, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c05210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:18 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001800210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:18 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:27:18 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c06210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:18 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

[ 1832.796869] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1564 sclass=netlink_route_socket pid=16735 comm=syz-executor.3
04:27:18 executing program 1:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x42000080)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={<r0=>0x0, ""/256, <r1=>0x0, <r2=>0x0})
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x102, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f00000006c0)={0x0, ""/256, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x80, "5fabd34a60e47f"})
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00')
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
renameat(r6, &(0x7f0000000080)='./mnt\x00', r5, &(0x7f00000001c0)='./mnt\x00')
r7 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = pidfd_getfd(0xffffffffffffffff, r7, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {<r9=>0x0}, {}, {}, {}, {}, {}, {<r10=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r11=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r12=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r13=>0x0}, {}, {}, {}, {}, {}, {0x0, <r14=>0x0}], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000001540)={0x0, ""/256, 0x0, <r15=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r8, 0xd000943d, &(0x7f0000000340)={0x8, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {0x0, r14}], 0x5, "b53acec1810ff0"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={<r16=>0x0, ""/256, <r17=>0x0, <r18=>0x0})
r19 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x102, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r19, 0x81f8943c, &(0x7f00000006c0)={0x0, ""/256, <r20=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r17}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r20}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r16}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}], 0x80, "5fabd34a60e47f"})

04:27:18 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001900210c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1832.806290] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1564 sclass=netlink_route_socket pid=16739 comm=syz-executor.3
[ 1832.840129] 9pnet: Insufficient options for proto=fd
[ 1832.844865] 9pnet: Insufficient options for proto=fd
04:27:18 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c07210c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1832.890885] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1820 sclass=netlink_route_socket pid=16816 comm=syz-executor.3
04:27:18 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 1832.925359] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1820 sclass=netlink_route_socket pid=16829 comm=syz-executor.3
[ 1832.950766] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 1832.951798] CPU: 1 PID: 16864 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 1832.952622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1832.953620] Call Trace:
[ 1832.953944]  dump_stack+0x107/0x167
[ 1832.954380]  sysfs_warn_dup.cold+0x1c/0x29
[ 1832.954881]  sysfs_do_create_link_sd+0x122/0x140
[ 1832.955445]  sysfs_create_link+0x5f/0xc0
[ 1832.955931]  device_add+0x703/0x1c50
[ 1832.956374]  ? devlink_add_symlinks+0x970/0x970
[ 1832.956933]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 1832.957566]  wiphy_register+0x1da6/0x2850
[ 1832.958061]  ? wiphy_unregister+0xb90/0xb90
[ 1832.958578]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 1832.959211]  ieee80211_register_hw+0x23c5/0x38b0
[ 1832.959784]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 1832.960355]  ? net_generic+0xdb/0x2b0
[ 1832.960817]  ? lockdep_init_map_type+0x2c7/0x780
[ 1832.961378]  ? memset+0x20/0x50
[ 1832.961772]  ? __hrtimer_init+0x12c/0x270
[ 1832.962264]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 1832.962859]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 1832.963406]  ? hwsim_new_radio_nl+0x967/0x1080
[ 1832.963938]  ? memcpy+0x39/0x60
[ 1832.964326]  hwsim_new_radio_nl+0x991/0x1080
[ 1832.964841]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1832.965462]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 1832.966235]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 1832.966995]  genl_family_rcv_msg_doit+0x22d/0x330
[ 1832.967561]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 1832.968330]  ? cap_capable+0x1cd/0x230
