  197.254242][ T9734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  197.274113][ T9734] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  197.282523][ T9734] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  197.290475][ T9734] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  197.298448][ T9734] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  197.306397][ T9734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.314345][ T9734] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  197.322300][ T9734]  </TASK>
[  197.358705][ T9764] loop4: detected capacity change from 0 to 16
07:41:18 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 25)

07:41:18 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2000}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r1)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000080)={'wpan0\x00', <r4=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r1, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r3, 0x8, 0x70bd27, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x3}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x1f}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x6040000}, 0x40000d4)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r2, 0x1, 0x70bd2c, 0x0, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x2}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x30}}, 0x2404807c)

07:41:18 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan4\x00'})
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
sendmsg$IEEE802154_START_REQ(r6, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x0, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r2)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r6)

07:41:18 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:18 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x3)

07:41:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x401}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000840}, 0x8000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  197.710812][ T9776] loop4: detected capacity change from 0 to 16
07:41:18 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2500}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  197.797443][ T9792] FAULT_INJECTION: forcing a failure.
[  197.797443][ T9792] name failslab, interval 1, probability 0, space 0, times 0
[  197.810118][ T9792] CPU: 1 PID: 9792 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  197.820197][ T9792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  197.830251][ T9792] Call Trace:
[  197.833523][ T9792]  <TASK>
[  197.836447][ T9792]  dump_stack_lvl+0xd6/0x122
[  197.841034][ T9792]  dump_stack+0x11/0x1b
[  197.845187][ T9792]  should_fail+0x23c/0x250
[  197.849600][ T9792]  ? skb_clone+0x12c/0x1f0
[  197.854018][ T9792]  __should_failslab+0x81/0x90
[  197.858789][ T9792]  should_failslab+0x5/0x20
[  197.863293][ T9792]  kmem_cache_alloc+0x4f/0x320
[  197.868160][ T9792]  skb_clone+0x12c/0x1f0
[  197.872406][ T9792]  inet_frag_reasm_prepare+0x3e/0x630
[  197.877818][ T9792]  ? ip4_obj_hashfn+0x110/0x110
[  197.882673][ T9792]  ? ip_expire+0x350/0x350
[  197.887086][ T9792]  ? ip4_key_hashfn+0x110/0x110
[  197.891949][ T9792]  ? ip4_obj_hashfn+0x110/0x110
07:41:18 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4800}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:18 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4c00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:18 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5401}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  197.896802][ T9792]  ip_defrag+0xd40/0x1160
[  197.901233][ T9792]  ip_check_defrag+0x2cb/0x3d0
[  197.906004][ T9792]  packet_rcv_fanout+0xcb/0xa40
[  197.910891][ T9792]  ? __copy_skb_header+0x275/0x2c0
[  197.916079][ T9792]  ? __skb_clone+0x2db/0x300
[  197.920706][ T9792]  ? packet_direct_xmit+0x1a0/0x1a0
[  197.926012][ T9792]  dev_queue_xmit_nit+0x392/0x600
[  197.931082][ T9792]  xmit_one+0x71/0x2f0
[  197.935164][ T9792]  __dev_queue_xmit+0x869/0xf70
[  197.940090][ T9792]  dev_queue_xmit+0x13/0x20
[  197.944593][ T9792]  ip_finish_output2+0x705/0xb40
[  197.949530][ T9792]  ip_do_fragment+0xf54/0x1010
[  197.954314][ T9792]  ? ip_fragment+0x130/0x130
[  197.958901][ T9792]  ip_fragment+0xd2/0x130
[  197.963231][ T9792]  ip_finish_output+0x20e/0x240
[  197.968141][ T9792]  ? ip_mc_output+0x291/0x360
[  197.972921][ T9792]  ip_mc_output+0x2a7/0x360
[  197.977486][ T9792]  ? ip_mc_finish_output+0x130/0x130
[  197.982768][ T9792]  ip_send_skb+0x6e/0xe0
[  197.987022][ T9792]  udp_send_skb+0x62d/0x860
[  197.991701][ T9792]  udp_sendpage+0x22c/0x330
07:41:18 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  197.996267][ T9792]  ? udplite_getfrag+0x90/0x90
[  198.001126][ T9792]  inet_sendpage+0x7f/0xc0
[  198.005543][ T9792]  ? inet_sendmsg+0x80/0x80
[  198.010043][ T9792]  kernel_sendpage+0x187/0x200
[  198.014802][ T9792]  ? inet_sendmsg+0x80/0x80
[  198.019307][ T9792]  sock_sendpage+0x5a/0x70
[  198.023725][ T9792]  pipe_to_sendpage+0x128/0x160
[  198.028592][ T9792]  ? sock_fasync+0xc0/0xc0
[  198.033005][ T9792]  __splice_from_pipe+0x207/0x500
[  198.038038][ T9792]  ? generic_splice_sendpage+0xd0/0xd0
[  198.043601][ T9792]  generic_splice_sendpage+0x94/0xd0
[  198.048889][ T9792]  ? iter_file_splice_write+0x790/0x790
[  198.054466][ T9792]  do_splice+0xa0e/0xde0
[  198.058722][ T9792]  ? proc_fail_nth_write+0x127/0x150
[  198.064059][ T9792]  ? __rcu_read_unlock+0x5c/0x290
[  198.069084][ T9792]  ? __fget_light+0x219/0x260
[  198.073746][ T9792]  __se_sys_splice+0x2bd/0x3a0
[  198.078555][ T9792]  __x64_sys_splice+0x74/0x80
[  198.083240][ T9792]  do_syscall_64+0x44/0xd0
[  198.087663][ T9792]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  198.093542][ T9792] RIP: 0033:0x7fb7f78d8ae9
[  198.098038][ T9792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  198.117624][ T9792] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  198.126158][ T9792] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  198.134166][ T9792] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  198.142119][ T9792] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  198.150189][ T9792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  198.158154][ T9792] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  198.166119][ T9792]  </TASK>
[  198.211865][ T9815] loop4: detected capacity change from 0 to 16
07:41:18 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 26)

