c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}]}, 0x27c}}, 0x0) 06:25:24 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x0) 06:25:24 executing program 1: ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) fsmount(r0, 0x1, 0x8) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000040)={[{@journal_checksum}]}) 06:25:24 executing program 4: syz_genetlink_get_family_id$gtp(&(0x7f0000000180), 0xffffffffffffffff) syz_genetlink_get_family_id$gtp(&(0x7f00000005c0), 0xffffffffffffffff) r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f0000000000), r0) [ 441.910960] FAULT_INJECTION: forcing a failure. [ 441.910960] name failslab, interval 1, probability 0, space 0, times 0 [ 441.912129] CPU: 1 PID: 5387 Comm: syz-executor.2 Not tainted 5.16.0-rc4-next-20211208 #1 [ 441.912921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 441.913995] Call Trace: [ 441.914254] [ 441.914471] dump_stack_lvl+0x8b/0xb3 [ 441.914851] should_fail.cold+0x5/0xa [ 441.915224] ? __alloc_skb+0x211/0x340 [ 441.915617] should_failslab+0x5/0x10 [ 441.915992] kmem_cache_alloc_node+0x55/0x490 [ 441.916423] ? find_held_lock+0x2c/0x110 [ 441.916821] __alloc_skb+0x211/0x340 [ 441.917184] alloc_skb_with_frags+0x92/0x690 [ 441.917619] sock_alloc_send_pskb+0x7ab/0x930 [ 441.918065] ? proto_register+0x990/0x990 [ 441.918479] ? lock_is_held_type+0xd7/0x130 [ 441.918903] __ip_append_data+0x1671/0x35c0 [ 441.919327] ? lock_downgrade+0x6d0/0x6d0 [ 441.919746] ? ip_frag_init+0x350/0x350 [ 441.920142] ? __ip_finish_output.part.0+0x340/0x340 [ 441.920650] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 441.921197] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 441.921751] ? ipv4_mtu+0x123/0x2c0 [ 441.922118] ip_make_skb+0x226/0x2a0 [ 441.922499] ? ip_frag_init+0x350/0x350 [ 441.922890] ? ip_flush_pending_frames+0x20/0x20 [ 441.923381] ? lock_downgrade+0x6d0/0x6d0 [ 441.923810] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 441.924355] ? xfrm_lookup_route+0x65/0x1e0 [ 441.924801] udp_sendmsg+0x18c6/0x2090 [ 441.925202] ? ip_frag_init+0x350/0x350 [ 441.925624] ? udp_push_pending_frames+0xe0/0xe0 [ 441.926103] ? mark_lock+0xfc/0x2e10 [ 441.926480] ? mark_lock+0xfc/0x2e10 [ 441.926855] ? lock_chain_count+0x20/0x20 [ 441.927267] ? lock_chain_count+0x20/0x20 [ 441.927694] ? mark_lock+0xfc/0x2e10 [ 441.928076] udpv6_sendmsg+0x1452/0x2890 [ 441.928493] ? udp_v6_push_pending_frames+0x360/0x360 [ 441.929020] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 441.929558] ? lock_is_held_type+0xd7/0x130 [ 441.929976] ? find_held_lock+0x2c/0x110 [ 441.930383] ? lock_release+0x3b2/0x6f0 [ 441.930780] ? __might_fault+0xd1/0x170 [ 441.931184] ? lock_downgrade+0x6d0/0x6d0 [ 441.931608] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 441.932161] ? selinux_socket_sendmsg+0x1fd/0x2b0 [ 441.932655] ? selinux_socket_getpeername+0x2b0/0x2b0 [ 441.933181] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 441.933745] ? _copy_from_user+0x139/0x170 [ 441.934181] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 441.934740] ? __import_iovec+0x2c2/0x5d0 [ 441.935170] ? udp_v6_push_pending_frames+0x360/0x360 [ 441.935689] ? inet6_sendmsg+0x4a/0x140 [ 441.936096] inet6_sendmsg+0xfd/0x140 [ 441.936484] ? inet6_compat_ioctl+0x310/0x310 [ 441.936935] sock_sendmsg+0xee/0x190 [ 441.937315] ____sys_sendmsg+0x334/0x870 [ 441.937728] ? kernel_sendmsg+0x50/0x50 [ 441.938131] ? __ia32_sys_recvmmsg+0x260/0x260 [ 441.938608] ___sys_sendmsg+0xf3/0x170 [ 441.939007] ? sendmsg_copy_msghdr+0x160/0x160 [ 441.939482] ? lock_release+0x3b2/0x6f0 [ 441.939892] ? __fget_files+0x2cd/0x4c0 [ 441.940295] ? lock_downgrade+0x6d0/0x6d0 [ 441.940728] ? __fget_files+0x2ef/0x4c0 [ 441.941139] ? __fget_light+0xea/0x280 [ 441.941525] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 441.942089] __sys_sendmmsg+0x195/0x470 [ 441.942486] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 441.942924] ? lock_is_held_type+0xd7/0x130 [ 441.943361] ? wait_for_completion_io+0x270/0x270 [ 441.943862] ? lock_is_held_type+0xd7/0x130 [ 441.944286] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 441.944843] ? vfs_write+0x188/0xae0 [ 441.945213] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 441.945772] ? fput+0x2a/0x50 [ 441.946094] __x64_sys_sendmmsg+0x99/0x100 [ 441.946525] ? syscall_enter_from_user_mode+0x1d/0x50 [ 441.947029] do_syscall_64+0x3b/0x90 [ 441.947400] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 441.947927] RIP: 0033:0x7f1ad37f8b19 [ 441.948298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 441.950120] RSP: 002b:00007f1ad0d6e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 441.950855] RAX: ffffffffffffffda RBX: 00007f1ad390bf60 RCX: 00007f1ad37f8b19 [ 441.951572] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003 [ 441.952284] RBP: 00007f1ad0d6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 441.952992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 441.953714] R13: 00007ffdb5d2375f R14: 00007f1ad0d6e300 R15: 0000000000022000 [ 441.954441] [ 441.962911] loop1: detected capacity change from 0 to 4 [ 441.963335] loop5: detected capacity change from 0 to 512 [ 441.970917] EXT4-fs (loop1): Mount option "journal_checksum" incompatible with ext3 06:25:24 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) [ 441.987836] loop1: detected capacity change from 0 to 4 [ 441.996519] EXT4-fs (loop1): Mount option "journal_checksum" incompatible with ext3 [ 441.998463] EXT4-fs (loop5): VFS: Can't find ext4 filesystem 06:25:24 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x0) 06:25:24 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:25:24 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:25:24 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x278, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}]}, 0x278}}, 0x0) 06:25:24 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:25:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x0, 0x3}, 0x6) pwritev(r1, &(0x7f0000000000)=[{&(0x7f0000000080)="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", 0x1000}], 0x1, 0x72, 0x9) close(r0) ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x77ad}) 06:25:24 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000470000004f8010020004000030000000000000080002916eb61f153595a4b414c4c4552202046415431362020200e1fbe5b7cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a00", 0xc0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aaf8fffffff0ffffffffffffff00"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="f8fffffff0ffffffffffffff00"/32, 0x20, 0x400}, {&(0x7f0000010300)="f8fffffff0ffffffffffffff00"/32, 0x20, 0x600}, {&(0x7f0000010400)="f8fffffff0ffffffffffffff00"/32, 0x20, 0x800}, {&(0x7f0000010500)="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", 0x120, 0xa00}, {&(0x7f0000010700)="2e2020202020202020202010002ce970325132510000e97032510300000000002e2e20202020202020202010002ce970325132510000e970325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202020002ce970325132510000e970325104001a040000", 0x80, 0x11800}, {&(0x7f0000010800)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x21800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0x31800}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x51800}], 0x40000, &(0x7f0000000040)=ANY=[@ANYBLOB="c93f0b8d34cf0962c74cb54406f4040e07249c0300eeb4efd8315728"]) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r0, &(0x7f0000000080)="01", 0x20000081) unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200) stat(&(0x7f0000001800)='./file1\x00', &(0x7f0000001840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000018c0)={{{@in6=@ipv4={""/10, ""/2, @local}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f00000019c0)=0xe8) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x114, 0x8, &(0x7f0000001740)=[{&(0x7f0000000180)="7581bebbad21c0864acff2687d6affce7eac6c15ec5e17a23fed11b99d71bf18c952b40acb82b577f4a49261ec737f78bc0da393abfcfcbe47c6706704c05d812372d261fa1a71bd34ba02eca7ef32d5f4758bae18f5c5ba09f0c1c85eb2", 0x5e, 0x81}, {&(0x7f0000000300)="c3957304d61b00dbddcd1d41db016548376d5b42a26171e634730db5ca23c36140d8fb6e5d456f9b9ce7fad07e72bb2ea3b77afccf5758c9f249698fc82b263de753970bfb2908efa0e1c05fafc709827664126bc200614c2433f1ab9c716b000bd1389dde850290a1dd5167b12dfe71b0567dacd1b1426ebe47db8c498c83a814135a3d680687", 0x87, 0x800}, {&(0x7f00000003c0)="4456a887106543b33872c5fe09081218578df576cf500a1e8e465835ed72d7cc5943234014c5d1341125b3c3d7ba303a6ec3ea2739bbb7fd51118fbe71b1306d7db818717833e1", 0x47, 0x5}, {&(0x7f0000000440)="d3f6ff30cb305a9602570bfff3412c1fa1db4befcec207e25815c9cf5b4e35ed3c3b5d49ada12dd26a934e2a2539b86d0a06999f8f04a7df40334f51c8e7208e769ee8b7d6f6492c7ccc8cd936513c1a72bec36de07087cb844a17c4cfa3dfe0bbc4537887d2c0e686e7090873a6cfece2f56a940524a9e985adc67909d5093fec0de6", 0x83, 0x2b5}, {&(0x7f0000000500)="f1b4a04e32185d3f3e06de31d53c90ee1ab1b7899aadf5d4d6c64b5f24765d49a6aaaf451bc6fa341f48294a9333e86249eb37a24f202ed2269ecf30689c5647822e3d829ad650922c12bd5ceba1e4323bdfd515bf037a2733b157722782084964e6d8a9534d553c76a2750a9f8058017c4ce403e8667093ad517bba850a54ce8cf5a634f72760447969248561cc8dbdaeef4edf27251ae2374071e22694753c703b9304df7a4a5a663f9f92825ca0df2f053b2282fa3d32f0f11a5fb8f05cf4", 0xc0, 0x74b}, {&(0x7f00000005c0)="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", 0xfa, 0x8}, {&(0x7f00000006c0)="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", 0x1000, 0x82f8}, {&(0x7f00000016c0)="2653f6c059d3a0486213a9493e397790a0639775a02195af8f6c0ba65bda72c441fd9f21adf0605727645aee3d2df5a873945d9e7f6c4e43271c89ceac919f7d73ddaa0700", 0x45, 0x100000001}], 0x1000, &(0x7f0000001bc0)=ANY=[@ANYBLOB='huge=advise,size=8%t,nr_blocks=+3p4em7,huge=advise,gid=', @ANYRESHEX=r1, @ANYBLOB=',fscontext=system_u,fscontext=root,smackfstransmute=vfat\x00,uid=', @ANYRESDEC=0xee00, @ANYBLOB=',fsuuid=4dS611b9-00ed-Vbfo-65e7-e94e3117,fsmagic=0x0000000000000002,fowner<', @ANYRESDEC=r2, @ANYBLOB="040000000000000000000000000000910dc344a7d68b867b73771681df4a9777db4d0ec7bb97effa3ebeddfe26ba4d5903f18c37bc6af5db5571b18eaba2f3c8b15952afd416d37d16c673726482e0ab5ff711137bd179551c5744590db946608e9f0d2d7b484014aa7484719459a15f8653efc5a0d53a13c267fc4cb13018940c68435307f506c2eba6752385c9db86d498"]) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628) [ 442.210127] loop5: detected capacity change from 0 to 1304 [ 442.289337] loop5: detected capacity change from 0 to 264192 [ 442.992053] loop5: detected capacity change from 0 to 1304 [ 443.048931] loop5: detected capacity change from 0 to 264192 06:25:37 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 06:25:37 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x270, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x270}}, 0x0) [ 454.898501] loop4: detected capacity change from 0 to 4 06:25:37 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:25:37 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) (fail_nth: 6) 06:25:37 executing program 1: madvise(&(0x7f0000fef000/0x1000)=nil, 0x1000, 0x3) madvise(&(0x7f0000fec000/0x3000)=nil, 0x3000, 0x3) madvise(&(0x7f0000fef000/0x4000)=nil, 0x4000, 0x1) syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x25ed, &(0x7f0000000180)={0x0, 0xccfa, 0x2, 0x2, 0x1fa}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000003c0), &(0x7f0000000400)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000640)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd, 0x0, 0x0, 0x6, 0x4}, 0xefb) syz_io_uring_submit(r0, r2, &(0x7f0000000140)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x800, 0x4100}, 0x6) 06:25:37 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:25:37 executing program 4: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000280)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001000028020000028401001bcd", 0x66, 0x400}], 0x0, &(0x7f0000000040)={[], [{@fowner_gt}]}) stat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000300)) mkdirat(r0, &(0x7f00000000c0)='./file1\x00', 0x105) 06:25:37 executing program 5: fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f0000000040)={'ip6gre0\x00', 0x0, 0x2f, 0xaa, 0x8, 0xfffffff9, 0x2, @ipv4={'\x00', '\xff\xff', @loopback}, @ipv4={'\x00', '\xff\xff', @remote}, 0x10, 0x9, 0x0, 0x1}}) accept4$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000140)=0x14, 0x40000) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) setsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, r4}, 0xc) r5 = socket$inet_udp(0x2, 0x2, 0x0) r6 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) setsockopt$inet_mreqn(r5, 0x0, 0x20, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, r7}, 0xc) r8 = socket$inet_udp(0x2, 0x2, 0x0) r9 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) setsockopt$inet_mreqn(r8, 0x0, 0x20, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, r10}, 0xc) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000200)={'ip6_vti0\x00', &(0x7f0000000180)={'syztnl1\x00', 0x0, 0x6, 0x8, 0x4, 0x8d, 0x0, @local, @remote, 0x740, 0x8000, 0x2, 0x2}}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000300)={'gre0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x8000, 0x80, 0x9, 0x93a, {{0x1a, 0x4, 0x0, 0x31, 0x68, 0x68, 0x0, 0x3, 0x2f, 0x0, @private=0xa010100, @multicast2, {[@timestamp_prespec={0x44, 0x34, 0x82, 0x3, 0x0, [{@multicast2, 0x2}, {@multicast2, 0x7}, {@remote, 0x74a3}, {@loopback, 0x101}, {@local, 0x9}, {@multicast2, 0x9}]}, @rr={0x7, 0x1f, 0xa8, [@dev={0xac, 0x14, 0x14, 0x25}, @remote, @dev={0xac, 0x14, 0x14, 0x19}, @multicast2, @loopback, @multicast1, @rand_addr=0x64010100]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000480)={'sit0\x00', &(0x7f0000000400)={'ip6gre0\x00', 0x0, 0x2f, 0x6, 0x9, 0xded, 0x39, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @private1, 0x7, 0x700, 0x3, 0x2}}) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000004c0)={{{@in6=@ipv4={""/10, ""/2, @multicast1}, @in6=@ipv4={""/10, ""/2, @private}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@initdev}}, &(0x7f00000005c0)=0xe8) sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000600)={0x27c, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {}, [@HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}, @HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}]}]}, 0x27c}, 0x1, 0x0, 0x0, 0xd0}, 0x10) [ 454.912111] EXT4-fs warning (device loop4): ext4_fill_super:3959: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 454.913459] EXT4-fs (loop4): VFS: Found ext4 filesystem with unknown checksum algorithm. [ 454.926258] loop4: detected capacity change from 0 to 4 [ 454.937164] FAULT_INJECTION: forcing a failure. [ 454.937164] name failslab, interval 1, probability 0, space 0, times 0 [ 454.938474] CPU: 0 PID: 5449 Comm: syz-executor.2 Not tainted 5.16.0-rc4-next-20211208 #1 [ 454.939347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 454.940569] Call Trace: [ 454.940835] [ 454.941077] dump_stack_lvl+0x8b/0xb3 [ 454.941496] should_fail.cold+0x5/0xa [ 454.941906] ? create_object.isra.0+0x3a/0xa20 [ 454.942392] should_failslab+0x5/0x10 [ 454.942802] kmem_cache_alloc+0x5b/0x480 [ 454.943245] create_object.isra.0+0x3a/0xa20 [ 454.943715] ? kasan_unpoison+0x23/0x50 [ 454.944142] kmem_cache_alloc_node+0x248/0x490 [ 454.944622] __alloc_skb+0x211/0x340 [ 454.945024] alloc_skb_with_frags+0x92/0x690 [ 454.945509] sock_alloc_send_pskb+0x7ab/0x930 [ 454.945987] ? proto_register+0x990/0x990 [ 454.946429] ? lock_is_held_type+0xd7/0x130 [ 454.946891] __ip_append_data+0x1671/0x35c0 [ 454.947352] ? lock_downgrade+0x6d0/0x6d0 [ 454.947808] ? ip_frag_init+0x350/0x350 [ 454.948237] ? __ip_finish_output.part.0+0x340/0x340 [ 454.948767] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 454.949344] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 454.949922] ? ipv4_mtu+0x123/0x2c0 [ 454.950312] ip_make_skb+0x226/0x2a0 [ 454.950713] ? ip_frag_init+0x350/0x350 [ 454.951135] ? ip_flush_pending_frames+0x20/0x20 [ 454.951646] ? lock_downgrade+0x6d0/0x6d0 [ 454.952094] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 454.952670] ? xfrm_lookup_route+0x65/0x1e0 [ 454.953118] udp_sendmsg+0x18c6/0x2090 [ 454.953523] ? ip_frag_init+0x350/0x350 [ 454.953949] ? udp_push_pending_frames+0xe0/0xe0 [ 454.954446] ? mark_lock+0xfc/0x2e10 [ 454.954839] ? mark_lock+0xfc/0x2e10 [ 454.955229] ? lock_chain_count+0x20/0x20 [ 454.955681] ? lock_chain_count+0x20/0x20 [ 454.956117] ? mark_lock+0xfc/0x2e10 [ 454.956508] udpv6_sendmsg+0x1452/0x2890 [ 454.956949] ? udp_v6_push_pending_frames+0x360/0x360 [ 454.957495] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 454.958049] ? lock_is_held_type+0xd7/0x130 [ 454.958496] ? find_held_lock+0x2c/0x110 [ 454.958925] ? lock_release+0x3b2/0x6f0 [ 454.959333] ? __might_fault+0xd1/0x170 [ 454.959757] ? lock_downgrade+0x6d0/0x6d0 [ 454.960204] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 454.960779] ? selinux_socket_sendmsg+0x1fd/0x2b0 [ 454.961282] ? selinux_socket_getpeername+0x2b0/0x2b0 [ 454.961827] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 454.962397] ? _copy_from_user+0x139/0x170 [ 454.962852] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 454.963427] ? __import_iovec+0x2c2/0x5d0 [ 454.963872] ? udp_v6_push_pending_frames+0x360/0x360 [ 454.964419] ? inet6_sendmsg+0x4a/0x140 [ 454.964836] inet6_sendmsg+0xfd/0x140 [ 454.965237] ? inet6_compat_ioctl+0x310/0x310 [ 454.965698] sock_sendmsg+0xee/0x190 [ 454.966085] ____sys_sendmsg+0x334/0x870 [ 454.966516] ? kernel_sendmsg+0x50/0x50 [ 454.966922] ? __ia32_sys_recvmmsg+0x260/0x260 [ 454.967412] ___sys_sendmsg+0xf3/0x170 [ 454.967830] ? sendmsg_copy_msghdr+0x160/0x160 [ 454.968305] ? lock_release+0x3b2/0x6f0 [ 454.968716] ? __fget_files+0x2cd/0x4c0 [ 454.969128] ? lock_downgrade+0x6d0/0x6d0 [ 454.969570] ? __fget_files+0x2ef/0x4c0 [ 454.969985] ? __fget_light+0xea/0x280 [ 454.970384] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 454.970964] __sys_sendmmsg+0x195/0x470 [ 454.971385] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 454.971838] ? lock_is_held_type+0xd7/0x130 [ 454.972302] ? wait_for_completion_io+0x270/0x270 [ 454.972802] ? lock_is_held_type+0xd7/0x130 [ 454.973259] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 454.973839] ? vfs_write+0x188/0xae0 [ 454.974233] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 454.974816] ? fput+0x2a/0x50 [ 454.975172] __x64_sys_sendmmsg+0x99/0x100 [ 454.975623] ? syscall_enter_from_user_mode+0x1d/0x50 [ 454.976166] do_syscall_64+0x3b/0x90 [ 454.976561] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 454.977099] RIP: 0033:0x7f1ad37f8b19 [ 454.977490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 454.979398] RSP: 002b:00007f1ad0d6e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 454.980200] RAX: ffffffffffffffda RBX: 00007f1ad390bf60 RCX: 00007f1ad37f8b19 [ 454.980940] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003 [ 454.981672] RBP: 00007f1ad0d6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 454.982405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 454.983146] R13: 00007ffdb5d2375f R14: 00007f1ad0d6e300 R15: 0000000000022000 [ 454.983894] [ 454.984299] EXT4-fs warning (device loop4): ext4_fill_super:3959: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 454.985594] EXT4-fs (loop4): VFS: Found ext4 filesystem with unknown checksum algorithm. 06:25:37 executing program 4: openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000001000), 0x511501, 0x0) r0 = fork() tkill(r0, 0x9) r1 = getpid() clone3(&(0x7f0000000200)={0x200000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x27}, &(0x7f00000000c0)=""/186, 0xba, &(0x7f0000000180)=""/49, &(0x7f00000001c0)=[0x0, 0x0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff], 0x8}, 0x58) 06:25:37 executing program 1: r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000340)={0x2, 0x80, 0xde, 0x7f, 0x7, 0x1f, 0x0, 0xffffffffffffffff, 0x200, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x400, 0x1, @perf_bp={&(0x7f00000001c0), 0x8}, 0x40000, 0x97, 0x101, 0x2, 0x0, 0x1, 0x4, 0x0, 0x1f, 0x0, 0x7f}) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000002c0)={0x0, 0x0}) r2 = fork() tkill(r2, 0x9) clone3(&(0x7f0000000200)={0x200800800, &(0x7f0000000000)=0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000100), {0x5}, &(0x7f0000000140)=""/13, 0xd, &(0x7f0000000280)=""/39, &(0x7f0000000180)=[0xffffffffffffffff, r1, 0xffffffffffffffff, r1, r2, r2], 0x6}, 0x58) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000000)={0x1f, 0x0, 0x3}, 0x6) ioctl$AUTOFS_IOC_ASKUMOUNT(r4, 0x80049370, &(0x7f00000003c0)) ioctl$BTRFS_IOC_SCRUB_CANCEL(r3, 0x941c, 0x0) 06:25:37 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 06:25:37 executing program 5: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$link(0x8, r0, 0xfffffffffffffffb) keyctl$KEYCTL_PKEY_ENCRYPT(0x19, 0x0, 0x0, 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(0x0, 0xffffffffffffffff) sendmsg$NLBL_MGMT_C_ADDDEF(r1, 0x0, 0x4c001) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000640), r1) sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x28, r2, 0x200, 0x0, 0x25dfdbff, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040005}, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(r1, 0x0, 0x20044014) 06:25:37 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:25:37 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:25:37 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:25:37 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) (fail_nth: 7) 06:25:37 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 06:25:37 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 455.204898] FAULT_INJECTION: forcing a failure. [ 455.204898] name failslab, interval 1, probability 0, space 0, times 0 [ 455.206256] CPU: 0 PID: 5480 Comm: syz-executor.2 Not tainted 5.16.0-rc4-next-20211208 #1 [ 455.207122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 455.208317] Call Trace: [ 455.208595] [ 455.208837] dump_stack_lvl+0x8b/0xb3 [ 455.209254] should_fail.cold+0x5/0xa [ 455.209674] should_failslab+0x5/0x10 [ 455.210078] __kmalloc_node_track_caller+0x7e/0x330 [ 455.210605] ? alloc_skb_with_frags+0x92/0x690 [ 455.211101] __alloc_skb+0xe3/0x340 [ 455.211493] alloc_skb_with_frags+0x92/0x690 [ 455.211975] sock_alloc_send_pskb+0x7ab/0x930 [ 455.212461] ? proto_register+0x990/0x990 [ 455.212904] ? lock_is_held_type+0xd7/0x130 [ 455.213366] __ip_append_data+0x1671/0x35c0 [ 455.213846] ? lock_downgrade+0x6d0/0x6d0 [ 455.214286] ? ip_frag_init+0x350/0x350 [ 455.214721] ? __ip_finish_output.part.0+0x340/0x340 [ 455.215259] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 455.215835] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 455.216418] ? ipv4_mtu+0x123/0x2c0 [ 455.216802] ip_make_skb+0x226/0x2a0 [ 455.217201] ? ip_frag_init+0x350/0x350 [ 455.217621] ? ip_flush_pending_frames+0x20/0x20 [ 455.218123] ? lock_downgrade+0x6d0/0x6d0 [ 455.218571] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 455.219147] ? xfrm_lookup_route+0x65/0x1e0 [ 455.219622] udp_sendmsg+0x18c6/0x2090 [ 455.220058] ? ip_frag_init+0x350/0x350 [ 455.220491] ? udp_push_pending_frames+0xe0/0xe0 [ 455.220992] ? mark_lock+0xfc/0x2e10 [ 455.221390] ? mark_lock+0xfc/0x2e10 [ 455.221797] ? lock_chain_count+0x20/0x20 [ 455.222230] ? lock_chain_count+0x20/0x20 [ 455.222691] ? mark_lock+0xfc/0x2e10 [ 455.223086] udpv6_sendmsg+0x1452/0x2890 [ 455.223519] ? udp_v6_push_pending_frames+0x360/0x360 [ 455.224092] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 455.224649] ? lock_is_held_type+0xd7/0x130 [ 455.225108] ? find_held_lock+0x2c/0x110 [ 455.225527] ? lock_release+0x3b2/0x6f0 [ 455.225948] ? __might_fault+0xd1/0x170 [ 455.226368] ? lock_downgrade+0x6d0/0x6d0 [ 455.226806] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 455.227372] ? selinux_socket_sendmsg+0x1fd/0x2b0 [ 455.227894] ? selinux_socket_getpeername+0x2b0/0x2b0 [ 455.228438] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 455.229019] ? _copy_from_user+0x139/0x170 [ 455.229474] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 455.230055] ? __import_iovec+0x2c2/0x5d0 [ 455.230492] ? udp_v6_push_pending_frames+0x360/0x360 [ 455.231039] ? inet6_sendmsg+0x4a/0x140 [ 455.231453] inet6_sendmsg+0xfd/0x140 [ 455.231854] ? inet6_compat_ioctl+0x310/0x310 [ 455.232318] sock_sendmsg+0xee/0x190 [ 455.232710] ____sys_sendmsg+0x334/0x870 [ 455.233146] ? kernel_sendmsg+0x50/0x50 [ 455.233559] ? __ia32_sys_recvmmsg+0x260/0x260 [ 455.234052] ___sys_sendmsg+0xf3/0x170 [ 455.234477] ? sendmsg_copy_msghdr+0x160/0x160 [ 455.234957] ? lock_release+0x3b2/0x6f0 [ 455.235381] ? __fget_files+0x2cd/0x4c0 [ 455.235807] ? lock_downgrade+0x6d0/0x6d0 [ 455.236249] ? __fget_files+0x2ef/0x4c0 [ 455.236679] ? __fget_light+0xea/0x280 [ 455.237079] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 455.237654] __sys_sendmmsg+0x195/0x470 [ 455.238092] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 455.238540] ? lock_is_held_type+0xd7/0x130 [ 455.239004] ? wait_for_completion_io+0x270/0x270 [ 455.239506] ? lock_is_held_type+0xd7/0x130 [ 455.239965] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 455.240569] ? vfs_write+0x188/0xae0 [ 455.240962] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 455.241535] ? fput+0x2a/0x50 [ 455.241871] __x64_sys_sendmmsg+0x99/0x100 [ 455.242323] ? syscall_enter_from_user_mode+0x1d/0x50 [ 455.242855] do_syscall_64+0x3b/0x90 [ 455.243262] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 455.243821] RIP: 0033:0x7f1ad37f8b19 [ 455.244211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 455.246139] RSP: 002b:00007f1ad0d6e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 455.246927] RAX: ffffffffffffffda RBX: 00007f1ad390bf60 RCX: 00007f1ad37f8b19 [ 455.247671] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003 [ 455.248404] RBP: 00007f1ad0d6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 455.249157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 455.249891] R13: 00007ffdb5d2375f R14: 00007f1ad0d6e300 R15: 0000000000022000 [ 455.250643] 06:25:51 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) (fail_nth: 8) 06:25:51 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:25:51 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r0, 0x0, 0x0) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) r1 = socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, r3}, 0xc) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000040)={'ip6tnl0\x00', r3, 0x2f, 0x2, 0xfe, 0x4, 0x32, @mcast2, @local, 0x8, 0x0, 0x6, 0x6}}) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r4, 0x800448d4, 0x0) bind$bt_hci(r4, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) 06:25:51 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_tables_targets\x00') preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000040)=""/173, 0xad}], 0x1, 0x1, 0x0) 06:25:51 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:25:51 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:25:51 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) 06:25:51 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:25:51 executing program 5: syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x3, &(0x7f0000000480)=[{&(0x7f0000000180)="2f962d9f5e7fccff287f4ea945732c7c7e491566ea8842ebf43e44e3d492117486570e63f0afe2691cfe1ebc126cfd5652b52b99647f352df99a23b30bafefdec96801ebfbc86b8befa56df1a3de1c94b8c79fbe5a4bf340a92dab0650dd56020963aa105798e26f10c09b309039112542d4e5001f3a14dc9232e50c87bba6ca3f2334bfb091709b1f4db61017789e5cae6da6a1ea0b86e5a9d4376c60b0bd", 0x9f}, {&(0x7f0000000280)='~', 0x1, 0x8000}, {&(0x7f0000000340)="0a314522df1c80ee2a4902d727274678e4589d1bad18a9ff8674d12205c471244e7aa826e9afde85c6c6a4f1348093ace6fcb8e07fe1dc780c89b56ba4b1", 0x3e, 0x6}], 0x11000, &(0x7f0000000500)={[], [{@fsuuid={'fsuuid', 0x3d, {[], 0x2d, [], 0x2d, [0x0, 0x0, 0x0, 0x38], 0x2d, [], 0x2d, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x36]}}}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@obj_type={'obj_type', 0x3d, '$-\xff\'{'}}, {@appraise}]}) mount(&(0x7f0000000000)=@sr0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='coda\x00', 0x10, &(0x7f00000000c0)='$-\xff\'{') [ 469.011200] FAULT_INJECTION: forcing a failure. [ 469.011200] name failslab, interval 1, probability 0, space 0, times 0 [ 469.013482] CPU: 0 PID: 5496 Comm: syz-executor.2 Not tainted 5.16.0-rc4-next-20211208 #1 [ 469.015103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 469.017332] Call Trace: [ 469.017834] [ 469.018273] dump_stack_lvl+0x8b/0xb3 [ 469.019043] should_fail.cold+0x5/0xa [ 469.019792] ? create_object.isra.0+0x3a/0xa20 [ 469.020710] should_failslab+0x5/0x10 [ 469.021470] kmem_cache_alloc+0x5b/0x480 [ 469.022268] create_object.isra.0+0x3a/0xa20 [ 469.023137] ? kasan_unpoison+0x23/0x50 [ 469.023939] __kmalloc_node_track_caller+0x1fb/0x330 [ 469.024925] ? alloc_skb_with_frags+0x92/0x690 [ 469.025833] __alloc_skb+0xe3/0x340 [ 469.026550] alloc_skb_with_frags+0x92/0x690 [ 469.027425] sock_alloc_send_pskb+0x7ab/0x930 [ 469.028346] ? proto_register+0x990/0x990 06:25:51 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) [ 469.029167] ? lock_is_held_type+0xd7/0x130 [ 469.030199] __ip_append_data+0x1671/0x35c0 [ 469.031062] ? lock_downgrade+0x6d0/0x6d0 [ 469.031890] ? ip_frag_init+0x350/0x350 [ 469.032693] ? __ip_finish_output.part.0+0x340/0x340 [ 469.033144] loop5: detected capacity change from 0 to 128 [ 469.033692] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 469.035345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 469.036421] ? ipv4_mtu+0x123/0x2c0 [ 469.037143] ip_make_skb+0x226/0x2a0 [ 469.037884] ? ip_frag_init+0x350/0x350 [ 469.038670] ? ip_flush_pending_frames+0x20/0x20 [ 469.039613] ? lock_downgrade+0x6d0/0x6d0 [ 469.040445] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 469.041517] ? xfrm_lookup_route+0x65/0x1e0 [ 469.042365] udp_sendmsg+0x18c6/0x2090 [ 469.043132] ? ip_frag_init+0x350/0x350 [ 469.043931] ? udp_push_pending_frames+0xe0/0xe0 [ 469.044859] ? mark_lock+0xfc/0x2e10 [ 469.045600] ? mark_lock+0xfc/0x2e10 [ 469.046340] ? lock_chain_count+0x20/0x20 [ 469.047159] ? lock_chain_count+0x20/0x20 [ 469.047988] ? mark_lock+0xfc/0x2e10 [ 469.048729] udpv6_sendmsg+0x1452/0x2890 [ 469.049538] ? udp_v6_push_pending_frames+0x360/0x360 [ 469.050553] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 469.051589] ? lock_is_held_type+0xd7/0x130 [ 469.052436] ? find_held_lock+0x2c/0x110 [ 469.053232] ? lock_release+0x3b2/0x6f0 [ 469.054009] ? __might_fault+0xd1/0x170 [ 469.054796] ? lock_downgrade+0x6d0/0x6d0 [ 469.055619] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 469.056712] ? selinux_socket_sendmsg+0x1fd/0x2b0 [ 469.057653] ? selinux_socket_getpeername+0x2b0/0x2b0 [ 469.058665] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 469.059732] ? _copy_from_user+0x139/0x170 [ 469.060583] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 469.061657] ? __import_iovec+0x2c2/0x5d0 [ 469.062476] ? udp_v6_push_pending_frames+0x360/0x360 [ 469.063494] ? inet6_sendmsg+0x4a/0x140 [ 469.064282] inet6_sendmsg+0xfd/0x140 06:25:51 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) 06:25:51 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x25c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}]}, 0x25c}}, 0x0) [ 469.065028] ? inet6_compat_ioctl+0x310/0x310 [ 469.066003] sock_sendmsg+0xee/0x190 [ 469.066732] ____sys_sendmsg+0x334/0x870 [ 469.067527] ? kernel_sendmsg+0x50/0x50 [ 469.068313] ? __ia32_sys_recvmmsg+0x260/0x260 [ 469.069227] ___sys_sendmsg+0xf3/0x170 [ 469.069988] ? sendmsg_copy_msghdr+0x160/0x160 [ 469.070882] ? lock_release+0x3b2/0x6f0 [ 469.071653] ? __fget_files+0x2cd/0x4c0 [ 469.072426] ? lock_downgrade+0x6d0/0x6d0 [ 469.073260] ? __fget_files+0x2ef/0x4c0 [ 469.074043] ? __fget_light+0xea/0x280 [ 469.074796] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 469.075865] __sys_sendmmsg+0x195/0x470 [ 469.076668] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 469.077513] ? lock_is_held_type+0xd7/0x130 [ 469.078380] ? wait_for_completion_io+0x270/0x270 [ 469.079331] ? lock_is_held_type+0xd7/0x130 [ 469.080187] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 469.081258] ? vfs_write+0x188/0xae0 [ 469.081994] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 469.083071] ? fput+0x2a/0x50 [ 469.083713] __x64_sys_sendmmsg+0x99/0x100 [ 469.084558] ? syscall_enter_from_user_mode+0x1d/0x50 [ 469.085571] do_syscall_64+0x3b/0x90 [ 469.086309] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 469.087310] RIP: 0033:0x7f1ad37f8b19 [ 469.088050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 469.091586] RSP: 002b:00007f1ad0d6e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 469.093062] RAX: ffffffffffffffda RBX: 00007f1ad390bf60 RCX: 00007f1ad37f8b19 [ 469.094446] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003 [ 469.095816] RBP: 00007f1ad0d6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 469.097551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 469.098943] R13: 00007ffdb5d2375f R14: 00007f1ad0d6e300 R15: 0000000000022000 [ 469.100668] [ 469.158776] loop5: detected capacity change from 0 to 128 06:26:06 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) (fail_nth: 9) 06:26:06 executing program 5: sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x50, 0x0, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x3c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xfff}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x7}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x200}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x2fb}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x400}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x880}, 0x961817c321a49ddb) r0 = syz_usb_connect$printer(0x3, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x7f, 0xe0, 0x7f, [{{0x9, 0x4, 0x0, 0x89, 0x2, 0x7, 0x1, 0x2, 0x2, "", {{{0x9, 0x5, 0x1, 0x2, 0x8, 0x6, 0x5, 0xfd}}}}}]}}]}}, &(0x7f0000000180)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x250, 0x9, 0x6, 0x80, 0x8, 0x46}, 0x31, &(0x7f00000000c0)={0x5, 0xf, 0x31, 0x4, [@generic={0xa, 0x10, 0xb, "f33e195d27771d"}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0xf1, "edd8b5bc7be03d59502b1964a336e47c"}, @wireless={0xb, 0x10, 0x1, 0x4, 0x0, 0x1, 0xe7, 0xfec2, 0x1f}]}, 0x2, [{0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x459}}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x2409}}]}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r1, 0x0, 0x0) fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x40, 0x0, 0x100, 0x70bd27, 0x401, {}, [@HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000084}, 0x4000) r2 = signalfd4(r1, &(0x7f00000007c0)={[0x7]}, 0x8, 0x80000) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000880)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x38, r3, 0x8, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xffffffff, 0x20}}}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0xb0]}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xb4c}]}, 0x38}, 0x1, 0x0, 0x0, 0x4010}, 0x40000) syz_usb_control_io$printer(r0, &(0x7f0000000300)={0x14, &(0x7f00000001c0)={0x20, 0xb, 0xf5, {0xf5, 0x8, "de8660448d0ad9ee6a751667412bc055ffbf921db5405e6e2df382615e1ba3c5a3583873740d1d95ba0618f85b0a2eeac9d79a25eb5ce24ecef0d5fdd4c417a7b5c99e896cbb58f97a1fb385d2bd7a0ef37f3b0226e67a6e14a1d284f21ebb841914d53db99e0e14b18d20ea78ec11f5e9a1f46c4819814b5cc1d66e83158a8749948b7b84096d003032e46e09b5bdf0e073fb8ace877132c1d7dd8cccb964bbfb110dcfecc422d5c5fd471fdd650cbd462c2a42d0027bf6d9db4d805f6928f8adb909c531064948282d5f0043bd75d01d8e428edfe6c9ee2c835b1beca84b71a12f745f90c7e50b2c8c298385622f7ea03d78"}}, &(0x7f00000002c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2009}}}, &(0x7f0000000540)={0x34, &(0x7f0000000340)={0x20, 0x14, 0x2, "6005"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x1}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000400)={0x20, 0x0, 0xa5, {0xa3, "5a0387092e6595a2efe4a5262392d1ad5a58fb1d587a976e59bb349cd5a95c80494cdffc977a366fd9a979be51c847442c6175443ba20b2acda54eab2a93f6654a7f28aed25229cc75fab1080e1de562c1b733b4a1d1d58e092c82e5735a4fa5dad30c3f50ca1576cc0b518a6cb6642326d3a4ab9a79c4a907e094260bf9b21c0b289c53a405a86987dad6d5ec599b23538edf8c358ebb5b89b5adb2d41668a32f5af7"}}, &(0x7f00000004c0)={0x20, 0x1, 0x1, 0x7}, &(0x7f0000000500)={0x20, 0x0, 0x1, 0xe2}}) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x43bdd9e9084775b0, 0x0) accept4(r5, &(0x7f0000000980)=@vsock={0x28, 0x0, 0x0, @host}, &(0x7f0000000a00)=0x80, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r6, &(0x7f0000000000)={0x1f, 0x0, 0x3}, 0x6) getsockopt$IP_VS_SO_GET_VERSION(r6, 0x0, 0x480, &(0x7f0000000a40), &(0x7f0000000a80)=0x40) 06:26:06 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:06 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:26:06 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x254, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x254}}, 0x0) 06:26:06 executing program 1: personality(0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) mount$cgroup2(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x49405, &(0x7f0000000140)=ANY=[@ANYBLOB="6e7364656c65676174652c6d656d6f72795f6c6f63616c6576656e74732c6d656d6f72795f6c6f63616c6576656e74732c646566636f6e746578baa883ae78c5ff8cf83dfef50c6ea3743d756e636f6e66696e65645f752c0084a7f76401b9ec03868199bd68"]) 06:26:06 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:06 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:06 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x24c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}]]}, 0x24c}}, 0x0) [ 484.611179] UDC core: couldn't find an available UDC or it's busy: -19 [ 484.612005] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 06:26:06 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 484.647349] FAULT_INJECTION: forcing a failure. [ 484.647349] name failslab, interval 1, probability 0, space 0, times 0 [ 484.648825] CPU: 1 PID: 5538 Comm: syz-executor.2 Not tainted 5.16.0-rc4-next-20211208 #1 [ 484.649699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 484.650878] Call Trace: [ 484.651150] [ 484.651388] dump_stack_lvl+0x8b/0xb3 [ 484.651803] should_fail.cold+0x5/0xa [ 484.652240] ? skb_clone+0x170/0x3c0 [ 484.652641] should_failslab+0x5/0x10 [ 484.653054] kmem_cache_alloc+0x5b/0x480 [ 484.653499] skb_clone+0x170/0x3c0 [ 484.653889] neigh_probe+0x54/0x110 [ 484.654276] __neigh_event_send+0x37c/0x1490 [ 484.654755] ? lock_acquire+0x1b2/0x4d0 [ 484.655183] ? lock_release+0x3b2/0x6f0 [ 484.655610] neigh_resolve_output+0x545/0x7e0 [ 484.656091] ip_finish_output2+0x6e2/0x1fa0 [ 484.656583] ? dst_output+0x470/0x470 [ 484.657004] ? ip_setup_cork+0x9b0/0x9b0 [ 484.657465] ? ip_frag_next+0x9e0/0x9e0 [ 484.657911] ? ip_finish_output2+0x1fa0/0x1fa0 [ 484.658426] ? dst_output+0x470/0x470 [ 484.658853] ? ip_setup_cork+0x9b0/0x9b0 [ 484.659307] __ip_finish_output.part.0+0x1b7/0x340 [ 484.659859] ip_output+0x2dd/0x8d0 [ 484.660278] ? __ip_append_data+0x35c0/0x35c0 [ 484.660781] ip_send_skb+0x3f3/0x570 [ 484.661200] udp_send_skb+0x6d5/0x11c0 [ 484.661639] udp_sendmsg+0x1904/0x2090 [ 484.662077] ? ip_frag_init+0x350/0x350 [ 484.662531] ? udp_push_pending_frames+0xe0/0xe0 [ 484.663062] ? mark_lock+0xfc/0x2e10 [ 484.663489] ? mark_lock+0xfc/0x2e10 [ 484.663916] ? lock_chain_count+0x20/0x20 [ 484.664398] ? lock_chain_count+0x20/0x20 [ 484.664862] ? mark_lock+0xfc/0x2e10 [ 484.665286] udpv6_sendmsg+0x1452/0x2890 [ 484.665745] ? udp_v6_push_pending_frames+0x360/0x360 [ 484.666318] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 484.666899] ? lock_is_held_type+0xd7/0x130 [ 484.667367] ? find_held_lock+0x2c/0x110 [ 484.667814] ? lock_release+0x3b2/0x6f0 [ 484.668259] ? __might_fault+0xd1/0x170 [ 484.668697] ? lock_downgrade+0x6d0/0x6d0 [ 484.669158] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 484.669765] ? selinux_socket_sendmsg+0x1fd/0x2b0 [ 484.670294] ? selinux_socket_getpeername+0x2b0/0x2b0 [ 484.670872] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 484.671470] ? _copy_from_user+0x139/0x170 [ 484.671944] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 484.672555] ? __import_iovec+0x2c2/0x5d0 [ 484.673014] ? udp_v6_push_pending_frames+0x360/0x360 [ 484.673580] ? inet6_sendmsg+0x4a/0x140 [ 484.674018] inet6_sendmsg+0xfd/0x140 [ 484.674443] ? inet6_compat_ioctl+0x310/0x310 [ 484.674929] sock_sendmsg+0xee/0x190 [ 484.675342] ____sys_sendmsg+0x334/0x870 [ 484.675790] ? kernel_sendmsg+0x50/0x50 [ 484.676244] ? __ia32_sys_recvmmsg+0x260/0x260 [ 484.676763] ___sys_sendmsg+0xf3/0x170 [ 484.677198] ? sendmsg_copy_msghdr+0x160/0x160 [ 484.677712] ? lock_release+0x3b2/0x6f0 [ 484.678144] ? __fget_files+0x2cd/0x4c0 [ 484.678593] ? lock_downgrade+0x6d0/0x6d0 [ 484.679057] ? __fget_files+0x2ef/0x4c0 [ 484.679499] ? __fget_light+0xea/0x280 [ 484.679925] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 484.680548] __sys_sendmmsg+0x195/0x470 [ 484.680998] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 484.681476] ? lock_is_held_type+0xd7/0x130 [ 484.681964] ? wait_for_completion_io+0x270/0x270 [ 484.682502] ? lock_is_held_type+0xd7/0x130 [ 484.682983] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 484.683583] ? vfs_write+0x188/0xae0 [ 484.684002] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 484.684616] ? fput+0x2a/0x50 [ 484.684976] __x64_sys_sendmmsg+0x99/0x100 [ 484.685445] ? syscall_enter_from_user_mode+0x1d/0x50 [ 484.686023] do_syscall_64+0x3b/0x90 [ 484.686438] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 484.687002] RIP: 0033:0x7f1ad37f8b19 [ 484.687407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 484.689447] RSP: 002b:00007f1ad0d6e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 484.690291] RAX: ffffffffffffffda RBX: 00007f1ad390bf60 RCX: 00007f1ad37f8b19 [ 484.691067] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003 [ 484.691848] RBP: 00007f1ad0d6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 484.692632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 484.693409] R13: 00007ffdb5d2375f R14: 00007f1ad0d6e300 R15: 0000000000022000 [ 484.694207] 06:26:06 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:07 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:26:07 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:07 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:07 executing program 1: r0 = semget$private(0x0, 0x0, 0x592) semctl$GETPID(r0, 0x0, 0xb, &(0x7f0000000000)=""/4) syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0) 06:26:07 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 06:26:07 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) (fail_nth: 10) [ 484.898816] FAULT_INJECTION: forcing a failure. [ 484.898816] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 484.900286] CPU: 1 PID: 5560 Comm: syz-executor.2 Not tainted 5.16.0-rc4-next-20211208 #1 [ 484.901161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 484.902349] Call Trace: [ 484.902621] [ 484.902854] dump_stack_lvl+0x8b/0xb3 [ 484.903273] should_fail.cold+0x5/0xa [ 484.903697] _copy_from_user+0x2e/0x170 [ 484.904129] kstrtouint_from_user+0xac/0x160 [ 484.904600] ? kstrtouint+0x120/0x120 [ 484.905016] ? lock_acquire+0x1b2/0x4d0 [ 484.905465] proc_fail_nth_write+0x78/0x220 [ 484.905931] ? proc_task_getattr+0x1f0/0x1f0 [ 484.906408] ? lock_is_held_type+0xd7/0x130 [ 484.906887] ? proc_task_getattr+0x1f0/0x1f0 [ 484.907381] vfs_write+0x28a/0xae0 [ 484.907771] ksys_write+0x12d/0x250 [ 484.908173] ? __ia32_sys_read+0xb0/0xb0 [ 484.908618] ? syscall_enter_from_user_mode+0x1d/0x50 [ 484.909188] do_syscall_64+0x3b/0x90 [ 484.909601] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 484.910163] RIP: 0033:0x7f1ad37ab5ff [ 484.910576] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 484.912630] RSP: 002b:00007f1ad0d6e170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 484.913463] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ad37ab5ff [ 484.914249] RDX: 0000000000000001 RSI: 00007f1ad0d6e1e0 RDI: 0000000000000004 [ 484.915026] RBP: 00007f1ad0d6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 484.915816] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 484.916624] R13: 00007ffdb5d2375f R14: 00007f1ad0d6e300 R15: 0000000000022000 [ 484.917410] [ 485.129940] UDC core: couldn't find an available UDC or it's busy: -19 [ 485.130960] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 06:26:19 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:19 executing program 1: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000a80)=@gcm_256={{0x303}, "ea1d05a248580cc0", "424111fc817436ee99d5cfe49820305585907d4edd921dccbf80acda41eff40e", "f53ed9e3", "4cc69c416f930c03"}, 0x38) ioctl$CDROMREADCOOKED(r0, 0x5315, &(0x7f0000000000)) unshare(0x46000000) 06:26:19 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:19 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:26:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:19 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 06:26:19 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x24c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}]]}, 0x24c}}, 0x0) 06:26:19 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:19 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 06:26:19 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x3, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:19 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 06:26:19 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000039c0), 0x1, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), 