[ 1832.968792]  ? ns_capable+0xe2/0x110
[ 1832.969233]  genl_rcv_msg+0x36a/0x5a0
[ 1832.969686]  ? genl_get_cmd+0x480/0x480
[ 1832.970151]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1832.970757]  ? lock_release+0x680/0x680
[ 1832.971218]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1832.971745]  netlink_rcv_skb+0x14b/0x430
[ 1832.972221]  ? genl_get_cmd+0x480/0x480
[ 1832.972688]  ? netlink_ack+0xab0/0xab0
[ 1832.973147]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1832.973691]  ? netlink_unicast+0xc4/0xa00
[ 1832.974176]  genl_rcv+0x24/0x40
[ 1832.974564]  netlink_unicast+0x6ce/0xa00
[ 1832.975041]  ? netlink_attachskb+0xab0/0xab0
[ 1832.975567]  netlink_sendmsg+0x90f/0xe00
[ 1832.976048]  ? netlink_unicast+0xa00/0xa00
[ 1832.976546]  ? netlink_unicast+0xa00/0xa00
[ 1832.977040]  __sock_sendmsg+0x154/0x190
[ 1832.977518]  ____sys_sendmsg+0x70d/0x870
[ 1832.977994]  ? sock_write_iter+0x3d0/0x3d0
[ 1832.978488]  ? do_recvmmsg+0x6d0/0x6d0
[ 1832.978950]  ___sys_sendmsg+0xf3/0x170
[ 1832.979410]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1832.979945]  ? __fget_files+0x2cf/0x520
[ 1832.980408]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.980891]  ? clockevents_program_event+0x14b/0x360
[ 1832.981506]  ? __fget_files+0x2f8/0x520
[ 1832.981980]  ? __fget_light+0xea/0x290
[ 1832.982435]  __sys_sendmsg+0xe5/0x1b0
[ 1832.982877]  ? __sys_sendmsg_sock+0x40/0x40
[ 1832.983386]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1832.983994]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1832.984592]  ? trace_hardirqs_on+0x5b/0x180
[ 1832.985092]  do_syscall_64+0x33/0x40
[ 1832.985535]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1832.986129] RIP: 0033:0x7f7bcd366b19
[ 1832.986566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1832.988693] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1832.989577] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 1832.990395] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 1832.991213] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 1832.992033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1832.992849] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:27:18 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:27:18 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1)

04:27:18 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

04:27:18 executing program 5:
unshare(0x1a040040)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x14020000)

[ 1833.029841] 9pnet: Insufficient options for proto=fd
[ 1833.044567] 9pnet: Insufficient options for proto=fd
04:27:33 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x8000000)

04:27:33 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001a00210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:33 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

04:27:33 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1847.955056] 9pnet: Insufficient options for proto=fd
04:27:33 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c09210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:33 executing program 1:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x42000080)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={<r0=>0x0, ""/256, <r1=>0x0, <r2=>0x0})
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x102, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f00000006c0)={0x0, ""/256, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x80, "5fabd34a60e47f"})
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00')
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
renameat(r6, &(0x7f0000000080)='./mnt\x00', r5, &(0x7f00000001c0)='./mnt\x00')
r7 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = pidfd_getfd(0xffffffffffffffff, r7, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {<r9=>0x0}, {}, {}, {}, {}, {}, {<r10=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r11=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r12=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r13=>0x0}, {}, {}, {}, {}, {}, {0x0, <r14=>0x0}], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000001540)={0x0, ""/256, 0x0, <r15=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r8, 0xd000943d, &(0x7f0000000340)={0x8, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {0x0, r14}], 0x5, "b53acec1810ff0"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={<r16=>0x0, ""/256, <r17=>0x0, <r18=>0x0})
r19 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x102, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r19, 0x81f8943c, &(0x7f00000006c0)={0x0, ""/256, <r20=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r17}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r20}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r16}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}], 0x80, "5fabd34a60e47f"})