07:41:18 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5a0e}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:18 executing program 1:
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_BCN_ORD={0x5}]}, 0x3c}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="344000004400c33eaf5e413de771e679c40c5506ec8166171b177ebb210d3ebe086b46998809c6ce9e236acfdf61131a4bc5adceca7e625afc1d7b3e6e822baf039644268876fdaf875a364ebd80b671ca5fbd2b77757fef61e63fc9d2b607dfdc4c25ff5f910203371f0774abf48b31c6d2cef691578c7d48486b90aa3ef8f72632d3c43e62e99991d3a6efce440a4d016076f131e5edf505e4cf6e2fe63e5bec96faf92abac15c3aae53fe80ddbf8bb7550eb72b511b81e0a7a79da2e292f90bd0783560f9308539aa1cedffc102990d765629189f3c8de187fa1d9a8a9f2f7163b58f88b77705079d1f00", @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0)

07:41:18 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

07:41:18 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x4)

07:41:18 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r3)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

[  198.588456][ T9827] loop4: detected capacity change from 0 to 16
[  198.644373][ T9837] FAULT_INJECTION: forcing a failure.
[  198.644373][ T9837] name failslab, interval 1, probability 0, space 0, times 0
[  198.657048][ T9837] CPU: 1 PID: 9837 Comm: syz-executor.5 Tainted: G        W         5.16.0-rc2-syzkaller #0
[  198.667250][ T9837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  198.677305][ T9837] Call Trace:
[  198.680660][ T9837]  <TASK>
[  198.683586][ T9837]  dump_stack_lvl+0xd6/0x122
[  198.688179][ T9837]  dump_stack+0x11/0x1b
07:41:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5b0e}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  198.692334][ T9837]  should_fail+0x23c/0x250
[  198.696773][ T9837]  ? skb_clone+0x12c/0x1f0
[  198.701195][ T9837]  __should_failslab+0x81/0x90
[  198.705962][ T9837]  should_failslab+0x5/0x20
[  198.710498][ T9837]  kmem_cache_alloc+0x4f/0x320
[  198.715298][ T9837]  ? __rcu_read_unlock+0x5c/0x290
[  198.720325][ T9837]  skb_clone+0x12c/0x1f0
[  198.724578][ T9837]  ip_check_defrag+0x214/0x3d0
[  198.729359][ T9837]  packet_rcv_fanout+0xcb/0xa40
[  198.734235][ T9837]  ? __copy_skb_header+0x275/0x2c0
[  198.739358][ T9837]  ? __skb_clone+0x2db/0x300
07:41:19 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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", 0x87ffffa}], 0x1, 0x6, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x0)