0x0) 06:26:19 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 06:26:19 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:19 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, 0x0, 0x0, 0x800) 06:26:19 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x0, 0x3}, 0x6) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f00000005c0)="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") ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000040)) setsockopt$inet_buf(r0, 0x0, 0x28, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x26, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d8f4655fd8f4655f0100ffff53ef010001000000d8f4655f000000000000000001000000000000000b000000800000000800000052470000620100000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e30343636343439353900"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000c8b70d3c99374a58baa2fffdfaacb391010000000c00000000000000d8f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="01000000000005000c0000000000000000000000040000004b00000000000000", 0x20, 0x560}, {&(0x7f0000010300)="030000000400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000120000002200000060000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010500)="ffff0f00ff0f00000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x880, 0x1000}, {&(0x7f0000010e00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x2000}, {&(0x7f0000010f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x2800}, {&(0x7f0000011000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x3000}, {&(0x7f0000011100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x3800}, {&(0x7f0000011200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x4000}, {&(0x7f0000011300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x4800}, {&(0x7f0000011400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x5000}, {&(0x7f0000011500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x5800}, {&(0x7f0000011600)="504d4d00504d4dffd8f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033340075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x6000}, {&(0x7f0000011700)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x6800}, {&(0x7f0000011800)="0200"/32, 0x20, 0x6c00}, {&(0x7f0000011900)="0300"/32, 0x20, 0x7000}, {&(0x7f0000011a00)="0400"/32, 0x20, 0x7400}, {&(0x7f0000011b00)="0500"/32, 0x20, 0x7800}, {&(0x7f0000011c00)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000009800"/96, 0x60, 0x7c00}, {&(0x7f0000011d00)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x8000}, {&(0x7f0000011e00)="0200"/32, 0x20, 0x8400}, {&(0x7f0000011f00)="0300"/32, 0x20, 0x8800}, {&(0x7f0000012000)="0400"/32, 0x20, 0x8c00}, {&(0x7f0000012100)="ffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0500"/2080, 0x820, 0x9000}, {&(0x7f0000012a00)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000009800"/96, 0x60, 0x9c00}, {&(0x7f0000012b00)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x10000}, {&(0x7f0000012c00)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8070000000006000000779b539778617474723100000601f00700000000060000007498539778617474723200"/96, 0x60, 0x10800}, {&(0x7f0000012d00)="00000000000000000000000000000000786174747232000078617474723100000000000000000000d8f4655fd8f4655fd8f4655f00"/64, 0x40, 0x10fe0}, {&(0x7f0000012e00)="ed41000000080000d8f4655fd8f4655fd8f4655f00000000000004000400000000000800050000000af301000400000000000000000000000100000003000000", 0x40, 0x11080}, {&(0x7f0000012f00)="8081000000180000d8f4655fd8f4655fd8f4655f00000000000001000c00000010000800000000000af30100040000000000000000000000030000000d000000", 0x40, 0x11100}, {&(0x7f0000013000)="8081000000180000d8f4655fd8f4655fd8f4655f00000000000001000c00000010000800000000000af30200040000000000000000000000020000001000000002000000010000001300"/96, 0x60, 0x11180}, {&(0x7f0000013100)="c041000000400000d8f4655fd8f4655fd8f4655f00000000000002002000000000000800000000000af301000400000000000000000000000800000004000000", 0x40, 0x11500}, {&(0x7f0000013200)="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"/768, 0x300, 0x11580}, {&(0x7f0000013500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x12000}, {&(0x7f0000013a00)='syzkallers\x00'/32, 0x20, 0x12800}, {&(0x7f0000013b00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x15800}], 0x0, &(0x7f0000013c00)) 06:26:19 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x4, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:19 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, 0x0, 0x0, 0x800) 06:26:19 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 06:26:19 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000039c0), 0x1, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), 0x0) [ 497.756229] loop1: detected capacity change from 0 to 512 [ 497.828767] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 497.831124] ext4 filesystem being mounted at /syzkaller-testdir315607130/syzkaller.bt9IGG/57/file0 supports timestamps until 2038 (0x7fffffff) 06:26:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}]]}, 0x44}}, 0x0) 06:26:32 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, 0x0, 0x0, 0x800) 06:26:32 executing program 4: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:32 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x6, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:32 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, 0x0, 0x0, 0x800) 06:26:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:32 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "f1ed94d104ac1ebcd67f8b7cb34ef10ac247c2a3f8e685409a329107d66a68880b5bac1c39f4e71ada35cbbcd8b0813befd2ae1878e691e4640e6d8a3288d626adb5c49522eee7e120ac82e0be160b93d3ebe5882722cb7dda098567b63b3f7ba437c16f3ea73f00b312eecc8cf90707f873cf40c4126ea7f51f92c87199f86ae5ac4d06ea4a45bf33b80cd689780be587fed8f5a13b4309b677744d9b6d49f605c9d78e3221ffae6837fd5dea29209c817a91ff1c27f3182ce178dc57486c0303187f284ea7681dc9622da73bf4b52bef46954b2eafacd22903c9f65946af4a256aba54d51834f601e2453ae8d333165aa6290e0d018ab92dd285f9d9f315de99fe8234ed0954d898ec19cdf0d87f0ef72782829631f74bc7931b9e4c6f8a0ba2183994bb88305d05c0bdcc1d3f8da5c0ad090b488c837dd7965158ad4e35654f67fea6919f5d62aa362cc6a2c2ffdf571aac463559cf19fba25057e385e5981106b77d4d89ea1bafef4f8d1805b361f1e7248147e58e08d24424849bc9b44b67b0488c8bd9bfbbb9c276e3a3b86755bf82ccc1b18005bc5c8964d2f97c87ca40587ed66ea43867aee878c7c1e7ef8c8fad246b266df2f5b8d43b7eb781a04045548db772658c64c46f864ce8b48c81de3799ee75c997e2a07871cd22ccda71985fbaac3520ab8b49b5cedfe2f039c13d395a54095258c5997f967829f2c73c8ebf62a92ae2de3a92556102da1b61b166597ff62c40743deb58486147fffd9896abbed78aa67cc0fb14b382b27fa903855f961837062d5a1593334ed107ee80a1d9500900882a2e4137ebfdeac3f51a579485bcd9c0b04522dbf671b0b904f1cdececb0f35316a599861f03a5d58fa7e0d3a9b064d2ca844d40f725f8808dbebd9d045d752fff693d9e00fd341c05a41e15c8c0731dbe24ca264ca86b7ade140a8417efaf98612568de6923e9050f5bb625e0a6f939211371334f2e02016293c3501d6313666da607a6a1c778be8998b3159451c9e00d81845738f7e6e01f712d2c3d8438bb89cb9bac4efa452db2626f70555be7792a6102be036a4d2ce63e8b14c88c750901c1fc96dc81a2498e49b720be7ed01dfb0a1c0a31b84a471f64c9e581cd9e955e3ea019008355fd2beddf2bf7ed873678a5c4c40b0cc961c9cf6e3fb46c316cfc2f3c5bce1b22051e4927cae85e0a8a415800c631c5f1ffa18e18d9c972c62e9948323ca9e74930c8fb184f6e82e1eb9ede39b4256c732fe131c01a686539942fcf440b0d146585264d6cc6a94deaf9acd6ff8ff7ae4b6a82550c1cbc5960d17f695bf6edef6b6a5a352fb7ca4c497eb15dc8b8354da8ce9d20626da32d2fe355d103c0c16733b662547be8d16448a16f40ea2c2b3c912d09f049fba2202b899cc743fa3bdcaf4d36dff3faedef053d77e554ff7e4876cdf8f2baed47c3ff20e0d84a7a85c4513db875ecaf80effa67feba9637159302428ad49e45d730e45d82c07aa257196dd7c8fd9c63d3f7973578feb711e62250306ec34c99d82c0d32c2c25b92a4eefc02230708c893bebf8a3195aed3d3f70dea42ad0889731241e9c5d3ad61c80ce053b108e797d0f6b33a6b84a17a9df0e647c95ea7d727f9295dab9af2ec37d7eb1c33669156339f6b66ef4563775adf1c5406c826bdd0a9d51528ed0eea8de1714084d9ea91d9961a1017a24452689ea86f5c27221b67bda05f234ae4e8bcdb2237757ef40b1d07fff967a311fae6b9e8c07520f17f464794480bacdeeb29605897d1270612bc153de9ae66ee90a2a7568d6241630be99c876763e0c3be22674d8629ae189b9340fc2133520c99a988c5b4d17cc609139455670d066037ff8d528cdb3ee93296a111f2df0717b39a3dfa8c48f629d9e70cb2200013aa050c2c500392dd33a1f5bfa63893c4805efcf21ae241ae1cd15509c7c04b2e2c8a5475419c33facdc70844303df4e2dddf1a135300b77aed69656e8b11790b9ea1fef3ee1134a88a9ec4ae2fa2036f5efdf80138b5eba1a645c2640c68952ba032937ce43a9d2d920e1cdb34166d28b43fb07ee112cf9db3b3049fc4b35949deee39b1ce706b7576909e48a83f3e5cff09542f0a036935985c71569c2fc9acae1f0f4b3e0e0ee1e79acc3041401f0a3cd59975cadaecdd44c36c1de7bc530a5ddb7f0e12b0c392f82e58321b39c42c98f90bcb35eaa78b1cbbc9c32451f23613cd01dd3e28084c64976e5b36c4a8f8338c7491ba5c7d25398c53c22badb922015290498b306b3cf017c9ed4a2a065513284d83fa48f64dcb7a64f4df8610dd3f06234d30d3582d5d9cc04f71c67ae266411e57b8cb70d13fa5f8eda2b3fd6f8535f988ea1cfd54ddc160fca3030f301d85c44f235cd4814262cbd2e0f1645f0103ebf4035bbcf46a3a0481ee3efe43ff732aa16626e7a6b706215ec4fae91b8a7d4c91d1931bb73483a9b7da3038fac37bdf20f997ce134c9e8ac7a654d9304937e0404c3e6afa8ccbfcddbd8b742d2408fe2ca044d7359fb744a245692e2df5c9b70ab64fb4d76e1e59862efe5f985cc579287d6ed8e5ad5fecf8923e84a81455d42e02ab689c973ac3c9bc8bf40431fa86ea9eb348f9ccaadf02a4417186e35deccc298b848337f6a290acda14a7b3a4fae7d7ee72cf48dab35154ad0aca1336909a0923f70ee85fbb611513d91c77e98ee802014f1e37713116b77eccdb1966ce70e394095a04d64609df81ba14231f72f4143313272dc5ce131da417ba3629b11452b63a08233721710a74b6e5bdfef606d74509d9c5c043cb423a6c2ace53e96b3d9a20b56dbf4b529bb8dcc7faa5909f91890d09209af135c9543cd69cc26ecd312e4058b2104cb969aac3372e413818f537df10404f30084653b7155fb784e2663d716944bc9279b8b292e36da547991d86ec678a72be1e3987473d8696774899e8e34f764ca89437d09b84b16984df326be101f808915ff88638a2234146c5f9ad95309499da2043c34bad5c7cd3b7a71669c846a414894dffe4718333b20c979b806afea00dce8a18daa3c31f01c685b1ae13cab123dfb2074aecea79c6cd100a4eb4b6a5cd67da607700688ef789cc60ba43e6579872b798a4bc67b369fd248070033ef6b2183e24f92be384acab5d48030683882c01f81b52f6ece04c26d92f7367758510b491bd1dd26cecaaa237ad6c5f5a65aded05982861fcf42d7abc8eddebca81979538d885595b6011922906af82bb7de32dabce09c53b1a363c74b22c4a4b44d11f464597b6898958eb094ee42970661a5673a2ce1d60b936192c383d21ea342a984f72820bb965b670df67fb2fed00144ee91001e4bc91aad01d9c666ecdf4e64eeb6db35caa226de609d0e235e7d93b208a72f14177148789075bedd8e7a02a4388ac974137fc5c307a70812ec9ea98a00d0fc0eff9984d0472ee4d454e8d7adf6ba70c7ce67063658159041a5e95a771a94ce75a5d545a211550e4f13a89e8444ccb405761619a41ec9650b8def24707c649ee0d61731fb6cf5456ec653ee94114d237c9e07bc94e27284eaad9a79cc7335e9936393a5d8e3640087136a16f8c6ec0ad4b816fe842aecfb60bb19895b4395092bb830d756348640fd3b9dcefeda162b3c7c431200e827e8bf20a8e101359b36f650a72f49686290351e9bcb8b50f506ac8c3f059c7a33a415ebbdb69f3ed8b481fcd2833e89f1fc0ae4039ba7df9ad483026f5aaa008fdada7bdfdfd2ca2a28212142f05d4237b3a27f17a52f3d31d555ee6bfaea410f3c2784aa5bf64cbcfea1ed8ae45f5195dbff77b717fcf71a99471597d777f7053f0464edfed7365a34a2fbd2c365c12178a98b339b6eb35f4fa43d7300c02377e192b964f123543313dc38b146e32dc6c014e58ecc1d21fa0ecb22c6339a5687d68209d881d9c495fbe2142a648da5875dd0450a60e7627aa5e01c530c329eff184eec8ce132625137d14feea6d0cc31ed3f40264b0d3d8327b754030b9d2ac4c6a925be5dee808f3589fa81057f93df5e601781a43a1d07685db52b4142c44f2895eb796aabe4e38b266bcf06b155680260ce05270a2cc72e5a480dfbb5cee4ea27b2b2367654c0373834a5d321e533547f8eb8e1c447139590b9c6c1b0e2307a5aa8d0bd1c696a13ab5181dd9dbdd4d15adac753e0ed74ddba4838e1f245d158dacf88fc068e0728e5003034e941cd7c2bd3a342ed8e019fff5522b12402cf44c7172ee59405d263572585eba135d245600cbc1929ae2db7274c0e744e8a25d9bca38f18ccfe2df90e64a7a67ac94b5c3b6ae1868884355dba592a50cca345d903b99f818b7c30f05bc551f52d87ad3e2bf77b11260f2656ade76992b59a314d6b2e64a6b771cc73fdde95fe788270338d0d04527f3ba40bd381a715f7f228ca0bfa814e2770069adbe16af434b6d4c63bfff2622197ffb8333d6a53319e50c8cd7a57507aaf35f2e69b1f54303c0fd225b581b1109c7ffca37b56a6bb49ddf285187fca276f7e19e637e9003a13826598e6746c1e017006afda671e57c151eacd18916682b991f6da8cdb676be441dc3cde6b20dba1528a2b545ada45792c97e7fba3861d07a622b132457ff36bb661c3eebc4e12c5db2851c310602ca07209ca1a68a255d6acdf94b2305dc5e466255163cb8c0fd787651e964c2fad80084fb11959b8bce2b8e8599d2c9011ee1bef5437550e34dacbe52dced6221895794fe790e8ae656913028f6f3e4cb08c6a4632f9ea81d8b1709796c4023044f058f24d659ede17152796200df634bb8f5ff90f065b78b0a225e6b72efdad9323cf13a2c8e134c472cfc10811e43b1f738b8018e3c5649e0dd6ed46e996bc8ef4f2b907d41360419fc209f72480d64a9aa83e0a06cca9e72ed7cbdf11893bd4794c285102411040f19c96727ee11873bfd3b2b8c23fab9359d7fc4ed888813650de699eff14d1859bd88aced1277ccf78dd9c16a0ed67cd209d36ec7804066223e6011a94abd8b78ce98689e390ae2df181cce4916e498fcab45717dd943293973d30e4ea5fd20a17007c754edb25716afc2413646c3736ce72b83d8c4e4092e122e2f6831cf914074e230ab3aa8757fadad95c93aa025c93204a4e8dd38cd6e65616f9c202b77ff6aa7efc3e6a8cf9805c945d2eec17625c72d1ff5a5eb2d7f15853b2ae87d6f4f19271bc09241b354051fb1b2dda1733fad97db861a499c550b0f6ae8d9a8cd66a71d4cbece81f3eff288fb60c26929bf5aba59bae4a78c86354a4289b54e429edc9a3bd3a05bdf2a93f8828536472b830a9cfc3dcc222b6c488913d0022ba4ac94cce875e2cb8cd4632f42f20a0256e05887c061577d2c69d6b52b4866b04c73b3a837ec5883e19f4998ef78"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000039c0), 0x1, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), 0x0) 06:26:32 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8}]}, 0x24}}, 0x0) 06:26:32 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080), 0x0, 0x800) 06:26:32 executing program 4: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:32 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x7, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}]]}, 0x44}}, 0x0) 06:26:47 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080), 0x0, 0x800) 06:26:47 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}]]}, 0x44}}, 0x0) 06:26:48 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000000000004000000000002000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e37313332313635343500"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000f2a953140c764271ad9be301789147cf010040000c00000000000000d1f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000003100000000000000", 0x40, 0x540}, {&(0x7f0000010300)="03000000040000000500000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d1f4655fd1f4655fd1f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010d00)="ed41000000040000d1f4655fd1f4655fd1f4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x1500}, {&(0x7f0000010e00)="20000000e85575eae85575ea00000000d1f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000010f00)="8081000000300404d1f4655fd1f4655fd1f4655f00000000000001002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d1f4655f00"/160, 0xa0, 0x1a00}, {&(0x7f0000011000)="c0410000002c0000d1f4655fd1f4655fd1f4655f00000000000002002000000000000800000000000af301000400000000000000000000000b00000020000000", 0x40, 0x1e00}, {&(0x7f0000011100)="20000000000000000000000000000000d1f4655f000000000000000000000000000002ea00"/64, 0x40, 0x1e80}, {&(0x7f0000011200)="ed4100003c000000d1f4655fd1f4655fd1f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000d908479700000000000000000000000000000000000000000000000020000000e85575eae85575eae85575ead1f4655fe85575ea0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011300)="ed8100001a040000d1f4655fd1f4655fd1f4655f00000000000001002000000000000800010000000af30100040000000000000000000000020000005000000000000000000000000000000000000000000000000000000000000000000000000000000090dc20e700000000000000000000000000000000000000000000000020000000e85575eae85575eae85575ead1f4655fe85575ea0000000000000000", 0xa0, 0x2000}, {&(0x7f0000011400)="ffa1000026000000d1f4655fd1f4655fd1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3731333231363534352f66696c65302f66696c65300000000000000000000000000000000000000000000009d0860300000000000000000000000000000000000000000000000020000000e85575eae85575eae85575ead1f4655fe85575ea0000000000000000", 0xa0, 0x2100}, {&(0x7f0000011500)="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", 0x1a0, 0x2200}, {&(0x7f0000011700)="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", 0x100, 0x2400}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x4000}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x8000}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x8400}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x8800}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x8c00}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x9000}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x9400}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x9800}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x9c00}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0xa000}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0xa400}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0xa800}, {&(0x7f0000012400)="504d4d00504d4dffd1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033310075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x10000}, {&(0x7f0000012500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x14000}], 0x0, &(0x7f0000012a00)) mount(&(0x7f0000000040)=@sr0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ext2\x00', 0x521812, &(0x7f0000000140)='ext4\x00') 06:26:48 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "03c6ce8c7d32cc98c461c75031154508b04e78227543edbfd7a6e6c8d2901296ce3dbb445fb8d4bd4b15ad4d11cc5651da47cd5c559d2073ab95bb769c56abc523f20fbf5ad07ffe7802fd23a4320052734b814298a85b94983bd0f60a6c03815a977720a9d3122672496471ac43a4d40b5c4414da34816f4c7bef7a82ae0ea07a91e5bb6c707316eaf1fbdf768cca16eb97f312f314f099b47c4090a27db333ee09f4097864bb801bd5dcb0d8278e7ce1416e9c88bf8173f8536be813c05c47790f251987b49655070f4bc8af4c1f6714323a7979bc7edea34aa429b88e729104eaaff3fb18a3fff43f9eaac36055ac9115a6e4f1451dbe322f10e8c030bf45", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000039c0), 0x1, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), 0x0) 06:26:48 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:48 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8}]}, 0x24}}, 0x0) 06:26:48 executing program 4: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:48 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x8, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:48 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080), 0x0, 0x800) [ 525.790211] loop1: detected capacity change from 0 to 1024 06:26:48 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000039c0), 0x1, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0) 06:26:48 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:26:48 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x238, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x1f1, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}]}]]}, 0x238}}, 0x0) 06:26:48 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8}]}, 0x24}}, 0x0) 06:26:48 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x800) 06:26:48 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0xa, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:48 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:48 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "f1ed94d104ac1ebcd67f8b7cb34ef10ac247c2a3f8e685409a329107d66a68880b5bac1c39f4e71ada35cbbcd8b0813befd2ae1878e691e4640e6d8a3288d626adb5c49522eee7e120ac82e0be160b93d3ebe5882722cb7dda098567b63b3f7ba437c16f3ea73f00b312eecc8cf90707f873cf40c4126ea7f51f92c87199f86ae5ac4d06ea4a45bf33b80cd689780be587fed8f5a13b4309b677744d9b6d49f605c9d78e3221ffae6837fd5dea29209c817a91ff1c27f3182ce178dc57486c0303187f284ea7681dc9622da73bf4b52bef46954b2eafacd22903c9f65946af4a256aba54d51834f601e2453ae8d333165aa6290e0d018ab92dd285f9d9f315de99fe8234ed0954d898ec19cdf0d87f0ef72782829631f74bc7931b9e4c6f8a0ba2183994bb88305d05c0bdcc1d3f8da5c0ad090b488c837dd7965158ad4e35654f67fea6919f5d62aa362cc6a2c2ffdf571aac463559cf19fba25057e385e5981106b77d4d89ea1bafef4f8d1805b361f1e7248147e58e08d24424849bc9b44b67b0488c8bd9bfbbb9c276e3a3b86755bf82ccc1b18005bc5c8964d2f97c87ca40587ed66ea43867aee878c7c1e7ef8c8fad246b266df2f5b8d43b7eb781a04045548db772658c64c46f864ce8b48c81de3799ee75c997e2a07871cd22ccda71985fbaac3520ab8b49b5cedfe2f039c13d395a54095258c5997f967829f2c73c8ebf62a92ae2de3a92556102da1b61b166597ff62c40743deb58486147fffd9896abbed78aa67cc0fb14b382b27fa903855f961837062d5a1593334ed107ee80a1d9500900882a2e4137ebfdeac3f51a579485bcd9c0b04522dbf671b0b904f1cdececb0f35316a599861f03a5d58fa7e0d3a9b064d2ca844d40f725f8808dbebd9d045d752fff693d9e00fd341c05a41e15c8c0731dbe24ca264ca86b7ade140a8417efaf98612568de6923e9050f5bb625e0a6f939211371334f2e02016293c3501d6313666da607a6a1c778be8998b3159451c9e00d81845738f7e6e01f712d2c3d8438bb89cb9bac4efa452db2626f70555be7792a6102be036a4d2ce63e8b14c88c750901c1fc96dc81a2498e49b720be7ed01dfb0a1c0a31b84a471f64c9e581cd9e955e3ea019008355fd2beddf2bf7ed873678a5c4c40b0cc961c9cf6e3fb46c316cfc2f3c5bce1b22051e4927cae85e0a8a415800c631c5f1ffa18e18d9c972c62e9948323ca9e74930c8fb184f6e82e1eb9ede39b4256c732fe131c01a686539942fcf440b0d146585264d6cc6a94deaf9acd6ff8ff7ae4b6a82550c1cbc5960d17f695bf6edef6b6a5a352fb7ca4c497eb15dc8b8354da8ce9d20626da32d2fe355d103c0c16733b662547be8d16448a16f40ea2c2b3c912d09f049fba2202b899cc743fa3bdcaf4d36dff3faedef053d77e554ff7e4876cdf8f2baed47c3ff20e0d84a7a85c4513db875ecaf80effa67feba9637159302428ad49e45d730e45d82c07aa257196dd7c8fd9c63d3f7973578feb711e62250306ec34c99d82c0d32c2c25b92a4eefc02230708c893bebf8a3195aed3d3f70dea42ad0889731241e9c5d3ad61c80ce053b108e797d0f6b33a6b84a17a9df0e647c95ea7d727f9295dab9af2ec37d7eb1c33669156339f6b66ef4563775adf1c5406c826bdd0a9d51528ed0eea8de1714084d9ea91d9961a1017a24452689ea86f5c27221b67bda05f234ae4e8bcdb2237757ef40b1d07fff967a311fae6b9e8c07520f17f464794480bacdeeb29605897d1270612bc153de9ae66ee90a2a7568d6241630be99c876763e0c3be22674d8629ae189b9340fc2133520c99a988c5b4d17cc609139455670d066037ff8d528cdb3ee93296a111f2df0717b39a3dfa8c48f629d9e70cb2200013aa050c2c500392dd33a1f5bfa63893c4805efcf21ae241ae1cd15509c7c04b2e2c8a5475419c33facdc70844303df4e2dddf1a135300b77aed69656e8b11790b9ea1fef3ee1134a88a9ec4ae2fa2036f5efdf80138b5eba1a645c2640c68952ba032937ce43a9d2d920e1cdb34166d28b43fb07ee112cf9db3b3049fc4b35949deee39b1ce706b7576909e48a83f3e5cff09542f0a036935985c71569c2fc9acae1f0f4b3e0e0ee1e79acc3041401f0a3cd59975cadaecdd44c36c1de7bc530a5ddb7f0e12b0c392f82e58321b39c42c98f90bcb35eaa78b1cbbc9c32451f23613cd01dd3e28084c64976e5b36c4a8f8338c7491ba5c7d25398c53c22badb922015290498b306b3cf017c9ed4a2a065513284d83fa48f64dcb7a64f4df8610dd3f06234d30d3582d5d9cc04f71c67ae266411e57b8cb70d13fa5f8eda2b3fd6f8535f988ea1cfd54ddc160fca3030f301d85c44f235cd4814262cbd2e0f1645f0103ebf4035bbcf46a3a0481ee3efe43ff732aa16626e7a6b706215ec4fae91b8a7d4c91d1931bb73483a9b7da3038fac37bdf20f997ce134c9e8ac7a654d9304937e0404c3e6afa8ccbfcddbd8b742d2408fe2ca044d7359fb744a245692e2df5c9b70ab64fb4d76e1e59862efe5f985cc579287d6ed8e5ad5fecf8923e84a81455d42e02ab689c973ac3c9bc8bf40431fa86ea9eb348f9ccaadf02a4417186e35deccc298b848337f6a290acda14a7b3a4fae7d7ee72cf48dab35154ad0aca1336909a0923f70ee85fbb611513d91c77e98ee802014f1e37713116b77eccdb1966ce70e394095a04d64609df81ba14231f72f4143313272dc5ce131da417ba3629b11452b63a08233721710a74b6e5bdfef606d74509d9c5c043cb423a6c2ace53e96b3d9a20b56dbf4b529bb8dcc7faa5909f91890d09209af135c9543cd69cc26ecd312e4058b2104cb969aac3372e413818f537df10404f30084653b7155fb784e2663d716944bc9279b8b292e36da547991d86ec678a72be1e3987473d8696774899e8e34f764ca89437d09b84b16984df326be101f808915ff88638a2234146c5f9ad95309499da2043c34bad5c7cd3b7a71669c846a414894dffe4718333b20c979b806afea00dce8a18daa3c31f01c685b1ae13cab123dfb2074aecea79c6cd100a4eb4b6a5cd67da607700688ef789cc60ba43e6579872b798a4bc67b369fd248070033ef6b2183e24f92be384acab5d48030683882c01f81b52f6ece04c26d92f7367758510b491bd1dd26cecaaa237ad6c5f5a65aded05982861fcf42d7abc8eddebca81979538d885595b6011922906af82bb7de32dabce09c53b1a363c74b22c4a4b44d11f464597b6898958eb094ee42970661a5673a2ce1d60b936192c383d21ea342a984f72820bb965b670df67fb2fed00144ee91001e4bc91aad01d9c666ecdf4e64eeb6db35caa226de609d0e235e7d93b208a72f14177148789075bedd8e7a02a4388ac974137fc5c307a70812ec9ea98a00d0fc0eff9984d0472ee4d454e8d7adf6ba70c7ce67063658159041a5e95a771a94ce75a5d545a211550e4f13a89e8444ccb405761619a41ec9650b8def24707c649ee0d61731fb6cf5456ec653ee94114d237c9e07bc94e27284eaad9a79cc7335e9936393a5d8e3640087136a16f8c6ec0ad4b816fe842aecfb60bb19895b4395092bb830d756348640fd3b9dcefeda162b3c7c431200e827e8bf20a8e101359b36f650a72f49686290351e9bcb8b50f506ac8c3f059c7a33a415ebbdb69f3ed8b481fcd2833e89f1fc0ae4039ba7df9ad483026f5aaa008fdada7bdfdfd2ca2a28212142f05d4237b3a27f17a52f3d31d555ee6bfaea410f3c2784aa5bf64cbcfea1ed8ae45f5195dbff77b717fcf71a99471597d777f7053f0464edfed7365a34a2fbd2c365c12178a98b339b6eb35f4fa43d7300c02377e192b964f123543313dc38b146e32dc6c014e58ecc1d21fa0ecb22c6339a5687d68209d881d9c495fbe2142a648da5875dd0450a60e7627aa5e01c530c329eff184eec8ce132625137d14feea6d0cc31ed3f40264b0d3d8327b754030b9d2ac4c6a925be5dee808f3589fa81057f93df5e601781a43a1d07685db52b4142c44f2895eb796aabe4e38b266bcf06b155680260ce05270a2cc72e5a480dfbb5cee4ea27b2b2367654c0373834a5d321e533547f8eb8e1c447139590b9c6c1b0e2307a5aa8d0bd1c696a13ab5181dd9dbdd4d15adac753e0ed74ddba4838e1f245d158dacf88fc068e0728e5003034e941cd7c2bd3a342ed8e019fff5522b12402cf44c7172ee59405d263572585eba135d245600cbc1929ae2db7274c0e744e8a25d9bca38f18ccfe2df90e64a7a67ac94b5c3b6ae1868884355dba592a50cca345d903b99f818b7c30f05bc551f52d87ad3e2bf77b11260f2656ade76992b59a314d6b2e64a6b771cc73fdde95fe788270338d0d04527f3ba40bd381a715f7f228ca0bfa814e2770069adbe16af434b6d4c63bfff2622197ffb8333d6a53319e50c8cd7a57507aaf35f2e69b1f54303c0fd225b581b1109c7ffca37b56a6bb49ddf285187fca276f7e19e637e9003a13826598e6746c1e017006afda671e57c151eacd18916682b991f6da8cdb676be441dc3cde6b20dba1528a2b545ada45792c97e7fba3861d07a622b132457ff36bb661c3eebc4e12c5db2851c310602ca07209ca1a68a255d6acdf94b2305dc5e466255163cb8c0fd787651e964c2fad80084fb11959b8bce2b8e8599d2c9011ee1bef5437550e34dacbe52dced6221895794fe790e8ae656913028f6f3e4cb08c6a4632f9ea81d8b1709796c4023044f058f24d659ede17152796200df634bb8f5ff90f065b78b0a225e6b72efdad9323cf13a2c8e134c472cfc10811e43b1f738b8018e3c5649e0dd6ed46e996bc8ef4f2b907d41360419fc209f72480d64a9aa83e0a06cca9e72ed7cbdf11893bd4794c285102411040f19c96727ee11873bfd3b2b8c23fab9359d7fc4ed888813650de699eff14d1859bd88aced1277ccf78dd9c16a0ed67cd209d36ec7804066223e6011a94abd8b78ce98689e390ae2df181cce4916e498fcab45717dd943293973d30e4ea5fd20a17007c754edb25716afc2413646c3736ce72b83d8c4e4092e122e2f6831cf914074e230ab3aa8757fadad95c93aa025c93204a4e8dd38cd6e65616f9c202b77ff6aa7efc3e6a8cf9805c945d2eec17625c72d1ff5a5eb2d7f15853b2ae87d6f4f19271bc09241b354051fb1b2dda1733fad97db861a499c550b0f6ae8d9a8cd66a71d4cbece81f3eff288fb60c26929bf5aba59bae4a78c86354a4289b54e429edc9a3bd3a05bdf2a93f8828536472b830a9cfc3dcc222b6c488913d0022ba4ac94cce875e2cb8cd4632f42f20a0256e05887c061577d2c69d6b52b4866b04c73b3a837ec5883e19f4998ef78"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000039c0), 0x1, 0x0) [ 525.887085] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 06:26:48 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x800) 06:26:48 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000039c0), 0x1, 0x0) 06:26:48 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "f1ed94d104ac1ebcd67f8b7cb34ef10ac247c2a3f8e685409a329107d66a68880b5bac1c39f4e71ada35cbbcd8b0813befd2ae1878e691e4640e6d8a3288d626adb5c49522eee7e120ac82e0be160b93d3ebe5882722cb7dda098567b63b3f7ba437c16f3ea73f00b312eecc8cf90707f873cf40c4126ea7f51f92c87199f86ae5ac4d06ea4a45bf33b80cd689780be587fed8f5a13b4309b677744d9b6d49f605c9d78e3221ffae6837fd5dea29209c817a91ff1c27f3182ce178dc57486c0303187f284ea7681dc9622da73bf4b52bef46954b2eafacd22903c9f65946af4a256aba54d51834f601e2453ae8d333165aa6290e0d018ab92dd285f9d9f315de99fe8234ed0954d898ec19cdf0d87f0ef72782829631f74bc7931b9e4c6f8a0ba2183994bb88305d05c0bdcc1d3f8da5c0ad090b488c837dd7965158ad4e35654f67fea6919f5d62aa362cc6a2c2ffdf571aac463559cf19fba25057e385e5981106b77d4d89ea1bafef4f8d1805b361f1e7248147e58e08d24424849bc9b44b67b0488c8bd9bfbbb9c276e3a3b86755bf82ccc1b18005bc5c8964d2f97c87ca40587ed66ea43867aee878c7c1e7ef8c8fad246b266df2f5b8d43b7eb781a04045548db772658c64c46f864ce8b48c81de3799ee75c997e2a07871cd22ccda71985fbaac3520ab8b49b5cedfe2f039c13d395a54095258c5997f967829f2c73c8ebf62a92ae2de3a92556102da1b61b166597ff62c40743deb58486147fffd9896abbed78aa67cc0fb14b382b27fa903855f961837062d5a1593334ed107ee80a1d9500900882a2e4137ebfdeac3f51a579485bcd9c0b04522dbf671b0b904f1cdececb0f35316a599861f03a5d58fa7e0d3a9b064d2ca844d40f725f8808dbebd9d045d752fff693d9e00fd341c05a41e15c8c0731dbe24ca264ca86b7ade140a8417efaf98612568de6923e9050f5bb625e0a6f939211371334f2e02016293c3501d6313666da607a6a1c778be8998b3159451c9e00d81845738f7e6e01f712d2c3d8438bb89cb9bac4efa452db2626f70555be7792a6102be036a4d2ce63e8b14c88c750901c1fc96dc81a2498e49b720be7ed01dfb0a1c0a31b84a471f64c9e581cd9e955e3ea019008355fd2beddf2bf7ed873678a5c4c40b0cc961c9cf6e3fb46c316cfc2f3c5bce1b22051e4927cae85e0a8a415800c631c5f1ffa18e18d9c972c62e9948323ca9e74930c8fb184f6e82e1eb9ede39b4256c732fe131c01a686539942fcf440b0d146585264d6cc6a94deaf9acd6ff8ff7ae4b6a82550c1cbc5960d17f695bf6edef6b6a5a352fb7ca4c497eb15dc8b8354da8ce9d20626da32d2fe355d103c0c16733b662547be8d16448a16f40ea2c2b3c912d09f049fba2202b899cc743fa3bdcaf4d36dff3faedef053d77e554ff7e4876cdf8f2baed47c3ff20e0d84a7a85c4513db875ecaf80effa67feba9637159302428ad49e45d730e45d82c07aa257196dd7c8fd9c63d3f7973578feb711e62250306ec34c99d82c0d32c2c25b92a4eefc02230708c893bebf8a3195aed3d3f70dea42ad0889731241e9c5d3ad61c80ce053b108e797d0f6b33a6b84a17a9df0e647c95ea7d727f9295dab9af2ec37d7eb1c33669156339f6b66ef4563775adf1c5406c826bdd0a9d51528ed0eea8de1714084d9ea91d9961a1017a24452689ea86f5c27221b67bda05f234ae4e8bcdb2237757ef40b1d07fff967a311fae6b9e8c07520f17f464794480bacdeeb29605897d1270612bc153de9ae66ee90a2a7568d6241630be99c876763e0c3be22674d8629ae189b9340fc2133520c99a988c5b4d17cc609139455670d066037ff8d528cdb3ee93296a111f2df0717b39a3dfa8c48f629d9e70cb2200013aa050c2c500392dd33a1f5bfa63893c4805efcf21ae241ae1cd15509c7c04b2e2c8a5475419c33facdc70844303df4e2dddf1a135300b77aed69656e8b11790b9ea1fef3ee1134a88a9ec4ae2fa2036f5efdf80138b5eba1a645c2640c68952ba032937ce43a9d2d920e1cdb34166d28b43fb07ee112cf9db3b3049fc4b35949deee39b1ce706b7576909e48a83f3e5cff09542f0a036935985c71569c2fc9acae1f0f4b3e0e0ee1e79acc3041401f0a3cd59975cadaecdd44c36c1de7bc530a5ddb7f0e12b0c392f82e58321b39c42c98f90bcb35eaa78b1cbbc9c32451f23613cd01dd3e28084c64976e5b36c4a8f8338c7491ba5c7d25398c53c22badb922015290498b306b3cf017c9ed4a2a065513284d83fa48f64dcb7a64f4df8610dd3f06234d30d3582d5d9cc04f71c67ae266411e57b8cb70d13fa5f8eda2b3fd6f8535f988ea1cfd54ddc160fca3030f301d85c44f235cd4814262cbd2e0f1645f0103ebf4035bbcf46a3a0481ee3efe43ff732aa16626e7a6b706215ec4fae91b8a7d4c91d1931bb73483a9b7da3038fac37bdf20f997ce134c9e8ac7a654d9304937e0404c3e6afa8ccbfcddbd8b742d2408fe2ca044d7359fb744a245692e2df5c9b70ab64fb4d76e1e59862efe5f985cc579287d6ed8e5ad5fecf8923e84a81455d42e02ab689c973ac3c9bc8bf40431fa86ea9eb348f9ccaadf02a4417186e35deccc298b848337f6a290acda14a7b3a4fae7d7ee72cf48dab35154ad0aca1336909a0923f70ee85fbb611513d91c77e98ee802014f1e37713116b77eccdb1966ce70e394095a04d64609df81ba14231f72f4143313272dc5ce131da417ba3629b11452b63a08233721710a74b6e5bdfef606d74509d9c5c043cb423a6c2ace53e96b3d9a20b56dbf4b529bb8dcc7faa5909f91890d09209af135c9543cd69cc26ecd312e4058b2104cb969aac3372e413818f537df10404f30084653b7155fb784e2663d716944bc9279b8b292e36da547991d86ec678a72be1e3987473d8696774899e8e34f764ca89437d09b84b16984df326be101f808915ff88638a2234146c5f9ad95309499da2043c34bad5c7cd3b7a71669c846a414894dffe4718333b20c979b806afea00dce8a18daa3c31f01c685b1ae13cab123dfb2074aecea79c6cd100a4eb4b6a5cd67da607700688ef789cc60ba43e6579872b798a4bc67b369fd248070033ef6b2183e24f92be384acab5d48030683882c01f81b52f6ece04c26d92f7367758510b491bd1dd26cecaaa237ad6c5f5a65aded05982861fcf42d7abc8eddebca81979538d885595b6011922906af82bb7de32dabce09c53b1a363c74b22c4a4b44d11f464597b6898958eb094ee42970661a5673a2ce1d60b936192c383d21ea342a984f72820bb965b670df67fb2fed00144ee91001e4bc91aad01d9c666ecdf4e64eeb6db35caa226de609d0e235e7d93b208a72f14177148789075bedd8e7a02a4388ac974137fc5c307a70812ec9ea98a00d0fc0eff9984d0472ee4d454e8d7adf6ba70c7ce67063658159041a5e95a771a94ce75a5d545a211550e4f13a89e8444ccb405761619a41ec9650b8def24707c649ee0d61731fb6cf5456ec653ee94114d237c9e07bc94e27284eaad9a79cc7335e9936393a5d8e3640087136a16f8c6ec0ad4b816fe842aecfb60bb19895b4395092bb830d756348640fd3b9dcefeda162b3c7c431200e827e8bf20a8e101359b36f650a72f49686290351e9bcb8b50f506ac8c3f059c7a33a415ebbdb69f3ed8b481fcd2833e89f1fc0ae4039ba7df9ad483026f5aaa008fdada7bdfdfd2ca2a28212142f05d4237b3a27f17a52f3d31d555ee6bfaea410f3c2784aa5bf64cbcfea1ed8ae45f5195dbff77b717fcf71a99471597d777f7053f0464edfed7365a34a2fbd2c365c12178a98b339b6eb35f4fa43d7300c02377e192b964f123543313dc38b146e32dc6c014e58ecc1d21fa0ecb22c6339a5687d68209d881d9c495fbe2142a648da5875dd0450a60e7627aa5e01c530c329eff184eec8ce132625137d14feea6d0cc31ed3f40264b0d3d8327b754030b9d2ac4c6a925be5dee808f3589fa81057f93df5e601781a43a1d07685db52b4142c44f2895eb796aabe4e38b266bcf06b155680260ce05270a2cc72e5a480dfbb5cee4ea27b2b2367654c0373834a5d321e533547f8eb8e1c447139590b9c6c1b0e2307a5aa8d0bd1c696a13ab5181dd9dbdd4d15adac753e0ed74ddba4838e1f245d158dacf88fc068e0728e5003034e941cd7c2bd3a342ed8e019fff5522b12402cf44c7172ee59405d263572585eba135d245600cbc1929ae2db7274c0e744e8a25d9bca38f18ccfe2df90e64a7a67ac94b5c3b6ae1868884355dba592a50cca345d903b99f818b7c30f05bc551f52d87ad3e2bf77b11260f2656ade76992b59a314d6b2e64a6b771cc73fdde95fe788270338d0d04527f3ba40bd381a715f7f228ca0bfa814e2770069adbe16af434b6d4c63bfff2622197ffb8333d6a53319e50c8cd7a57507aaf35f2e69b1f54303c0fd225b581b1109c7ffca37b56a6bb49ddf285187fca276f7e19e637e9003a13826598e6746c1e017006afda671e57c151eacd18916682b991f6da8cdb676be441dc3cde6b20dba1528a2b545ada45792c97e7fba3861d07a622b132457ff36bb661c3eebc4e12c5db2851c310602ca07209ca1a68a255d6acdf94b2305dc5e466255163cb8c0fd787651e964c2fad80084fb11959b8bce2b8e8599d2c9011ee1bef5437550e34dacbe52dced6221895794fe790e8ae656913028f6f3e4cb08c6a4632f9ea81d8b1709796c4023044f058f24d659ede17152796200df634bb8f5ff90f065b78b0a225e6b72efdad9323cf13a2c8e134c472cfc10811e43b1f738b8018e3c5649e0dd6ed46e996bc8ef4f2b907d41360419fc209f72480d64a9aa83e0a06cca9e72ed7cbdf11893bd4794c285102411040f19c96727ee11873bfd3b2b8c23fab9359d7fc4ed888813650de699eff14d1859bd88aced1277ccf78dd9c16a0ed67cd209d36ec7804066223e6011a94abd8b78ce98689e390ae2df181cce4916e498fcab45717dd943293973d30e4ea5fd20a17007c754edb25716afc2413646c3736ce72b83d8c4e4092e122e2f6831cf914074e230ab3aa8757fadad95c93aa025c93204a4e8dd38cd6e65616f9c202b77ff6aa7efc3e6a8cf9805c945d2eec17625c72d1ff5a5eb2d7f15853b2ae87d6f4f19271bc09241b354051fb1b2dda1733fad97db861a499c550b0f6ae8d9a8cd66a71d4cbece81f3eff288fb60c26929bf5aba59bae4a78c86354a4289b54e429edc9a3bd3a05bdf2a93f8828536472b830a9cfc3dcc222b6c488913d0022ba4ac94cce875e2cb8cd4632f42f20a0256e05887c061577d2c69d6b52b4866b04c73b3a837ec5883e19f4998ef78"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 06:26:48 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:26:48 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:26:48 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x800) 06:27:01 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x7, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:01 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:27:01 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') 06:27:01 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:27:01 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:27:01 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 06:27:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x2, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x190, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x14a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}]}]]}, 0x190}}, 0x0) 06:27:01 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:27:01 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) 06:27:01 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:27:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x3, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:13 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x4, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:13 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x800) 06:27:13 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:27:13 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x18c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x147, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}]}]]}, 0x18c}}, 0x0) 06:27:13 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 06:27:13 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 1) 06:27:13 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 06:27:13 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) [ 551.428613] FAULT_INJECTION: forcing a failure. [ 551.428613] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 551.429958] CPU: 0 PID: 5784 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 551.430853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 551.432120] Call Trace: [ 551.432404] [ 551.432645] dump_stack_lvl+0x8b/0xb3 [ 551.433091] should_fail.cold+0x5/0xa [ 551.433548] _copy_from_user+0x2e/0x170 [ 551.433998] __copy_msghdr_from_user+0x91/0x4b0 [ 551.434516] ? __ia32_sys_shutdown+0x70/0x70 [ 551.435010] ? __lock_acquire+0xbac/0x5b70 [ 551.435488] sendmsg_copy_msghdr+0xa1/0x160 [ 551.435966] ? __ia32_sys_recvmmsg+0x260/0x260 [ 551.436479] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 551.437064] ? lock_release+0x3b2/0x6f0 [ 551.437534] ? __might_fault+0xd1/0x170 [ 551.437998] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 551.438591] ___sys_sendmsg+0xc6/0x170 [ 551.439023] ? sendmsg_copy_msghdr+0x160/0x160 [ 551.439534] ? lock_release+0x3b2/0x6f0 [ 551.439979] ? __fget_files+0x2cd/0x4c0 [ 551.440427] ? lock_downgrade+0x6d0/0x6d0 [ 551.440890] ? lock_release+0x3b2/0x6f0 [ 551.441364] ? ksys_write+0x212/0x250 [ 551.441794] ? __fget_files+0x2ef/0x4c0 [ 551.442234] ? __fget_light+0xea/0x280 [ 551.442675] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 551.443303] __sys_sendmsg+0xe5/0x1b0 [ 551.443737] ? __sys_sendmsg_sock+0x30/0x30 [ 551.444216] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 551.444831] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 551.445467] ? fput+0x2a/0x50 [ 551.445826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 551.446406] do_syscall_64+0x3b/0x90 [ 551.446837] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 551.447411] RIP: 0033:0x7f464c80eb19 [ 551.447820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 551.449888] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 551.450718] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 551.451500] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 551.452279] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 551.453070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 551.453878] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 551.454682] 06:27:13 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:27:13 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) [ 564.903909] FAULT_INJECTION: forcing a failure. [ 564.903909] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 564.905321] CPU: 0 PID: 5812 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 564.906192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 564.907370] Call Trace: [ 564.907637] [ 564.907871] dump_stack_lvl+0x8b/0xb3 [ 564.908296] should_fail.cold+0x5/0xa [ 564.908711] _copy_from_user+0x2e/0x170 [ 564.909127] iovec_from_user+0x242/0x3c0 [ 564.909591] __import_iovec+0x67/0x5d0 [ 564.910015] ? __ia32_sys_shutdown+0x70/0x70 [ 564.910490] import_iovec+0x83/0xb0 [ 564.910872] sendmsg_copy_msghdr+0x12d/0x160 [ 564.911330] ? __ia32_sys_recvmmsg+0x260/0x260 [ 564.911827] ? lock_release+0x3b2/0x6f0 [ 564.912249] ? __might_fault+0xd1/0x170 [ 564.912684] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 564.913244] ___sys_sendmsg+0xc6/0x170 [ 564.913665] ? sendmsg_copy_msghdr+0x160/0x160 [ 564.914140] ? lock_release+0x3b2/0x6f0 [ 564.914545] ? __fget_files+0x2cd/0x4c0 [ 564.914963] ? lock_downgrade+0x6d0/0x6d0 [ 564.915391] ? lock_release+0x3b2/0x6f0 [ 564.915804] ? ksys_write+0x212/0x250 [ 564.916220] ? __fget_files+0x2ef/0x4c0 [ 564.916636] ? __fget_light+0xea/0x280 [ 564.917037] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 564.917624] __sys_sendmsg+0xe5/0x1b0 [ 564.918019] ? __sys_sendmsg_sock+0x30/0x30 [ 564.918475] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 564.919044] ? fput+0x2a/0x50 [ 564.919380] ? syscall_enter_from_user_mode+0x1d/0x50 [ 564.919915] do_syscall_64+0x3b/0x90 [ 564.920308] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 564.920840] RIP: 0033:0x7f464c80eb19 [ 564.921231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 564.923125] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 564.923912] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 564.924642] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 564.925418] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 564.926145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 564.926872] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 564.927610] 06:27:27 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:27:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x184, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x13f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}]}]]}, 0x184}}, 0x0) 06:27:27 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') syz_io_uring_setup(0x3d97, &(0x7f0000000040)={0x0, 0xcd9, 0x4, 0x1, 0x3c6, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 06:27:27 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) 06:27:27 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 06:27:27 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) 06:27:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x6, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:27 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 2) 06:27:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, 0x0, 0x0) 06:27:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x7, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:27 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 06:27:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x180, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x139, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}]}]]}, 0x180}}, 0x0) 06:27:27 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) chdir(&(0x7f00000003c0)='./file1\x00') 06:27:27 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) 06:27:27 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) 06:27:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, 0x0, 0x0) 06:27:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x8, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:27 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 3) 06:27:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x2a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}]}]]}, 0x70}}, 0x0) 06:27:27 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) 06:27:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, 0x0, 0x0) 06:27:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0xa, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:27 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8}]}, 0x24}}, 0x0) [ 565.191560] FAULT_INJECTION: forcing a failure. [ 565.191560] name failslab, interval 1, probability 0, space 0, times 0 [ 565.193867] CPU: 1 PID: 5845 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 565.195483] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 565.197705] Call Trace: [ 565.198208] [ 565.198643] dump_stack_lvl+0x8b/0xb3 [ 565.199412] should_fail.cold+0x5/0xa [ 565.200175] ? __alloc_skb+0x211/0x340 [ 565.200937] should_failslab+0x5/0x10 [ 565.201715] kmem_cache_alloc_node+0x55/0x490 [ 565.202605] __alloc_skb+0x211/0x340 [ 565.203336] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 565.204421] netlink_sendmsg+0x98d/0xdf0 [ 565.205231] ? netlink_unicast+0x7e0/0x7e0 [ 565.206075] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 565.207163] ? netlink_unicast+0x7e0/0x7e0 [ 565.207993] sock_sendmsg+0x150/0x190 [ 565.208745] ____sys_sendmsg+0x709/0x870 [ 565.209548] ? kernel_sendmsg+0x50/0x50 [ 565.210319] ? __ia32_sys_recvmmsg+0x260/0x260 [ 565.211225] ? lock_release+0x3b2/0x6f0 [ 565.212002] ? __might_fault+0xd1/0x170 [ 565.212793] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 565.213844] ___sys_sendmsg+0xf3/0x170 [ 565.214623] ? sendmsg_copy_msghdr+0x160/0x160 [ 565.215526] ? __fget_files+0x2cd/0x4c0 [ 565.216306] ? lock_downgrade+0x6d0/0x6d0 [ 565.217117] ? lock_release+0x3b2/0x6f0 [ 565.217906] ? ksys_write+0x212/0x250 [ 565.218673] ? __fget_files+0x2ef/0x4c0 [ 565.219457] ? __fget_light+0xea/0x280 [ 565.220220] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 565.221327] __sys_sendmsg+0xe5/0x1b0 [ 565.222083] ? __sys_sendmsg_sock+0x30/0x30 [ 565.222938] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 565.224041] ? syscall_enter_from_user_mode+0x1d/0x50 [ 565.225065] do_syscall_64+0x3b/0x90 [ 565.225821] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 565.226828] RIP: 0033:0x7f464c80eb19 [ 565.227552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 565.231141] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 565.232622] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 565.234034] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 565.235425] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 