04:27:33 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:27:33 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:27:33 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 1847.978235] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2332 sclass=netlink_route_socket pid=17054 comm=syz-executor.3
[ 1847.989444] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 1847.990919] CPU: 0 PID: 17057 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 1847.991919] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1847.993105] Call Trace:
[ 1847.993486]  dump_stack+0x107/0x167
[ 1847.994016]  sysfs_warn_dup.cold+0x1c/0x29
[ 1847.994629]  sysfs_do_create_link_sd+0x122/0x140
[ 1847.995310]  sysfs_create_link+0x5f/0xc0
[ 1847.995891]  device_add+0x703/0x1c50
[ 1847.996439]  ? devlink_add_symlinks+0x970/0x970
[ 1847.997115]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 1847.997892]  wiphy_register+0x1da6/0x2850
[ 1847.998493]  ? wiphy_unregister+0xb90/0xb90
[ 1847.999103]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 1847.999871]  ieee80211_register_hw+0x23c5/0x38b0
[ 1848.000566]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 1848.001135] 9pnet: Insufficient options for proto=fd
[ 1848.001248]  ? net_generic+0xdb/0x2b0
[ 1848.001273]  ? lockdep_init_map_type+0x2c7/0x780
[ 1848.003593]  ? memset+0x20/0x50
[ 1848.004065]  ? __hrtimer_init+0x12c/0x270
[ 1848.004661]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 1848.005388]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 1848.006053]  ? hwsim_new_radio_nl+0x967/0x1080
[ 1848.006692]  ? memcpy+0x39/0x60
[ 1848.007167]  hwsim_new_radio_nl+0x991/0x1080
[ 1848.007803]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1848.008566]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 1848.009515]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 1848.010434]  genl_family_rcv_msg_doit+0x22d/0x330
[ 1848.011122]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 1848.012065]  ? cap_capable+0x1cd/0x230
[ 1848.012627]  ? ns_capable+0xe2/0x110
[ 1848.013162]  genl_rcv_msg+0x36a/0x5a0
[ 1848.013715]  ? genl_get_cmd+0x480/0x480
[ 1848.014287]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1848.015020]  ? lock_release+0x680/0x680
[ 1848.015589]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1848.016224]  netlink_rcv_skb+0x14b/0x430
[ 1848.016801]  ? genl_get_cmd+0x480/0x480
[ 1848.017369]  ? netlink_ack+0xab0/0xab0
[ 1848.017935]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1848.018580]  ? is_vmalloc_addr+0x7b/0xb0
[ 1848.019156]  genl_rcv+0x24/0x40
[ 1848.019621]  netlink_unicast+0x6ce/0xa00
[ 1848.020208]  ? netlink_attachskb+0xab0/0xab0
[ 1848.020842]  netlink_sendmsg+0x90f/0xe00
[ 1848.021442]  ? netlink_unicast+0xa00/0xa00
[ 1848.022060]  ? netlink_unicast+0xa00/0xa00
[ 1848.022662]  __sock_sendmsg+0x154/0x190
[ 1848.023230]  ____sys_sendmsg+0x70d/0x870
[ 1848.023809]  ? trace_hardirqs_on+0x5b/0x180
[ 1848.024416]  ? sock_write_iter+0x3d0/0x3d0
[ 1848.025000]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1848.025786]  ? ___sys_sendmsg+0xd2/0x170
[ 1848.026371]  ? ___sys_sendmsg+0xdc/0x170
[ 1848.026936]  ___sys_sendmsg+0xf3/0x170
[ 1848.027493]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1848.028130]  ? __fget_files+0x2cf/0x520
[ 1848.028695]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.029285]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1848.030055]  ? trace_hardirqs_on+0x5b/0x180
[ 1848.030668]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1848.031436]  ? __fget_files+0x2f8/0x520
[ 1848.032004]  ? __fget_light+0xea/0x290
[ 1848.032560]  __sys_sendmsg+0xe5/0x1b0
[ 1848.033097]  ? __sys_sendmsg_sock+0x40/0x40
[ 1848.033701]  ? io_schedule_timeout+0x140/0x140
[ 1848.034341]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1848.035060]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1848.035770]  ? trace_hardirqs_on+0x5b/0x180
[ 1848.036371]  do_syscall_64+0x33/0x40
[ 1848.036891]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1848.037612] RIP: 0033:0x7f7bcd366b19
[ 1848.038123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1848.040675] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1848.041746] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 1848.042738] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 1848.043720] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 1848.044715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1848.045697] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:27:33 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:27:33 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000006000210c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1848.062816] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2332 sclass=netlink_route_socket pid=17079 comm=syz-executor.3