[  198.743991][ T9837]  ? packet_direct_xmit+0x1a0/0x1a0
[  198.749213][ T9837]  dev_queue_xmit_nit+0x392/0x600
[  198.754389][ T9837]  xmit_one+0x71/0x2f0
[  198.758547][ T9837]  __dev_queue_xmit+0x869/0xf70
[  198.763467][ T9837]  dev_queue_xmit+0x13/0x20
[  198.767978][ T9837]  ip_finish_output2+0x705/0xb40
[  198.772916][ T9837]  ip_do_fragment+0xf54/0x1010
[  198.777734][ T9837]  ? ip_fragment+0x130/0x130
[  198.782327][ T9837]  ip_fragment+0xd2/0x130
[  198.786672][ T9837]  ip_finish_output+0x20e/0x240
07:41:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6000}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  198.791522][ T9837]  ? ip_mc_output+0x291/0x360
[  198.796237][ T9837]  ip_mc_output+0x2a7/0x360
[  198.800741][ T9837]  ? ip_mc_finish_output+0x130/0x130
[  198.806110][ T9837]  ip_send_skb+0x6e/0xe0
[  198.810346][ T9837]  udp_send_skb+0x62d/0x860
[  198.814943][ T9837]  udp_sendpage+0x22c/0x330
[  198.819449][ T9837]  ? udplite_getfrag+0x90/0x90
[  198.824552][ T9837]  inet_sendpage+0x7f/0xc0
[  198.828973][ T9837]  ? inet_sendmsg+0x80/0x80
[  198.833491][ T9837]  kernel_sendpage+0x187/0x200
[  198.838266][ T9837]  ? inet_sendmsg+0x80/0x80
07:41:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6800}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6c00}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

[  198.842872][ T9837]  sock_sendpage+0x5a/0x70
[  198.847306][ T9837]  pipe_to_sendpage+0x128/0x160
[  198.852247][ T9837]  ? sock_fasync+0xc0/0xc0
[  198.856691][ T9837]  __splice_from_pipe+0x207/0x500
[  198.861732][ T9837]  ? generic_splice_sendpage+0xd0/0xd0
[  198.867197][ T9837]  generic_splice_sendpage+0x94/0xd0
[  198.872484][ T9837]  ? iter_file_splice_write+0x790/0x790
[  198.878118][ T9837]  do_splice+0xa0e/0xde0
[  198.882363][ T9837]  ? proc_fail_nth_write+0x127/0x150
[  198.887788][ T9837]  ? __rcu_read_unlock+0x5c/0x290
[  198.892835][ T9837]  ? __fget_light+0x219/0x260
[  198.897523][ T9837]  __se_sys_splice+0x2bd/0x3a0
[  198.902284][ T9837]  __x64_sys_splice+0x74/0x80
[  198.907042][ T9837]  do_syscall_64+0x44/0xd0
[  198.911463][ T9837]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  198.917399][ T9837] RIP: 0033:0x7fb7f78d8ae9
[  198.921896][ T9837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  198.941880][ T9837] RSP: 002b:00007fb7f562e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  198.950450][ T9837] RAX: ffffffffffffffda RBX: 00007fb7f79ec020 RCX: 00007fb7f78d8ae9
[  198.958421][ T9837] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  198.966375][ T9837] RBP: 00007fb7f562e1d0 R08: 0000000000034788 R09: 0000000000000000
[  198.974392][ T9837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  198.982364][ T9837] R13: 00007ffd877a44cf R14: 00007fb7f562e300 R15: 0000000000022000
[  198.990327][ T9837]  </TASK>
[  199.027740][ T9864] loop4: detected capacity change from 0 to 16
07:41:19 executing program 5:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa002}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000400)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x34788, 0x0) (fail_nth: 27)

07:41:19 executing program 2:
set_mempolicy(0x4002, &(0x7f0000000000)=0x5, 0x4e4)
socket(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x7400}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)

07:41:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x34, r2, 0x10, 0x0, 0x3, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x34}}, 0x0)

07:41:19 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x58, 0x0, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_POLICY={0x10, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x2}}, @NFCTH_TUPLE={0x4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x2, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @dev}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}}, 0x0)
sendmsg(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="8c334fd9ed626a9ace54a4ee3c1c12cc15887aba77c4e2d1152964d9d328b720e6afb266ca329975663c92bad39682dcd5a53ae8a73220002311e2e280af157269f89086b1618a7bd372f6e5d7f5b29e7a96d96118b28a18f15f77f9a7249ca8d617d13560c9fb3fdc8e4c36e387b9945d7d0d78819c265159d206ca20a7a4e34dce2bdfeacbd36174fe9555a18b51fb05a59bd4da20207d4d26206968f244f7206570c2d11427b81136c5e7d38cb152a9f4a5b61921a0393b18dde6785d4df3da92b418a8", 0xc5}], 0x1, &(0x7f00000002c0)=[{0x110, 0x119, 0x3, "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"}], 0x110}, 0x44000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r2)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)

07:41:19 executing program 4:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x8010, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000640)="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