565.236814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 565.238212] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 565.239624] 06:27:27 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) 06:27:42 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 4) 06:27:42 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) 06:27:42 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) 06:27:42 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0xc, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:42 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) 06:27:42 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) 06:27:42 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x2a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}]}]]}, 0x70}}, 0x0) 06:27:42 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8}]}, 0x24}}, 0x0) 06:27:42 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8}]}, 0x24}}, 0x0) [ 579.890198] FAULT_INJECTION: forcing a failure. [ 579.890198] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 579.893035] CPU: 1 PID: 5882 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 579.894869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 579.897358] Call Trace: [ 579.897929] [ 579.898418] dump_stack_lvl+0x8b/0xb3 [ 579.899278] should_fail.cold+0x5/0xa [ 579.900135] prepare_alloc_pages+0x17b/0x500 [ 579.901113] __alloc_pages+0x131/0x4e0 [ 579.901997] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 579.903321] ? lock_is_held_type+0xd7/0x130 [ 579.904276] ? lock_release+0x3b2/0x6f0 [ 579.905150] ? __slab_alloc.constprop.0+0x45/0x80 [ 579.906215] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 579.907448] alloc_pages+0x1a0/0x2f0 [ 579.908287] new_slab+0x256/0x360 [ 579.909053] ___slab_alloc+0x76d/0xa60 [ 579.909911] ? __alloc_skb+0x211/0x340 [ 579.910779] ? lock_is_held_type+0xd7/0x130 [ 579.911734] ? __alloc_skb+0x211/0x340 [ 579.912585] __slab_alloc.constprop.0+0x45/0x80 [ 579.913627] ? __alloc_skb+0x211/0x340 [ 579.914479] kmem_cache_alloc_node+0x370/0x490 [ 579.915491] __alloc_skb+0x211/0x340 [ 579.916303] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 579.917515] netlink_sendmsg+0x98d/0xdf0 [ 579.918428] ? netlink_unicast+0x7e0/0x7e0 [ 579.919368] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 579.920570] ? netlink_unicast+0x7e0/0x7e0 [ 579.921491] sock_sendmsg+0x150/0x190 [ 579.922349] ____sys_sendmsg+0x709/0x870 [ 579.923241] ? kernel_sendmsg+0x50/0x50 [ 579.924107] ? __ia32_sys_recvmmsg+0x260/0x260 [ 579.925114] ? lock_release+0x3b2/0x6f0 [ 579.925987] ? __might_fault+0xd1/0x170 [ 579.926862] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 579.928011] ___sys_sendmsg+0xf3/0x170 [ 579.928869] ? sendmsg_copy_msghdr+0x160/0x160 [ 579.929882] ? __fget_files+0x2cd/0x4c0 [ 579.930746] ? lock_downgrade+0x6d0/0x6d0 [ 579.931641] ? lock_release+0x3b2/0x6f0 [ 579.932503] ? ksys_write+0x212/0x250 [ 579.933347] ? __fget_files+0x2ef/0x4c0 [ 579.934235] ? __fget_light+0xea/0x280 [ 579.935076] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 579.936267] __sys_sendmsg+0xe5/0x1b0 [ 579.937096] ? __sys_sendmsg_sock+0x30/0x30 [ 579.938044] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 579.939255] ? syscall_enter_from_user_mode+0x1d/0x50 [ 579.940374] do_syscall_64+0x3b/0x90 [ 579.941194] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 579.942335] RIP: 0033:0x7f464c80eb19 [ 579.943128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 579.947073] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 579.948687] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 579.950226] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 579.951732] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 579.953242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 579.954756] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 579.956284] [ 592.613219] FAULT_INJECTION: forcing a failure. [ 592.613219] name failslab, interval 1, probability 0, space 0, times 0 [ 592.614494] CPU: 1 PID: 5893 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 592.615347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 592.616716] Call Trace: [ 592.617026] [ 592.617290] dump_stack_lvl+0x8b/0xb3 [ 592.617778] should_fail.cold+0x5/0xa [ 592.618242] should_failslab+0x5/0x10 [ 592.618697] __kmalloc_node_track_caller+0x7e/0x330 [ 592.619280] ? netlink_sendmsg+0x98d/0xdf0 [ 592.619782] __alloc_skb+0xe3/0x340 [ 592.620198] netlink_sendmsg+0x98d/0xdf0 [ 592.620660] ? netlink_unicast+0x7e0/0x7e0 [ 592.621140] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 592.621772] ? netlink_unicast+0x7e0/0x7e0 [ 592.622270] sock_sendmsg+0x150/0x190 [ 592.622709] ____sys_sendmsg+0x709/0x870 [ 592.623212] ? kernel_sendmsg+0x50/0x50 [ 592.623695] ? __ia32_sys_recvmmsg+0x260/0x260 [ 592.624262] ? lock_release+0x3b2/0x6f0 [ 592.624756] ? __might_fault+0xd1/0x170 [ 592.625256] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 592.625934] ___sys_sendmsg+0xf3/0x170 [ 592.626420] ? sendmsg_copy_msghdr+0x160/0x160 [ 592.626988] ? __fget_files+0x2cd/0x4c0 [ 592.627485] ? lock_downgrade+0x6d0/0x6d0 [ 592.627983] ? lock_release+0x3b2/0x6f0 [ 592.628476] ? ksys_write+0x212/0x250 [ 592.628965] ? __fget_files+0x2ef/0x4c0 [ 592.629461] ? __fget_light+0xea/0x280 [ 592.629965] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 592.630647] __sys_sendmsg+0xe5/0x1b0 [ 592.631152] ? __sys_sendmsg_sock+0x30/0x30 [ 592.631674] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 592.632351] ? syscall_enter_from_user_mode+0x1d/0x50 [ 592.632984] do_syscall_64+0x3b/0x90 [ 592.633434] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 592.634056] RIP: 0033:0x7f464c80eb19 [ 592.634502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.636626] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 592.637510] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 592.638388] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 592.639237] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 592.640079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.640926] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 592.641794] 06:27:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x2a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}]}]]}, 0x70}}, 0x0) 06:27:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 5) 06:27:54 executing program 7: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) r4 = syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000000400)={0x0, 0x0, "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", "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"}) 06:27:54 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) 06:27:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) 06:27:54 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) 06:27:54 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0xe, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:54 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x2) 06:27:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 1) 06:27:54 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) 06:27:54 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x11, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:54 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) syz_io_uring_setup(0x34c9, &(0x7f0000000280)={0x0, 0xe23b, 0x8, 0x3, 0x1f4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000300)) 06:27:55 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:27:55 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 6) 06:27:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x180, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x139, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}]}]]}, 0x180}}, 0x0) [ 592.779915] FAULT_INJECTION: forcing a failure. [ 592.779915] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 592.781235] CPU: 1 PID: 5919 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 592.782091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 592.783252] Call Trace: [ 592.783530] [ 592.783760] dump_stack_lvl+0x8b/0xb3 [ 592.784181] should_fail.cold+0x5/0xa [ 592.784584] _copy_from_user+0x2e/0x170 [ 592.785013] __copy_msghdr_from_user+0x91/0x4b0 [ 592.785507] ? __ia32_sys_shutdown+0x70/0x70 [ 592.785991] ? __lock_acquire+0xbac/0x5b70 [ 592.786452] sendmsg_copy_msghdr+0xa1/0x160 [ 592.786915] ? __ia32_sys_recvmmsg+0x260/0x260 [ 592.787398] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 592.787952] ? lock_release+0x3b2/0x6f0 [ 592.788369] ? __might_fault+0xd1/0x170 [ 592.788797] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 592.789361] ___sys_sendmsg+0xc6/0x170 [ 592.789793] ? sendmsg_copy_msghdr+0x160/0x160 [ 592.790271] ? lock_release+0x3b2/0x6f0 [ 592.790681] ? __fget_files+0x2cd/0x4c0 [ 592.791103] ? lock_downgrade+0x6d0/0x6d0 [ 592.791530] ? lock_release+0x3b2/0x6f0 [ 592.791945] ? ksys_write+0x212/0x250 [ 592.792349] ? __fget_files+0x2ef/0x4c0 [ 592.792763] ? __fget_light+0xea/0x280 [ 592.793168] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 592.793751] __sys_sendmsg+0xe5/0x1b0 [ 592.794154] ? __sys_sendmsg_sock+0x30/0x30 [ 592.794605] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 592.795202] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 592.795773] ? fput+0x2a/0x50 [ 592.796106] ? syscall_enter_from_user_mode+0x1d/0x50 [ 592.796646] do_syscall_64+0x3b/0x90 [ 592.797045] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 592.797580] RIP: 0033:0x7f0b10e26b19 [ 592.797978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.799877] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 592.800654] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 592.801398] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 592.802153] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 592.802893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.803620] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 592.804366] 06:27:55 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:27:55 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1e, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) [ 592.837257] FAULT_INJECTION: forcing a failure. [ 592.837257] name failslab, interval 1, probability 0, space 0, times 0 [ 592.839830] CPU: 0 PID: 5926 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 592.841541] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 592.843902] Call Trace: [ 592.844437] [ 592.844906] dump_stack_lvl+0x8b/0xb3 [ 592.845745] should_fail.cold+0x5/0xa [ 592.846576] ? create_object.isra.0+0x3a/0xa20 [ 592.847566] should_failslab+0x5/0x10 [ 592.848391] kmem_cache_alloc+0x5b/0x480 [ 592.849269] create_object.isra.0+0x3a/0xa20 [ 592.850217] ? kasan_unpoison+0x23/0x50 [ 592.851075] __kmalloc_node_track_caller+0x1fb/0x330 [ 592.852148] ? netlink_sendmsg+0x98d/0xdf0 [ 592.853053] __alloc_skb+0xe3/0x340 [ 592.853835] netlink_sendmsg+0x98d/0xdf0 [ 592.854702] ? netlink_unicast+0x7e0/0x7e0 [ 592.855610] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 592.856779] ? netlink_unicast+0x7e0/0x7e0 [ 592.857676] sock_sendmsg+0x150/0x190 [ 592.858502] ____sys_sendmsg+0x709/0x870 [ 592.859360] ? kernel_sendmsg+0x50/0x50 [ 592.860208] ? __ia32_sys_recvmmsg+0x260/0x260 [ 592.861185] ? lock_release+0x3b2/0x6f0 [ 592.862043] ? __might_fault+0xd1/0x170 [ 592.862891] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 592.864003] ___sys_sendmsg+0xf3/0x170 [ 592.864838] ? sendmsg_copy_msghdr+0x160/0x160 [ 592.865853] ? __fget_files+0x2cd/0x4c0 [ 592.866688] ? lock_downgrade+0x6d0/0x6d0 [ 592.867563] ? lock_release+0x3b2/0x6f0 [ 592.868397] ? ksys_write+0x212/0x250 [ 592.869214] ? __fget_files+0x2ef/0x4c0 [ 592.870066] ? __fget_light+0xea/0x280 [ 592.870879] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 592.872049] __sys_sendmsg+0xe5/0x1b0 [ 592.872851] ? __sys_sendmsg_sock+0x30/0x30 [ 592.873772] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 592.874989] ? syscall_enter_from_user_mode+0x1d/0x50 [ 592.876126] do_syscall_64+0x3b/0x90 [ 592.876944] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 592.878052] RIP: 0033:0x7f464c80eb19 [ 592.878843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.882772] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 592.884401] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 592.885919] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 592.887430] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 592.888939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.890453] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 592.891997] 06:27:55 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x60, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:27:55 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:27:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x120, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}]}}]}]]}, 0x164}}, 0x0) 06:27:55 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 2) 06:27:55 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) 06:27:55 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) 06:27:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x120, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}]}}]}]]}, 0x164}}, 0x0) [ 593.057855] FAULT_INJECTION: forcing a failure. [ 593.057855] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 593.060501] CPU: 0 PID: 5953 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 593.062256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 593.064628] Call Trace: [ 593.065168] [ 593.065639] dump_stack_lvl+0x8b/0xb3 [ 593.066468] should_fail.cold+0x5/0xa [ 593.067290] _copy_from_user+0x2e/0x170 [ 593.068144] iovec_from_user+0x242/0x3c0 [ 593.069026] __import_iovec+0x67/0x5d0 [ 593.069868] ? __ia32_sys_shutdown+0x70/0x70 [ 593.070821] import_iovec+0x83/0xb0 [ 593.071613] sendmsg_copy_msghdr+0x12d/0x160 [ 593.072551] ? __ia32_sys_recvmmsg+0x260/0x260 [ 593.073527] ? lock_release+0x3b2/0x6f0 [ 593.074392] ? __might_fault+0xd1/0x170 [ 593.075249] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 593.076369] ___sys_sendmsg+0xc6/0x170 [ 593.077196] ? sendmsg_copy_msghdr+0x160/0x160 [ 593.078179] ? lock_release+0x3b2/0x6f0 [ 593.079024] ? __fget_files+0x2cd/0x4c0 [ 593.079867] ? lock_downgrade+0x6d0/0x6d0 [ 593.080745] ? lock_release+0x3b2/0x6f0 [ 593.081602] ? ksys_write+0x212/0x250 [ 593.082444] ? __fget_files+0x2ef/0x4c0 [ 593.083300] ? __fget_light+0xea/0x280 [ 593.084126] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 593.085288] __sys_sendmsg+0xe5/0x1b0 [ 593.086110] ? __sys_sendmsg_sock+0x30/0x30 [ 593.087017] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 593.088197] ? fput+0x2a/0x50 [ 593.088870] ? syscall_enter_from_user_mode+0x1d/0x50 [ 593.089971] do_syscall_64+0x3b/0x90 [ 593.090772] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 593.091850] RIP: 0033:0x7f0b10e26b19 [ 593.092627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 593.096485] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 593.098092] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 593.099586] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 593.101077] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 593.102575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 593.104066] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 593.105581] 06:28:09 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0xfd, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:28:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 7) 06:28:09 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 3) 06:28:09 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) 06:28:09 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 06:28:09 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x120, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}]}}]}]]}, 0x164}}, 0x0) 06:28:09 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) [ 607.520964] FAULT_INJECTION: forcing a failure. [ 607.520964] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 607.523391] CPU: 1 PID: 5971 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 607.525042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 607.527327] Call Trace: [ 607.527846] [ 607.528300] dump_stack_lvl+0x8b/0xb3 [ 607.529089] should_fail.cold+0x5/0xa [ 607.529862] _copy_from_iter+0x37d/0x1250 [ 607.530720] ? hash_and_copy_to_iter+0x210/0x210 [ 607.531671] ? rcu_read_lock_sched_held+0x3a/0x70 [ 607.532624] ? memset+0x20/0x40 [ 607.533282] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 607.534387] ? __virt_addr_valid+0xe9/0x310 [ 607.535251] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 607.536336] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 607.537318] ? __check_object_size+0x1b5/0x4e0 [ 607.538264] netlink_sendmsg+0x86b/0xdf0 [ 607.539087] ? netlink_unicast+0x7e0/0x7e0 [ 607.539937] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.541032] ? netlink_unicast+0x7e0/0x7e0 [ 607.541873] sock_sendmsg+0x150/0x190 [ 607.542633] ____sys_sendmsg+0x709/0x870 [ 607.543436] ? kernel_sendmsg+0x50/0x50 [ 607.544223] ? __ia32_sys_recvmmsg+0x260/0x260 [ 607.545132] ? lock_release+0x3b2/0x6f0 [ 607.545918] ? __might_fault+0xd1/0x170 [ 607.546737] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 607.547781] ___sys_sendmsg+0xf3/0x170 [ 607.548554] ? sendmsg_copy_msghdr+0x160/0x160 [ 607.549463] ? __fget_files+0x2cd/0x4c0 [ 607.550256] ? lock_downgrade+0x6d0/0x6d0 [ 607.551074] ? lock_release+0x3b2/0x6f0 [ 607.551863] ? ksys_write+0x212/0x250 [ 607.552637] ? __fget_files+0x2ef/0x4c0 [ 607.553429] ? __fget_light+0xea/0x280 [ 607.554203] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 607.555298] __sys_sendmsg+0xe5/0x1b0 [ 607.556056] ? __sys_sendmsg_sock+0x30/0x30 [ 607.556909] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.558034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 607.559054] do_syscall_64+0x3b/0x90 [ 607.559802] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 607.560815] RIP: 0033:0x7f464c80eb19 [ 607.561542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 607.565112] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 607.566595] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 607.567972] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 607.569368] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 607.570791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 607.572168] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 607.573566] [ 607.591084] FAULT_INJECTION: forcing a failure. [ 607.591084] name failslab, interval 1, probability 0, space 0, times 0 [ 607.593519] CPU: 0 PID: 5974 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 607.595255] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 607.597635] Call Trace: [ 607.598186] [ 607.598667] dump_stack_lvl+0x8b/0xb3 [ 607.599494] should_fail.cold+0x5/0xa [ 607.600309] ? __alloc_skb+0x211/0x340 [ 607.601135] should_failslab+0x5/0x10 [ 607.601972] kmem_cache_alloc_node+0x55/0x490 [ 607.602921] __alloc_skb+0x211/0x340 [ 607.603701] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.604861] netlink_sendmsg+0x98d/0xdf0 [ 607.605727] ? netlink_unicast+0x7e0/0x7e0 [ 607.606634] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.607780] ? netlink_unicast+0x7e0/0x7e0 [ 607.608659] sock_sendmsg+0x150/0x190 [ 607.609453] ____sys_sendmsg+0x709/0x870 [ 607.610308] ? kernel_sendmsg+0x50/0x50 [ 607.611132] ? __ia32_sys_recvmmsg+0x260/0x260 [ 607.612090] ? lock_release+0x3b2/0x6f0 [ 607.612918] ? __might_fault+0xd1/0x170 [ 607.613753] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 607.614901] ___sys_sendmsg+0xf3/0x170 [ 607.615717] ? sendmsg_copy_msghdr+0x160/0x160 [ 607.616675] ? __fget_files+0x2cd/0x4c0 [ 607.617499] ? lock_downgrade+0x6d0/0x6d0 [ 607.618368] ? lock_release+0x3b2/0x6f0 [ 607.619196] ? ksys_write+0x212/0x250 [ 607.620004] ? __fget_files+0x2ef/0x4c0 [ 607.620835] ? __fget_light+0xea/0x280 [ 607.621643] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 607.622801] __sys_sendmsg+0xe5/0x1b0 [ 607.623599] ? __sys_sendmsg_sock+0x30/0x30 [ 607.624494] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.625657] ? syscall_enter_from_user_mode+0x1d/0x50 [ 607.626765] do_syscall_64+0x3b/0x90 [ 607.627556] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 607.628629] RIP: 0033:0x7f0b10e26b19 [ 607.629397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 607.633193] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 607.634804] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 607.636274] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 607.637742] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 607.639217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 607.640712] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 607.642231] [ 607.679235] FAULT_INJECTION: forcing a failure. [ 607.679235] name failslab, interval 1, probability 0, space 0, times 0 [ 607.681608] CPU: 1 PID: 5982 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 607.683247] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 607.685482] Call Trace: [ 607.685997] [ 607.686441] dump_stack_lvl+0x8b/0xb3 [ 607.687214] should_fail.cold+0x5/0xa [ 607.687980] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 607.689293] should_failslab+0x5/0x10 [ 607.690091] __kmalloc+0x72/0x330 [ 607.690785] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 06:28:09 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 8) 06:28:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 06:28:09 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x180, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x139, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}]}]]}, 0x180}}, 0x0) [ 607.692093] genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 607.693444] genl_family_rcv_msg_doit+0xda/0x330 [ 607.694407] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 607.695720] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.696811] ? cap_capable+0x1eb/0x250 [ 607.697596] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.698687] ? security_capable+0x95/0xc0 [ 607.699512] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.700593] ? ns_capable+0xd9/0x100 [ 607.701347] genl_rcv_msg+0x33c/0x5a0 [ 607.702128] ? genl_get_cmd+0x480/0x480 [ 607.702920] ? nl80211_notify_iface+0x180/0x180 [ 607.703853] ? lock_release+0x6f0/0x6f0 [ 607.704648] netlink_rcv_skb+0x14b/0x430 [ 607.705462] ? genl_get_cmd+0x480/0x480 [ 607.706262] ? netlink_ack+0xa60/0xa60 [ 607.707061] ? netlink_deliver_tap+0x1b2/0xc30 [ 607.707957] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 06:28:09 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 607.708946] ? is_vmalloc_addr+0x7b/0xb0 [ 607.709865] genl_rcv+0x24/0x40 [ 607.710605] netlink_unicast+0x53a/0x7e0 [ 607.711418] ? netlink_attachskb+0x870/0x870 [ 607.712286] ? __virt_addr_valid+0xe9/0x310 [ 607.713164] netlink_sendmsg+0x904/0xdf0 [ 607.714002] ? netlink_unicast+0x7e0/0x7e0 [ 607.714851] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.715938] ? netlink_unicast+0x7e0/0x7e0 [ 607.716776] sock_sendmsg+0x150/0x190 [ 607.717536] ____sys_sendmsg+0x709/0x870 [ 607.718369] ? kernel_sendmsg+0x50/0x50 [ 607.719149] ? __ia32_sys_recvmmsg+0x260/0x260 [ 607.720080] ? lock_release+0x3b2/0x6f0 [ 607.720865] ? __might_fault+0xd1/0x170 [ 607.721682] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 607.722749] ___sys_sendmsg+0xf3/0x170 [ 607.723548] ? sendmsg_copy_msghdr+0x160/0x160 [ 607.724459] ? __fget_files+0x2cd/0x4c0 06:28:10 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xf, 0x0}}], 0x1, 0x0) [ 607.725322] ? lock_downgrade+0x6d0/0x6d0 [ 607.726198] ? lock_release+0x3b2/0x6f0 [ 607.726984] ? ksys_write+0x212/0x250 [ 607.727761] ? __fget_files+0x2ef/0x4c0 [ 607.728558] ? __fget_light+0xea/0x280 [ 607.729327] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 607.730445] __sys_sendmsg+0xe5/0x1b0 [ 607.731206] ? __sys_sendmsg_sock+0x30/0x30 [ 607.732059] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 607.733168] ? syscall_enter_from_user_mode+0x1d/0x50 [ 607.734202] do_syscall_64+0x3b/0x90 [ 607.734961] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 607.735974] RIP: 0033:0x7f464c80eb19 [ 607.736700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 607.740313] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 607.741807] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 607.743215] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 607.744613] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 607.746016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 607.747411] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 607.748849] 06:28:22 executing program 5: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:22 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 9) 06:28:22 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:22 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x20000010, 0x0}}], 0x1, 0x0) 06:28:22 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x122, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {}]}}]}]]}, 0x168}}, 0x0) 06:28:22 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 06:28:22 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 4) [ 620.339945] FAULT_INJECTION: forcing a failure. [ 620.339945] name failslab, interval 1, probability 0, space 0, times 0 [ 620.341525] CPU: 0 PID: 6013 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 620.342508] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 620.343670] Call Trace: [ 620.343939] [ 620.344171] dump_stack_lvl+0x8b/0xb3 [ 620.344581] should_fail.cold+0x5/0xa [ 620.344983] ? create_object.isra.0+0x3a/0xa20 [ 620.345469] should_failslab+0x5/0x10 [ 620.345876] kmem_cache_alloc+0x5b/0x480 [ 620.346310] create_object.isra.0+0x3a/0xa20 [ 620.346765] ? kasan_unpoison+0x23/0x50 [ 620.347192] __kmalloc+0x1ed/0x330 [ 620.347572] genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 620.348241] genl_family_rcv_msg_doit+0xda/0x330 [ 620.348735] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 620.349419] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.349992] ? cap_capable+0x1eb/0x250 [ 620.350423] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.351000] ? security_capable+0x95/0xc0 [ 620.351438] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.351999] ? ns_capable+0xd9/0x100 [ 620.352416] genl_rcv_msg+0x33c/0x5a0 [ 620.352831] ? genl_get_cmd+0x480/0x480 [ 620.353258] ? nl80211_notify_iface+0x180/0x180 [ 620.353778] ? lock_release+0x6f0/0x6f0 [ 620.354218] netlink_rcv_skb+0x14b/0x430 [ 620.354654] ? genl_get_cmd+0x480/0x480 [ 620.355083] ? netlink_ack+0xa60/0xa60 [ 620.355515] ? netlink_deliver_tap+0x1b2/0xc30 [ 620.356009] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 620.356540] ? is_vmalloc_addr+0x7b/0xb0 [ 620.356989] genl_rcv+0x24/0x40 [ 620.357343] netlink_unicast+0x53a/0x7e0 [ 620.357786] ? netlink_attachskb+0x870/0x870 [ 620.358274] ? __virt_addr_valid+0xe9/0x310 [ 620.358756] netlink_sendmsg+0x904/0xdf0 [ 620.358891] FAULT_INJECTION: forcing a failure. [ 620.358891] name failslab, interval 1, probability 0, space 0, times 0 [ 620.359200] ? netlink_unicast+0x7e0/0x7e0 [ 620.361819] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.362436] ? netlink_unicast+0x7e0/0x7e0 [ 620.362890] sock_sendmsg+0x150/0x190 [ 620.363304] ____sys_sendmsg+0x709/0x870 [ 620.363746] ? kernel_sendmsg+0x50/0x50 [ 620.364170] ? __ia32_sys_recvmmsg+0x260/0x260 [ 620.364668] ? lock_release+0x3b2/0x6f0 [ 620.365102] ? __might_fault+0xd1/0x170 [ 620.365532] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 620.366102] ___sys_sendmsg+0xf3/0x170 [ 620.366536] ? sendmsg_copy_msghdr+0x160/0x160 [ 620.367031] ? __fget_files+0x2cd/0x4c0 [ 620.367460] ? lock_downgrade+0x6d0/0x6d0 [ 620.367909] ? lock_release+0x3b2/0x6f0 [ 620.368334] ? ksys_write+0x212/0x250 [ 620.368760] ? __fget_files+0x2ef/0x4c0 [ 620.369189] ? __fget_light+0xea/0x280 [ 620.369606] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 620.370213] __sys_sendmsg+0xe5/0x1b0 [ 620.370622] ? __sys_sendmsg_sock+0x30/0x30 [ 620.371081] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.371686] ? syscall_enter_from_user_mode+0x1d/0x50 [ 620.372244] do_syscall_64+0x3b/0x90 [ 620.372650] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 620.373208] RIP: 0033:0x7f464c80eb19 [ 620.373608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 620.375581] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 620.376393] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 620.377157] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 620.377919] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 620.378691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 620.379456] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 620.380229] [ 620.380478] CPU: 1 PID: 6014 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 620.382125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 620.384364] Call Trace: [ 620.384870] [ 620.385311] dump_stack_lvl+0x8b/0xb3 [ 620.386090] should_fail.cold+0x5/0xa [ 620.386879] ? create_object.isra.0+0x3a/0xa20 [ 620.387794] should_failslab+0x5/0x10 [ 620.388556] kmem_cache_alloc+0x5b/0x480 [ 620.389364] create_object.isra.0+0x3a/0xa20 [ 620.390248] ? kasan_unpoison+0x23/0x50 [ 620.391045] kmem_cache_alloc_node+0x248/0x490 [ 620.391952] __alloc_skb+0x211/0x340 [ 620.392689] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.393782] netlink_sendmsg+0x98d/0xdf0 [ 620.394604] ? netlink_unicast+0x7e0/0x7e0 [ 620.395454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.396546] ? netlink_unicast+0x7e0/0x7e0 [ 620.397381] sock_sendmsg+0x150/0x190 [ 620.398158] ____sys_sendmsg+0x709/0x870 [ 620.398968] ? kernel_sendmsg+0x50/0x50 [ 620.399751] ? __ia32_sys_recvmmsg+0x260/0x260 [ 620.400663] ? lock_release+0x3b2/0x6f0 [ 620.401452] ? __might_fault+0xd1/0x170 [ 620.402258] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 620.403306] ___sys_sendmsg+0xf3/0x170 [ 620.404089] ? sendmsg_copy_msghdr+0x160/0x160 [ 620.405001] ? __fget_files+0x2cd/0x4c0 [ 620.405786] ? lock_downgrade+0x6d0/0x6d0 [ 620.406627] ? lock_release+0x3b2/0x6f0 [ 620.407414] ? ksys_write+0x212/0x250 [ 620.408182] ? __fget_files+0x2ef/0x4c0 [ 620.408977] ? __fget_light+0xea/0x280 [ 620.409745] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 620.410845] __sys_sendmsg+0xe5/0x1b0 [ 620.411602] ? __sys_sendmsg_sock+0x30/0x30 [ 620.412457] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 620.413563] ? syscall_enter_from_user_mode+0x1d/0x50 [ 620.414613] do_syscall_64+0x3b/0x90 [ 620.415360] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 620.416373] RIP: 0033:0x7f0b10e26b19 [ 620.417099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 620.420712] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 620.422223] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 620.423621] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 620.425024] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 620.426425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 620.427820] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 620.429240] 06:28:35 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) [ 633.120893] FAULT_INJECTION: forcing a failure. [ 633.120893] name failslab, interval 1, probability 0, space 0, times 0 [ 633.122273] CPU: 0 PID: 6032 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 633.123335] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 633.124779] Call Trace: [ 633.125107] [ 633.125394] dump_stack_lvl+0x8b/0xb3 [ 633.125904] should_fail.cold+0x5/0xa [ 633.126419] should_failslab+0x5/0x10 [ 633.126923] __kmalloc_node_track_caller+0x7e/0x330 [ 633.127566] ? netlink_sendmsg+0x98d/0xdf0 [ 633.128120] __alloc_skb+0xe3/0x340 [ 633.128596] netlink_sendmsg+0x98d/0xdf0 [ 633.129125] ? netlink_unicast+0x7e0/0x7e0 [ 633.129678] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.130406] ? netlink_unicast+0x7e0/0x7e0 [ 633.130922] sock_sendmsg+0x150/0x190 [ 633.131296] ____sys_sendmsg+0x709/0x870 [ 633.131703] ? kernel_sendmsg+0x50/0x50 [ 633.132092] ? __ia32_sys_recvmmsg+0x260/0x260 [ 633.132549] ? lock_release+0x3b2/0x6f0 [ 633.132939] ? __might_fault+0xd1/0x170 [ 633.133335] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 633.133849] ___sys_sendmsg+0xf3/0x170 [ 633.134233] ? sendmsg_copy_msghdr+0x160/0x160 [ 633.134688] ? __fget_files+0x2cd/0x4c0 [ 633.135081] ? lock_downgrade+0x6d0/0x6d0 [ 633.135485] ? lock_release+0x3b2/0x6f0 [ 633.135872] ? ksys_write+0x212/0x250 [ 633.136253] ? __fget_files+0x2ef/0x4c0 [ 633.136307] FAULT_INJECTION: forcing a failure. [ 633.136307] name failslab, interval 1, probability 0, space 0, times 0 [ 633.136641] ? __fget_light+0xea/0x280 [ 633.136656] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 633.141304] __sys_sendmsg+0xe5/0x1b0 [ 633.142221] ? __sys_sendmsg_sock+0x30/0x30 [ 633.143414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.144594] ? syscall_enter_from_user_mode+0x1d/0x50 [ 633.145928] do_syscall_64+0x3b/0x90 [ 633.146747] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 633.148125] RIP: 0033:0x7f0b10e26b19 [ 633.148946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 633.153855] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 633.155542] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 633.157093] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 633.158642] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 633.160184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 633.161725] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 633.163308] [ 633.163816] CPU: 1 PID: 6038 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 633.165449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 633.167677] Call Trace: [ 633.168181] [ 633.168622] dump_stack_lvl+0x8b/0xb3 06:28:35 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 5) 06:28:35 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x2}}], 0x1, 0x0) 06:28:35 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 10) 06:28:35 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:35 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:35 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x122, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {}]}}]}]]}, 0x168}}, 0x0) 06:28:35 executing program 5: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 633.169393] should_fail.cold+0x5/0xa [ 633.170416] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 633.171717] should_failslab+0x5/0x10 [ 633.172484] __kmalloc+0x72/0x330 [ 633.173171] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.174268] genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 633.175545] genl_family_rcv_msg_doit+0xda/0x330 [ 633.176488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 633.177794] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.178893] ? cap_capable+0x1eb/0x250 [ 633.179684] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.180766] ? security_capable+0x95/0xc0 [ 633.181587] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.182689] ? ns_capable+0xd9/0x100 [ 633.183444] genl_rcv_msg+0x33c/0x5a0 [ 633.184200] ? genl_get_cmd+0x480/0x480 [ 633.184987] ? nl80211_notify_iface+0x180/0x180 [ 633.185921] ? lock_release+0x6f0/0x6f0 [ 633.186728] netlink_rcv_skb+0x14b/0x430 [ 633.187531] ? genl_get_cmd+0x480/0x480 [ 633.188320] ? netlink_ack+0xa60/0xa60 [ 633.189102] ? netlink_deliver_tap+0x1b2/0xc30 [ 633.190001] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 633.190990] ? is_vmalloc_addr+0x7b/0xb0 [ 633.191807] genl_rcv+0x24/0x40 [ 633.192460] netlink_unicast+0x53a/0x7e0 [ 633.193274] ? netlink_attachskb+0x870/0x870 [ 633.194139] ? __virt_addr_valid+0xe9/0x310 [ 633.195033] netlink_sendmsg+0x904/0xdf0 [ 633.195846] ? netlink_unicast+0x7e0/0x7e0 [ 633.196696] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.197785] ? netlink_unicast+0x7e0/0x7e0 [ 633.198631] sock_sendmsg+0x150/0x190 [ 633.199388] ____sys_sendmsg+0x709/0x870 [ 633.200194] ? kernel_sendmsg+0x50/0x50 [ 633.200975] ? __ia32_sys_recvmmsg+0x260/0x260 [ 633.201883] ? lock_release+0x3b2/0x6f0 [ 633.202687] ? __might_fault+0xd1/0x170 [ 633.203484] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 633.204528] ___sys_sendmsg+0xf3/0x170 [ 633.205301] ? sendmsg_copy_msghdr+0x160/0x160 [ 633.206223] ? __fget_files+0x2cd/0x4c0 [ 633.207028] ? lock_downgrade+0x6d0/0x6d0 [ 633.207852] ? lock_release+0x3b2/0x6f0 [ 633.208636] ? ksys_write+0x212/0x250 [ 633.209413] ? __fget_files+0x2ef/0x4c0 [ 633.210209] ? __fget_light+0xea/0x280 [ 633.211007] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 633.212105] __sys_sendmsg+0xe5/0x1b0 [ 633.212873] ? __sys_sendmsg_sock+0x30/0x30 [ 633.213730] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.214844] ? syscall_enter_from_user_mode+0x1d/0x50 [ 633.215879] do_syscall_64+0x3b/0x90 [ 633.216626] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 633.217642] RIP: 0033:0x7f464c80eb19 [ 633.218381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 633.221998] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 633.223516] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 633.224918] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 633.226330] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 633.227734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 633.229138] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 633.230575] 06:28:35 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:28:35 executing program 5: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:35 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:35 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x122, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {}]}}]}]]}, 0x168}}, 0x0) 06:28:35 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x3}}], 0x1, 0x0) 06:28:35 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 6) 06:28:35 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:35 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 11) 06:28:35 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 633.456048] FAULT_INJECTION: forcing a failure. [ 633.456048] name failslab, interval 1, probability 0, space 0, times 0 [ 633.458344] CPU: 0 PID: 6057 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 633.460116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 633.462561] Call Trace: [ 633.463110] [ 633.463595] dump_stack_lvl+0x8b/0xb3 [ 633.464446] should_fail.cold+0x5/0xa [ 633.465279] ? create_object.isra.0+0x3a/0xa20 [ 633.466276] should_failslab+0x5/0x10 [ 633.467121] kmem_cache_alloc+0x5b/0x480 [ 633.468005] create_object.isra.0+0x3a/0xa20 [ 633.468958] ? kasan_unpoison+0x23/0x50 [ 633.469829] __kmalloc_node_track_caller+0x1fb/0x330 [ 633.470939] ? netlink_sendmsg+0x98d/0xdf0 [ 633.471868] __alloc_skb+0xe3/0x340 [ 633.472669] netlink_sendmsg+0x98d/0xdf0 [ 633.473555] ? netlink_unicast+0x7e0/0x7e0 [ 633.474489] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.475684] ? netlink_unicast+0x7e0/0x7e0 [ 633.476595] sock_sendmsg+0x150/0x190 [ 633.477423] ____sys_sendmsg+0x709/0x870 [ 633.478304] ? kernel_sendmsg+0x50/0x50 [ 633.479185] ? __ia32_sys_recvmmsg+0x260/0x260 [ 633.480181] ? lock_release+0x3b2/0x6f0 [ 633.481039] ? __might_fault+0xd1/0x170 [ 633.481906] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 633.483056] ___sys_sendmsg+0xf3/0x170 [ 633.483907] ? sendmsg_copy_msghdr+0x160/0x160 [ 633.484903] ? __fget_files+0x2cd/0x4c0 [ 633.485759] ? lock_downgrade+0x6d0/0x6d0 [ 633.486669] ? lock_release+0x3b2/0x6f0 [ 633.487529] ? ksys_write+0x212/0x250 [ 633.488371] ? __fget_files+0x2ef/0x4c0 [ 633.489237] ? __fget_light+0xea/0x280 [ 633.490072] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 633.491291] __sys_sendmsg+0xe5/0x1b0 [ 633.492118] ? __sys_sendmsg_sock+0x30/0x30 [ 633.493050] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.494258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 633.495385] do_syscall_64+0x3b/0x90 [ 633.496199] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 633.497305] RIP: 0033:0x7f0b10e26b19 [ 633.498098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 633.502031] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 633.503673] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 633.505200] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 633.506737] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 633.508258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 633.509779] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 633.511351] 06:28:35 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:28:35 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x174, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12e, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x102, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xc, "76ecf819b7b83733b38d4509"}]}}]}]]}, 0x174}}, 0x0) 06:28:35 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x4}}], 0x1, 0x0) 06:28:35 executing program 6: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 633.560319] FAULT_INJECTION: forcing a failure. [ 633.560319] name failslab, interval 1, probability 0, space 0, times 0 [ 633.563069] CPU: 0 PID: 6064 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 633.564845] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 633.567288] Call Trace: [ 633.567843] [ 633.568324] dump_stack_lvl+0x8b/0xb3 [ 633.569171] should_fail.cold+0x5/0xa [ 633.569999] ? create_object.isra.0+0x3a/0xa20 [ 633.571018] should_failslab+0x5/0x10 [ 633.571856] kmem_cache_alloc+0x5b/0x480 [ 633.572740] create_object.isra.0+0x3a/0xa20 [ 633.573698] ? kasan_unpoison+0x23/0x50 [ 633.574582] kmem_cache_alloc_node+0x248/0x490 [ 633.575581] __alloc_skb+0x211/0x340 [ 633.576391] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 633.577589] netlink_ack+0x1f0/0xa60 [ 633.578422] ? nl80211_notify_iface+0x180/0x180 [ 633.579439] ? netlink_sendmsg+0xdf0/0xdf0 [ 633.580356] ? lock_release+0x6f0/0x6f0 [ 633.581227] netlink_rcv_skb+0x348/0x430 [ 633.582065] ? genl_get_cmd+0x480/0x480 [ 633.582849] ? netlink_ack+0xa60/0xa60 [ 633.583616] ? netlink_deliver_tap+0x1b2/0xc30 [ 633.584500] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 633.585463] ? is_vmalloc_addr+0x7b/0xb0 [ 633.586263] genl_rcv+0x24/0x40 [ 633.586922] netlink_unicast+0x53a/0x7e0 [ 633.587715] ? netlink_attachskb+0x870/0x870 [ 633.588564] ? __virt_addr_valid+0xe9/0x310 [ 633.589428] netlink_sendmsg+0x904/0xdf0 [ 633.590222] ? netlink_unicast+0x7e0/0x7e0 [ 633.591062] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.592230] ? netlink_unicast+0x7e0/0x7e0 [ 633.593145] sock_sendmsg+0x150/0x190 [ 633.593971] ____sys_sendmsg+0x709/0x870 [ 633.594873] ? kernel_sendmsg+0x50/0x50 [ 633.595731] ? __ia32_sys_recvmmsg+0x260/0x260 [ 633.596729] ? lock_release+0x3b2/0x6f0 [ 633.597586] ? __might_fault+0xd1/0x170 [ 633.598460] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 633.599509] ___sys_sendmsg+0xf3/0x170 [ 633.600268] ? sendmsg_copy_msghdr+0x160/0x160 [ 633.601161] ? __fget_files+0x2cd/0x4c0 [ 633.601923] ? lock_downgrade+0x6d0/0x6d0 [ 633.602742] ? lock_release+0x3b2/0x6f0 [ 633.603518] ? ksys_write+0x212/0x250 [ 633.604268] ? __fget_files+0x2ef/0x4c0 [ 633.605046] ? __fget_light+0xea/0x280 [ 633.605797] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 633.606904] __sys_sendmsg+0xe5/0x1b0 [ 633.607730] ? __sys_sendmsg_sock+0x30/0x30 [ 633.608662] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.609873] ? syscall_enter_from_user_mode+0x1d/0x50 [ 633.611000] do_syscall_64+0x3b/0x90 [ 633.611818] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 633.612922] RIP: 0033:0x7f464c80eb19 [ 633.613718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 633.617574] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 633.619049] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 633.620412] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 633.621774] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 633.623143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 633.624502] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 633.625893] 06:28:48 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 12) 06:28:48 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 7) 06:28:48 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:28:48 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x1, 'v'}]}}]}]]}, 0x168}}, 0x0) 06:28:48 executing program 3: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:48 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x6}}], 0x1, 0x0) 06:28:48 executing program 6: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:48 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 646.223003] FAULT_INJECTION: forcing a failure. [ 646.223003] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 646.224294] CPU: 1 PID: 6087 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 646.225144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 646.226296] Call Trace: [ 646.226567] [ 646.226800] dump_stack_lvl+0x8b/0xb3 [ 646.227216] should_fail.cold+0x5/0xa [ 646.227617] _copy_from_iter+0x37d/0x1250 [ 646.228072] ? hash_and_copy_to_iter+0x210/0x210 [ 646.228572] ? rcu_read_lock_sched_held+0x3a/0x70 [ 646.229084] ? memset+0x20/0x40 [ 646.229431] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 646.229999] ? __virt_addr_valid+0xe9/0x310 [ 646.230450] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 