04:27:33 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x10400c0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:27:33 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000007300210c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1848.146011] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=115 sclass=netlink_route_socket pid=17260 comm=syz-executor.6
[ 1848.148688] 9pnet: Insufficient options for proto=fd
04:27:33 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040102, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1848.158716] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=115 sclass=netlink_route_socket pid=17266 comm=syz-executor.6
04:27:33 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c0a210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:33 executing program 5:
unshare(0x8000000)
unshare(0x50c80)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1848.212443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2588 sclass=netlink_route_socket pid=17287 comm=syz-executor.3
[ 1848.217979] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2588 sclass=netlink_route_socket pid=17290 comm=syz-executor.3
04:27:47 executing program 1:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:27:47 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:27:47 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x34, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x34}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:27:47 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c0f210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:47 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c02210c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1862.030617] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3868 sclass=netlink_route_socket pid=17398 comm=syz-executor.3
04:27:47 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 1862.034948] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=540 sclass=netlink_route_socket pid=17403 comm=syz-executor.6
04:27:47 executing program 5:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x2]}, 0x8)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000440)={0x168, 0x11, &(0x7f0000000040)})
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f00000004c0)=0x28)
mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x94020, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_9p2000}, {@cache_mmap}, {@access_any}], [{@pcr={'pcr', 0x3d, 0x3b}}, {@dont_hash}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, '#'}}, {@smackfshat={'smackfshat', 0x3d, '&^^:!]'}}, {@fscontext={'fscontext', 0x3d, 'root'}}]}})

[ 1862.045613] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=540 sclass=netlink_route_socket pid=17410 comm=syz-executor.6
04:27:47 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040108, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1862.062343] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 1862.063745] CPU: 0 PID: 17407 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1862.064686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1862.065827] Call Trace:
[ 1862.066190]  dump_stack+0x107/0x167
[ 1862.066684]  sysfs_warn_dup.cold+0x1c/0x29
[ 1862.067274]  sysfs_do_create_link_sd+0x122/0x140
[ 1862.067934]  sysfs_create_link+0x5f/0xc0
[ 1862.068505]  device_add+0x703/0x1c50
[ 1862.069014]  ? devlink_add_symlinks+0x970/0x970
[ 1862.069656]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 1862.070374]  wiphy_register+0x1da6/0x2850
[ 1862.070938]  ? wiphy_unregister+0xb90/0xb90
[ 1862.071531]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 1862.072251]  ieee80211_register_hw+0x23c5/0x38b0
[ 1862.072900]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 1862.073529] 9pnet: Insufficient options for proto=fd
[ 1862.073556]  ? net_generic+0xdb/0x2b0
[ 1862.073573]  ? lockdep_init_map_type+0x2c7/0x780
[ 1862.073591]  ? memset+0x20/0x50
[ 1862.076273]  ? __hrtimer_init+0x12c/0x270
[ 1862.076851]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 1862.077539]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 1862.078160]  ? hwsim_new_radio_nl+0x967/0x1080
[ 1862.078772]  ? memcpy+0x39/0x60
[ 1862.079221]  hwsim_new_radio_nl+0x991/0x1080
[ 1862.079817]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1862.080523]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 1862.081434]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 1862.082318]  genl_family_rcv_msg_doit+0x22d/0x330
[ 1862.082966]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 1862.083870]  ? cap_capable+0x1cd/0x230