646.231040] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 646.231561] ? __check_object_size+0x1b5/0x4e0 [ 646.232039] netlink_sendmsg+0x86b/0xdf0 [ 646.232471] ? netlink_unicast+0x7e0/0x7e0 [ 646.232910] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.233480] ? netlink_unicast+0x7e0/0x7e0 [ 646.233921] sock_sendmsg+0x150/0x190 [ 646.234318] ____sys_sendmsg+0x709/0x870 [ 646.234748] ? kernel_sendmsg+0x50/0x50 [ 646.235158] ? __ia32_sys_recvmmsg+0x260/0x260 [ 646.235635] ? lock_release+0x3b2/0x6f0 [ 646.236044] ? __might_fault+0xd1/0x170 [ 646.236462] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 646.237026] ___sys_sendmsg+0xf3/0x170 [ 646.237457] ? sendmsg_copy_msghdr+0x160/0x160 [ 646.237966] ? __fget_files+0x2cd/0x4c0 [ 646.238380] ? lock_downgrade+0x6d0/0x6d0 [ 646.238819] ? lock_release+0x3b2/0x6f0 [ 646.239229] ? ksys_write+0x212/0x250 [ 646.239637] ? __fget_files+0x2ef/0x4c0 [ 646.240053] ? __fget_light+0xea/0x280 [ 646.240455] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 646.241032] __sys_sendmsg+0xe5/0x1b0 [ 646.241428] ? __sys_sendmsg_sock+0x30/0x30 [ 646.241873] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.242451] ? syscall_enter_from_user_mode+0x1d/0x50 [ 646.243003] do_syscall_64+0x3b/0x90 [ 646.243395] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 646.243925] RIP: 0033:0x7f0b10e26b19 [ 646.244318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 646.246245] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 646.247040] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 646.247823] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 646.248569] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 646.249318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 646.250086] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 646.250845] 06:28:48 executing program 3: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:48 executing program 6: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:28:48 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 646.282142] FAULT_INJECTION: forcing a failure. [ 646.282142] name failslab, interval 1, probability 0, space 0, times 0 [ 646.284763] CPU: 0 PID: 6094 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 646.286768] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 646.289512] Call Trace: [ 646.290071] [ 646.290629] dump_stack_lvl+0x8b/0xb3 [ 646.291492] should_fail.cold+0x5/0xa [ 646.292397] should_failslab+0x5/0x10 [ 646.293293] __kmalloc_node_track_caller+0x7e/0x330 [ 646.294393] ? netlink_ack+0x1f0/0xa60 [ 646.295258] __alloc_skb+0xe3/0x340 [ 646.296055] netlink_ack+0x1f0/0xa60 06:28:48 executing program 5: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 646.296866] ? nl80211_notify_iface+0x180/0x180 [ 646.298013] ? netlink_sendmsg+0xdf0/0xdf0 [ 646.298954] ? lock_release+0x6f0/0x6f0 [ 646.299834] netlink_rcv_skb+0x348/0x430 [ 646.300719] ? genl_get_cmd+0x480/0x480 [ 646.301584] ? netlink_ack+0xa60/0xa60 [ 646.302441] ? netlink_deliver_tap+0x1b2/0xc30 [ 646.303430] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 646.304509] ? is_vmalloc_addr+0x7b/0xb0 [ 646.305371] genl_rcv+0x24/0x40 [ 646.306069] netlink_unicast+0x53a/0x7e0 [ 646.306976] ? netlink_attachskb+0x870/0x870 [ 646.307945] ? __virt_addr_valid+0xe9/0x310 [ 646.308919] netlink_sendmsg+0x904/0xdf0 [ 646.309818] ? netlink_unicast+0x7e0/0x7e0 [ 646.310775] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.311985] ? netlink_unicast+0x7e0/0x7e0 [ 646.312916] sock_sendmsg+0x150/0x190 [ 646.313767] ____sys_sendmsg+0x709/0x870 [ 646.314671] ? kernel_sendmsg+0x50/0x50 [ 646.315554] ? __ia32_sys_recvmmsg+0x260/0x260 [ 646.316571] ? lock_release+0x3b2/0x6f0 [ 646.317435] ? __might_fault+0xd1/0x170 [ 646.318555] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 646.320059] ___sys_sendmsg+0xf3/0x170 [ 646.321153] ? sendmsg_copy_msghdr+0x160/0x160 [ 646.322458] ? __fget_files+0x2cd/0x4c0 [ 646.323591] ? lock_downgrade+0x6d0/0x6d0 [ 646.324766] ? lock_release+0x3b2/0x6f0 [ 646.325742] ? ksys_write+0x212/0x250 [ 646.326609] ? __fget_files+0x2ef/0x4c0 [ 646.327485] ? __fget_light+0xea/0x280 [ 646.328344] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 646.329542] __sys_sendmsg+0xe5/0x1b0 [ 646.330377] ? __sys_sendmsg_sock+0x30/0x30 [ 646.331348] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.332576] ? syscall_enter_from_user_mode+0x1d/0x50 [ 646.333702] do_syscall_64+0x3b/0x90 [ 646.334545] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 646.335658] RIP: 0033:0x7f464c80eb19 [ 646.336480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 646.340404] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 646.342030] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 646.343582] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 646.345098] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 646.346640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 646.348142] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 646.349700] 06:28:48 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 8) [ 646.382345] FAULT_INJECTION: forcing a failure. [ 646.382345] name failslab, interval 1, probability 0, space 0, times 0 [ 646.383612] CPU: 1 PID: 6102 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 646.384457] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 646.385634] Call Trace: [ 646.385899] [ 646.386124] dump_stack_lvl+0x8b/0xb3 [ 646.386550] should_fail.cold+0x5/0xa [ 646.386955] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 646.387637] should_failslab+0x5/0x10 [ 646.388040] __kmalloc+0x72/0x330 [ 646.388396] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.388975] genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 646.389632] genl_family_rcv_msg_doit+0xda/0x330 [ 646.390137] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 646.390827] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.391398] ? cap_capable+0x1eb/0x250 [ 646.391808] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.392375] ? security_capable+0x95/0xc0 [ 646.392809] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.393378] ? ns_capable+0xd9/0x100 [ 646.393777] genl_rcv_msg+0x33c/0x5a0 [ 646.394175] ? genl_get_cmd+0x480/0x480 [ 646.394605] ? nl80211_notify_iface+0x180/0x180 [ 646.395115] ? lock_release+0x6f0/0x6f0 [ 646.395529] netlink_rcv_skb+0x14b/0x430 [ 646.395948] ? genl_get_cmd+0x480/0x480 [ 646.396365] ? netlink_ack+0xa60/0xa60 [ 646.396778] ? netlink_deliver_tap+0x1b2/0xc30 [ 646.397241] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 646.397767] ? is_vmalloc_addr+0x7b/0xb0 [ 646.398192] genl_rcv+0x24/0x40 [ 646.398546] netlink_unicast+0x53a/0x7e0 [ 646.398970] ? netlink_attachskb+0x870/0x870 [ 646.399427] ? __virt_addr_valid+0xe9/0x310 [ 646.399879] netlink_sendmsg+0x904/0xdf0 [ 646.400300] ? netlink_unicast+0x7e0/0x7e0 [ 646.400743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.401313] ? netlink_unicast+0x7e0/0x7e0 [ 646.401744] sock_sendmsg+0x150/0x190 [ 646.402137] ____sys_sendmsg+0x709/0x870 [ 646.402597] ? kernel_sendmsg+0x50/0x50 [ 646.403014] ? __ia32_sys_recvmmsg+0x260/0x260 [ 646.403491] ? lock_release+0x3b2/0x6f0 [ 646.403904] ? __might_fault+0xd1/0x170 [ 646.404314] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 646.404877] ___sys_sendmsg+0xf3/0x170 [ 646.405278] ? sendmsg_copy_msghdr+0x160/0x160 [ 646.405762] ? __fget_files+0x2cd/0x4c0 [ 646.406171] ? lock_downgrade+0x6d0/0x6d0 [ 646.406605] ? lock_release+0x3b2/0x6f0 [ 646.407020] ? ksys_write+0x212/0x250 [ 646.407425] ? __fget_files+0x2ef/0x4c0 [ 646.407837] ? __fget_light+0xea/0x280 [ 646.408239] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 646.408823] __sys_sendmsg+0xe5/0x1b0 [ 646.409216] ? __sys_sendmsg_sock+0x30/0x30 [ 646.409658] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 646.410228] ? syscall_enter_from_user_mode+0x1d/0x50 [ 646.410783] do_syscall_64+0x3b/0x90 [ 646.411176] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 646.411721] RIP: 0033:0x7f0b10e26b19 [ 646.412103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 646.413991] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 646.414782] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 646.415519] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 646.416258] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 646.417000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 646.417739] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 646.418478] 06:28:48 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x1, 'v'}]}}]}]]}, 0x168}}, 0x0) 06:28:48 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x7}}], 0x1, 0x0) 06:28:48 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:29:03 executing program 6: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:03 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x8}}], 0x1, 0x0) 06:29:03 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x1, 'v'}]}}]}]]}, 0x168}}, 0x0) 06:29:03 executing program 3: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 9) 06:29:03 executing program 5: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:03 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x264, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x264}}, 0x0) 06:29:03 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 13) [ 661.179001] FAULT_INJECTION: forcing a failure. [ 661.179001] name failslab, interval 1, probability 0, space 0, times 0 [ 661.180269] CPU: 0 PID: 6128 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 661.181132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 661.182312] Call Trace: [ 661.182586] [ 661.182852] dump_stack_lvl+0x8b/0xb3 [ 661.183278] should_fail.cold+0x5/0xa [ 661.183690] ? create_object.isra.0+0x3a/0xa20 [ 661.184191] should_failslab+0x5/0x10 [ 661.184608] kmem_cache_alloc+0x5b/0x480 [ 661.185052] create_object.isra.0+0x3a/0xa20 [ 661.185519] ? kasan_unpoison+0x23/0x50 [ 661.185949] __kmalloc_node_track_caller+0x1fb/0x330 [ 661.186501] ? netlink_ack+0x1f0/0xa60 [ 661.186931] __alloc_skb+0xe3/0x340 [ 661.187323] netlink_ack+0x1f0/0xa60 [ 661.187732] ? nl80211_notify_iface+0x180/0x180 [ 661.188238] ? netlink_sendmsg+0xdf0/0xdf0 [ 661.188687] ? lock_release+0x6f0/0x6f0 [ 661.189129] netlink_rcv_skb+0x348/0x430 [ 661.189576] ? genl_get_cmd+0x480/0x480 [ 661.190017] ? netlink_ack+0xa60/0xa60 [ 661.190460] ? netlink_deliver_tap+0x1b2/0xc30 [ 661.190967] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 661.191524] ? is_vmalloc_addr+0x7b/0xb0 [ 661.191981] genl_rcv+0x24/0x40 [ 661.192345] netlink_unicast+0x53a/0x7e0 [ 661.192802] ? netlink_attachskb+0x870/0x870 [ 661.193289] ? __virt_addr_valid+0xe9/0x310 [ 661.193542] FAULT_INJECTION: forcing a failure. [ 661.193542] name failslab, interval 1, probability 0, space 0, times 0 [ 661.193785] netlink_sendmsg+0x904/0xdf0 [ 661.193807] ? netlink_unicast+0x7e0/0x7e0 [ 661.196865] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 661.197470] ? netlink_unicast+0x7e0/0x7e0 [ 661.197931] sock_sendmsg+0x150/0x190 [ 661.198358] ____sys_sendmsg+0x709/0x870 [ 661.198826] ? kernel_sendmsg+0x50/0x50 [ 661.199262] ? __ia32_sys_recvmmsg+0x260/0x260 [ 661.199768] ? lock_release+0x3b2/0x6f0 [ 661.200212] ? __might_fault+0xd1/0x170 [ 661.200658] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 661.201242] ___sys_sendmsg+0xf3/0x170 [ 661.201681] ? sendmsg_copy_msghdr+0x160/0x160 [ 661.202183] ? __fget_files+0x2cd/0x4c0 [ 661.202617] ? lock_downgrade+0x6d0/0x6d0 [ 661.203079] ? lock_release+0x3b2/0x6f0 [ 661.203520] ? ksys_write+0x212/0x250 [ 661.203942] ? __fget_files+0x2ef/0x4c0 [ 661.204386] ? __fget_light+0xea/0x280 [ 661.204801] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 661.205410] __sys_sendmsg+0xe5/0x1b0 [ 661.205832] ? __sys_sendmsg_sock+0x30/0x30 [ 661.206308] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 661.206931] ? syscall_enter_from_user_mode+0x1d/0x50 [ 661.207504] do_syscall_64+0x3b/0x90 [ 661.207924] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 661.208498] RIP: 0033:0x7f464c80eb19 [ 661.208908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 661.210944] RSP: 002b:00007f4649d84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 661.211782] RAX: ffffffffffffffda RBX: 00007f464c921f60 RCX: 00007f464c80eb19 [ 661.212563] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 661.213339] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 661.214112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 661.214908] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 661.215706] [ 661.215961] CPU: 1 PID: 6133 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 661.217568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 661.219764] Call Trace: [ 661.220262] [ 661.220694] dump_stack_lvl+0x8b/0xb3 [ 661.221456] should_fail.cold+0x5/0xa [ 661.222208] ? create_object.isra.0+0x3a/0xa20 [ 661.223119] should_failslab+0x5/0x10 [ 661.223867] kmem_cache_alloc+0x5b/0x480 [ 661.224665] create_object.isra.0+0x3a/0xa20 [ 661.225526] ? kasan_unpoison+0x23/0x50 [ 661.226310] __kmalloc+0x1ed/0x330 [ 661.227027] genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 661.228311] genl_family_rcv_msg_doit+0xda/0x330 [ 661.229244] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 661.230530] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 661.231614] ? cap_capable+0x1eb/0x250 [ 661.232391] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 661.233460] ? security_capable+0x95/0xc0 [ 661.234267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 661.235360] ? ns_capable+0xd9/0x100 [ 661.236109] genl_rcv_msg+0x33c/0x5a0 [ 661.236860] ? genl_get_cmd+0x480/0x480 [ 661.237636] ? nl80211_notify_iface+0x180/0x180 [ 661.238563] ? lock_release+0x6f0/0x6f0 [ 661.239389] netlink_rcv_skb+0x14b/0x430 [ 661.240183] ? genl_get_cmd+0x480/0x480 [ 661.240964] ? netlink_ack+0xa60/0xa60 [ 661.241734] ? netlink_deliver_tap+0x1b2/0xc30 [ 661.242620] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 661.243598] ? is_vmalloc_addr+0x7b/0xb0 [ 661.244406] genl_rcv+0x24/0x40 [ 661.245053] netlink_unicast+0x53a/0x7e0 [ 661.245854] ? netlink_attachskb+0x870/0x870 [ 661.246711] ? __virt_addr_valid+0xe9/0x310 [ 661.247601] netlink_sendmsg+0x904/0xdf0 [ 661.248406] ? netlink_unicast+0x7e0/0x7e0 [ 661.249242] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 661.250556] ? netlink_unicast+0x7e0/0x7e0 [ 661.251597] sock_sendmsg+0x150/0x190 [ 661.252523] ____sys_sendmsg+0x709/0x870 [ 661.253511] ? kernel_sendmsg+0x50/0x50 [ 661.254465] ? __ia32_sys_recvmmsg+0x260/0x260 [ 661.255603] ? lock_release+0x3b2/0x6f0 [ 661.256565] ? __might_fault+0xd1/0x170 [ 661.257538] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 661.258594] ___sys_sendmsg+0xf3/0x170 [ 661.259552] ? sendmsg_copy_msghdr+0x160/0x160 [ 661.260484] ? __fget_files+0x2cd/0x4c0 [ 661.261433] ? lock_downgrade+0x6d0/0x6d0 [ 661.262273] ? lock_release+0x3b2/0x6f0 [ 661.263259] ? ksys_write+0x212/0x250 [ 661.264042] ? __fget_files+0x2ef/0x4c0 [ 661.265010] ? __fget_light+0xea/0x280 [ 661.265945] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 661.267061] __sys_sendmsg+0xe5/0x1b0 [ 661.267993] ? __sys_sendmsg_sock+0x30/0x30 [ 661.268860] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 661.269984] ? syscall_enter_from_user_mode+0x1d/0x50 [ 661.271028] do_syscall_64+0x3b/0x90 [ 661.271788] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 661.272808] RIP: 0033:0x7f0b10e26b19 [ 661.273552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 661.277175] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 661.278678] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 661.280097] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 661.281496] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 661.282906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 661.284305] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 661.285741] 06:29:03 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 14) 06:29:03 executing program 5: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:03 executing program 6: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:03 executing program 3: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 661.337426] FAULT_INJECTION: forcing a failure. [ 661.337426] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 661.338897] CPU: 0 PID: 6140 Comm: syz-executor.1 Not tainted 5.16.0-rc4-next-20211208 #1 [ 661.339758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 661.340922] Call Trace: [ 661.341194] [ 661.341427] dump_stack_lvl+0x8b/0xb3 [ 661.341842] should_fail.cold+0x5/0xa [ 661.342250] _copy_to_user+0x2e/0x150 [ 661.342650] simple_read_from_buffer+0xcc/0x160 [ 661.343154] proc_fail_nth_read+0x194/0x220 [ 661.343617] ? proc_fault_inject_read+0x230/0x230 [ 661.344121] ? security_file_permission+0xb1/0xd0 [ 661.344634] ? proc_fault_inject_read+0x230/0x230 [ 661.345137] vfs_read+0x1b6/0x5f0 [ 661.345512] ksys_read+0x12d/0x250 [ 661.345885] ? __ia32_sys_pwrite64+0x230/0x230 [ 661.346365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 661.346909] do_syscall_64+0x3b/0x90 [ 661.347307] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 661.347834] RIP: 0033:0x7f464c7c169c [ 661.348218] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 661.350097] RSP: 002b:00007f4649d84170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 661.350899] RAX: ffffffffffffffda RBX: 0000000000000024 RCX: 00007f464c7c169c [ 661.351643] RDX: 000000000000000f RSI: 00007f4649d841e0 RDI: 0000000000000004 [ 661.352389] RBP: 00007f4649d841d0 R08: 0000000000000000 R09: 0000000000000000 [ 661.353125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 661.353861] R13: 00007ffeeef9c1af R14: 00007f4649d84300 R15: 0000000000022000 [ 661.354616] 06:29:03 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x25c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}]}, 0x25c}}, 0x0) 06:29:03 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x7, "76ecf819b7b837"}]}}]}]]}, 0x170}}, 0x0) 06:29:03 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xa}}], 0x1, 0x0) 06:29:03 executing program 3: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:16 executing program 3: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:16 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:16 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:29:16 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x7, "76ecf819b7b837"}]}}]}]]}, 0x170}}, 0x0) 06:29:16 executing program 6: r0 = syz_io_uring_setup(0x0, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:16 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 10) 06:29:16 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x254, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x254}}, 0x0) 06:29:16 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xc}}], 0x1, 0x0) [ 674.414497] FAULT_INJECTION: forcing a failure. [ 674.414497] name failslab, interval 1, probability 0, space 0, times 0 [ 674.416940] CPU: 0 PID: 6165 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 674.418571] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 674.420824] Call Trace: [ 674.421324] [ 674.421762] dump_stack_lvl+0x8b/0xb3 [ 674.422531] should_fail.cold+0x5/0xa [ 674.423324] ? __alloc_skb+0x211/0x340 [ 674.424108] should_failslab+0x5/0x10 [ 674.424876] kmem_cache_alloc_node+0x55/0x490 [ 674.425762] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 674.426859] __alloc_skb+0x211/0x340 [ 674.427611] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 674.428707] netlink_ack+0x1f0/0xa60 06:29:16 executing program 3: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 674.429443] ? nl80211_notify_iface+0x180/0x180 [ 674.430550] ? netlink_sendmsg+0xdf0/0xdf0 [ 674.431407] ? lock_release+0x6f0/0x6f0 [ 674.432212] netlink_rcv_skb+0x348/0x430 [ 674.433018] ? genl_get_cmd+0x480/0x480 [ 674.433798] ? netlink_ack+0xa60/0xa60 [ 674.434580] ? netlink_deliver_tap+0x1b2/0xc30 [ 674.435490] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 674.436474] ? is_vmalloc_addr+0x7b/0xb0 [ 674.437289] genl_rcv+0x24/0x40 [ 674.437940] netlink_unicast+0x53a/0x7e0 [ 674.438748] ? netlink_attachskb+0x870/0x870 [ 674.439617] ? __virt_addr_valid+0xe9/0x310 [ 674.440512] netlink_sendmsg+0x904/0xdf0 [ 674.441322] ? netlink_unicast+0x7e0/0x7e0 [ 674.442192] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 674.443329] ? netlink_unicast+0x7e0/0x7e0 [ 674.444176] sock_sendmsg+0x150/0x190 [ 674.444958] ____sys_sendmsg+0x709/0x870 [ 674.445774] ? kernel_sendmsg+0x50/0x50 [ 674.446581] ? __ia32_sys_recvmmsg+0x260/0x260 [ 674.447536] ? lock_release+0x3b2/0x6f0 [ 674.448323] ? __might_fault+0xd1/0x170 [ 674.449108] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 674.450144] ___sys_sendmsg+0xf3/0x170 [ 674.450925] ? sendmsg_copy_msghdr+0x160/0x160 [ 674.451868] ? __fget_files+0x2cd/0x4c0 [ 674.452646] ? lock_downgrade+0x6d0/0x6d0 [ 674.453465] ? lock_release+0x3b2/0x6f0 [ 674.454243] ? ksys_write+0x212/0x250 [ 674.455022] ? __fget_files+0x2ef/0x4c0 [ 674.455841] ? __fget_light+0xea/0x280 [ 674.456605] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 674.457699] __sys_sendmsg+0xe5/0x1b0 [ 674.458449] ? __sys_sendmsg_sock+0x30/0x30 [ 674.459307] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 674.460410] ? syscall_enter_from_user_mode+0x1d/0x50 [ 674.461430] do_syscall_64+0x3b/0x90 [ 674.462171] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 674.463195] RIP: 0033:0x7f0b10e26b19 [ 674.463928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 674.467507] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 06:29:16 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x24c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x208, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x40, 0x1f, @device_a, 0x7, 0xdeb9, 0x6}}]}]]}, 0x24c}}, 0x0) [ 674.468986] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 674.470471] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 674.471898] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 674.473303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 674.474696] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 674.476163] 06:29:16 executing program 3: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:16 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xe}}], 0x1, 0x0) 06:29:16 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x7, "76ecf819b7b837"}]}}]}]]}, 0x170}}, 0x0) 06:29:16 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:16 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:29:16 executing program 6: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:31 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:31 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 06:29:31 executing program 6: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:31 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:29:31 executing program 3: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:31 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12c, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x100, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:29:31 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 11) 06:29:31 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x11}}], 0x1, 0x0) 06:29:31 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 689.155223] FAULT_INJECTION: forcing a failure. [ 689.155223] name failslab, interval 1, probability 0, space 0, times 0 [ 689.157793] CPU: 0 PID: 6212 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 689.159543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 689.161914] Call Trace: [ 689.162458] [ 689.162932] dump_stack_lvl+0x8b/0xb3 [ 689.163773] should_fail.cold+0x5/0xa [ 689.164586] ? create_object.isra.0+0x3a/0xa20 [ 689.165559] should_failslab+0x5/0x10 [ 689.166373] kmem_cache_alloc+0x5b/0x480 06:29:31 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 689.167243] create_object.isra.0+0x3a/0xa20 [ 689.168278] ? kasan_unpoison+0x23/0x50 [ 689.169140] kmem_cache_alloc_node+0x248/0x490 [ 689.170110] __alloc_skb+0x211/0x340 [ 689.170903] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 689.172096] netlink_ack+0x1f0/0xa60 [ 689.172894] ? nl80211_notify_iface+0x180/0x180 [ 689.173887] ? netlink_sendmsg+0xdf0/0xdf0 [ 689.174797] ? lock_release+0x6f0/0x6f0 [ 689.175655] netlink_rcv_skb+0x348/0x430 [ 689.176529] ? genl_get_cmd+0x480/0x480 [ 689.177372] ? netlink_ack+0xa60/0xa60 [ 689.178212] ? netlink_deliver_tap+0x1b2/0xc30 [ 689.179193] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 689.180255] ? is_vmalloc_addr+0x7b/0xb0 [ 689.181123] genl_rcv+0x24/0x40 [ 689.181825] netlink_unicast+0x53a/0x7e0 [ 689.182689] ? netlink_attachskb+0x870/0x870 [ 689.183637] ? __virt_addr_valid+0xe9/0x310 [ 689.184572] netlink_sendmsg+0x904/0xdf0 [ 689.185447] ? netlink_unicast+0x7e0/0x7e0 [ 689.186347] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 689.187551] ? netlink_unicast+0x7e0/0x7e0 [ 689.188442] sock_sendmsg+0x150/0x190 [ 689.189253] ____sys_sendmsg+0x709/0x870 [ 689.190113] ? kernel_sendmsg+0x50/0x50 [ 689.190958] ? __ia32_sys_recvmmsg+0x260/0x260 [ 689.191937] ? lock_release+0x3b2/0x6f0 [ 689.192784] ? __might_fault+0xd1/0x170 [ 689.193632] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 689.194761] ___sys_sendmsg+0xf3/0x170 [ 689.195598] ? sendmsg_copy_msghdr+0x160/0x160 [ 689.196580] ? __fget_files+0x2cd/0x4c0 [ 689.197413] ? lock_downgrade+0x6d0/0x6d0 [ 689.198297] ? lock_release+0x3b2/0x6f0 [ 689.199134] ? ksys_write+0x212/0x250 [ 689.199991] ? __fget_files+0x2ef/0x4c0 [ 689.200837] ? __fget_light+0xea/0x280 [ 689.201667] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 689.202834] __sys_sendmsg+0xe5/0x1b0 [ 689.203661] ? __sys_sendmsg_sock+0x30/0x30 [ 689.204573] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 689.205784] ? syscall_enter_from_user_mode+0x1d/0x50 [ 689.206875] do_syscall_64+0x3b/0x90 [ 689.207681] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 689.208759] RIP: 0033:0x7f0b10e26b19 [ 689.209538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 689.213404] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 689.214995] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 689.216499] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 689.217982] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 689.219477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 689.220960] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 689.222478] 06:29:31 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:43 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:29:43 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:43 executing program 6: r0 = syz_io_uring_setup(0xeaf, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:43 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:43 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x1e}}], 0x1, 0x0) 06:29:43 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 12) 06:29:43 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x8, "76ecf819b7b83733"}]}}]}]]}, 0x170}}, 0x0) 06:29:43 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 06:29:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 06:29:44 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 701.763094] FAULT_INJECTION: forcing a failure. [ 701.763094] name failslab, interval 1, probability 0, space 0, times 0 [ 701.765503] CPU: 1 PID: 6248 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 701.767100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 701.769334] Call Trace: [ 701.769836] [ 701.770270] dump_stack_lvl+0x8b/0xb3 [ 701.771044] should_fail.cold+0x5/0xa [ 701.771817] should_failslab+0x5/0x10 [ 701.772582] __kmalloc_node_track_caller+0x7e/0x330 [ 701.773566] ? netlink_ack+0x1f0/0xa60 [ 701.774345] __alloc_skb+0xe3/0x340 [ 701.775071] netlink_ack+0x1f0/0xa60 [ 701.775831] ? nl80211_notify_iface+0x180/0x180 [ 701.776759] ? netlink_sendmsg+0xdf0/0xdf0 [ 701.777600] ? lock_release+0x6f0/0x6f0 [ 701.778398] netlink_rcv_skb+0x348/0x430 [ 701.779197] ? genl_get_cmd+0x480/0x480 [ 701.780015] ? netlink_ack+0xa60/0xa60 [ 701.780787] ? netlink_deliver_tap+0x1b2/0xc30 [ 701.781687] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 701.782673] ? is_vmalloc_addr+0x7b/0xb0 [ 701.783498] genl_rcv+0x24/0x40 [ 701.784153] netlink_unicast+0x53a/0x7e0 [ 701.784959] ? netlink_attachskb+0x870/0x870 [ 701.785823] ? __virt_addr_valid+0xe9/0x310 [ 701.786708] netlink_sendmsg+0x904/0xdf0 [ 701.787546] ? netlink_unicast+0x7e0/0x7e0 [ 701.788392] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 701.789484] ? netlink_unicast+0x7e0/0x7e0 [ 701.790322] sock_sendmsg+0x150/0x190 [ 701.791065] ____sys_sendmsg+0x709/0x870 [ 701.791875] ? kernel_sendmsg+0x50/0x50 [ 701.792698] ? __ia32_sys_recvmmsg+0x260/0x260 [ 701.793704] ? lock_release+0x3b2/0x6f0 06:29:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}]]}, 0x44}}, 0x0) [ 701.794577] ? __might_fault+0xd1/0x170 [ 701.795672] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 701.796831] ___sys_sendmsg+0xf3/0x170 [ 701.797690] ? sendmsg_copy_msghdr+0x160/0x160 [ 701.798698] ? __fget_files+0x2cd/0x4c0 [ 701.799594] ? lock_downgrade+0x6d0/0x6d0 [ 701.800501] ? lock_release+0x3b2/0x6f0 [ 701.801372] ? ksys_write+0x212/0x250 [ 701.802228] ? __fget_files+0x2ef/0x4c0 [ 701.803146] ? __fget_light+0xea/0x280 [ 701.804042] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 701.805286] __sys_sendmsg+0xe5/0x1b0 [ 701.806144] ? __sys_sendmsg_sock+0x30/0x30 [ 701.807100] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 701.808367] ? syscall_enter_from_user_mode+0x1d/0x50 [ 701.809541] do_syscall_64+0x3b/0x90 [ 701.810395] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 701.811543] RIP: 0033:0x7f0b10e26b19 [ 701.812376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 701.817044] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 701.818879] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 701.820457] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 701.822048] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 701.823641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 06:29:44 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x5, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 701.825276] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 701.826914] 06:29:44 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x8, "76ecf819b7b83733"}]}}]}]]}, 0x170}}, 0x0) 06:29:44 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:44 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}]]}, 0x44}}, 0x0) 06:29:44 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x6, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:29:44 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:29:44 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x60}}], 0x1, 0x0) 06:29:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}]]}, 0x44}}, 0x0) 06:30:00 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xf0}}], 0x1, 0x0) 06:30:00 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 13) 06:30:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x7, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:00 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:00 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x8, "76ecf819b7b83733"}]}}]}]]}, 0x170}}, 0x0) 06:30:00 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:01 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x238, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x1f1, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}, @random={0x64, 0xa5, "5632cc370e0717fd924e0c5b0d57fac57e93099c53f8f5e13ba08a7acde8203cc39c0e665830ded95ec505fdba2520a320122a4655a0b405723e68fa9ed4efb5ea05e8bdf63636f11f7e99efbc6733baceb18fd2caf67a2bd3d9b5e8ac28024c18653f51f1ac22aedd705085585f5e483195a4181a3f60c2cea70927ca9c0249de08c3ec8c034ac7540a558e7a01073242c51104235aafba0273c5b6b4e1fa2426280b454b"}]}]]}, 0x238}}, 0x0) 06:30:01 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 718.748420] FAULT_INJECTION: forcing a failure. [ 718.748420] name failslab, interval 1, probability 0, space 0, times 0 [ 718.750898] CPU: 1 PID: 6297 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 718.752533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 718.754794] Call Trace: [ 718.755303] [ 718.755766] dump_stack_lvl+0x8b/0xb3 [ 718.756546] should_fail.cold+0x5/0xa [ 718.757310] ? create_object.isra.0+0x3a/0xa20 [ 718.758225] should_failslab+0x5/0x10 [ 718.759002] kmem_cache_alloc+0x5b/0x480 [ 718.759833] create_object.isra.0+0x3a/0xa20 [ 718.760719] ? kasan_unpoison+0x23/0x50 [ 718.761527] __kmalloc_node_track_caller+0x1fb/0x330 [ 718.762539] ? netlink_ack+0x1f0/0xa60 [ 718.763324] __alloc_skb+0xe3/0x340 [ 718.764077] netlink_ack+0x1f0/0xa60 [ 718.764823] ? nl80211_notify_iface+0x180/0x180 [ 718.765761] ? netlink_sendmsg+0xdf0/0xdf0 [ 718.766617] ? lock_release+0x6f0/0x6f0 [ 718.767421] netlink_rcv_skb+0x348/0x430 [ 718.768244] ? genl_get_cmd+0x480/0x480 [ 718.769053] ? netlink_ack+0xa60/0xa60 [ 718.769852] ? netlink_deliver_tap+0x1b2/0xc30 [ 718.770760] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 718.771764] ? is_vmalloc_addr+0x7b/0xb0 [ 718.772586] genl_rcv+0x24/0x40 [ 718.773246] netlink_unicast+0x53a/0x7e0 [ 718.774061] ? netlink_attachskb+0x870/0x870 [ 718.774934] ? __virt_addr_valid+0xe9/0x310 [ 718.775836] netlink_sendmsg+0x904/0xdf0 [ 718.776662] ? netlink_unicast+0x7e0/0x7e0 [ 718.777518] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 718.778607] ? netlink_unicast+0x7e0/0x7e0 [ 718.779447] sock_sendmsg+0x150/0x190 [ 718.780221] ____sys_sendmsg+0x709/0x870 [ 718.781031] ? kernel_sendmsg+0x50/0x50 [ 718.781816] ? __ia32_sys_recvmmsg+0x260/0x260 [ 718.782739] ? lock_release+0x3b2/0x6f0 [ 718.783526] ? __might_fault+0xd1/0x170 [ 718.784336] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 718.785399] ___sys_sendmsg+0xf3/0x170 [ 718.786183] ? sendmsg_copy_msghdr+0x160/0x160 [ 718.787110] ? __fget_files+0x2cd/0x4c0 [ 718.787922] ? lock_downgrade+0x6d0/0x6d0 [ 718.788747] ? lock_release+0x3b2/0x6f0 [ 718.789541] ? ksys_write+0x212/0x250 [ 718.790312] ? __fget_files+0x2ef/0x4c0 [ 718.791113] ? __fget_light+0xea/0x280 [ 718.791893] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 718.792997] __sys_sendmsg+0xe5/0x1b0 [ 718.793752] ? __sys_sendmsg_sock+0x30/0x30 [ 718.794629] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 718.795756] ? syscall_enter_from_user_mode+0x1d/0x50 [ 718.796770] do_syscall_64+0x3b/0x90 [ 718.797503] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 718.798502] RIP: 0033:0x7f0b10e26b19 [ 718.799220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 718.802822] RSP: 002b:00007f0b0e39c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 718.804309] RAX: ffffffffffffffda RBX: 00007f0b10f39f60 RCX: 00007f0b10e26b19 [ 718.805712] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 718.807106] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 718.808492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 718.809872] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 718.811281] 06:30:01 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfd}}], 0x1, 0x0) 06:30:01 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x9, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:01 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x190, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x14a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x64}]}]]}, 0x190}}, 0x0) 06:30:01 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:01 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x9, "76ecf819b7b83733b3"}]}}]}]]}, 0x170}}, 0x0) 06:30:01 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) (fail_nth: 14) 06:30:01 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:01 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x9, "76ecf819b7b83733b3"}]}}]}]]}, 0x170}}, 0x0) 06:30:01 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x300}}], 0x1, 0x0) [ 719.047656] FAULT_INJECTION: forcing a failure. [ 719.047656] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 719.049996] CPU: 1 PID: 6320 Comm: syz-executor.7 Not tainted 5.16.0-rc4-next-20211208 #1 [ 719.051509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 719.053605] Call Trace: [ 719.054078] [ 719.054489] dump_stack_lvl+0x8b/0xb3 [ 719.055205] should_fail.cold+0x5/0xa [ 719.055938] _copy_to_user+0x2e/0x150 [ 719.056657] simple_read_from_buffer+0xcc/0x160 [ 719.057520] proc_fail_nth_read+0x194/0x220 [ 719.058324] ? proc_fault_inject_read+0x230/0x230 [ 719.059229] ? security_file_permission+0xb1/0xd0 [ 719.060148] ? proc_fault_inject_read+0x230/0x230 [ 719.061052] vfs_read+0x1b6/0x5f0 [ 719.061707] ksys_read+0x12d/0x250 [ 719.062372] ? __ia32_sys_pwrite64+0x230/0x230 [ 719.063224] ? syscall_enter_from_user_mode+0x1d/0x50 [ 719.064210] do_syscall_64+0x3b/0x90 [ 719.064913] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 719.065868] RIP: 0033:0x7f0b10dd969c [ 719.066549] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 719.069936] RSP: 002b:00007f0b0e39c170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 719.071324] RAX: ffffffffffffffda RBX: 0000000000000024 RCX: 00007f0b10dd969c [ 719.072639] RDX: 000000000000000f RSI: 00007f0b0e39c1e0 RDI: 0000000000000004 [ 719.073934] RBP: 00007f0b0e39c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 719.075236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 719.076549] R13: 00007ffea61dc08f R14: 00007f0b0e39c300 R15: 0000000000022000 [ 719.077855] 06:30:20 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:20 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:20 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x9, "76ecf819b7b83733b3"}]}}]}]]}, 0x170}}, 0x0) 06:30:20 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:20 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x600}}], 0x1, 0x0) 06:30:20 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:20 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:20 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x18c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x147, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}, @mesh_id={0x72, 0x6}]}]]}, 0x18c}}, 0x0) 06:30:20 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x700}}], 0x1, 0x0) 06:30:20 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x184, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x13f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0x74, 0x3}}]}]]}, 0x184}}, 0x0) 06:30:20 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:36 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:36 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xa00}}], 0x1, 0x0) 06:30:36 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x154, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x110, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x154}}, 0x0) 06:30:36 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:36 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x180, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x139, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x1, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}]}]]}, 0x180}}, 0x0) 06:30:36 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:36 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xef, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:36 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x2a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}]}]]}, 0x70}}, 0x0) 06:30:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x154, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x110, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x154}}, 0x0) 06:30:36 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:36 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:36 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:36 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:36 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xc00}}], 0x1, 0x0) 06:30:36 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:36 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x2a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}]}]]}, 0x70}}, 0x0) 06:30:36 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x154, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x110, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x154}}, 0x0) 06:30:51 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12c, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x100, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:30:51 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x2a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}]}]]}, 0x70}}, 0x0) 06:30:51 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:51 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:51 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xe00}}], 0x1, 0x0) 06:30:51 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x300, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:51 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:51 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:30:51 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x500, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:30:51 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x180, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x139, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x4, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}]}]]}, 0x180}}, 0x0) 06:31:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x120, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}]}}]}]]}, 0x164}}, 0x0) 06:31:05 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x112, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:31:05 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x600, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:05 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x5, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:05 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x1100}}], 0x1, 0x0) 06:31:05 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x700, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x120, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}]}}]}]]}, 0x164}}, 0x0) 06:31:05 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x112, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:31:05 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x6, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:05 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x1e00}}], 0x1, 0x0) 06:31:05 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x900, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:05 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x120, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}]}}]}]]}, 0x164}}, 0x0) 06:31:18 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:18 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf00, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:18 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:18 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x7, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:18 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:18 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x112, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:31:18 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x180, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x139, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x10d, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x17, "76ecf819b7b83733b38d45095b43369912f793bcba0462"}]}}]}]]}, 0x180}}, 0x0) 06:31:18 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x6000}}], 0x1, 0x0) 06:31:18 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:18 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:18 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x122, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {}]}}]}]]}, 0x168}}, 0x0) 06:31:18 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x11f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf3, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xd, "1e58fe1c224f161f2e8cee5c88"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x164}}, 0x0) 06:31:18 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x9, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:18 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xf000}}], 0x1, 0x0) 06:31:18 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xef00, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:18 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:18 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:33 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:33 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x11f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf3, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xd, "1e58fe1c224f161f2e8cee5c88"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x164}}, 0x0) 06:31:33 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:33 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x122, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {}]}}]}]]}, 0x168}}, 0x0) 06:31:33 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:33 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfd00}}], 0x1, 0x0) 06:31:33 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:33 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:33 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x11f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf3, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xd, "1e58fe1c224f161f2e8cee5c88"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x164}}, 0x0) 06:31:33 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x30000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:33 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:33 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x30000}}], 0x1, 0x0) 06:31:33 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xc5, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:33 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x122, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {}]}}]}]]}, 0x168}}, 0x0) 06:31:33 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x34000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:33 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:47 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:47 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x400300, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:31:47 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:47 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x34000}}], 0x1, 0x0) 06:31:47 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x174, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12e, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x102, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xc, "76ecf819b7b83733b38d4509"}]}}]}]]}, 0x174}}, 0x0) 06:31:47 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x126, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfa, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x14, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfa"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:31:47 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:31:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:00 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:00 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:00 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:00 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x1, 'v'}]}}]}]]}, 0x168}}, 0x0) 06:32:00 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x300, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf0ffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:00 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x40000}}], 0x1, 0x0) 06:32:00 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x126, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfa, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x14, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfa"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:32:00 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x1, 'v'}]}}]}]]}, 0x168}}, 0x0) 06:32:00 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:00 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x400300}}], 0x1, 0x0) 06:32:00 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:00 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x500, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x1000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:00 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x126, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfa, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x14, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfa"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:32:00 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:00 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xf0ffff}}], 0x1, 0x0) 06:32:00 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:00 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x1, 'v'}]}}]}]]}, 0x168}}, 0x0) 06:32:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x2000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:00 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x600, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:14 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x7, "76ecf819b7b837"}]}}]}]]}, 0x170}}, 0x0) 06:32:14 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x17, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff0"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:32:14 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x1000000}}], 0x1, 0x0) 06:32:14 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:14 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:14 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:14 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x3000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:14 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x700, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:14 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x4000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:14 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x900, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:14 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x7, "76ecf819b7b837"}]}}]}]]}, 0x170}}, 0x0) 06:32:14 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:32:14 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:14 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x17, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff0"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:32:14 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x2000000}}], 0x1, 0x0) 06:32:14 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:14 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x5000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x7, "76ecf819b7b837"}]}}]}]]}, 0x170}}, 0x0) 06:32:26 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:32:26 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x3000000}}], 0x1, 0x0) 06:32:26 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:26 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:26 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf00, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x6000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x17, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff0"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:32:26 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:27 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:32:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x4000000}}], 0x1, 0x0) 06:32:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x19, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee2"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:32:27 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x7000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:27 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x3000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x6000000}}], 0x1, 0x0) 06:32:27 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xc500, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12c, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x100, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:32:27 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x19, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee2"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:32:39 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:39 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x8, "76ecf819b7b83733"}]}}]}]]}, 0x170}}, 0x0) 06:32:39 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x19, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee2"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:32:39 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x7000000}}], 0x1, 0x0) 06:32:39 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x600, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:39 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x9000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x8000000}}], 0x1, 0x0) 06:32:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x30000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x113, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:32:52 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x8, "76ecf819b7b83733"}]}}]}]]}, 0x170}}, 0x0) 06:32:52 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x9effffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x8, "76ecf819b7b83733"}]}}]}]]}, 0x170}}, 0x0) 06:32:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x34000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x600, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x113, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:32:52 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xa000000}}], 0x1, 0x0) 06:32:52 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xef000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x400300, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x9, "76ecf819b7b83733b3"}]}}]}]]}, 0x170}}, 0x0) 06:32:52 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x113, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:32:52 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf0ffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:32:52 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xc000000}}], 0x1, 0x0) 06:32:52 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:32:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf0ffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:04 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xe000000}}], 0x1, 0x0) 06:33:04 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12c, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x100, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:33:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf0ffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:04 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:33:04 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:33:04 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xfffff000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:04 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x9, "76ecf819b7b83733b3"}]}}]}]]}, 0x170}}, 0x0) 06:33:04 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x1000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:04 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xffffff7f, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:04 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:33:04 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x2000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:04 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x11000000}}], 0x1, 0x0) 06:33:04 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x1, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0x9, "76ecf819b7b83733b3"}]}}]}]]}, 0x170}}, 0x0) 06:33:19 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:33:19 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:33:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x154, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x110, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x154}}, 0x0) 06:33:19 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x1e000000}}], 0x1, 0x0) 06:33:19 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:33:19 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x3000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:19 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xffffff9e, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:19 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x15c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x115, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x15c}}, 0x0) 06:33:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x154, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x110, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x154}}, 0x0) 06:33:19 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xef00, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:19 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x15c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x115, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x15c}}, 0x0) 06:33:19 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x60000000}}], 0x1, 0x0) 06:33:19 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x4000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x154, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x110, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe4, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x154}}, 0x0) 06:33:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12c, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x100, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:33:19 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:33:19 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 06:33:33 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x5000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:33 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xfffffff0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:33 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xeffdffff}}], 0x1, 0x0) 06:33:33 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 06:33:33 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x112, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:33:33 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xe}}], 0x1, 0x0) 06:33:33 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xc}}], 0x1, 0x0) 06:33:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x15c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x115, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x15c}}, 0x0) 06:33:33 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r0, 0x6, &(0x7f0000000340)="91efcf4b21a98804599d309295f7b63594edc42c4a2d0abd9c", 0x19, 0x10}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, 0x0, 0x0) 06:33:33 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfd000000}}], 0x1, 0x0) 06:33:33 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x11, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:33:33 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0xe, 0x0}}, 0x10, 0x0}}], 0x1, 0x0) 06:33:33 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) 06:33:33 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xffffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 931.392693] FAULT_INJECTION: forcing a failure. [ 931.392693] name failslab, interval 1, probability 0, space 0, times 0 [ 931.395345] CPU: 1 PID: 7021 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 931.396986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 931.399247] Call Trace: [ 931.399758] [ 931.400208] dump_stack_lvl+0x8b/0xb3 [ 931.400991] should_fail.cold+0x5/0xa [ 931.401770] should_failslab+0x5/0x10 [ 931.402546] kmem_cache_alloc_bulk+0x47/0x670 [ 931.403457] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 931.404554] ? percpu_counter_add_batch+0xb4/0x170 [ 931.405537] io_submit_sqes.cold+0x20b/0x435 [ 931.406435] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 931.407475] ? find_held_lock+0x2c/0x110 [ 931.408287] ? io_async_task_func+0x560/0x560 [ 931.409196] ? lock_release+0x3b2/0x6f0 [ 931.409989] ? __do_sys_io_uring_enter+0x359/0x1e80 [ 931.411022] ? lock_downgrade+0x6d0/0x6d0 [ 931.411851] ? __fget_files+0x2ef/0x4c0 [ 931.412663] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 931.413696] __do_sys_io_uring_enter+0xee0/0x1e80 [ 931.414687] ? io_submit_sqes+0x8fc0/0x8fc0 [ 931.415582] ? wait_for_completion_io+0x270/0x270 [ 931.416562] ? lock_is_held_type+0xd7/0x130 [ 931.417425] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 931.418507] ? vfs_write+0x188/0xae0 [ 931.419278] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 931.420400] ? fput+0x2a/0x50 [ 931.421042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 931.422070] do_syscall_64+0x3b/0x90 [ 931.422859] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 931.423876] RIP: 0033:0x7fc4f668ab19 [ 931.424604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 931.428262] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 931.429826] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 931.431274] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 931.432707] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 931.434148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 931.435589] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 931.437012] 06:33:46 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) 06:33:46 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) [ 944.647412] FAULT_INJECTION: forcing a failure. [ 944.647412] name failslab, interval 1, probability 0, space 0, times 0 [ 944.648710] CPU: 1 PID: 7032 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 944.649570] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 944.650753] Call Trace: [ 944.651032] [ 944.651269] dump_stack_lvl+0x8b/0xb3 [ 944.651678] should_fail.cold+0x5/0xa [ 944.652084] ? create_object.isra.0+0x3a/0xa20 06:33:46 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfdffffff}}], 0x1, 0x0) 06:33:46 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x121, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf5, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0xc, "d8e20639e3fa6d572d418fb5"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) 06:33:46 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x6000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 944.652565] should_failslab+0x5/0x10 [ 944.653125] kmem_cache_alloc+0x5b/0x480 [ 944.653525] create_object.isra.0+0x3a/0xa20 [ 944.653953] ? kasan_unpoison+0x23/0x50 [ 944.654346] kmem_cache_alloc_bulk+0x387/0x670 [ 944.654795] io_submit_sqes.cold+0x20b/0x435 [ 944.655248] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 944.655734] ? find_held_lock+0x2c/0x110 [ 944.656127] ? io_async_task_func+0x560/0x560 [ 944.656589] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.657073] __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.657548] ? io_submit_sqes+0x8fc0/0x8fc0 [ 944.657964] ? wait_for_completion_io+0x270/0x270 [ 944.658430] ? lock_is_held_type+0xd7/0x130 [ 944.658849] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 944.659379] ? vfs_write+0x188/0xae0 [ 944.659749] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 944.660274] ? fput+0x2a/0x50 [ 944.660594] ? syscall_enter_from_user_mode+0x1d/0x50 [ 944.661092] do_syscall_64+0x3b/0x90 [ 944.661455] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 944.661947] RIP: 0033:0x7fc4f668ab19 [ 944.662302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 944.664057] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 944.664789] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 944.665467] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 944.666145] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 944.666824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 944.667513] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 06:33:46 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xf, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:46 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) [ 944.668205] [ 944.701013] FAULT_INJECTION: forcing a failure. [ 944.701013] name failslab, interval 1, probability 0, space 0, times 0 [ 944.702206] CPU: 1 PID: 7045 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 06:33:46 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x112, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) [ 944.703069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 944.704419] Call Trace: [ 944.704681] [ 944.704910] dump_stack_lvl+0x8b/0xb3 [ 944.705325] should_fail.cold+0x5/0xa [ 944.705728] should_failslab+0x5/0x10 [ 944.706138] kmem_cache_alloc_bulk+0x47/0x670 [ 944.706602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 944.707192] ? percpu_counter_add_batch+0xb4/0x170 [ 944.707702] io_submit_sqes.cold+0x20b/0x435 [ 944.708169] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 944.708699] ? find_held_lock+0x2c/0x110 [ 944.709128] ? io_async_task_func+0x560/0x560 [ 944.709591] ? lock_release+0x3b2/0x6f0 [ 944.709997] ? __do_sys_io_uring_enter+0x359/0x1e80 [ 944.710511] ? lock_downgrade+0x6d0/0x6d0 [ 944.710937] ? __fget_files+0x2ef/0x4c0 [ 944.711364] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.711886] __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.712398] ? io_submit_sqes+0x8fc0/0x8fc0 [ 944.712851] ? wait_for_completion_io+0x270/0x270 [ 944.713357] ? lock_is_held_type+0xd7/0x130 [ 944.713806] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 944.714364] ? vfs_write+0x188/0xae0 [ 944.714750] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 944.715323] ? fput+0x2a/0x50 [ 944.715659] ? syscall_enter_from_user_mode+0x1d/0x50 [ 944.716193] do_syscall_64+0x3b/0x90 [ 944.716585] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 944.717115] RIP: 0033:0x7f10528b1b19 [ 944.717489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 944.719372] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 944.720143] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 944.720872] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 944.721441] FAULT_INJECTION: forcing a failure. [ 944.721441] name failslab, interval 1, probability 0, space 0, times 0 [ 944.721614] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 944.721622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 944.725375] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 944.726111] [ 944.726353] CPU: 0 PID: 7047 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 944.728106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 944.730483] Call Trace: [ 944.731038] [ 944.731513] dump_stack_lvl+0x8b/0xb3 [ 944.732342] should_fail.cold+0x5/0xa [ 944.733175] should_failslab+0x5/0x10 [ 944.733994] kmem_cache_alloc_bulk+0x47/0x670 [ 944.734946] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 944.736143] ? percpu_counter_add_batch+0xb4/0x170 [ 944.737198] io_submit_sqes.cold+0x20b/0x435 [ 944.738162] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 944.739248] ? find_held_lock+0x2c/0x110 [ 944.740116] ? io_async_task_func+0x560/0x560 [ 944.741075] ? lock_release+0x3b2/0x6f0 [ 944.741929] ? __do_sys_io_uring_enter+0x359/0x1e80 [ 944.743005] ? lock_downgrade+0x6d0/0x6d0 [ 944.744089] ? __fget_files+0x2ef/0x4c0 [ 944.744962] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.746029] __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.747100] ? io_submit_sqes+0x8fc0/0x8fc0 [ 944.748030] ? wait_for_completion_io+0x270/0x270 [ 944.749057] ? lock_is_held_type+0xd7/0x130 [ 944.749979] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 944.751155] ? vfs_write+0x188/0xae0 [ 944.751957] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 944.753140] ? fput+0x2a/0x50 [ 944.753826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 944.754921] do_syscall_64+0x3b/0x90 [ 944.755728] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 944.756814] RIP: 0033:0x7fcb3f1eeb19 [ 944.757597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 944.761438] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 944.763044] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 944.764560] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 944.766052] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 944.767568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 944.769060] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 944.770589] 06:33:47 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:47 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xc0, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:33:47 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) [ 944.786003] FAULT_INJECTION: forcing a failure. [ 944.786003] name failslab, interval 1, probability 0, space 0, times 0 [ 944.787404] CPU: 1 PID: 7056 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 944.788199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 944.789282] Call Trace: [ 944.789543] [ 944.789759] dump_stack_lvl+0x8b/0xb3 [ 944.790145] should_fail.cold+0x5/0xa [ 944.790523] ? create_object.isra.0+0x3a/0xa20 [ 944.790974] should_failslab+0x5/0x10 [ 944.791379] kmem_cache_alloc+0x5b/0x480 [ 944.791772] ? mark_held_locks+0x9e/0xe0 [ 944.792177] create_object.isra.0+0x3a/0xa20 [ 944.792608] ? kasan_unpoison+0x23/0x50 [ 944.793004] kmem_cache_alloc_bulk+0x387/0x670 [ 944.793457] io_submit_sqes.cold+0x20b/0x435 [ 944.793898] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 944.794388] ? find_held_lock+0x2c/0x110 [ 944.794783] ? io_async_task_func+0x560/0x560 [ 944.795245] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.795742] __do_sys_io_uring_enter+0xee0/0x1e80 [ 944.796248] ? io_submit_sqes+0x8fc0/0x8fc0 [ 944.796677] ? wait_for_completion_io+0x270/0x270 [ 944.797172] ? lock_is_held_type+0xd7/0x130 [ 944.797601] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 944.798156] ? vfs_write+0x188/0xae0 [ 944.798530] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 944.799098] ? fput+0x2a/0x50 [ 944.799420] ? syscall_enter_from_user_mode+0x1d/0x50 [ 944.799945] do_syscall_64+0x3b/0x90 [ 944.800322] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 944.800837] RIP: 0033:0x7fc4f668ab19 [ 944.801197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 944.803058] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 944.803802] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 944.804524] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 944.805237] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 944.805945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 944.806659] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 944.807386] 06:34:01 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) 06:34:01 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) [ 959.605642] FAULT_INJECTION: forcing a failure. [ 959.605642] name failslab, interval 1, probability 0, space 0, times 0 [ 959.608039] CPU: 0 PID: 7071 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 959.609725] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 959.612058] Call Trace: 06:34:01 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xec0, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfeffffff}}], 0x1, 0x0) 06:34:01 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x112, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe6, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:34:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x121, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf5, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0xc, "d8e20639e3fa6d572d418fb5"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) 06:34:01 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x7000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:01 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) [ 959.612589] [ 959.613190] dump_stack_lvl+0x8b/0xb3 [ 959.613996] should_fail.cold+0x5/0xa [ 959.614792] ? create_object.isra.0+0x3a/0xa20 [ 959.615752] should_failslab+0x5/0x10 [ 959.616543] kmem_cache_alloc+0x5b/0x480 [ 959.617379] create_object.isra.0+0x3a/0xa20 [ 959.618280] ? kasan_unpoison+0x23/0x50 [ 959.619102] kmem_cache_alloc_bulk+0x387/0x670 [ 959.620052] io_submit_sqes.cold+0x20b/0x435 [ 959.620971] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 959.621994] ? find_held_lock+0x2c/0x110 [ 959.622820] ? io_async_task_func+0x560/0x560 [ 959.623790] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.624819] __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.625823] ? io_submit_sqes+0x8fc0/0x8fc0 [ 959.626713] ? wait_for_completion_io+0x270/0x270 [ 959.627706] ? lock_is_held_type+0xd7/0x130 [ 959.628596] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 959.629704] ? vfs_write+0x188/0xae0 [ 959.630466] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 959.631600] ? fput+0x2a/0x50 [ 959.632252] ? syscall_enter_from_user_mode+0x1d/0x50 [ 959.633304] do_syscall_64+0x3b/0x90 [ 959.634076] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.635122] RIP: 0033:0x7fcb3f1eeb19 [ 959.635875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 959.639560] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 959.641071] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 959.642493] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 959.643927] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 959.645358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 959.646776] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 959.648238] [ 959.650428] FAULT_INJECTION: forcing a failure. [ 959.650428] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 959.652787] CPU: 0 PID: 7076 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 959.654427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 959.656684] Call Trace: [ 959.657192] [ 959.657648] dump_stack_lvl+0x8b/0xb3 [ 959.658424] should_fail.cold+0x5/0xa [ 959.659198] prepare_alloc_pages+0x17b/0x500 [ 959.660104] __alloc_pages+0x131/0x4e0 [ 959.660881] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 959.662073] ? lock_is_held_type+0xd7/0x130 [ 959.662938] ? lock_release+0x3b2/0x6f0 [ 959.663742] ? kmem_cache_alloc_bulk+0x1f1/0x670 [ 959.664678] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 959.665776] alloc_pages+0x1a0/0x2f0 [ 959.666531] ? mark_held_locks+0x9e/0xe0 [ 959.667350] new_slab+0x256/0x360 [ 959.668054] ___slab_alloc+0x76d/0xa60 [ 959.668846] ? io_submit_sqes.cold+0x20b/0x435 [ 959.669779] ? mark_held_locks+0x9e/0xe0 [ 959.670612] kmem_cache_alloc_bulk+0x1f1/0x670 [ 959.671560] io_submit_sqes.cold+0x20b/0x435 [ 959.672469] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 959.673483] ? find_held_lock+0x2c/0x110 [ 959.674300] ? io_async_task_func+0x560/0x560 [ 959.675225] ? lock_downgrade+0x6d0/0x6d0 [ 959.676053] ? __fget_files+0x2ef/0x4c0 [ 959.676858] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.677867] __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.678859] ? io_submit_sqes+0x8fc0/0x8fc0 [ 959.679751] ? wait_for_completion_io+0x270/0x270 [ 959.680768] ? lock_is_held_type+0xd7/0x130 [ 959.681729] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 959.682951] ? vfs_write+0x188/0xae0 [ 959.683804] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 959.685041] ? fput+0x2a/0x50 [ 959.685760] ? syscall_enter_from_user_mode+0x1d/0x50 [ 959.686923] do_syscall_64+0x3b/0x90 [ 959.687776] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.688930] RIP: 0033:0x7f10528b1b19 [ 959.689748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 959.693824] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 959.695516] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 959.697090] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 959.698659] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 959.700251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 959.701818] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 959.703416] 06:34:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x121, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf5, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0xc, "d8e20639e3fa6d572d418fb5"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) 06:34:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xffff0000}}], 0x1, 0x0) 06:34:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x127, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfb, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x12, "d8e20639e3fa6d572d418fb5feb9b3eaf7c3"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) [ 959.714853] FAULT_INJECTION: forcing a failure. [ 959.714853] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 959.716194] CPU: 1 PID: 7091 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 959.717061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 959.718267] Call Trace: [ 959.718549] [ 959.718800] dump_stack_lvl+0x8b/0xb3 [ 959.719203] should_fail.cold+0x5/0xa [ 959.719623] prepare_alloc_pages+0x17b/0x500 [ 959.720092] __alloc_pages+0x131/0x4e0 [ 959.720492] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 959.721110] ? lock_is_held_type+0xd7/0x130 [ 959.721564] ? lock_release+0x3b2/0x6f0 [ 959.721977] ? __slab_alloc.constprop.0+0x45/0x80 [ 959.722481] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 959.723064] alloc_pages+0x1a0/0x2f0 [ 959.723468] ? mark_held_locks+0x9e/0xe0 [ 959.723902] new_slab+0x256/0x360 [ 959.724263] ___slab_alloc+0x76d/0xa60 [ 959.724663] ? create_object.isra.0+0x3a/0xa20 [ 959.725162] ? lock_is_held_type+0xd7/0x130 [ 959.725607] ? create_object.isra.0+0x3a/0xa20 [ 959.726076] __slab_alloc.constprop.0+0x45/0x80 [ 959.726556] ? create_object.isra.0+0x3a/0xa20 [ 959.727035] kmem_cache_alloc+0x393/0x480 [ 959.727479] create_object.isra.0+0x3a/0xa20 [ 959.727956] ? kasan_unpoison+0x23/0x50 [ 959.728379] kmem_cache_alloc_bulk+0x387/0x670 [ 959.728856] io_submit_sqes.cold+0x20b/0x435 [ 959.729331] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 959.729862] ? find_held_lock+0x2c/0x110 [ 959.730280] ? io_async_task_func+0x560/0x560 [ 959.730760] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.731290] __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.731798] ? io_submit_sqes+0x8fc0/0x8fc0 [ 959.732248] ? wait_for_completion_io+0x270/0x270 [ 959.732749] ? lock_is_held_type+0xd7/0x130 [ 959.733198] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 959.733761] ? vfs_write+0x188/0xae0 [ 959.734147] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 959.734713] ? fput+0x2a/0x50 [ 959.735048] ? syscall_enter_from_user_mode+0x1d/0x50 [ 959.735595] do_syscall_64+0x3b/0x90 [ 959.735990] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.736543] RIP: 0033:0x7fc4f668ab19 [ 959.736930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 959.738885] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 959.739670] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 959.740430] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 959.741158] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 959.741890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 959.742619] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 959.743369] 06:34:02 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfffff000}}], 0x1, 0x0) 06:34:02 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x127, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfb, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x12, "d8e20639e3fa6d572d418fb5feb9b3eaf7c3"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:34:02 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x33fe0, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:02 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x11f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf3, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xd, "1e58fe1c224f161f2e8cee5c88"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x164}}, 0x0) 06:34:02 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x9000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:02 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) 06:34:02 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x20000164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:02 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) 06:34:02 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x11f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf3, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xd, "1e58fe1c224f161f2e8cee5c88"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x164}}, 0x0) 06:34:02 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) [ 959.945759] FAULT_INJECTION: forcing a failure. [ 959.945759] name failslab, interval 1, probability 0, space 0, times 0 [ 959.947039] CPU: 1 PID: 7120 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 959.947886] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 959.948586] FAULT_INJECTION: forcing a failure. [ 959.948586] name failslab, interval 1, probability 0, space 0, times 0 [ 959.949098] Call Trace: [ 959.949104] [ 959.949109] dump_stack_lvl+0x8b/0xb3 [ 959.952346] should_fail.cold+0x5/0xa [ 959.952777] ? create_object.isra.0+0x3a/0xa20 [ 959.953289] should_failslab+0x5/0x10 [ 959.953698] kmem_cache_alloc+0x5b/0x480 [ 959.954135] ? mark_held_locks+0x9e/0xe0 [ 959.954573] create_object.isra.0+0x3a/0xa20 [ 959.955054] ? kasan_unpoison+0x23/0x50 [ 959.955512] kmem_cache_alloc_bulk+0x387/0x670 [ 959.955994] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 959.956590] ? percpu_counter_add_batch+0xb4/0x170 [ 959.957112] io_submit_sqes.cold+0x20b/0x435 [ 959.957590] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 959.958131] ? find_held_lock+0x2c/0x110 [ 959.958555] ? io_async_task_func+0x560/0x560 [ 959.959040] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.959582] __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.960094] ? io_submit_sqes+0x8fc0/0x8fc0 [ 959.960547] ? wait_for_completion_io+0x270/0x270 [ 959.961055] ? lock_is_held_type+0xd7/0x130 [ 959.961517] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 959.962102] ? vfs_write+0x188/0xae0 [ 959.962497] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 959.963072] ? fput+0x2a/0x50 [ 959.963415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 959.963965] do_syscall_64+0x3b/0x90 [ 959.964358] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.964892] RIP: 0033:0x7fcb3f1eeb19 [ 959.965277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 959.967184] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 959.967988] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 959.968724] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 959.969462] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 959.970205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 959.970955] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 959.971727] [ 959.971970] CPU: 0 PID: 7115 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 959.973732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 959.976047] Call Trace: [ 959.976599] [ 959.977075] dump_stack_lvl+0x8b/0xb3 [ 959.977920] should_fail.cold+0x5/0xa [ 959.978697] ? create_object.isra.0+0x3a/0xa20 [ 959.979671] should_failslab+0x5/0x10 [ 959.980510] kmem_cache_alloc+0x5b/0x480 [ 959.981395] create_object.isra.0+0x3a/0xa20 [ 959.982347] ? kasan_unpoison+0x23/0x50 [ 959.983231] kmem_cache_alloc_bulk+0x387/0x670 [ 959.984140] io_submit_sqes.cold+0x20b/0x435 [ 959.985114] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 959.986196] ? find_held_lock+0x2c/0x110 [ 959.987082] ? io_async_task_func+0x560/0x560 [ 959.988003] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.989126] __do_sys_io_uring_enter+0xee0/0x1e80 [ 959.990202] ? io_submit_sqes+0x8fc0/0x8fc0 [ 959.991164] ? wait_for_completion_io+0x270/0x270 [ 959.992149] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 959.993256] ? xfd_validate_state+0x59/0x180 [ 959.994225] ? restore_fpregs_from_fpstate+0xcc/0x1e0 [ 959.995361] ? syscall_enter_from_user_mode+0x1d/0x50 [ 959.996411] do_syscall_64+0x3b/0x90 [ 959.997257] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.998374] RIP: 0033:0x7fc4f668ab19 [ 959.999170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 960.003153] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 960.004713] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 960.006274] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 960.007745] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 960.009303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 960.010771] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 960.012242] [ 960.014895] FAULT_INJECTION: forcing a failure. [ 960.014895] name failslab, interval 1, probability 0, space 0, times 0 [ 960.016168] CPU: 1 PID: 7121 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 960.017022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 960.018250] Call Trace: [ 960.018535] [ 960.018786] dump_stack_lvl+0x8b/0xb3 [ 960.019207] should_fail.cold+0x5/0xa [ 960.019624] ? create_object.isra.0+0x3a/0xa20 [ 960.020109] should_failslab+0x5/0x10 [ 960.020516] kmem_cache_alloc+0x5b/0x480 [ 960.020933] ? mark_held_locks+0x9e/0xe0 [ 960.021363] create_object.isra.0+0x3a/0xa20 [ 960.021820] ? kasan_unpoison+0x23/0x50 [ 960.022249] kmem_cache_alloc_bulk+0x387/0x670 [ 960.022722] io_submit_sqes.cold+0x20b/0x435 [ 960.023191] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 960.023734] ? find_held_lock+0x2c/0x110 [ 960.024171] ? io_async_task_func+0x560/0x560 [ 960.024652] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 960.025168] __do_sys_io_uring_enter+0xee0/0x1e80 [ 960.025680] ? io_submit_sqes+0x8fc0/0x8fc0 [ 960.026136] ? wait_for_completion_io+0x270/0x270 [ 960.026641] ? lock_is_held_type+0xd7/0x130 [ 960.027088] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 960.027669] ? vfs_write+0x188/0xae0 [ 960.028055] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 960.028634] ? fput+0x2a/0x50 [ 960.028964] ? syscall_enter_from_user_mode+0x1d/0x50 [ 960.029505] do_syscall_64+0x3b/0x90 [ 960.029893] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 960.030423] RIP: 0033:0x7f10528b1b19 [ 960.030799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 960.032685] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 960.033466] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 960.034201] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 960.034936] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 960.035690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 960.036430] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 960.037170] 06:34:13 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x127, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfb, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x12, "d8e20639e3fa6d572d418fb5feb9b3eaf7c3"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:34:13 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 06:34:13 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfffffdef}}], 0x1, 0x0) 06:34:13 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 06:34:13 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x7ffff000, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:13 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 06:34:13 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x11f, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf3, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0xd, "1e58fe1c224f161f2e8cee5c88"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x164}}, 0x0) 06:34:13 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:13 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xffffff7f}}], 0x1, 0x0) [ 971.692512] FAULT_INJECTION: forcing a failure. [ 971.692512] name failslab, interval 1, probability 0, space 0, times 0 [ 971.693338] FAULT_INJECTION: forcing a failure. [ 971.693338] name failslab, interval 1, probability 0, space 0, times 0 [ 971.695716] CPU: 1 PID: 7131 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 971.698863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 971.701822] Call Trace: [ 971.702499] [ 971.703092] dump_stack_lvl+0x8b/0xb3 [ 971.704157] should_fail.cold+0x5/0xa [ 971.705193] ? create_object.isra.0+0x3a/0xa20 [ 971.706420] should_failslab+0x5/0x10 [ 971.707464] kmem_cache_alloc+0x5b/0x480 [ 971.708528] ? mark_held_locks+0x9e/0xe0 [ 971.709633] create_object.isra.0+0x3a/0xa20 [ 971.710804] ? kasan_unpoison+0x23/0x50 [ 971.711935] kmem_cache_alloc_bulk+0x387/0x670 [ 971.713032] io_submit_sqes.cold+0x20b/0x435 [ 971.714100] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 971.715286] ? find_held_lock+0x2c/0x110 [ 971.716277] ? io_async_task_func+0x560/0x560 [ 971.717371] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.718549] __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.719727] ? io_submit_sqes+0x8fc0/0x8fc0 [ 971.720761] ? wait_for_completion_io+0x270/0x270 [ 971.721901] ? lock_is_held_type+0xd7/0x130 [ 971.722928] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 971.724223] ? vfs_write+0x188/0xae0 [ 971.725134] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 971.726427] ? fput+0x2a/0x50 [ 971.727187] ? syscall_enter_from_user_mode+0x1d/0x50 [ 971.728395] do_syscall_64+0x3b/0x90 [ 971.729149] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 971.730159] RIP: 0033:0x7f10528b1b19 [ 971.730885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 971.734464] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 971.735965] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 971.737360] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 971.738762] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 971.740186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 971.741598] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 971.743036] [ 971.743503] CPU: 0 PID: 7139 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 971.744367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 971.745546] Call Trace: [ 971.745809] [ 971.746039] dump_stack_lvl+0x8b/0xb3 [ 971.746452] should_fail.cold+0x5/0xa [ 971.746855] ? create_object.isra.0+0x3a/0xa20 [ 971.747339] should_failslab+0x5/0x10 [ 971.747764] kmem_cache_alloc+0x5b/0x480 [ 971.748185] ? mark_held_locks+0x9e/0xe0 [ 