[ 1862.084402]  ? ns_capable+0xe2/0x110
[ 1862.084912]  genl_rcv_msg+0x36a/0x5a0
[ 1862.085439]  ? genl_get_cmd+0x480/0x480
[ 1862.085980]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1862.086672]  ? lock_release+0x680/0x680
[ 1862.087207]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1862.087812]  netlink_rcv_skb+0x14b/0x430
[ 1862.088359]  ? genl_get_cmd+0x480/0x480
[ 1862.088896]  ? netlink_ack+0xab0/0xab0
[ 1862.089450]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1862.090067]  ? is_vmalloc_addr+0x7b/0xb0
[ 1862.090615]  genl_rcv+0x24/0x40
[ 1862.091064]  netlink_unicast+0x6ce/0xa00
[ 1862.091610]  ? netlink_attachskb+0xab0/0xab0
[ 1862.092212]  netlink_sendmsg+0x90f/0xe00
[ 1862.092767]  ? netlink_unicast+0xa00/0xa00
[ 1862.093348]  ? netlink_unicast+0xa00/0xa00
[ 1862.093922]  __sock_sendmsg+0x154/0x190
[ 1862.094455]  ____sys_sendmsg+0x70d/0x870
[ 1862.095008]  ? sock_write_iter+0x3d0/0x3d0
[ 1862.095576]  ? do_recvmmsg+0x6d0/0x6d0
[ 1862.096111]  ___sys_sendmsg+0xf3/0x170
[ 1862.096636]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1862.097263]  ? __fget_files+0x2cf/0x520
[ 1862.097798]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.098356]  ? finish_task_switch+0x126/0x5d0
[ 1862.098967]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.099538]  ? __fget_files+0x2f8/0x520
[ 1862.100093]  ? __fget_light+0xea/0x290
[ 1862.100637]  __sys_sendmsg+0xe5/0x1b0
[ 1862.101160]  ? __sys_sendmsg_sock+0x40/0x40
[ 1862.101770]  ? io_schedule_timeout+0x140/0x140
[ 1862.102406]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1862.103117]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1862.103826]  ? trace_hardirqs_on+0x5b/0x180
[ 1862.104426]  do_syscall_64+0x33/0x40
[ 1862.104947]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1862.105642] RIP: 0033:0x7f67f1462b19
[ 1862.106160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1862.108638] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1862.109677] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1862.110638] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 1862.111603] RBP: 00007f67f14bcf6d R08: 0000000000000000 R09: 0000000000000000
[ 1862.112556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1862.113506] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 1862.155411] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=18460 sclass=netlink_route_socket pid=17486 comm=syz-executor.3
04:27:47 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c48210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:47 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c03210c000000000000000007b342c940"], 0x28}}, 0x0)

04:27:47 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:27:47 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 1862.168271] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=796 sclass=netlink_route_socket pid=17517 comm=syz-executor.6
[ 1862.173510] 9pnet: Insufficient options for proto=fd
[ 1862.184335] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=18460 sclass=netlink_route_socket pid=17559 comm=syz-executor.3
[ 1862.191205] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=796 sclass=netlink_route_socket pid=17560 comm=syz-executor.6
04:27:47 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040111, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:27:47 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:27:47 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 1862.265137] 9pnet: Insufficient options for proto=fd
04:28:01 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c04210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:01 executing program 1:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:28:01 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:28:01 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c4c210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:01 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:01 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:01 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000200)={0x0, 0xfffefffffffffffd, 0xfffffffffffffffc})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, r2, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x40, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_loose}], [{@hash}, {@context={'context', 0x3d, 'user_u'}}, {@dont_appraise}, {@smackfsroot={'smackfsroot', 0x3d, '(@}^^.}-\\'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@dont_appraise}, {@fowner_lt={'fowner<', r2}}, {@seclabel}]}})

04:28:01 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x34, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x34}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 1876.317811] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1052 sclass=netlink_route_socket pid=17646 comm=syz-executor.6