971.748614] create_object.isra.0+0x3a/0xa20 [ 971.749070] ? kasan_unpoison+0x23/0x50 [ 971.749468] kmem_cache_alloc_bulk+0x387/0x670 [ 971.749942] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 971.750481] ? percpu_counter_add_batch+0xb4/0x170 [ 971.750992] io_submit_sqes.cold+0x20b/0x435 [ 971.751451] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 971.751972] ? find_held_lock+0x2c/0x110 [ 971.752374] ? io_async_task_func+0x560/0x560 [ 971.752826] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.753314] __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.753853] ? io_submit_sqes+0x8fc0/0x8fc0 [ 971.754279] ? wait_for_completion_io+0x270/0x270 [ 971.754792] ? lock_is_held_type+0xd7/0x130 [ 971.755216] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 971.755801] ? vfs_write+0x188/0xae0 [ 971.756192] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 971.756753] ? fput+0x2a/0x50 [ 971.757090] ? syscall_enter_from_user_mode+0x1d/0x50 [ 971.757633] do_syscall_64+0x3b/0x90 [ 971.758035] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 971.758573] RIP: 0033:0x7fcb3f1eeb19 [ 971.758958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 971.760772] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 971.761564] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 971.762307] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 971.763035] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 971.763774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 971.764512] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 971.765252] [ 971.795110] FAULT_INJECTION: forcing a failure. [ 971.795110] name failslab, interval 1, probability 0, space 0, times 0 [ 971.797449] CPU: 1 PID: 7145 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 971.799064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 971.801321] Call Trace: [ 971.801828] [ 971.802271] dump_stack_lvl+0x8b/0xb3 [ 971.803047] should_fail.cold+0x5/0xa [ 971.803836] ? create_object.isra.0+0x3a/0xa20 [ 971.804759] should_failslab+0x5/0x10 [ 971.805528] kmem_cache_alloc+0x5b/0x480 [ 971.806326] ? mark_held_locks+0x9e/0xe0 [ 971.807134] create_object.isra.0+0x3a/0xa20 06:34:14 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfffffffd}}], 0x1, 0x0) [ 971.808023] ? kasan_unpoison+0x23/0x50 [ 971.808988] kmem_cache_alloc_bulk+0x387/0x670 [ 971.809901] io_submit_sqes.cold+0x20b/0x435 [ 971.810792] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 971.811792] ? find_held_lock+0x2c/0x110 [ 971.812596] ? io_async_task_func+0x560/0x560 [ 971.813512] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.814502] __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.815497] ? io_submit_sqes+0x8fc0/0x8fc0 [ 971.816356] ? wait_for_completion_io+0x270/0x270 [ 971.817312] ? lock_is_held_type+0xd7/0x130 [ 971.818170] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 971.819253] ? vfs_write+0x188/0xae0 [ 971.820000] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 971.821085] ? fput+0x2a/0x50 [ 971.821718] ? syscall_enter_from_user_mode+0x1d/0x50 [ 971.822740] do_syscall_64+0x3b/0x90 [ 971.823497] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 971.824504] RIP: 0033:0x7fc4f668ab19 [ 971.825222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 971.828808] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 971.830326] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 971.831776] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 971.833173] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 971.834560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 971.835950] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 971.837357] 06:34:14 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) [ 971.879878] FAULT_INJECTION: forcing a failure. [ 971.879878] name failslab, interval 1, probability 0, space 0, times 0 [ 971.881120] CPU: 0 PID: 7159 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 971.881967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 971.883147] Call Trace: [ 971.883431] [ 971.883665] dump_stack_lvl+0x8b/0xb3 [ 971.884078] should_fail.cold+0x5/0xa [ 971.884483] ? create_object.isra.0+0x3a/0xa20 [ 971.884971] should_failslab+0x5/0x10 [ 971.885380] kmem_cache_alloc+0x5b/0x480 [ 971.885813] create_object.isra.0+0x3a/0xa20 [ 971.886278] ? kasan_unpoison+0x23/0x50 [ 971.886700] kmem_cache_alloc_bulk+0x387/0x670 [ 971.887182] io_submit_sqes.cold+0x20b/0x435 [ 971.887676] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 971.888207] ? find_held_lock+0x2c/0x110 [ 971.888637] ? io_async_task_func+0x560/0x560 [ 971.889123] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.889644] __do_sys_io_uring_enter+0xee0/0x1e80 [ 971.890166] ? io_submit_sqes+0x8fc0/0x8fc0 [ 971.890625] ? wait_for_completion_io+0x270/0x270 [ 971.891136] ? lock_is_held_type+0xd7/0x130 [ 971.891600] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 971.892186] ? vfs_write+0x188/0xae0 [ 971.892584] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 971.893162] ? fput+0x2a/0x50 [ 971.893504] ? syscall_enter_from_user_mode+0x1d/0x50 [ 971.894051] do_syscall_64+0x3b/0x90 [ 971.894462] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 971.895002] RIP: 0033:0x7fcb3f1eeb19 [ 971.895406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 971.897327] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 971.898140] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 971.898886] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 971.899654] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 971.900390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 971.901130] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 971.901887] 06:34:25 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 06:34:25 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x9effffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:25 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) 06:34:25 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x15, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bb"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:25 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfffffffe}}], 0x1, 0x0) 06:34:25 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) 06:34:25 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xfffffdef, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:25 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x126, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfa, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x14, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfa"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) [ 983.595446] FAULT_INJECTION: forcing a failure. [ 983.595446] name failslab, interval 1, probability 0, space 0, times 0 [ 983.596822] CPU: 0 PID: 7174 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 983.597753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 983.599043] Call Trace: [ 983.599325] [ 983.599551] dump_stack_lvl+0x8b/0xb3 [ 983.600004] should_fail.cold+0x5/0xa [ 983.600425] ? create_object.isra.0+0x3a/0xa20 [ 983.600941] should_failslab+0x5/0x10 [ 983.601378] kmem_cache_alloc+0x5b/0x480 [ 983.601831] create_object.isra.0+0x3a/0xa20 [ 983.602336] ? kasan_unpoison+0x23/0x50 [ 983.602790] kmem_cache_alloc_bulk+0x387/0x670 [ 983.603317] io_submit_sqes.cold+0x20b/0x435 [ 983.603837] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 983.604401] ? find_held_lock+0x2c/0x110 [ 983.604850] ? io_async_task_func+0x560/0x560 [ 983.605380] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.605944] __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.606499] ? io_submit_sqes+0x8fc0/0x8fc0 [ 983.606994] ? wait_for_completion_io+0x270/0x270 [ 983.607539] ? lock_is_held_type+0xd7/0x130 [ 983.608039] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 983.608652] ? vfs_write+0x188/0xae0 [ 983.609029] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 983.609632] ? fput+0x2a/0x50 [ 983.610000] ? syscall_enter_from_user_mode+0x1d/0x50 [ 983.610583] do_syscall_64+0x3b/0x90 [ 983.611015] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 983.611603] RIP: 0033:0x7f10528b1b19 [ 983.612014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.613796] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 983.613998] FAULT_INJECTION: forcing a failure. [ 983.613998] name failslab, interval 1, probability 0, space 0, times 0 [ 983.614629] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 983.614640] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 983.614649] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 983.614658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 983.614666] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 983.614690] [ 983.620636] CPU: 1 PID: 7176 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 983.622303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 983.624543] Call Trace: [ 983.624789] FAULT_INJECTION: forcing a failure. [ 983.624789] name failslab, interval 1, probability 0, space 0, times 0 [ 983.625045] [ 983.625057] dump_stack_lvl+0x8b/0xb3 [ 983.627452] should_fail.cold+0x5/0xa [ 983.628243] ? create_object.isra.0+0x3a/0xa20 [ 983.629175] should_failslab+0x5/0x10 [ 983.629937] kmem_cache_alloc+0x5b/0x480 [ 983.630739] ? mark_held_locks+0x9e/0xe0 [ 983.631553] create_object.isra.0+0x3a/0xa20 [ 983.632460] ? kasan_unpoison+0x23/0x50 [ 983.633273] kmem_cache_alloc_bulk+0x387/0x670 [ 983.634178] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 983.635261] ? percpu_counter_add_batch+0xb4/0x170 [ 983.636245] io_submit_sqes.cold+0x20b/0x435 [ 983.637152] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 983.638158] ? find_held_lock+0x2c/0x110 [ 983.638957] ? io_async_task_func+0x560/0x560 [ 983.639894] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.640893] __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.641867] ? io_submit_sqes+0x8fc0/0x8fc0 [ 983.642740] ? wait_for_completion_io+0x270/0x270 [ 983.643725] ? lock_is_held_type+0xd7/0x130 [ 983.644623] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 983.645753] ? vfs_write+0x188/0xae0 [ 983.646511] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 983.647607] ? fput+0x2a/0x50 [ 983.648276] ? syscall_enter_from_user_mode+0x1d/0x50 [ 983.649369] do_syscall_64+0x3b/0x90 [ 983.650140] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 983.651161] RIP: 0033:0x7fc4f668ab19 [ 983.651904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.655520] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 983.657021] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 983.658437] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 983.659850] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 983.661248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 983.662650] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 983.664106] [ 983.664562] CPU: 0 PID: 7184 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 983.665481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 983.666760] Call Trace: [ 983.667041] [ 983.667286] dump_stack_lvl+0x8b/0xb3 [ 983.667722] should_fail.cold+0x5/0xa [ 983.668150] ? create_object.isra.0+0x3a/0xa20 [ 983.668664] should_failslab+0x5/0x10 [ 983.669093] kmem_cache_alloc+0x5b/0x480 [ 983.669539] ? mark_held_locks+0x9e/0xe0 [ 983.670004] create_object.isra.0+0x3a/0xa20 [ 983.670506] ? kasan_unpoison+0x23/0x50 [ 983.670968] kmem_cache_alloc_bulk+0x387/0x670 [ 983.671473] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 983.672057] ? percpu_counter_add_batch+0xb4/0x170 [ 983.672543] io_submit_sqes.cold+0x20b/0x435 [ 983.672989] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 983.673477] ? find_held_lock+0x2c/0x110 [ 983.673870] ? io_async_task_func+0x560/0x560 [ 983.674326] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.674808] __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.675288] ? io_submit_sqes+0x8fc0/0x8fc0 [ 983.675724] ? wait_for_completion_io+0x270/0x270 [ 983.676206] ? lock_is_held_type+0xd7/0x130 [ 983.676667] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 983.677196] ? vfs_write+0x188/0xae0 [ 983.677597] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 983.678129] ? fput+0x2a/0x50 [ 983.678479] ? syscall_enter_from_user_mode+0x1d/0x50 [ 983.678982] do_syscall_64+0x3b/0x90 [ 983.679356] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 983.679917] RIP: 0033:0x7fcb3f1eeb19 [ 983.680289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.682218] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 983.682944] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 983.683720] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 983.684470] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 983.685201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 983.685952] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 983.686702] 06:34:25 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x15, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bb"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:26 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 06:34:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x15, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bb"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) [ 983.754446] FAULT_INJECTION: forcing a failure. [ 983.754446] name failslab, interval 1, probability 0, space 0, times 0 [ 983.755678] CPU: 0 PID: 7190 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 983.756532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 983.757702] Call Trace: [ 983.757980] [ 983.758213] dump_stack_lvl+0x8b/0xb3 [ 983.758626] should_fail.cold+0x5/0xa [ 983.759037] ? create_object.isra.0+0x3a/0xa20 [ 983.759528] should_failslab+0x5/0x10 [ 983.759952] kmem_cache_alloc+0x5b/0x480 [ 983.760382] ? mark_held_locks+0x9e/0xe0 [ 983.760787] create_object.isra.0+0x3a/0xa20 [ 983.761265] ? kasan_unpoison+0x23/0x50 [ 983.761664] kmem_cache_alloc_bulk+0x387/0x670 [ 983.762148] io_submit_sqes.cold+0x20b/0x435 [ 983.762597] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 983.763127] ? find_held_lock+0x2c/0x110 [ 983.763556] ? io_async_task_func+0x560/0x560 [ 983.764056] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.764547] __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.765069] ? io_submit_sqes+0x8fc0/0x8fc0 [ 983.765495] ? wait_for_completion_io+0x270/0x270 [ 983.766008] ? lock_is_held_type+0xd7/0x130 [ 983.766465] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 983.767044] ? vfs_write+0x188/0xae0 [ 983.767438] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 983.768049] ? fput+0x2a/0x50 [ 983.768389] ? syscall_enter_from_user_mode+0x1d/0x50 [ 983.768942] do_syscall_64+0x3b/0x90 [ 983.769349] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 983.769890] RIP: 0033:0x7f10528b1b19 [ 983.770308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.772267] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 983.773075] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 983.773826] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 983.774569] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 983.775326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 983.776073] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 983.776840] 06:34:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x4, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:26 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x3000000000000}}], 0x1, 0x0) 06:34:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x126, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfa, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x14, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfa"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:34:26 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xc5000000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x16, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd8"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:26 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) 06:34:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x6, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 983.917272] FAULT_INJECTION: forcing a failure. [ 983.917272] name failslab, interval 1, probability 0, space 0, times 0 [ 983.918537] CPU: 0 PID: 7213 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 983.919399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 983.920584] Call Trace: [ 983.920852] [ 983.921086] dump_stack_lvl+0x8b/0xb3 [ 983.921497] should_fail.cold+0x5/0xa [ 983.921904] ? create_object.isra.0+0x3a/0xa20 [ 983.922390] should_failslab+0x5/0x10 [ 983.922794] kmem_cache_alloc+0x5b/0x480 [ 983.923224] ? mark_held_locks+0x9e/0xe0 [ 983.923643] create_object.isra.0+0x3a/0xa20 [ 983.924110] ? kasan_unpoison+0x23/0x50 [ 983.924508] kmem_cache_alloc_bulk+0x387/0x670 [ 983.924988] io_submit_sqes.cold+0x20b/0x435 [ 983.925437] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 983.925966] ? find_held_lock+0x2c/0x110 [ 983.926396] ? io_async_task_func+0x560/0x560 [ 983.926876] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.927398] __do_sys_io_uring_enter+0xee0/0x1e80 [ 983.927931] ? io_submit_sqes+0x8fc0/0x8fc0 [ 983.928398] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 983.928915] ? xfd_validate_state+0x59/0x180 [ 983.929379] ? restore_fpregs_from_fpstate+0xcc/0x1e0 [ 983.929929] ? syscall_enter_from_user_mode+0x1d/0x50 [ 983.930447] do_syscall_64+0x3b/0x90 [ 983.930849] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 983.931350] RIP: 0033:0x7fcb3f1eeb19 [ 983.931743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.933646] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 983.934434] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 983.935138] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 983.935840] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 983.936577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 983.937310] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 983.938065] 06:34:41 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) 06:34:41 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x4000000000000}}], 0x1, 0x0) 06:34:41 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xf0ffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x126, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfa, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x14, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfa"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:34:41 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x25, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:41 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) 06:34:41 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x16, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd8"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:41 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) [ 999.384575] FAULT_INJECTION: forcing a failure. [ 999.384575] name failslab, interval 1, probability 0, space 0, times 0 [ 999.386359] CPU: 1 PID: 7233 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 999.387555] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 999.389286] Call Trace: [ 999.389675] [ 999.390017] dump_stack_lvl+0x8b/0xb3 [ 999.390606] should_fail.cold+0x5/0xa [ 999.391197] ? create_object.isra.0+0x3a/0xa20 [ 999.391907] should_failslab+0x5/0x10 [ 999.392491] kmem_cache_alloc+0x5b/0x480 [ 999.393112] ? mark_held_locks+0x9e/0xe0 [ 999.393750] create_object.isra.0+0x3a/0xa20 [ 999.394417] ? kasan_unpoison+0x23/0x50 [ 999.395042] kmem_cache_alloc_bulk+0x387/0x670 [ 999.395735] io_submit_sqes.cold+0x20b/0x435 [ 999.396433] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 999.397201] ? find_held_lock+0x2c/0x110 [ 999.397818] ? io_async_task_func+0x560/0x560 [ 999.398509] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.399267] __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.400035] ? io_submit_sqes+0x8fc0/0x8fc0 [ 999.400699] ? wait_for_completion_io+0x270/0x270 [ 999.401412] ? lock_is_held_type+0xd7/0x130 [ 999.402052] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 999.402861] ? vfs_write+0x188/0xae0 [ 999.403423] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 999.404281] ? fput+0x2a/0x50 [ 999.404765] ? syscall_enter_from_user_mode+0x1d/0x50 [ 999.405531] do_syscall_64+0x3b/0x90 [ 999.406068] FAULT_INJECTION: forcing a failure. [ 999.406068] name failslab, interval 1, probability 0, space 0, times 0 [ 999.406114] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 999.409372] RIP: 0033:0x7f10528b1b19 [ 999.409943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 999.412678] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 999.413819] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 999.414876] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 999.415947] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 999.417020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 999.418094] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 999.419167] [ 999.419517] CPU: 0 PID: 7236 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 999.421399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 999.424000] Call Trace: [ 999.424575] [ 999.425207] dump_stack_lvl+0x8b/0xb3 [ 999.426088] should_fail.cold+0x5/0xa [ 999.426945] ? create_object.isra.0+0x3a/0xa20 [ 999.428135] should_failslab+0x5/0x10 [ 999.429071] kmem_cache_alloc+0x5b/0x480 [ 999.430025] ? mark_held_locks+0x9e/0xe0 [ 999.430984] create_object.isra.0+0x3a/0xa20 [ 999.432057] ? kasan_unpoison+0x23/0x50 [ 999.432913] kmem_cache_alloc_bulk+0x387/0x670 [ 999.433808] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 999.434883] ? percpu_counter_add_batch+0xb4/0x170 [ 999.435859] io_submit_sqes.cold+0x20b/0x435 [ 999.436745] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 999.437732] ? find_held_lock+0x2c/0x110 [ 999.438527] ? io_async_task_func+0x560/0x560 [ 999.439438] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.440431] __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.441399] ? io_submit_sqes+0x8fc0/0x8fc0 [ 999.442250] ? wait_for_completion_io+0x270/0x270 [ 999.443209] ? lock_is_held_type+0xd7/0x130 [ 999.444084] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 999.445164] ? vfs_write+0x188/0xae0 [ 999.445912] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 999.446986] ? fput+0x2a/0x50 [ 999.447615] ? syscall_enter_from_user_mode+0x1d/0x50 [ 999.448646] do_syscall_64+0x3b/0x90 [ 999.449386] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 999.450392] RIP: 0033:0x7fc4f668ab19 [ 999.451121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 999.454719] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 999.456217] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 999.457607] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 999.458995] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 999.460409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 999.461794] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 999.463202] [ 999.479487] FAULT_INJECTION: forcing a failure. [ 999.479487] name failslab, interval 1, probability 0, space 0, times 0 06:34:41 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x16, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd8"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:41 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xfffff000, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x17, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff0"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) [ 999.481769] CPU: 0 PID: 7237 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 999.483599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 999.485846] Call Trace: [ 999.486354] [ 999.486792] dump_stack_lvl+0x8b/0xb3 [ 999.487561] should_fail.cold+0x5/0xa [ 999.488334] ? create_object.isra.0+0x3a/0xa20 [ 999.489255] should_failslab+0x5/0x10 [ 999.490032] kmem_cache_alloc+0x5b/0x480 [ 999.490831] ? mark_held_locks+0x9e/0xe0 [ 999.491643] create_object.isra.0+0x3a/0xa20 [ 999.492529] ? kasan_unpoison+0x23/0x50 [ 999.493330] kmem_cache_alloc_bulk+0x387/0x670 [ 999.494242] io_submit_sqes.cold+0x20b/0x435 [ 999.495129] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 999.496143] ? find_held_lock+0x2c/0x110 [ 999.496948] ? io_async_task_func+0x560/0x560 [ 999.497863] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.498856] __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.499845] ? io_submit_sqes+0x8fc0/0x8fc0 [ 999.500710] ? wait_for_completion_io+0x270/0x270 [ 999.501678] ? lock_is_held_type+0xd7/0x130 [ 999.502533] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 999.503611] ? vfs_write+0x188/0xae0 [ 999.504357] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 999.505437] ? fput+0x2a/0x50 [ 999.506071] ? syscall_enter_from_user_mode+0x1d/0x50 [ 999.507089] do_syscall_64+0x3b/0x90 [ 999.507845] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 999.508851] RIP: 0033:0x7fcb3f1eeb19 [ 999.509570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 999.513179] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 999.514675] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 999.516094] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 999.517500] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 999.518910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 999.520311] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 999.521717] 06:34:41 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) 06:34:41 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x40030000000000}}], 0x1, 0x0) 06:34:41 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x148, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x103, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x148}}, 0x0) [ 999.584860] FAULT_INJECTION: forcing a failure. [ 999.584860] name failslab, interval 1, probability 0, space 0, times 0 [ 999.586439] CPU: 1 PID: 7249 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 999.587510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 999.589007] Call Trace: [ 999.589349] [ 999.589649] dump_stack_lvl+0x8b/0xb3 [ 999.590163] should_fail.cold+0x5/0xa [ 999.590692] ? create_object.isra.0+0x3a/0xa20 [ 999.591321] should_failslab+0x5/0x10 [ 999.591842] kmem_cache_alloc+0x5b/0x480 [ 999.592473] ? mark_held_locks+0x9e/0xe0 [ 999.593026] create_object.isra.0+0x3a/0xa20 [ 999.593721] ? kasan_unpoison+0x23/0x50 [ 999.594357] kmem_cache_alloc_bulk+0x387/0x670 [ 999.595068] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 999.595945] ? percpu_counter_add_batch+0xb4/0x170 [ 999.596716] io_submit_sqes.cold+0x20b/0x435 [ 999.597431] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 999.598209] ? find_held_lock+0x2c/0x110 [ 999.598844] ? io_async_task_func+0x560/0x560 [ 999.599561] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.600245] __do_sys_io_uring_enter+0xee0/0x1e80 [ 999.601005] ? io_submit_sqes+0x8fc0/0x8fc0 [ 999.601583] ? wait_for_completion_io+0x270/0x270 [ 999.602330] ? lock_is_held_type+0xd7/0x130 [ 999.603001] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 999.603854] ? vfs_write+0x188/0xae0 [ 999.604429] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 999.605265] ? fput+0x2a/0x50 [ 999.605757] ? syscall_enter_from_user_mode+0x1d/0x50 [ 999.606549] do_syscall_64+0x3b/0x90 [ 999.607131] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 999.607923] RIP: 0033:0x7f10528b1b19 [ 999.608493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 999.611257] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 999.612394] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 999.613317] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 999.614208] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 999.615111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 999.616013] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 999.616924] 06:34:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x17, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff0"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:54 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xf0ffffffffffff}}], 0x1, 0x0) 06:34:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x148, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x103, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x148}}, 0x0) 06:34:54 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 06:34:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xffffff7f, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x117, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:54 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 06:34:54 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) [ 1011.918326] FAULT_INJECTION: forcing a failure. [ 1011.918326] name failslab, interval 1, probability 0, space 0, times 0 [ 1011.919604] CPU: 0 PID: 7270 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1011.920484] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1011.921698] Call Trace: [ 1011.921976] [ 1011.922222] dump_stack_lvl+0x8b/0xb3 [ 1011.922661] should_fail.cold+0x5/0xa [ 1011.923097] ? create_object.isra.0+0x3a/0xa20 [ 1011.923607] should_failslab+0x5/0x10 [ 1011.924059] kmem_cache_alloc+0x5b/0x480 [ 1011.924502] ? mark_held_locks+0x9e/0xe0 [ 1011.924947] create_object.isra.0+0x3a/0xa20 [ 1011.925428] ? kasan_unpoison+0x23/0x50 [ 1011.925957] kmem_cache_alloc_bulk+0x387/0x670 [ 1011.926472] io_submit_sqes.cold+0x20b/0x435 [ 1011.927058] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 1011.927606] ? find_held_lock+0x2c/0x110 [ 1011.928067] ? io_async_task_func+0x560/0x560 [ 1011.928565] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 1011.929096] __do_sys_io_uring_enter+0xee0/0x1e80 [ 1011.929635] ? io_submit_sqes+0x8fc0/0x8fc0 [ 1011.930100] ? wait_for_completion_io+0x270/0x270 [ 1011.930632] ? lock_is_held_type+0xd7/0x130 [ 1011.931094] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1011.931686] ? vfs_write+0x188/0xae0 [ 1011.932080] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1011.932682] ? fput+0x2a/0x50 [ 1011.933031] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1011.933584] do_syscall_64+0x3b/0x90 [ 1011.933995] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1011.934550] RIP: 0033:0x7fcb3f1eeb19 [ 1011.934944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1011.936910] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1011.937733] RAX: ffffffffffffffda RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1011.938505] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1011.939260] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1011.940022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1011.940724] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1011.941495] [ 1011.961847] FAULT_INJECTION: forcing a failure. [ 1011.961847] name failslab, interval 1, probability 0, space 0, times 0 [ 1011.963168] CPU: 0 PID: 7279 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1011.964111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1011.965393] Call Trace: [ 1011.965686] [ 1011.965939] dump_stack_lvl+0x8b/0xb3 [ 1011.966363] should_fail.cold+0x5/0xa [ 1011.966781] ? create_object.isra.0+0x3a/0xa20 [ 1011.967290] should_failslab+0x5/0x10 [ 1011.967695] kmem_cache_alloc+0x5b/0x480 [ 1011.968149] ? mark_held_locks+0x9e/0xe0 [ 1011.968590] create_object.isra.0+0x3a/0xa20 [ 1011.969064] ? kasan_unpoison+0x23/0x50 [ 1011.969495] kmem_cache_alloc_bulk+0x387/0x670 [ 1011.969975] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1011.970552] ? percpu_counter_add_batch+0xb4/0x170 [ 1011.971083] io_submit_sqes.cold+0x20b/0x435 [ 1011.971556] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 1011.972094] ? find_held_lock+0x2c/0x110 [ 1011.972522] ? io_async_task_func+0x560/0x560 [ 1011.973014] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 1011.973543] __do_sys_io_uring_enter+0xee0/0x1e80 [ 1011.974063] ? io_submit_sqes+0x8fc0/0x8fc0 [ 1011.974525] ? wait_for_completion_io+0x270/0x270 [ 1011.975036] ? lock_is_held_type+0xd7/0x130 [ 1011.975491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1011.976089] ? vfs_write+0x188/0xae0 [ 1011.976494] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1011.977097] ? fput+0x2a/0x50 [ 1011.977450] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1011.978012] do_syscall_64+0x3b/0x90 [ 1011.978415] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1011.978969] RIP: 0033:0x7fc4f668ab19 [ 1011.979374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1011.981343] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1011.982152] RAX: ffffffffffffffda RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1011.982915] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1011.983609] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1011.984370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1011.985071] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1011.985767] [ 1011.986491] FAULT_INJECTION: forcing a failure. [ 1011.986491] name failslab, interval 1, probability 0, space 0, times 0 [ 1011.987593] CPU: 0 PID: 7280 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1011.988415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1011.989533] Call Trace: [ 1011.989787] [ 1011.990012] dump_stack_lvl+0x8b/0xb3 [ 1011.990389] should_fail.cold+0x5/0xa [ 1011.990766] ? create_object.isra.0+0x3a/0xa20 [ 1011.991215] should_failslab+0x5/0x10 [ 1011.991589] kmem_cache_alloc+0x5b/0x480 [ 1011.992026] ? mark_held_locks+0x9e/0xe0 [ 1011.992437] create_object.isra.0+0x3a/0xa20 [ 1011.992931] ? kasan_unpoison+0x23/0x50 [ 1011.993377] kmem_cache_alloc_bulk+0x387/0x670 [ 1011.993848] io_submit_sqes.cold+0x20b/0x435 [ 1011.994337] ? __do_sys_io_uring_enter+0xed2/0x1e80 [ 1011.994881] ? find_held_lock+0x2c/0x110 [ 1011.995314] ? io_async_task_func+0x560/0x560 [ 1011.995814] ? __do_sys_io_uring_enter+0xee0/0x1e80 [ 1011.996345] __do_sys_io_uring_enter+0xee0/0x1e80 [ 1011.996877] ? io_submit_sqes+0x8fc0/0x8fc0 [ 1011.997318] ? wait_for_completion_io+0x270/0x270 [ 1011.997844] ? lock_is_held_type+0xd7/0x130 [ 1011.998289] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1011.998835] ? vfs_write+0x188/0xae0 [ 1011.999241] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1011.999802] ? fput+0x2a/0x50 [ 1012.000160] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1012.000688] do_syscall_64+0x3b/0x90 [ 1012.001096] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1012.001623] RIP: 0033:0x7f10528b1b19 [ 1012.002019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1012.003851] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1012.004685] RAX: ffffffffffffffda RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1012.005444] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1012.006200] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1012.006965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1012.007729] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1012.008510] 06:34:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xffffff9e, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x134, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x129, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfd, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x17, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff0"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:54 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x100000000000000}}], 0x1, 0x0) 06:34:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x148, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x103, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x148}}, 0x0) 06:34:54 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) 06:34:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x19, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee2"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xfffffff0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:54 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x200000000000000}}], 0x1, 0x0) 06:34:54 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) 06:34:54 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) [ 1012.171194] FAULT_INJECTION: forcing a failure. [ 1012.171194] name failslab, interval 1, probability 0, space 0, times 0 [ 1012.173673] CPU: 1 PID: 7305 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1012.175261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1012.177462] Call Trace: [ 1012.177958] [ 1012.178391] dump_stack_lvl+0x8b/0xb3 [ 1012.179150] should_fail.cold+0x5/0xa [ 1012.179902] ? io_issue_sqe+0x6ea/0x6980 [ 1012.180728] ? io_arm_poll_handler+0x22f/0x7a0 [ 1012.181625] should_failslab+0x5/0x10 [ 1012.182377] kmem_cache_alloc_trace+0x55/0x3c0 [ 1012.183278] io_arm_poll_handler+0x22f/0x7a0 [ 1012.184153] ? find_held_lock+0x2c/0x110 [ 1012.184941] ? io_write+0xbe0/0xbe0 [ 1012.185654] ? lock_release+0x3b2/0x6f0 [ 1012.186451] ? tctx_task_work+0x189/0x750 [ 1012.187274] ? lock_downgrade+0x6d0/0x6d0 [ 1012.188123] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1012.189049] io_req_task_submit+0x3b3/0x530 [ 1012.189917] tctx_task_work+0x1d7/0x750 [ 1012.190728] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1012.191812] ? rwlock_bug.part.0+0x90/0x90 [ 1012.192688] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1012.193594] task_work_run+0xe2/0x1a0 [ 1012.194368] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1012.194809] FAULT_INJECTION: forcing a failure. [ 1012.194809] name failslab, interval 1, probability 0, space 0, times 0 [ 1012.195342] syscall_exit_to_user_mode+0x19/0x50 [ 1012.195369] do_syscall_64+0x48/0x90 [ 1012.198171] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1012.199192] RIP: 0033:0x7fc4f668ab19 [ 1012.199923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1012.203558] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1012.205066] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1012.206467] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1012.207867] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1012.209272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1012.210678] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1012.212116] [ 1012.212577] CPU: 0 PID: 7308 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1012.213428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1012.214557] Call Trace: [ 1012.214818] [ 1012.215043] dump_stack_lvl+0x8b/0xb3 [ 1012.215449] should_fail.cold+0x5/0xa [ 1012.215838] ? io_issue_sqe+0x6ea/0x6980 [ 1012.216265] ? io_arm_poll_handler+0x22f/0x7a0 [ 1012.216735] should_failslab+0x5/0x10 [ 1012.217127] kmem_cache_alloc_trace+0x55/0x3c0 [ 1012.217600] io_arm_poll_handler+0x22f/0x7a0 [ 1012.218048] ? find_held_lock+0x2c/0x110 [ 1012.218459] ? io_write+0xbe0/0xbe0 [ 1012.218830] ? lock_release+0x3b2/0x6f0 [ 1012.219256] ? tctx_task_work+0x189/0x750 [ 1012.219679] ? lock_downgrade+0x6d0/0x6d0 [ 1012.220128] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1012.220601] io_req_task_submit+0x3b3/0x530 [ 1012.221038] tctx_task_work+0x1d7/0x750 [ 1012.221449] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1012.221984] ? rwlock_bug.part.0+0x90/0x90 [ 1012.222410] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1012.222873] task_work_run+0xe2/0x1a0 [ 1012.223267] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1012.223767] syscall_exit_to_user_mode+0x19/0x50 [ 1012.224261] do_syscall_64+0x48/0x90 [ 1012.224645] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1012.224756] FAULT_INJECTION: forcing a failure. [ 1012.224756] name failslab, interval 1, probability 0, space 0, times 0 [ 1012.225155] RIP: 0033:0x7f10528b1b19 [ 1012.227686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1012.229516] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1012.230271] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1012.230980] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1012.231689] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1012.232404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1012.233116] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1012.233831] [ 1012.234065] CPU: 1 PID: 7312 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1012.235697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1012.237942] Call Trace: [ 1012.238449] [ 1012.238890] dump_stack_lvl+0x8b/0xb3 [ 1012.239666] should_fail.cold+0x5/0xa [ 1012.240452] ? io_issue_sqe+0x6ea/0x6980 [ 1012.241272] ? io_arm_poll_handler+0x22f/0x7a0 [ 1012.242184] should_failslab+0x5/0x10 [ 1012.242955] kmem_cache_alloc_trace+0x55/0x3c0 [ 1012.243867] io_arm_poll_handler+0x22f/0x7a0 [ 1012.244762] ? find_held_lock+0x2c/0x110 [ 1012.245568] ? io_write+0xbe0/0xbe0 [ 1012.246305] ? lock_release+0x3b2/0x6f0 [ 1012.247099] ? tctx_task_work+0x189/0x750 [ 1012.247934] ? lock_downgrade+0x6d0/0x6d0 [ 1012.248785] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1012.249705] io_req_task_submit+0x3b3/0x530 [ 1012.250575] tctx_task_work+0x1d7/0x750 [ 1012.251380] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1012.252484] ? rwlock_bug.part.0+0x90/0x90 [ 1012.253336] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1012.254245] task_work_run+0xe2/0x1a0 [ 1012.255021] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1012.256016] syscall_exit_to_user_mode+0x19/0x50 [ 1012.256958] do_syscall_64+0x48/0x90 [ 1012.257711] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1012.258733] RIP: 0033:0x7fcb3f1eeb19 [ 1012.259473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1012.263110] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1012.264619] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1012.266021] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1012.267422] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1012.268852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1012.270257] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1012.271684] 06:34:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x2, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:34:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x19, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee2"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:34:54 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x300000000000000}}], 0x1, 0x0) 06:34:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x4, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x19, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee2"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:35:08 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 06:35:08 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12c, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x100, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:35:08 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 06:35:08 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0xffffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:08 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x400000000000000}}], 0x1, 0x0) 06:35:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x3, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:08 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x113, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) 06:35:08 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) [ 1026.271065] FAULT_INJECTION: forcing a failure. [ 1026.271065] name failslab, interval 1, probability 0, space 0, times 0 [ 1026.273462] CPU: 1 PID: 7337 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1026.275181] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1026.277588] Call Trace: [ 1026.278130] [ 1026.278598] dump_stack_lvl+0x8b/0xb3 [ 1026.279417] should_fail.cold+0x5/0xa [ 1026.280236] ? create_object.isra.0+0x3a/0xa20 [ 1026.281201] should_failslab+0x5/0x10 [ 1026.282008] kmem_cache_alloc+0x5b/0x480 [ 1026.282868] create_object.isra.0+0x3a/0xa20 [ 1026.283790] ? kasan_unpoison+0x23/0x50 [ 1026.284648] kmem_cache_alloc_trace+0x22e/0x3c0 [ 1026.285627] io_arm_poll_handler+0x22f/0x7a0 [ 1026.286549] ? find_held_lock+0x2c/0x110 [ 1026.287414] ? io_write+0xbe0/0xbe0 [ 1026.288183] ? lock_release+0x3b2/0x6f0 [ 1026.289035] ? tctx_task_work+0x189/0x750 [ 1026.289906] ? lock_downgrade+0x6d0/0x6d0 [ 1026.290784] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1026.291749] io_req_task_submit+0x3b3/0x530 [ 1026.292666] tctx_task_work+0x1d7/0x750 [ 1026.293518] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1026.294646] ? rwlock_bug.part.0+0x90/0x90 [ 1026.295540] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1026.296516] task_work_run+0xe2/0x1a0 [ 1026.297333] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1026.298383] syscall_exit_to_user_mode+0x19/0x50 [ 1026.299375] do_syscall_64+0x48/0x90 [ 1026.300189] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1026.301270] RIP: 0033:0x7fcb3f1eeb19 [ 1026.302060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1026.305892] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1026.307472] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1026.308960] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1026.310444] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1026.311922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1026.313414] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1026.314920] [ 1026.320343] FAULT_INJECTION: forcing a failure. [ 1026.320343] name failslab, interval 1, probability 0, space 0, times 0 [ 1026.322715] CPU: 1 PID: 7345 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1026.324449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1026.326832] Call Trace: [ 1026.327374] [ 1026.327837] dump_stack_lvl+0x8b/0xb3 [ 1026.328675] should_fail.cold+0x5/0xa [ 1026.329481] ? create_object.isra.0+0x3a/0xa20 [ 1026.330449] should_failslab+0x5/0x10 [ 1026.331255] kmem_cache_alloc+0x5b/0x480 [ 1026.332110] create_object.isra.0+0x3a/0xa20 [ 1026.333045] ? kasan_unpoison+0x23/0x50 [ 1026.333890] kmem_cache_alloc_trace+0x22e/0x3c0 [ 1026.334873] io_arm_poll_handler+0x22f/0x7a0 [ 1026.335815] ? find_held_lock+0x2c/0x110 [ 1026.336699] ? io_write+0xbe0/0xbe0 [ 1026.337487] ? lock_release+0x3b2/0x6f0 [ 1026.338339] ? tctx_task_work+0x189/0x750 [ 1026.339222] ? lock_downgrade+0x6d0/0x6d0 06:35:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x4, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:08 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x113, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) [ 1026.340124] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1026.341334] io_req_task_submit+0x3b3/0x530 [ 1026.342257] tctx_task_work+0x1d7/0x750 [ 1026.343105] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1026.344285] ? rwlock_bug.part.0+0x90/0x90 [ 1026.345175] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1026.346150] task_work_run+0xe2/0x1a0 [ 1026.346967] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1026.348016] syscall_exit_to_user_mode+0x19/0x50 [ 1026.349022] do_syscall_64+0x48/0x90 06:35:08 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x158, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x113, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x158}}, 0x0) [ 1026.349874] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1026.350982] RIP: 0033:0x7f10528b1b19 06:35:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x5, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1026.351759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1026.355716] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1026.357325] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1026.358805] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1026.360322] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1026.361797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1026.363302] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1026.364833] [ 1026.396420] FAULT_INJECTION: forcing a failure. [ 1026.396420] name failslab, interval 1, probability 0, space 0, times 0 [ 1026.398839] CPU: 1 PID: 7363 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1026.400563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1026.402918] Call Trace: [ 1026.403451] [ 1026.403918] dump_stack_lvl+0x8b/0xb3 [ 1026.404761] should_fail.cold+0x5/0xa [ 1026.405570] ? create_object.isra.0+0x3a/0xa20 [ 1026.406547] should_failslab+0x5/0x10 [ 1026.407380] kmem_cache_alloc+0x5b/0x480 [ 1026.408268] create_object.isra.0+0x3a/0xa20 [ 1026.409223] ? kasan_unpoison+0x23/0x50 [ 1026.410094] kmem_cache_alloc_trace+0x22e/0x3c0 [ 1026.411102] io_arm_poll_handler+0x22f/0x7a0 [ 1026.412059] ? find_held_lock+0x2c/0x110 [ 1026.412942] ? io_write+0xbe0/0xbe0 [ 1026.413733] ? lock_release+0x3b2/0x6f0 [ 1026.414587] ? tctx_task_work+0x189/0x750 [ 1026.415482] ? lock_downgrade+0x6d0/0x6d0 [ 1026.416389] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1026.417377] io_req_task_submit+0x3b3/0x530 [ 1026.418318] tctx_task_work+0x1d7/0x750 [ 1026.419189] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1026.420360] ? rwlock_bug.part.0+0x90/0x90 [ 1026.421276] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1026.422259] task_work_run+0xe2/0x1a0 [ 1026.423094] exit_to_user_mode_prepare+0x1b4/0x1c0 06:35:08 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12c, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0x100, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) [ 1026.424156] syscall_exit_to_user_mode+0x19/0x50 [ 1026.425287] do_syscall_64+0x48/0x90 [ 1026.426099] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1026.427199] RIP: 0033:0x7fc4f668ab19 06:35:08 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xf, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1026.427988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1026.431978] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1026.433567] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1026.435043] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 06:35:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x6, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1026.436533] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1026.438099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1026.439596] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1026.441143] 06:35:21 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x15c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x115, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x15c}}, 0x0) 06:35:21 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x600000000000000}}], 0x1, 0x0) 06:35:21 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x7, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:21 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:21 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 06:35:21 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 06:35:21 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 06:35:21 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x14c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x105, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x14c}}, 0x0) [ 1039.582867] FAULT_INJECTION: forcing a failure. [ 1039.582867] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.584160] CPU: 1 PID: 7392 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1039.585049] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1039.586223] Call Trace: [ 1039.586495] [ 1039.586727] dump_stack_lvl+0x8b/0xb3 [ 1039.587142] should_fail.cold+0x5/0xa [ 1039.587548] ? create_io_worker+0xf6/0x620 [ 1039.587996] should_failslab+0x5/0x10 [ 1039.588401] kmem_cache_alloc_node_trace+0x59/0x3f0 [ 1039.588935] create_io_worker+0xf6/0x620 [ 1039.589367] io_wqe_enqueue+0x692/0xb90 [ 1039.589791] ? create_io_worker+0x620/0x620 [ 1039.590248] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1039.590795] ? lock_is_held_type+0xd7/0x130 [ 1039.591263] io_queue_async_work+0x271/0x5a0 [ 1039.591731] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1039.592231] io_req_task_submit+0x3b3/0x530 [ 1039.592708] tctx_task_work+0x1d7/0x750 [ 1039.593140] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1039.593735] ? rwlock_bug.part.0+0x90/0x90 [ 1039.594187] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1039.594684] task_work_run+0xe2/0x1a0 [ 1039.595097] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1039.595632] syscall_exit_to_user_mode+0x19/0x50 [ 1039.596132] do_syscall_64+0x48/0x90 [ 1039.596552] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1039.597103] RIP: 0033:0x7f10528b1b19 [ 1039.597495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.599413] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1039.600203] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1039.600965] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1039.601721] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.602474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1039.603237] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1039.604010] [ 1039.608846] FAULT_INJECTION: forcing a failure. [ 1039.608846] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.610277] CPU: 1 PID: 7393 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1039.611196] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1039.612419] Call Trace: [ 1039.612698] [ 1039.612948] dump_stack_lvl+0x8b/0xb3 [ 1039.613360] should_fail.cold+0x5/0xa [ 1039.613779] ? create_io_worker+0xf6/0x620 [ 1039.614237] should_failslab+0x5/0x10 [ 1039.614646] kmem_cache_alloc_node_trace+0x59/0x3f0 [ 1039.615176] create_io_worker+0xf6/0x620 [ 1039.615612] io_wqe_enqueue+0x692/0xb90 [ 1039.616039] ? create_io_worker+0x620/0x620 [ 1039.616536] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1039.617094] ? lock_is_held_type+0xd7/0x130 [ 1039.617579] io_queue_async_work+0x271/0x5a0 [ 1039.618054] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1039.618538] io_req_task_submit+0x3b3/0x530 [ 1039.619002] tctx_task_work+0x1d7/0x750 [ 1039.619444] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1039.620031] ? rwlock_bug.part.0+0x90/0x90 [ 1039.620501] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1039.620995] task_work_run+0xe2/0x1a0 [ 1039.621424] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1039.621954] syscall_exit_to_user_mode+0x19/0x50 [ 1039.622475] do_syscall_64+0x48/0x90 [ 1039.622880] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1039.623440] RIP: 0033:0x7fc4f668ab19 [ 1039.623839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.625851] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1039.626667] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1039.627336] FAULT_INJECTION: forcing a failure. [ 1039.627336] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.627433] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1039.627443] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.631141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1039.631901] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1039.632686] 06:35:21 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xc0, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1039.632937] CPU: 0 PID: 7398 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1039.634733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1039.637216] Call Trace: [ 1039.637789] [ 1039.638283] dump_stack_lvl+0x8b/0xb3 [ 1039.639140] should_fail.cold+0x5/0xa [ 1039.639992] ? create_io_worker+0xf6/0x620 [ 1039.640947] should_failslab+0x5/0x10 [ 1039.641790] kmem_cache_alloc_node_trace+0x59/0x3f0 [ 1039.642997] create_io_worker+0xf6/0x620 [ 1039.643872] io_wqe_enqueue+0x692/0xb90 [ 1039.644756] ? create_io_worker+0x620/0x620 [ 1039.645676] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1039.646772] ? lock_is_held_type+0xd7/0x130 [ 1039.647791] io_queue_async_work+0x271/0x5a0 [ 1039.648757] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1039.649851] io_req_task_submit+0x3b3/0x530 [ 1039.650781] tctx_task_work+0x1d7/0x750 [ 1039.651737] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1039.652915] ? rwlock_bug.part.0+0x90/0x90 [ 1039.653934] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1039.654893] task_work_run+0xe2/0x1a0 [ 1039.655817] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1039.656879] syscall_exit_to_user_mode+0x19/0x50 [ 1039.657991] do_syscall_64+0x48/0x90 [ 1039.658802] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1039.659961] RIP: 0033:0x7fcb3f1eeb19 [ 1039.660742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.664563] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1039.666177] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1039.667647] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1039.669339] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.671017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1039.672700] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1039.674411] 06:35:21 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) 06:35:21 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xec0, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1039.722826] FAULT_INJECTION: forcing a failure. [ 1039.722826] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.724107] CPU: 1 PID: 7408 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1039.724998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1039.726184] Call Trace: [ 1039.726457] [ 1039.726687] dump_stack_lvl+0x8b/0xb3 [ 1039.727115] should_fail.cold+0x5/0xa [ 1039.727535] ? io_issue_sqe+0x6ea/0x6980 [ 1039.727975] ? io_arm_poll_handler+0x22f/0x7a0 [ 1039.728493] should_failslab+0x5/0x10 [ 1039.728924] kmem_cache_alloc_trace+0x55/0x3c0 [ 1039.729411] io_arm_poll_handler+0x22f/0x7a0 [ 1039.729903] ? find_held_lock+0x2c/0x110 [ 1039.730353] ? io_write+0xbe0/0xbe0 [ 1039.730756] ? lock_release+0x3b2/0x6f0 [ 1039.731181] ? tctx_task_work+0x189/0x750 [ 1039.731619] ? lock_downgrade+0x6d0/0x6d0 [ 1039.732068] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1039.732585] io_req_task_submit+0x3b3/0x530 [ 1039.733063] tctx_task_work+0x1d7/0x750 [ 1039.733504] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1039.734087] ? rwlock_bug.part.0+0x90/0x90 [ 1039.734554] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1039.735052] task_work_run+0xe2/0x1a0 [ 1039.735482] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1039.736019] syscall_exit_to_user_mode+0x19/0x50 [ 1039.736551] do_syscall_64+0x48/0x90 [ 1039.736956] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1039.737510] RIP: 0033:0x7f10528b1b19 [ 1039.737915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.739888] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1039.740716] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1039.741471] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1039.742236] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.743005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1039.743773] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1039.744576] 06:35:37 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) 06:35:37 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) 06:35:37 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) 06:35:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x15c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x115, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x15c}}, 0x0) 06:35:37 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x700000000000000}}], 0x1, 0x0) 06:35:37 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x14c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x105, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x14c}}, 0x0) 06:35:37 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x33fe0, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:37 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x9, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:37 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xf, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1055.433288] FAULT_INJECTION: forcing a failure. [ 1055.433288] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.434514] CPU: 0 PID: 7425 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1055.435376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1055.436566] Call Trace: [ 1055.436847] [ 1055.437090] dump_stack_lvl+0x8b/0xb3 [ 1055.437506] should_fail.cold+0x5/0xa [ 1055.437913] ? create_object.isra.0+0x3a/0xa20 [ 1055.438406] should_failslab+0x5/0x10 [ 1055.438815] kmem_cache_alloc+0x5b/0x480 [ 1055.439251] create_object.isra.0+0x3a/0xa20 [ 1055.439719] ? kasan_unpoison+0x23/0x50 [ 1055.440151] kmem_cache_alloc_node_trace+0x256/0x3f0 [ 1055.440694] create_io_worker+0xf6/0x620 [ 1055.441135] io_wqe_enqueue+0x692/0xb90 [ 1055.441559] ? create_io_worker+0x620/0x620 [ 1055.442025] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1055.442581] ? lock_is_held_type+0xd7/0x130 [ 1055.443044] io_queue_async_work+0x271/0x5a0 [ 1055.443519] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1055.444008] io_req_task_submit+0x3b3/0x530 [ 1055.444494] tctx_task_work+0x1d7/0x750 [ 1055.444946] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1055.445532] ? rwlock_bug.part.0+0x90/0x90 [ 1055.446000] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1055.446498] task_work_run+0xe2/0x1a0 [ 1055.446932] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1055.447477] syscall_exit_to_user_mode+0x19/0x50 [ 1055.447993] do_syscall_64+0x48/0x90 [ 1055.448174] FAULT_INJECTION: forcing a failure. [ 1055.448174] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.448409] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1055.451297] RIP: 0033:0x7fcb3f1eeb19 [ 1055.451692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1055.453689] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1055.454485] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1055.455246] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1055.455993] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1055.456751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1055.457510] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1055.458277] [ 1055.458526] CPU: 1 PID: 7427 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1055.460170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1055.462433] Call Trace: [ 1055.462950] [ 1055.463400] dump_stack_lvl+0x8b/0xb3 [ 1055.464184] should_fail.cold+0x5/0xa [ 1055.464975] ? copy_process+0x5c4/0x6be0 [ 1055.465805] should_failslab+0x5/0x10 [ 1055.466599] kmem_cache_alloc_node+0x55/0x490 [ 1055.467523] copy_process+0x5c4/0x6be0 [ 1055.468336] ? __stack_depot_save+0x35/0x450 [ 1055.469299] ? kasan_save_stack+0x2e/0x40 [ 1055.470169] ? kasan_save_stack+0x1e/0x40 [ 1055.471018] ? __kasan_kmalloc+0x81/0xa0 [ 1055.471860] ? io_wqe_enqueue+0x692/0xb90 [ 1055.472723] ? io_queue_async_work+0x271/0x5a0 [ 1055.473678] ? io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1055.474665] ? __cleanup_sighand+0xb0/0xb0 [ 1055.475567] ? lock_is_held_type+0xd7/0x130 [ 1055.476470] ? find_held_lock+0x2c/0x110 [ 1055.477333] ? create_io_worker+0x1d0/0x620 [ 1055.478240] ? io_worker_handle_work+0x17f0/0x17f0 [ 1055.479282] create_io_thread+0xb6/0xf0 [ 1055.480113] ? copy_init_mm+0x20/0x20 [ 1055.480947] ? mark_held_locks+0x9e/0xe0 [ 1055.481809] ? io_worker_handle_work+0x17f0/0x17f0 [ 1055.482864] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1055.483877] create_io_worker+0x248/0x620 [ 1055.484780] io_wqe_enqueue+0x692/0xb90 [ 1055.485631] ? create_io_worker+0x620/0x620 [ 1055.486558] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1055.487658] ? lock_is_held_type+0xd7/0x130 [ 1055.488585] io_queue_async_work+0x271/0x5a0 [ 1055.489548] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1055.490535] io_req_task_submit+0x3b3/0x530 [ 1055.491463] tctx_task_work+0x1d7/0x750 [ 1055.492330] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1055.493494] ? rwlock_bug.part.0+0x90/0x90 [ 1055.494440] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1055.495428] task_work_run+0xe2/0x1a0 [ 1055.496263] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1055.497274] syscall_exit_to_user_mode+0x19/0x50 [ 1055.498240] do_syscall_64+0x48/0x90 [ 1055.498996] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1055.500028] RIP: 0033:0x7f10528b1b19 [ 1055.500778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1055.504475] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1055.506022] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1055.507458] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1055.508894] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1055.510326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1055.511747] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1055.513216] 06:35:37 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) [ 1055.537094] FAULT_INJECTION: forcing a failure. [ 1055.537094] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.539448] CPU: 1 PID: 7430 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1055.541141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1055.543427] Call Trace: [ 1055.543950] [ 1055.544403] dump_stack_lvl+0x8b/0xb3 [ 1055.545190] should_fail.cold+0x5/0xa [ 1055.545959] ? io_issue_sqe+0x6ea/0x6980 [ 1055.546781] ? io_arm_poll_handler+0x22f/0x7a0 [ 1055.547704] should_failslab+0x5/0x10 [ 1055.548477] kmem_cache_alloc_trace+0x55/0x3c0 [ 1055.549407] io_arm_poll_handler+0x22f/0x7a0 [ 1055.550293] ? find_held_lock+0x2c/0x110 [ 1055.551105] ? io_write+0xbe0/0xbe0 [ 1055.551839] ? lock_release+0x3b2/0x6f0 [ 1055.552635] ? tctx_task_work+0x189/0x750 [ 1055.553264] FAULT_INJECTION: forcing a failure. [ 1055.553264] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.553496] ? lock_downgrade+0x6d0/0x6d0 [ 1055.555508] io_queue_sqe_arm_apoll+0x61/0x1a0 [ 1055.556435] io_req_task_submit+0x3b3/0x530 [ 1055.557317] tctx_task_work+0x1d7/0x750 [ 1055.558138] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1055.559226] ? rwlock_bug.part.0+0x90/0x90 [ 1055.560078] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1055.561017] task_work_run+0xe2/0x1a0 [ 1055.561811] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1055.562797] syscall_exit_to_user_mode+0x19/0x50 [ 1055.563741] do_syscall_64+0x48/0x90 [ 1055.564496] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1055.565534] RIP: 0033:0x7fc4f668ab19 [ 1055.566273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1055.569929] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1055.571448] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1055.572879] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1055.574291] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1055.575709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1055.577128] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1055.578562] [ 1055.579036] CPU: 0 PID: 7436 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1055.579933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1055.581164] Call Trace: [ 1055.581435] [ 1055.581672] dump_stack_lvl+0x8b/0xb3 [ 1055.582092] should_fail.cold+0x5/0xa [ 1055.582510] ? copy_process+0x5c4/0x6be0 [ 1055.582953] should_failslab+0x5/0x10 [ 1055.583370] kmem_cache_alloc_node+0x55/0x490 [ 1055.583854] copy_process+0x5c4/0x6be0 [ 1055.584279] ? __stack_depot_save+0x35/0x450 [ 1055.584784] ? kasan_save_stack+0x2e/0x40 [ 1055.585231] ? kasan_save_stack+0x1e/0x40 [ 1055.585677] ? __kasan_kmalloc+0x81/0xa0 [ 1055.586115] ? io_wqe_enqueue+0x692/0xb90 [ 1055.586570] ? io_queue_async_work+0x271/0x5a0 [ 1055.587057] ? io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1055.587579] ? __cleanup_sighand+0xb0/0xb0 [ 1055.588048] ? lock_is_held_type+0xd7/0x130 [ 1055.588515] ? find_held_lock+0x2c/0x110 [ 1055.588962] ? create_io_worker+0x1d0/0x620 [ 1055.589435] ? io_worker_handle_work+0x17f0/0x17f0 [ 1055.589969] create_io_thread+0xb6/0xf0 [ 1055.590403] ? copy_init_mm+0x20/0x20 [ 1055.590827] ? mark_held_locks+0x9e/0xe0 [ 1055.591276] ? io_worker_handle_work+0x17f0/0x17f0 [ 1055.591816] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1055.592330] create_io_worker+0x248/0x620 [ 1055.592793] io_wqe_enqueue+0x692/0xb90 [ 1055.593228] ? create_io_worker+0x620/0x620 [ 1055.593698] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1055.594266] ? lock_is_held_type+0xd7/0x130 [ 1055.594739] io_queue_async_work+0x271/0x5a0 [ 1055.595232] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1055.595745] io_req_task_submit+0x3b3/0x530 [ 1055.596207] tctx_task_work+0x1d7/0x750 [ 1055.596638] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1055.597240] ? rwlock_bug.part.0+0x90/0x90 [ 1055.597696] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1055.598190] task_work_run+0xe2/0x1a0 [ 1055.598612] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1055.599150] syscall_exit_to_user_mode+0x19/0x50 [ 1055.599654] do_syscall_64+0x48/0x90 [ 1055.600067] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1055.600619] RIP: 0033:0x7fcb3f1eeb19 [ 1055.601026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1055.602988] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1055.603815] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1055.604585] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1055.605358] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1055.606115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1055.606883] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1055.607658] 06:35:37 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x14c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x105, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x14c}}, 0x0) 06:35:37 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x20000164, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x15c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x115, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xe9, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x15c}}, 0x0) 06:35:37 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xef, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:37 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x800000000000000}}], 0x1, 0x0) [ 1067.562942] FAULT_INJECTION: forcing a failure. [ 1067.562942] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.564333] CPU: 0 PID: 7468 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1067.565382] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1067.566819] Call Trace: [ 1067.567075] [ 1067.567361] dump_stack_lvl+0x8b/0xb3 [ 1067.567859] should_fail.cold+0x5/0xa [ 1067.568352] ? create_object.isra.0+0x3a/0xa20 [ 1067.568952] should_failslab+0x5/0x10 [ 1067.569445] kmem_cache_alloc+0x5b/0x480 [ 1067.569967] create_object.isra.0+0x3a/0xa20 [ 1067.570530] ? kasan_unpoison+0x23/0x50 [ 1067.571043] kmem_cache_alloc_node+0x248/0x490 [ 1067.571626] copy_process+0x5c4/0x6be0 [ 1067.572128] ? __stack_depot_save+0x35/0x450 [ 1067.572681] ? kasan_save_stack+0x2e/0x40 [ 1067.573114] ? kasan_save_stack+0x1e/0x40 [ 1067.573516] ? __kasan_kmalloc+0x81/0xa0 [ 1067.573910] ? io_wqe_enqueue+0x692/0xb90 [ 1067.574320] ? io_queue_async_work+0x271/0x5a0 [ 1067.574765] ? io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1067.575234] ? __cleanup_sighand+0xb0/0xb0 [ 1067.575656] ? lock_is_held_type+0xd7/0x130 [ 1067.576073] ? find_held_lock+0x2c/0x110 [ 1067.576476] ? create_io_worker+0x1d0/0x620 [ 1067.576910] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.577398] create_io_thread+0xb6/0xf0 [ 1067.577790] ? copy_init_mm+0x20/0x20 [ 1067.578164] ? mark_held_locks+0x9e/0xe0 [ 1067.578562] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.579044] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1067.579512] create_io_worker+0x248/0x620 [ 1067.579922] io_wqe_enqueue+0x692/0xb90 [ 1067.580318] ? create_io_worker+0x620/0x620 [ 1067.580742] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1067.581279] ? lock_is_held_type+0xd7/0x130 [ 1067.581704] io_queue_async_work+0x271/0x5a0 [ 1067.582166] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1067.582653] io_req_task_submit+0x3b3/0x530 [ 1067.583101] tctx_task_work+0x1d7/0x750 [ 1067.583532] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1067.584088] ? rwlock_bug.part.0+0x90/0x90 [ 1067.584537] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1067.585013] task_work_run+0xe2/0x1a0 [ 1067.585432] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1067.585941] syscall_exit_to_user_mode+0x19/0x50 [ 1067.586444] do_syscall_64+0x48/0x90 [ 1067.586835] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1067.587377] RIP: 0033:0x7f10528b1b19 [ 1067.587757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1067.589681] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1067.590445] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1067.591188] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1067.591937] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1067.592676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1067.593424] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1067.594182] [ 1067.594959] FAULT_INJECTION: forcing a failure. 06:35:49 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) 06:35:49 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) 06:35:49 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x160, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x119, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xed, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x14, "25df623548e7a384a3ecb3a1807357e747c8ea7b"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x160}}, 0x0) 06:35:49 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x121, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf5, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0xc, "d8e20639e3fa6d572d418fb5"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) 06:35:49 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) 06:35:49 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x7ffff000, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:49 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xf0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:49 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xa00000000000000}}], 0x1, 0x0) [ 1067.594959] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.597980] CPU: 1 PID: 7474 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1067.599611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1067.601848] Call Trace: [ 1067.602356] [ 1067.602795] dump_stack_lvl+0x8b/0xb3 [ 1067.603581] should_fail.cold+0x5/0xa [ 1067.604350] ? create_object.isra.0+0x3a/0xa20 [ 1067.605483] should_failslab+0x5/0x10 [ 1067.606512] kmem_cache_alloc+0x5b/0x480 [ 1067.607596] create_object.isra.0+0x3a/0xa20 [ 1067.608661] ? kasan_unpoison+0x23/0x50 [ 1067.609621] kmem_cache_alloc_node+0x248/0x490 [ 1067.610704] copy_process+0x5c4/0x6be0 [ 1067.611586] ? __stack_depot_save+0x35/0x450 [ 1067.612616] ? kasan_save_stack+0x2e/0x40 [ 1067.613595] ? kasan_save_stack+0x1e/0x40 [ 1067.614583] ? __kasan_kmalloc+0x81/0xa0 [ 1067.615498] ? io_wqe_enqueue+0x692/0xb90 [ 1067.616449] ? io_queue_async_work+0x271/0x5a0 06:35:49 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xfffffdef, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1067.617519] ? io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1067.618689] ? __cleanup_sighand+0xb0/0xb0 [ 1067.619681] ? lock_is_held_type+0xd7/0x130 [ 1067.620661] ? find_held_lock+0x2c/0x110 [ 1067.621588] ? create_io_worker+0x1d0/0x620 [ 1067.622577] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.623686] create_io_thread+0xb6/0xf0 [ 1067.624585] ? copy_init_mm+0x20/0x20 [ 1067.625458] ? mark_held_locks+0x9e/0xe0 [ 1067.626382] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.627512] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1067.628596] create_io_worker+0x248/0x620 [ 1067.629574] io_wqe_enqueue+0x692/0xb90 [ 1067.630492] ? create_io_worker+0x620/0x620 [ 1067.631488] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1067.632675] ? lock_is_held_type+0xd7/0x130 [ 1067.633670] io_queue_async_work+0x271/0x5a0 [ 1067.634717] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1067.635772] io_req_task_submit+0x3b3/0x530 [ 1067.636753] tctx_task_work+0x1d7/0x750 [ 1067.637693] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1067.638920] ? rwlock_bug.part.0+0x90/0x90 [ 1067.639893] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1067.640931] task_work_run+0xe2/0x1a0 [ 1067.641814] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1067.642935] syscall_exit_to_user_mode+0x19/0x50 [ 1067.644002] do_syscall_64+0x48/0x90 [ 1067.644871] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1067.646037] RIP: 0033:0x7fcb3f1eeb19 [ 1067.646876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1067.650992] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1067.652690] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1067.654288] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1067.655885] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 06:35:49 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x4, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1067.657491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1067.659177] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1067.660798] [ 1067.681075] FAULT_INJECTION: forcing a failure. [ 1067.681075] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.682315] CPU: 0 PID: 7483 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1067.683137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1067.684259] Call Trace: [ 1067.684512] [ 1067.684729] dump_stack_lvl+0x8b/0xb3 [ 1067.685119] should_fail.cold+0x5/0xa [ 1067.685496] ? copy_process+0x5c4/0x6be0 [ 1067.685899] should_failslab+0x5/0x10 [ 1067.686283] kmem_cache_alloc_node+0x55/0x490 [ 1067.686721] copy_process+0x5c4/0x6be0 [ 1067.687103] ? __stack_depot_save+0x35/0x450 [ 1067.687543] ? kasan_save_stack+0x2e/0x40 [ 1067.687944] ? kasan_save_stack+0x1e/0x40 [ 1067.688344] ? __kasan_kmalloc+0x81/0xa0 [ 1067.688736] ? io_wqe_enqueue+0x692/0xb90 [ 1067.689159] ? io_queue_async_work+0x271/0x5a0 [ 1067.689605] ? io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1067.690075] ? __cleanup_sighand+0xb0/0xb0 [ 1067.690494] ? lock_is_held_type+0xd7/0x130 [ 1067.690915] ? find_held_lock+0x2c/0x110 [ 1067.691312] ? create_io_worker+0x1d0/0x620 [ 1067.691734] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.692217] create_io_thread+0xb6/0xf0 [ 1067.692608] ? copy_init_mm+0x20/0x20 [ 1067.692986] ? mark_held_locks+0x9e/0xe0 [ 1067.693383] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.693865] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1067.694336] create_io_worker+0x248/0x620 [ 1067.694745] io_wqe_enqueue+0x692/0xb90 [ 1067.695143] ? create_io_worker+0x620/0x620 [ 1067.695566] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1067.696076] ? lock_is_held_type+0xd7/0x130 [ 1067.696533] io_queue_async_work+0x271/0x5a0 [ 1067.697010] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1067.697497] io_req_task_submit+0x3b3/0x530 [ 1067.697958] tctx_task_work+0x1d7/0x750 [ 1067.698383] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1067.698951] ? rwlock_bug.part.0+0x90/0x90 [ 1067.699401] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1067.699882] task_work_run+0xe2/0x1a0 [ 1067.700291] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1067.700771] syscall_exit_to_user_mode+0x19/0x50 [ 1067.701281] do_syscall_64+0x48/0x90 [ 1067.701684] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1067.702222] RIP: 0033:0x7fc4f668ab19 [ 1067.702607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1067.704517] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1067.705320] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1067.706059] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1067.706798] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1067.707538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1067.708279] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1067.709034] 06:35:50 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xc00000000000000}}], 0x1, 0x0) 06:35:50 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x160, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x119, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xed, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x14, "25df623548e7a384a3ecb3a1807357e747c8ea7b"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x160}}, 0x0) 06:35:50 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x300, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:35:50 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x121, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf5, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0xc, "d8e20639e3fa6d572d418fb5"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) 06:35:50 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 06:35:50 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x6, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1067.794160] FAULT_INJECTION: forcing a failure. [ 1067.794160] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1067.795502] CPU: 0 PID: 7498 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1067.796285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1067.797375] Call Trace: [ 1067.797624] [ 1067.797840] dump_stack_lvl+0x8b/0xb3 [ 1067.798221] should_fail.cold+0x5/0xa [ 1067.798603] prepare_alloc_pages+0x17b/0x500 [ 1067.799029] ? find_held_lock+0x2c/0x110 [ 1067.799427] __alloc_pages+0x131/0x4e0 [ 1067.799807] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1067.800395] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1067.800868] ? kmem_cache_alloc_node+0x344/0x490 [ 1067.801332] copy_process+0x617/0x6be0 [ 1067.801714] ? __stack_depot_save+0x35/0x450 [ 1067.802151] ? kasan_save_stack+0x2e/0x40 [ 1067.802552] ? kasan_save_stack+0x1e/0x40 [ 1067.802951] ? __kasan_kmalloc+0x81/0xa0 [ 1067.803346] ? io_wqe_enqueue+0x692/0xb90 [ 1067.803749] ? io_queue_async_work+0x271/0x5a0 [ 1067.804195] ? __cleanup_sighand+0xb0/0xb0 [ 1067.804613] ? lock_is_held_type+0xd7/0x130 [ 1067.805042] ? find_held_lock+0x2c/0x110 [ 1067.805448] ? create_io_worker+0x1d0/0x620 [ 1067.805912] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.806429] create_io_thread+0xb6/0xf0 [ 1067.806851] ? copy_init_mm+0x20/0x20 [ 1067.807253] ? mark_held_locks+0x9e/0xe0 [ 1067.807686] ? io_worker_handle_work+0x17f0/0x17f0 [ 1067.808205] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1067.808709] create_io_worker+0x248/0x620 [ 1067.809158] io_wqe_enqueue+0x692/0xb90 [ 1067.809592] ? create_io_worker+0x620/0x620 [ 1067.810048] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1067.810605] ? lock_is_held_type+0xd7/0x130 [ 1067.811057] io_queue_async_work+0x271/0x5a0 [ 1067.811527] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1067.812008] io_req_task_submit+0x3b3/0x530 [ 1067.812475] tctx_task_work+0x1d7/0x750 [ 1067.812924] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1067.813497] ? rwlock_bug.part.0+0x90/0x90 [ 1067.813939] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1067.814425] task_work_run+0xe2/0x1a0 [ 1067.814838] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1067.815364] syscall_exit_to_user_mode+0x19/0x50 [ 1067.815856] do_syscall_64+0x48/0x90 [ 1067.816262] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1067.816800] RIP: 0033:0x7f10528b1b19 [ 1067.817198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1067.819098] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1067.819892] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1067.820628] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1067.821380] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1067.822117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1067.822853] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1067.823605] 06:36:03 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 06:36:03 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x160, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x119, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xed, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x14, "25df623548e7a384a3ecb3a1807357e747c8ea7b"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x160}}, 0x0) 06:36:03 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) 06:36:03 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) 06:36:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x25, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:03 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x121, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf5, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0xc, "d8e20639e3fa6d572d418fb5"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) 06:36:03 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xe00000000000000}}], 0x1, 0x0) 06:36:03 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x500, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1080.894815] FAULT_INJECTION: forcing a failure. [ 1080.894815] name failslab, interval 1, probability 0, space 0, times 0 [ 1080.896135] CPU: 0 PID: 7521 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1080.896997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1080.898205] Call Trace: [ 1080.898473] [ 1080.898707] dump_stack_lvl+0x8b/0xb3 [ 1080.899129] should_fail.cold+0x5/0xa [ 1080.899553] ? create_object.isra.0+0x3a/0xa20 [ 1080.900036] should_failslab+0x5/0x10 [ 1080.900450] kmem_cache_alloc+0x5b/0x480 [ 1080.900892] create_object.isra.0+0x3a/0xa20 [ 1080.901375] ? kasan_unpoison+0x23/0x50 [ 1080.901812] kmem_cache_alloc_node+0x248/0x490 [ 1080.902297] copy_process+0x5c4/0x6be0 [ 1080.902713] ? __stack_depot_save+0x35/0x450 [ 1080.903186] ? kasan_save_stack+0x2e/0x40 [ 1080.903620] ? kasan_save_stack+0x1e/0x40 [ 1080.904059] ? __kasan_kmalloc+0x81/0xa0 [ 1080.904481] ? io_wqe_enqueue+0x692/0xb90 [ 1080.904924] ? io_queue_async_work+0x271/0x5a0 [ 1080.905426] ? io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1080.905945] ? __cleanup_sighand+0xb0/0xb0 [ 1080.906065] FAULT_INJECTION: forcing a failure. [ 1080.906065] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1080.906400] ? lock_is_held_type+0xd7/0x130 [ 1080.906416] ? find_held_lock+0x2c/0x110 [ 1080.906433] ? create_io_worker+0x1d0/0x620 [ 1080.910105] ? io_worker_handle_work+0x17f0/0x17f0 [ 1080.910634] create_io_thread+0xb6/0xf0 [ 1080.911065] ? copy_init_mm+0x20/0x20 [ 1080.911466] ? mark_held_locks+0x9e/0xe0 [ 1080.911893] ? io_worker_handle_work+0x17f0/0x17f0 [ 1080.912423] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1080.912936] create_io_worker+0x248/0x620 [ 1080.913403] io_wqe_enqueue+0x692/0xb90 [ 1080.913835] ? create_io_worker+0x620/0x620 [ 1080.914303] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1080.914862] ? lock_is_held_type+0xd7/0x130 [ 1080.915324] io_queue_async_work+0x271/0x5a0 [ 1080.915795] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1080.916286] io_req_task_submit+0x3b3/0x530 [ 1080.916744] tctx_task_work+0x1d7/0x750 [ 1080.917176] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1080.917737] ? rwlock_bug.part.0+0x90/0x90 [ 1080.918186] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1080.918662] task_work_run+0xe2/0x1a0 [ 1080.919065] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1080.919579] syscall_exit_to_user_mode+0x19/0x50 [ 1080.920080] do_syscall_64+0x48/0x90 [ 1080.920476] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1080.921014] RIP: 0033:0x7fc4f668ab19 [ 1080.921425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1080.923368] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1080.924175] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1080.924934] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1080.925678] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1080.926429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1080.927192] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1080.927958] [ 1080.928217] CPU: 1 PID: 7522 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1080.929919] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1080.932223] Call Trace: [ 1080.932744] [ 1080.933236] dump_stack_lvl+0x8b/0xb3 [ 1080.934025] should_fail.cold+0x5/0xa [ 1080.934846] prepare_alloc_pages+0x17b/0x500 [ 1080.935743] ? find_held_lock+0x2c/0x110 [ 1080.936588] __alloc_pages+0x131/0x4e0 [ 1080.937394] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1080.938651] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1080.939628] ? kmem_cache_alloc_node+0x344/0x490 [ 1080.940591] copy_process+0x617/0x6be0 [ 1080.941414] ? __stack_depot_save+0x35/0x450 [ 1080.942336] ? kasan_save_stack+0x2e/0x40 [ 1080.943175] ? kasan_save_stack+0x1e/0x40 [ 1080.944002] ? __kasan_kmalloc+0x81/0xa0 [ 1080.944832] ? io_wqe_enqueue+0x692/0xb90 [ 1080.945686] ? io_queue_async_work+0x271/0x5a0 [ 1080.946645] ? __cleanup_sighand+0xb0/0xb0 [ 1080.947520] ? lock_is_held_type+0xd7/0x130 [ 1080.948390] ? find_held_lock+0x2c/0x110 [ 1080.949239] ? create_io_worker+0x1d0/0x620 [ 1080.950122] ? io_worker_handle_work+0x17f0/0x17f0 [ 1080.951138] create_io_thread+0xb6/0xf0 [ 1080.951949] ? copy_init_mm+0x20/0x20 [ 1080.952737] ? mark_held_locks+0x9e/0xe0 [ 1080.953576] ? io_worker_handle_work+0x17f0/0x17f0 [ 1080.954588] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1080.955571] create_io_worker+0x248/0x620 [ 1080.956437] io_wqe_enqueue+0x692/0xb90 [ 1080.957270] ? create_io_worker+0x620/0x620 [ 1080.958155] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1080.959214] ? lock_is_held_type+0xd7/0x130 [ 1080.960099] io_queue_async_work+0x271/0x5a0 [ 1080.960994] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1080.961956] io_req_task_submit+0x3b3/0x530 [ 1080.962848] tctx_task_work+0x1d7/0x750 [ 1080.963682] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1080.964787] ? rwlock_bug.part.0+0x90/0x90 [ 1080.965674] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1080.966606] task_work_run+0xe2/0x1a0 [ 1080.967451] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1080.968747] syscall_exit_to_user_mode+0x19/0x50 [ 1080.969808] do_syscall_64+0x48/0x90 [ 1080.970576] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1080.971542] FAULT_INJECTION: forcing a failure. [ 1080.971542] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1080.971597] RIP: 0033:0x7fcb3f1eeb19 [ 1080.973608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1080.977282] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1080.978785] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1080.980201] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1080.981629] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1080.983027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1080.984427] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1080.985858] [ 