[ 1876.333034] 9pnet: Insufficient options for proto=fd
[ 1876.346127] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19484 sclass=netlink_route_socket pid=17662 comm=syz-executor.3
[ 1876.364549] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19484 sclass=netlink_route_socket pid=17665 comm=syz-executor.3
04:28:01 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c05210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:01 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:01 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c68210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:01 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:01 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1876.472919] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1308 sclass=netlink_route_socket pid=17782 comm=syz-executor.6
[ 1876.496436] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1308 sclass=netlink_route_socket pid=17824 comm=syz-executor.6
[ 1876.521007] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26652 sclass=netlink_route_socket pid=17870 comm=syz-executor.3
[ 1876.531863] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26652 sclass=netlink_route_socket pid=17875 comm=syz-executor.3
[ 1876.549971] 9pnet: Insufficient options for proto=fd
04:28:01 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c06210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:01 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 1876.643005] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1564 sclass=netlink_route_socket pid=17885 comm=syz-executor.6
[ 1876.648273] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 1876.650850] CPU: 0 PID: 17659 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1876.652461] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1876.654394] Call Trace:
[ 1876.655010]  dump_stack+0x107/0x167
[ 1876.655857]  sysfs_warn_dup.cold+0x1c/0x29
[ 1876.656839]  sysfs_do_create_link_sd+0x122/0x140
[ 1876.657398] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1564 sclass=netlink_route_socket pid=17888 comm=syz-executor.6
[ 1876.657944]  sysfs_create_link+0x5f/0xc0
[ 1876.657968]  device_add+0x703/0x1c50
[ 1876.657995]  ? devlink_add_symlinks+0x970/0x970
[ 1876.663491]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 1876.664710]  wiphy_register+0x1da6/0x2850
[ 1876.665686]  ? wiphy_unregister+0xb90/0xb90
[ 1876.666690]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 1876.667919]  ieee80211_register_hw+0x23c5/0x38b0
[ 1876.669020]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 1876.670126]  ? net_generic+0xdb/0x2b0
[ 1876.671012]  ? lockdep_init_map_type+0x2c7/0x780
[ 1876.672103]  ? memset+0x20/0x50
[ 1876.672863]  ? __hrtimer_init+0x12c/0x270
[ 1876.673831]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 1876.674995]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 1876.676060]  ? hwsim_new_radio_nl+0x967/0x1080
[ 1876.677108]  ? memcpy+0x39/0x60
[ 1876.677880]  hwsim_new_radio_nl+0x991/0x1080
[ 1876.678900]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1876.680105]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 1876.681641]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 1876.683148]  genl_family_rcv_msg_doit+0x22d/0x330
[ 1876.684271]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 1876.685807]  ? cap_capable+0x1cd/0x230
[ 1876.686721]  ? ns_capable+0xe2/0x110
[ 1876.687585]  genl_rcv_msg+0x36a/0x5a0
[ 1876.688464]  ? genl_get_cmd+0x480/0x480
[ 1876.689380]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1876.690579]  ? lock_release+0x680/0x680
[ 1876.691494]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1876.692531]  netlink_rcv_skb+0x14b/0x430
[ 1876.693473]  ? genl_get_cmd+0x480/0x480
[ 1876.694391]  ? netlink_ack+0xab0/0xab0
[ 1876.695297]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1876.696351]  ? is_vmalloc_addr+0x7b/0xb0
[ 1876.697290]  genl_rcv+0x24/0x40
[ 1876.698058]  netlink_unicast+0x6ce/0xa00
[ 1876.698998]  ? netlink_attachskb+0xab0/0xab0
[ 1876.700023]  netlink_sendmsg+0x90f/0xe00
[ 1876.700965]  ? netlink_unicast+0xa00/0xa00
[ 1876.701958]  ? netlink_unicast+0xa00/0xa00
[ 1876.702935]  __sock_sendmsg+0x154/0x190
[ 1876.703853]  ____sys_sendmsg+0x70d/0x870
[ 1876.704791]  ? sock_write_iter+0x3d0/0x3d0
[ 1876.705776]  ? do_recvmmsg+0x6d0/0x6d0
[ 1876.706679]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.707923]  ? trace_hardirqs_on+0x5b/0x180
[ 1876.708917]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.710180]  ___sys_sendmsg+0xf3/0x170
[ 1876.711080]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1876.712139]  ? __fget_files+0x2cf/0x520
[ 1876.713068]  ? lock_downgrade+0x6d0/0x6d0