1080.986313] CPU: 0 PID: 7529 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1080.987219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1080.988425] Call Trace: [ 1080.988706] [ 1080.988944] dump_stack_lvl+0x8b/0xb3 [ 1080.989382] should_fail.cold+0x5/0xa [ 1080.989800] prepare_alloc_pages+0x17b/0x500 [ 1080.990278] ? find_held_lock+0x2c/0x110 [ 1080.990721] __alloc_pages+0x131/0x4e0 [ 1080.991139] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1080.991805] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1080.992329] ? kmem_cache_alloc_node+0x344/0x490 [ 1080.992838] copy_process+0x617/0x6be0 [ 1080.993278] ? __stack_depot_save+0x35/0x450 [ 1080.993764] ? kasan_save_stack+0x2e/0x40 [ 1080.994217] ? kasan_save_stack+0x1e/0x40 [ 1080.994669] ? __kasan_kmalloc+0x81/0xa0 [ 1080.995098] ? io_wqe_enqueue+0x692/0xb90 [ 1080.995567] ? io_queue_async_work+0x271/0x5a0 [ 1080.996063] ? __cleanup_sighand+0xb0/0xb0 [ 1080.996525] ? lock_is_held_type+0xd7/0x130 [ 1080.996990] ? find_held_lock+0x2c/0x110 [ 1080.997461] ? create_io_worker+0x1d0/0x620 [ 1080.997938] ? io_worker_handle_work+0x17f0/0x17f0 06:36:03 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) [ 1080.998467] create_io_thread+0xb6/0xf0 [ 1080.999056] ? copy_init_mm+0x20/0x20 [ 1080.999491] ? mark_held_locks+0x9e/0xe0 [ 1080.999927] ? io_worker_handle_work+0x17f0/0x17f0 [ 1081.000477] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1081.000996] create_io_worker+0x248/0x620 [ 1081.001471] io_wqe_enqueue+0x692/0xb90 [ 1081.001908] ? create_io_worker+0x620/0x620 [ 1081.002397] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1081.002957] ? lock_is_held_type+0xd7/0x130 [ 1081.003435] io_queue_async_work+0x271/0x5a0 [ 1081.003919] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1081.004429] io_req_task_submit+0x3b3/0x530 [ 1081.004901] tctx_task_work+0x1d7/0x750 [ 1081.005361] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1081.005954] ? rwlock_bug.part.0+0x90/0x90 [ 1081.006418] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1081.006910] task_work_run+0xe2/0x1a0 [ 1081.007340] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1081.007864] syscall_exit_to_user_mode+0x19/0x50 [ 1081.008377] do_syscall_64+0x48/0x90 [ 1081.008780] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1081.009366] RIP: 0033:0x7fc4f668ab19 [ 1081.009762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1081.011720] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1081.012533] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1081.013308] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1081.014078] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1081.014841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1081.015611] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1081.016382] [ 1081.022185] FAULT_INJECTION: forcing a failure. [ 1081.022185] name failslab, interval 1, probability 0, space 0, times 0 [ 1081.024527] CPU: 1 PID: 7524 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1081.026203] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1081.028497] Call Trace: [ 1081.029018] [ 1081.029472] dump_stack_lvl+0x8b/0xb3 [ 1081.030262] should_fail.cold+0x5/0xa [ 1081.031033] ? alloc_pid+0xcd/0xd80 [ 1081.031777] should_failslab+0x5/0x10 [ 1081.032557] kmem_cache_alloc+0x5b/0x480 [ 1081.033579] ? memcpy+0x39/0x60 [ 1081.034401] alloc_pid+0xcd/0xd80 [ 1081.035240] ? copy_thread+0x304/0x950 [ 1081.036149] ? copy_namespaces+0x1c1/0x450 [ 1081.037185] copy_process+0x3d02/0x6be0 [ 1081.038005] ? __stack_depot_save+0x35/0x450 [ 1081.038913] ? __cleanup_sighand+0xb0/0xb0 [ 1081.039765] ? lock_is_held_type+0xd7/0x130 [ 1081.040623] ? find_held_lock+0x2c/0x110 [ 1081.041437] ? create_io_worker+0x1d0/0x620 [ 1081.042297] ? io_worker_handle_work+0x17f0/0x17f0 [ 1081.043269] create_io_thread+0xb6/0xf0 [ 1081.044060] ? copy_init_mm+0x20/0x20 [ 1081.044820] ? mark_held_locks+0x9e/0xe0 [ 1081.045634] ? io_worker_handle_work+0x17f0/0x17f0 [ 1081.046633] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1081.047585] create_io_worker+0x248/0x620 [ 1081.048423] io_wqe_enqueue+0x692/0xb90 [ 1081.049269] ? create_io_worker+0x620/0x620 [ 1081.050140] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1081.051169] ? lock_is_held_type+0xd7/0x130 [ 1081.052026] io_queue_async_work+0x271/0x5a0 [ 1081.052909] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1081.053830] io_req_task_submit+0x3b3/0x530 [ 1081.054692] tctx_task_work+0x1d7/0x750 [ 1081.055493] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1081.056559] ? rwlock_bug.part.0+0x90/0x90 [ 1081.057438] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1081.058334] task_work_run+0xe2/0x1a0 [ 1081.059108] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1081.060074] syscall_exit_to_user_mode+0x19/0x50 [ 1081.061006] do_syscall_64+0x48/0x90 [ 1081.061780] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1081.062790] RIP: 0033:0x7f10528b1b19 [ 1081.063515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1081.067084] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1081.068564] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1081.069748] FAULT_INJECTION: forcing a failure. [ 1081.069748] name failslab, interval 1, probability 0, space 0, times 0 [ 1081.069951] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1081.069969] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1081.069987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1081.075339] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1081.076769] [ 1081.077236] CPU: 0 PID: 7532 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1081.078115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1081.079320] Call Trace: [ 1081.079591] [ 1081.079824] dump_stack_lvl+0x8b/0xb3 [ 1081.080240] should_fail.cold+0x5/0xa [ 1081.080652] ? alloc_pid+0xcd/0xd80 [ 1081.081050] should_failslab+0x5/0x10 [ 1081.081480] kmem_cache_alloc+0x5b/0x480 [ 1081.081902] ? memcpy+0x39/0x60 [ 1081.082271] alloc_pid+0xcd/0xd80 [ 1081.082636] ? copy_thread+0x304/0x950 [ 1081.083049] ? copy_namespaces+0x1c1/0x450 [ 1081.083508] copy_process+0x3d02/0x6be0 [ 1081.083944] ? __stack_depot_save+0x35/0x450 [ 1081.084430] ? __cleanup_sighand+0xb0/0xb0 [ 1081.084896] ? lock_is_held_type+0xd7/0x130 [ 1081.085370] ? find_held_lock+0x2c/0x110 [ 1081.085815] ? create_io_worker+0x1d0/0x620 [ 1081.086282] ? io_worker_handle_work+0x17f0/0x17f0 [ 1081.086806] create_io_thread+0xb6/0xf0 [ 1081.087237] ? copy_init_mm+0x20/0x20 [ 1081.087655] ? mark_held_locks+0x9e/0xe0 [ 1081.088097] ? io_worker_handle_work+0x17f0/0x17f0 [ 1081.088630] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1081.089152] create_io_worker+0x248/0x620 [ 1081.089605] io_wqe_enqueue+0x692/0xb90 [ 1081.090038] ? create_io_worker+0x620/0x620 [ 1081.090499] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1081.091065] ? lock_is_held_type+0xd7/0x130 [ 1081.091532] io_queue_async_work+0x271/0x5a0 [ 1081.092010] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1081.092501] io_req_task_submit+0x3b3/0x530 [ 1081.092977] tctx_task_work+0x1d7/0x750 [ 1081.093428] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1081.094012] ? rwlock_bug.part.0+0x90/0x90 [ 1081.094473] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1081.094971] task_work_run+0xe2/0x1a0 [ 1081.095391] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1081.095917] syscall_exit_to_user_mode+0x19/0x50 [ 1081.096430] do_syscall_64+0x48/0x90 [ 1081.096835] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1081.097411] RIP: 0033:0x7fcb3f1eeb19 [ 1081.097827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1081.099766] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1081.100591] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1081.101359] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 06:36:03 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) 06:36:03 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) [ 1081.102122] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1081.103059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1081.103823] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1081.104587] [ 1081.141300] FAULT_INJECTION: forcing a failure. [ 1081.141300] name failslab, interval 1, probability 0, space 0, times 0 [ 1081.142579] CPU: 0 PID: 7535 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 06:36:03 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x127, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfb, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x12, "d8e20639e3fa6d572d418fb5feb9b3eaf7c3"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:36:03 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x600, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1081.143460] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1081.144798] Call Trace: [ 1081.145086] [ 1081.145320] dump_stack_lvl+0x8b/0xb3 [ 1081.145732] should_fail.cold+0x5/0xa [ 1081.146137] ? alloc_pid+0xcd/0xd80 [ 1081.146530] should_failslab+0x5/0x10 [ 1081.146948] kmem_cache_alloc+0x5b/0x480 [ 1081.147373] ? memcpy+0x39/0x60 [ 1081.147729] alloc_pid+0xcd/0xd80 [ 1081.148108] ? copy_thread+0x304/0x950 [ 1081.148513] ? copy_namespaces+0x1c1/0x450 [ 1081.148960] copy_process+0x3d02/0x6be0 [ 1081.149410] ? __stack_depot_save+0x35/0x450 [ 1081.149892] ? __cleanup_sighand+0xb0/0xb0 [ 1081.150359] ? lock_is_held_type+0xd7/0x130 [ 1081.150819] ? find_held_lock+0x2c/0x110 [ 1081.151253] ? create_io_worker+0x1d0/0x620 [ 1081.151717] ? io_worker_handle_work+0x17f0/0x17f0 [ 1081.152246] create_io_thread+0xb6/0xf0 [ 1081.152672] ? copy_init_mm+0x20/0x20 [ 1081.153095] ? mark_held_locks+0x9e/0xe0 [ 1081.153527] ? io_worker_handle_work+0x17f0/0x17f0 [ 1081.154060] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1081.154570] create_io_worker+0x248/0x620 [ 1081.155014] io_wqe_enqueue+0x692/0xb90 [ 1081.155450] ? create_io_worker+0x620/0x620 [ 1081.155910] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1081.156465] ? lock_is_held_type+0xd7/0x130 [ 1081.156918] io_queue_async_work+0x271/0x5a0 [ 1081.157416] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1081.157909] io_req_task_submit+0x3b3/0x530 [ 1081.158378] tctx_task_work+0x1d7/0x750 [ 1081.158821] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1081.159400] ? rwlock_bug.part.0+0x90/0x90 [ 1081.159862] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1081.160351] task_work_run+0xe2/0x1a0 [ 1081.160763] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1081.161308] syscall_exit_to_user_mode+0x19/0x50 [ 1081.161811] do_syscall_64+0x48/0x90 [ 1081.162226] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1081.162776] RIP: 0033:0x7fc4f668ab19 [ 1081.163181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1081.165141] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1081.165957] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1081.166718] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1081.167479] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1081.168237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1081.168995] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1081.169777] 06:36:03 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x1100000000000000}}], 0x1, 0x0) 06:36:03 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x1e, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) 06:36:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x117, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:03 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x1e00000000000000}}], 0x1, 0x0) 06:36:03 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x700, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:17 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) 06:36:17 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x6000000000000000}}], 0x1, 0x0) 06:36:17 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x127, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfb, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x12, "d8e20639e3fa6d572d418fb5feb9b3eaf7c3"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:36:17 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) 06:36:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x134, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:17 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) 06:36:17 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x900, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:17 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x1e, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) [ 1095.093875] FAULT_INJECTION: forcing a failure. [ 1095.093875] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.095020] CPU: 1 PID: 7566 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1095.096066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1095.097507] Call Trace: [ 1095.097841] [ 1095.098125] dump_stack_lvl+0x8b/0xb3 [ 1095.098631] should_fail.cold+0x5/0xa [ 1095.099128] ? create_object.isra.0+0x3a/0xa20 [ 1095.099721] should_failslab+0x5/0x10 [ 1095.100213] kmem_cache_alloc+0x5b/0x480 [ 1095.100619] create_object.isra.0+0x3a/0xa20 [ 1095.101109] ? kasan_unpoison+0x23/0x50 [ 1095.101521] kmem_cache_alloc+0x239/0x480 [ 1095.101928] alloc_pid+0xcd/0xd80 [ 1095.102279] ? copy_thread+0x304/0x950 [ 1095.102656] ? copy_namespaces+0x1c1/0x450 [ 1095.103074] copy_process+0x3d02/0x6be0 [ 1095.103467] ? __stack_depot_save+0x35/0x450 [ 1095.103922] ? __cleanup_sighand+0xb0/0xb0 [ 1095.104342] ? lock_is_held_type+0xd7/0x130 [ 1095.104763] ? find_held_lock+0x2c/0x110 [ 1095.105162] ? create_io_worker+0x1d0/0x620 [ 1095.105602] ? io_worker_handle_work+0x17f0/0x17f0 [ 1095.106088] create_io_thread+0xb6/0xf0 [ 1095.106480] ? copy_init_mm+0x20/0x20 [ 1095.106852] ? mark_held_locks+0x9e/0xe0 [ 1095.107252] ? io_worker_handle_work+0x17f0/0x17f0 [ 1095.107735] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1095.108201] create_io_worker+0x248/0x620 [ 1095.108613] io_wqe_enqueue+0x692/0xb90 [ 1095.109008] ? create_io_worker+0x620/0x620 [ 1095.109439] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1095.109946] ? lock_is_held_type+0xd7/0x130 [ 1095.110371] io_queue_async_work+0x271/0x5a0 [ 1095.110805] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1095.111257] io_req_task_submit+0x3b3/0x530 [ 1095.111683] tctx_task_work+0x1d7/0x750 [ 1095.112075] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1095.112601] ? rwlock_bug.part.0+0x90/0x90 [ 1095.113032] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1095.113529] task_work_run+0xe2/0x1a0 [ 1095.113935] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1095.114450] syscall_exit_to_user_mode+0x19/0x50 [ 1095.114943] do_syscall_64+0x48/0x90 [ 1095.115342] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1095.115879] RIP: 0033:0x7f10528b1b19 [ 1095.116238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.118149] RSP: 002b:00007f104fe27188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1095.118934] RAX: 0000000000000001 RBX: 00007f10529c4f60 RCX: 00007f10528b1b19 [ 1095.119621] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1095.120366] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.121050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1095.121794] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1095.122493] [ 1095.140932] FAULT_INJECTION: forcing a failure. [ 1095.140932] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.142102] CPU: 1 PID: 7576 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1095.142961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1095.144128] Call Trace: [ 1095.144394] [ 1095.144628] dump_stack_lvl+0x8b/0xb3 [ 1095.145036] should_fail.cold+0x5/0xa [ 1095.145458] ? create_object.isra.0+0x3a/0xa20 [ 1095.145940] should_failslab+0x5/0x10 [ 1095.146345] kmem_cache_alloc+0x5b/0x480 [ 1095.146776] create_object.isra.0+0x3a/0xa20 [ 1095.147246] ? kasan_unpoison+0x23/0x50 [ 1095.147671] kmem_cache_alloc+0x239/0x480 [ 1095.148107] alloc_pid+0xcd/0xd80 [ 1095.148477] ? copy_thread+0x304/0x950 [ 1095.148854] ? copy_namespaces+0x1c1/0x450 [ 1095.149323] copy_process+0x3d02/0x6be0 [ 1095.149744] ? __stack_depot_save+0x35/0x450 [ 1095.150225] ? __cleanup_sighand+0xb0/0xb0 [ 1095.150678] ? lock_is_held_type+0xd7/0x130 [ 1095.151126] ? find_held_lock+0x2c/0x110 [ 1095.151556] ? create_io_worker+0x1d0/0x620 [ 1095.152015] ? io_worker_handle_work+0x17f0/0x17f0 [ 1095.152538] create_io_thread+0xb6/0xf0 [ 1095.152957] ? copy_init_mm+0x20/0x20 [ 1095.153348] ? mark_held_locks+0x9e/0xe0 [ 1095.153780] ? io_worker_handle_work+0x17f0/0x17f0 [ 1095.154300] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1095.154805] create_io_worker+0x248/0x620 [ 1095.155246] io_wqe_enqueue+0x692/0xb90 [ 1095.155671] ? create_io_worker+0x620/0x620 [ 1095.156127] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1095.156671] ? lock_is_held_type+0xd7/0x130 [ 1095.157125] io_queue_async_work+0x271/0x5a0 [ 1095.157570] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1095.158057] io_req_task_submit+0x3b3/0x530 [ 1095.158368] FAULT_INJECTION: forcing a failure. [ 1095.158368] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.158508] tctx_task_work+0x1d7/0x750 [ 1095.161277] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1095.161805] ? rwlock_bug.part.0+0x90/0x90 [ 1095.162257] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1095.162704] task_work_run+0xe2/0x1a0 [ 1095.163112] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1095.163630] syscall_exit_to_user_mode+0x19/0x50 [ 1095.164089] do_syscall_64+0x48/0x90 [ 1095.164490] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1095.164987] RIP: 0033:0x7fcb3f1eeb19 [ 1095.165392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.167153] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1095.167951] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1095.168690] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1095.169454] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.170191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1095.170928] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1095.171684] [ 1095.171928] CPU: 0 PID: 7579 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1095.173661] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1095.176008] Call Trace: [ 1095.176540] [ 1095.177006] dump_stack_lvl+0x8b/0xb3 [ 1095.177830] should_fail.cold+0x5/0xa [ 1095.178641] ? create_object.isra.0+0x3a/0xa20 [ 1095.179606] should_failslab+0x5/0x10 [ 1095.180413] kmem_cache_alloc+0x5b/0x480 [ 1095.181288] create_object.isra.0+0x3a/0xa20 06:36:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) [ 1095.182213] ? kasan_unpoison+0x23/0x50 [ 1095.183176] kmem_cache_alloc+0x239/0x480 [ 1095.184053] alloc_pid+0xcd/0xd80 [ 1095.184797] ? copy_thread+0x304/0x950 [ 1095.185643] ? copy_namespaces+0x1c1/0x450 [ 1095.186549] copy_process+0x3d02/0x6be0 [ 1095.187392] ? __stack_depot_save+0x35/0x450 [ 1095.188359] ? __cleanup_sighand+0xb0/0xb0 [ 1095.189279] ? lock_is_held_type+0xd7/0x130 [ 1095.190187] ? find_held_lock+0x2c/0x110 [ 1095.191053] ? create_io_worker+0x1d0/0x620 [ 1095.191974] ? io_worker_handle_work+0x17f0/0x17f0 [ 1095.193015] create_io_thread+0xb6/0xf0 [ 1095.193879] ? copy_init_mm+0x20/0x20 [ 1095.194694] ? mark_held_locks+0x9e/0xe0 [ 1095.195548] ? io_worker_handle_work+0x17f0/0x17f0 [ 1095.196592] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1095.197608] create_io_worker+0x248/0x620 [ 1095.198495] io_wqe_enqueue+0x692/0xb90 [ 1095.199348] ? create_io_worker+0x620/0x620 [ 1095.200260] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1095.201363] ? lock_is_held_type+0xd7/0x130 [ 1095.202275] io_queue_async_work+0x271/0x5a0 [ 1095.203215] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1095.204180] io_req_task_submit+0x3b3/0x530 [ 1095.205108] tctx_task_work+0x1d7/0x750 [ 1095.205982] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1095.207123] ? rwlock_bug.part.0+0x90/0x90 [ 1095.208019] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1095.208980] task_work_run+0xe2/0x1a0 [ 1095.209810] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1095.210850] syscall_exit_to_user_mode+0x19/0x50 [ 1095.211846] do_syscall_64+0x48/0x90 [ 1095.212646] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1095.213740] RIP: 0033:0x7fc4f668ab19 [ 1095.214515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.218369] RSP: 002b:00007fc4f3c00188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1095.219941] RAX: 0000000000000001 RBX: 00007fc4f679df60 RCX: 00007fc4f668ab19 [ 1095.221444] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1095.222928] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.224408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1095.225893] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1095.227401] 06:36:17 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xf00, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:17 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 06:36:17 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x168, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x123, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xf7, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x1e, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x168}}, 0x0) [ 1095.272394] FAULT_INJECTION: forcing a failure. [ 1095.272394] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1095.273696] CPU: 1 PID: 7591 Comm: syz-executor.5 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1095.274525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1095.275646] Call Trace: [ 1095.275899] [ 1095.276121] dump_stack_lvl+0x8b/0xb3 [ 1095.276525] should_fail.cold+0x5/0xa [ 1095.276913] _copy_to_user+0x2e/0x150 [ 1095.277316] simple_read_from_buffer+0xcc/0x160 [ 1095.277789] proc_fail_nth_read+0x194/0x220 [ 1095.278236] ? proc_fault_inject_read+0x230/0x230 [ 1095.278724] ? security_file_permission+0xb1/0xd0 [ 1095.279220] ? proc_fault_inject_read+0x230/0x230 [ 1095.279727] vfs_read+0x1b6/0x5f0 [ 1095.280095] ksys_read+0x12d/0x250 [ 1095.280462] ? __ia32_sys_pwrite64+0x230/0x230 [ 1095.280918] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1095.281453] do_syscall_64+0x3b/0x90 [ 1095.281833] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1095.282364] RIP: 0033:0x7f105286469c [ 1095.282727] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1095.284579] RSP: 002b:00007f104fe27170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1095.285341] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f105286469c [ 1095.286063] RDX: 000000000000000f RSI: 00007f104fe271e0 RDI: 0000000000000004 [ 1095.286791] RBP: 00007f104fe271d0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.287516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1095.288240] R13: 00007fffb79e51ff R14: 00007f104fe27300 R15: 0000000000022000 [ 1095.288975] [ 1107.954450] FAULT_INJECTION: forcing a failure. [ 1107.954450] name failslab, interval 1, probability 0, space 0, times 0 [ 1107.955812] CPU: 0 PID: 7605 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1107.956640] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1107.957767] Call Trace: [ 1107.958026] [ 1107.958252] dump_stack_lvl+0x8b/0xb3 [ 1107.958651] should_fail.cold+0x5/0xa [ 1107.959049] ? radix_tree_node_alloc.constprop.0+0x1df/0x330 06:36:30 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xef00, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:30 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x128, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfc, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x23, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:36:30 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 06:36:30 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x127, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfb, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x12, "d8e20639e3fa6d572d418fb5feb9b3eaf7c3"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:36:30 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x2, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:30 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xeffdffff00000000}}], 0x1, 0x0) 06:36:30 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 06:36:30 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 1107.959639] should_failslab+0x5/0x10 [ 1107.960222] kmem_cache_alloc+0x5b/0x480 [ 1107.960637] radix_tree_node_alloc.constprop.0+0x1df/0x330 [ 1107.961209] idr_get_free+0x4b5/0x8f0 [ 1107.961619] idr_alloc_u32+0x16c/0x2c0 [ 1107.962011] ? __fprop_add_percpu_max+0x1a0/0x1a0 [ 1107.962507] ? lock_acquire+0x1b2/0x4d0 [ 1107.962916] idr_alloc_cyclic+0x102/0x230 [ 1107.963336] ? idr_alloc+0x130/0x130 [ 1107.963715] ? rwlock_bug.part.0+0x90/0x90 [ 1107.964159] alloc_pid+0x533/0xd80 [ 1107.964532] ? copy_namespaces+0x1c1/0x450 [ 1107.964963] copy_process+0x3d02/0x6be0 [ 1107.965368] ? __stack_depot_save+0x35/0x450 [ 1107.965838] ? __cleanup_sighand+0xb0/0xb0 [ 1107.966296] ? lock_is_held_type+0xd7/0x130 [ 1107.966785] ? find_held_lock+0x2c/0x110 [ 1107.967244] ? create_io_worker+0x1d0/0x620 [ 1107.967729] ? io_worker_handle_work+0x17f0/0x17f0 [ 1107.968271] create_io_thread+0xb6/0xf0 [ 1107.968717] ? copy_init_mm+0x20/0x20 [ 1107.969122] ? mark_held_locks+0x9e/0xe0 [ 1107.969591] ? io_worker_handle_work+0x17f0/0x17f0 [ 1107.970151] ? lockdep_init_map_type+0x2c3/0x7a0 [ 1107.970692] create_io_worker+0x248/0x620 [ 1107.971162] io_wqe_enqueue+0x692/0xb90 [ 1107.971630] ? create_io_worker+0x620/0x620 [ 1107.972122] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1107.972702] ? lock_is_held_type+0xd7/0x130 [ 1107.973191] io_queue_async_work+0x271/0x5a0 [ 1107.973670] io_queue_sqe_arm_apoll+0xd1/0x1a0 [ 1107.974186] io_req_task_submit+0x3b3/0x530 [ 1107.974670] tctx_task_work+0x1d7/0x750 [ 1107.975116] ? __io_submit_flush_completions+0x3b0/0x3b0 [ 1107.975717] ? rwlock_bug.part.0+0x90/0x90 [ 1107.976188] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1107.976704] task_work_run+0xe2/0x1a0 [ 1107.977142] exit_to_user_mode_prepare+0x1b4/0x1c0 [ 1107.977660] syscall_exit_to_user_mode+0x19/0x50 [ 1107.978187] do_syscall_64+0x48/0x90 [ 1107.978618] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1107.979182] RIP: 0033:0x7fcb3f1eeb19 [ 1107.979596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1107.981637] RSP: 002b:00007fcb3c764188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1107.982475] RAX: 0000000000000001 RBX: 00007fcb3f301f60 RCX: 00007fcb3f1eeb19 [ 1107.983243] RDX: 0000000000000000 RSI: 0000000000100001 RDI: 0000000000000003 [ 1107.984025] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1107.984809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1107.985598] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1107.986387] [ 1108.031766] FAULT_INJECTION: forcing a failure. [ 1108.031766] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1108.034436] CPU: 1 PID: 7610 Comm: syz-executor.6 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1108.036243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1108.038762] Call Trace: [ 1108.039339] [ 1108.039831] dump_stack_lvl+0x8b/0xb3 [ 1108.040715] should_fail.cold+0x5/0xa [ 1108.041611] _copy_to_user+0x2e/0x150 [ 1108.042471] simple_read_from_buffer+0xcc/0x160 [ 1108.043512] proc_fail_nth_read+0x194/0x220 [ 1108.044502] ? proc_fault_inject_read+0x230/0x230 [ 1108.045598] ? security_file_permission+0xb1/0xd0 [ 1108.046691] ? proc_fault_inject_read+0x230/0x230 [ 1108.047774] vfs_read+0x1b6/0x5f0 [ 1108.048574] ksys_read+0x12d/0x250 [ 1108.049382] ? __ia32_sys_pwrite64+0x230/0x230 [ 1108.050444] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1108.051596] do_syscall_64+0x3b/0x90 [ 1108.052449] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1108.053610] RIP: 0033:0x7fc4f663d69c [ 1108.054450] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1108.058543] RSP: 002b:00007fc4f3c00170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1108.060257] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fc4f663d69c [ 1108.061872] RDX: 000000000000000f RSI: 00007fc4f3c001e0 RDI: 0000000000000004 [ 1108.063480] RBP: 00007fc4f3c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1108.065089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1108.066717] R13: 00007ffc11d9b5df R14: 00007fc4f3c00300 R15: 0000000000022000 [ 1108.068353] 06:36:30 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x3, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:30 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100002, 0x0, 0x0, 0x0, 0x0) 06:36:30 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x15, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bb"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:30 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) 06:36:30 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xf000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:30 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfd00000000000000}}], 0x1, 0x0) [ 1108.118136] FAULT_INJECTION: forcing a failure. [ 1108.118136] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1108.119313] CPU: 0 PID: 7632 Comm: syz-executor.3 Not tainted 5.16.0-rc4-next-20211208 #1 [ 1108.120352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1108.121804] Call Trace: [ 1108.122135] [ 1108.122423] dump_stack_lvl+0x8b/0xb3 [ 1108.122924] should_fail.cold+0x5/0xa [ 1108.123422] _copy_to_user+0x2e/0x150 [ 1108.123912] simple_read_from_buffer+0xcc/0x160 [ 1108.124513] proc_fail_nth_read+0x194/0x220 [ 1108.125069] ? proc_fault_inject_read+0x230/0x230 [ 1108.125695] ? security_file_permission+0xb1/0xd0 [ 1108.126319] ? proc_fault_inject_read+0x230/0x230 [ 1108.126931] vfs_read+0x1b6/0x5f0 [ 1108.127391] ksys_read+0x12d/0x250 [ 1108.127845] ? __ia32_sys_pwrite64+0x230/0x230 [ 1108.128429] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1108.129089] do_syscall_64+0x3b/0x90 [ 1108.129553] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1108.130054] RIP: 0033:0x7fcb3f1a169c [ 1108.130415] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1108.132171] RSP: 002b:00007fcb3c764170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1108.132901] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fcb3f1a169c [ 1108.133598] RDX: 000000000000000f RSI: 00007fcb3c7641e0 RDI: 0000000000000004 [ 1108.134288] RBP: 00007fcb3c7641d0 R08: 0000000000000000 R09: 0000000000000000 [ 1108.134980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1108.135661] R13: 00007ffddada926f R14: 00007fcb3c764300 R15: 0000000000022000 [ 1108.136361] 06:36:30 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x4, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:30 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x128, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfc, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x23, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:36:30 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100003, 0x0, 0x0, 0x0, 0x0) 06:36:30 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x15, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bb"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:42 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfdffffff00000000}}], 0x1, 0x0) 06:36:42 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x15, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bb"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:42 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100005, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x30000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:42 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x16c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x128, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfc, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x23, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x16c}}, 0x0) 06:36:42 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x5, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:42 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100002, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfeffffff00000000}}], 0x1, 0x0) 06:36:42 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100002, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x6, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:42 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x34000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:42 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100003, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100008, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x16, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd8"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:42 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x25, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:42 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xffff000000000000}}], 0x1, 0x0) 06:36:42 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100003, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x400300, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:42 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100005, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x10000f, 0x0, 0x0, 0x0, 0x0) 06:36:42 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x16, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd8"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x1, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x16, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd8"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:55 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x7, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:55 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100010, 0x0, 0x0, 0x0, 0x0) 06:36:55 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xffffff7f00000000}}], 0x1, 0x0) 06:36:55 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100005, 0x0, 0x0, 0x0, 0x0) 06:36:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x25, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:55 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xf0ffff, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:55 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100008, 0x0, 0x0, 0x0, 0x0) 06:36:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12a, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xfe, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x25, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:55 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x9, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:55 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xffffffff00000000}}], 0x1, 0x0) 06:36:55 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x1000000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:36:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x26, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e09"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:36:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x148, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x103, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x148}}, 0x0) 06:36:55 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xfffffffffffff000}}], 0x1, 0x0) 06:36:55 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100300, 0x0, 0x0, 0x0, 0x0) 06:37:10 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x2000000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:37:10 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x2}}], 0x1, 0x0) 06:37:10 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 06:37:10 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x10000f, 0x0, 0x0, 0x0, 0x0) 06:37:10 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x148, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x103, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x148}}, 0x0) 06:37:10 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x26, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e09"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:37:10 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xf, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:37:10 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100008, 0x0, 0x0, 0x0, 0x0) 06:37:10 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x3000000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:37:10 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x10000f, 0x0, 0x0, 0x0, 0x0) 06:37:10 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x170, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x12b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xff, {0x0, 0x6, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x26, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e09"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x170}}, 0x0) 06:37:10 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x3}}], 0x1, 0x0) 06:37:10 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x4000000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:37:24 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x148, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x103, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd7, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x3, 0x25, "a5ac28d78761ea18129ddbb04888320b6cd34f3c130537301f64d9d27a08761d30ac5fd5ca"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x148}}, 0x0) 06:37:24 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x4}}], 0x1, 0x0) 06:37:24 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0x5000000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:37:24 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100300, 0x0, 0x0, 0x0, 0x0) 06:37:24 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100010, 0x0, 0x0, 0x0, 0x0) 06:37:24 executing program 5: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x2, 0x0, 0x0, 0x0) 06:37:24 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r1, 0x5, 0xc5, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x24}}, 0x0) 06:37:24 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x14c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @random=0x5, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x105, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @mic={0x8c, 0x10, {0x75, "620f5bddff16", @short="361827234a6b11a3"}}, @fast_bss_trans={0x37, 0xd9, {0x0, 0x5, "ad873c1384b617bf36ae364793bfa074", "72694036591addf2a773c165174792d1827a8476b737e61c9f60a1803e77af2b", "c1d91e33d95ea5d4852ff0f3669fbf8ca946de06c9d786c0720d6367e44639f3", [{0x2, 0x1b, "7cb6ce314b50062dbd8d829f7607f1a6d97dd1d2b56b569cf62d85"}, {0x0, 0x27, "25df623548e7a384a3ecb3a1807357e747c8ea7b6752c110099101476bac99bfd4c2ea622e0984"}, {0x0, 0x17, "d8e20639e3fa6d572d418fb5feb9b3eaf7c31299bbd813"}, {0x0, 0x1a, "1e58fe1c224f161f2e8cee5c8889a6d118c02cfac52ff09ee241"}, {0x0, 0xa, "76ecf819b7b83733b38d"}]}}]}]]}, 0x14c}}, 0x0) [ 1164.668127] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1164.671751] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1164.674133] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1164.677832] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1164.679904] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1164.681687] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1166.695248] Bluetooth: hci4: command 0x0409 tx timeout [ 1168.744247] Bluetooth: hci4: command 0x041b tx timeout [ 1170.791602] Bluetooth: hci4: command 0x040f tx timeout [ 1172.839348] Bluetooth: hci4: command 0x0419 tx timeout [ 1173.101576] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1173.103251] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1173.105938] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1173.148884] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1173.150519] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1173.152888] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1289.639265] Bluetooth: hci4: command 0x0406 tx timeout [ 1325.479322] INFO: task syz-executor.3:7869 blocked for more than 143 seconds. [ 1325.481625] Not tainted 5.16.0-rc4-next-20211208 #1 [ 1325.483388] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1325.485717] task:syz-executor.3 state:D stack:28760 pid: 7869 ppid: 298 flags:0x00024004 [ 1325.487746] Call Trace: [ 1325.488287] [ 1325.488753] __schedule+0x882/0x2160 [ 1325.489657] ? io_schedule_timeout+0x180/0x180 [ 1325.490633] schedule+0xd2/0x260 [ 1325.492325] io_uring_cancel_generic+0x537/0x68a [ 1325.493559] ? io_uring_setup.cold+0x23ac/0x23ac [ 1325.494550] ? lock_release+0x3b2/0x6f0 [ 1325.495456] ? do_exit+0x253/0x2960 [ 1325.496263] ? lock_downgrade+0x6d0/0x6d0 [ 1325.497153] ? wait_woken+0x1f0/0x1f0 [ 1325.497928] ? rwlock_bug.part.0+0x90/0x90 [ 1325.498859] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1325.499892] do_exit+0x604/0x2960 [ 1325.500648] ? lock_release+0x3b2/0x6f0 [ 1325.501562] ? mm_update_next_owner+0x7d0/0x7d0 [ 1325.502635] ? lock_downgrade+0x6d0/0x6d0 [ 1325.503573] ? do_raw_spin_lock+0x121/0x260 [ 1325.505163] do_group_exit+0x125/0x310 [ 1325.506428] get_signal+0x349/0x2690 [ 1325.507238] ? free_unref_page+0x301/0x590 [ 1325.508171] ? lock_downgrade+0x6d0/0x6d0 [ 1325.509096] ? free_unref_page_commit.constprop.0+0x279/0x5e0 [ 1325.510435] ? signal_setup_done+0x4e0/0x4e0 [ 1325.511396] ? free_unref_page+0x3e3/0x590 [ 1325.512304] arch_do_signal_or_restart+0x2b0/0x1720 [ 1325.513426] ? put_task_stack+0x1d7/0x3c0 [ 1325.514316] ? finish_task_switch.isra.0+0x650/0x870 [ 1325.515488] ? get_sigframe_size+0x10/0x10 [ 1325.516412] ? __schedule+0x88a/0x2160 [ 1325.517264] ? io_schedule_timeout+0x180/0x180 [ 1325.518370] ? __x64_sys_futex_time32+0x480/0x480 [ 1325.519405] exit_to_user_mode_prepare+0x143/0x1c0 [ 1325.520459] syscall_exit_to_user_mode+0x19/0x50 [ 1325.521551] do_syscall_64+0x48/0x90 [ 1325.522361] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1325.523477] RIP: 0033:0x7fcb3f1eeb19 [ 1325.524309] RSP: 002b:00007fcb3c743218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1325.526004] RAX: 0000000000000001 RBX: 00007fcb3f302028 RCX: 00007fcb3f1eeb19 [ 1325.527522] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcb3f30202c [ 1325.529133] RBP: 00007fcb3f302020 R08: 000000000000000e R09: 0000000000000000 [ 1325.530665] R10: 0000000000000001 R11: 0000000000000246 R12: 00007fcb3f30202c [ 1325.532223] R13: 00007ffddada926f R14: 00007fcb3c743300 R15: 0000000000022000 [ 1325.533793] [ 1325.534376] [ 1325.534376] Showing all locks held in the system: [ 1325.535698] 1 lock held by khungtaskd/25: [ 1325.536584] #0: ffffffff85201860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 1325.538636] 2 locks held by in:imklog/187: [ 1325.539524] #0: ffff88800d3e2d70 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 1325.541415] #1: ffff88800e93ef48 (&object->lock){..-.}-{2:2}, at: kmem_cache_alloc+0x3b/0x480 [ 1325.543270] [ 1325.543618] ============================================= [ 1325.543618] VM DIAGNOSIS: 06:40:08 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000 RSI=00000000ffffffff RDI=ffffffff8466b1c0 RBP=ffffffff8466b1c0 RSP=ffff8880159a7c18 R8 =00000000000001b0 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffff88800fa78000 R13=ffff88800fa789a8 R14=00000000ffffffff R15=0000000000092cc0 RIP=ffffffff84061859 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007eff5d9b1900 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007eff5d0904e8 CR3=000000000eaac000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM01=0000000000000000 0000000000000000 3030623438613630 3638616663356134 YMM02=0000000000000000 0000000000000000 3830306234386136 3036386166633561 YMM03=0000000000000000 0000000000000000 2f6c616e72756f6a 2f676f6c2f6e7572 YMM04=0000000000000000 0000000000000000 fed05064372422b2 00000000002f7650 YMM05=0000000000000000 0000000000000000 d3fdd5f48436fbd7 00000000000aeac8 YMM06=0000000000000000 0000000000000000 cbc68964c4103937 00000000000ae980 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 44495f474f4c5359 530069253d595449 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 2000000000000000 2000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff82368a9c RDI=ffffffff87387a40 RBP=ffffffff87387a00 RSP=ffff88800831f8a8 R8 =000000000000002a R9 =000000000000006f R10=ffffffff8234f85b R11=000000000000000a R12=0000000000000020 R13=fffffbfff0e70f93 R14=fffffbfff0e70f4a R15=dffffc0000000000 RIP=ffffffff82368af0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007eff5cee07d0 CR3=000000001d056000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM02=0000000000000000 0000000000000000 0000000000000000 4187b5cb40000000 YMM03=0000000000000000 0000000000000000 0000ff0000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 732f6c61636f6c2f 7273752f3d485441 YMM05=0000000000000000 0000000000000000 622f6c61636f6c2f 7273752f3a6e6962 YMM06=0000000000000000 0000000000000000 73752f3a6e696273 2f7273752f3a6e69 YMM07=0000000000000000 0000000000000000 6e69622f3a6e6962 732f3a6e69622f72 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000