[ 1876.714069]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1876.715274]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.716515]  ? trace_hardirqs_on+0x5b/0x180
[ 1876.717520]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.718778]  ? sockfd_lookup_light+0xca/0x180
[ 1876.719809]  ? sockfd_lookup_light+0xca/0x180
[ 1876.720851]  __sys_sendmsg+0xe5/0x1b0
[ 1876.721736]  ? __sys_sendmsg_sock+0x40/0x40
[ 1876.722737]  ? trace_hardirqs_on+0x5b/0x180
[ 1876.723730]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.724989]  ? __x64_sys_sendmsg+0xd/0xb0
[ 1876.725953]  ? __sanitizer_cov_trace_pc+0x4/0x60
[ 1876.727048]  do_syscall_64+0x33/0x40
[ 1876.727906]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1876.729088] RIP: 0033:0x7f67f1462b19
[ 1876.729955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1876.734197] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1876.735991] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1876.737643] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 1876.739286] RBP: 00007f67f14bcf6d R08: 0000000000000000 R09: 0000000000000000
[ 1876.740928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1876.742587] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 1876.745258] 9pnet: Could not find request transport: fd0x0000000000000005
04:28:14 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c6c210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:14 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c07210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:14 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:14 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x34, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x34}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:28:14 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:14 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:28:14 executing program 1:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:28:14 executing program 5:
unshare(0x8000000)
clone3(&(0x7f0000000080)={0x1000000, 0x0, 0x0, 0x0, {0x3e}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1889.341209] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27676 sclass=netlink_route_socket pid=17897 comm=syz-executor.3
[ 1889.346937] 9pnet: Insufficient options for proto=fd
[ 1889.359288] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1820 sclass=netlink_route_socket pid=17914 comm=syz-executor.6
[ 1889.363019] 9pnet: Could not find request transport: fd0x0000000000000005
[ 1889.373578] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27676 sclass=netlink_route_socket pid=17915 comm=syz-executor.3
[ 1889.385674] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1820 sclass=netlink_route_socket pid=17916 comm=syz-executor.6
[ 1889.392977] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 1889.394101] CPU: 0 PID: 17912 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1889.394996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1889.396084] Call Trace:
[ 1889.396430]  dump_stack+0x107/0x167
[ 1889.396913]  sysfs_warn_dup.cold+0x1c/0x29
[ 1889.397470]  sysfs_do_create_link_sd+0x122/0x140
[ 1889.398091]  sysfs_create_link+0x5f/0xc0
[ 1889.398624]  device_add+0x703/0x1c50
[ 1889.399112]  ? devlink_add_symlinks+0x970/0x970
[ 1889.399731]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 1889.400415]  wiphy_register+0x1da6/0x2850
[ 1889.400956]  ? wiphy_unregister+0xb90/0xb90
[ 1889.401531]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 1889.402219]  ieee80211_register_hw+0x23c5/0x38b0
[ 1889.402854]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 1889.403481]  ? net_generic+0xdb/0x2b0
[ 1889.403975]  ? lockdep_init_map_type+0x2c7/0x780
[ 1889.404599]  ? memset+0x20/0x50
[ 1889.405023]  ? __hrtimer_init+0x12c/0x270
[ 1889.405584]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 1889.406242]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 1889.406846]  ? hwsim_new_radio_nl+0x967/0x1080
[ 1889.407432]  ? memcpy+0x39/0x60
[ 1889.407857]  hwsim_new_radio_nl+0x991/0x1080
[ 1889.408428]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1889.409156]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 1889.410023]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 1889.410868]  genl_family_rcv_msg_doit+0x22d/0x330
[ 1889.411487]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 1889.412332]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1889.413024]  ? trace_hardirqs_on+0x5b/0x180
[ 1889.413584]  ? cap_capable+0x1cd/0x230
[ 1889.414095]  ? ns_capable+0xe2/0x110
[ 1889.414585]  genl_rcv_msg+0x36a/0x5a0
[ 1889.415078]  ? genl_get_cmd+0x480/0x480
[ 1889.415596]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 1889.416264]  ? lock_release+0x680/0x680
[ 1889.416783]  netlink_rcv_skb+0x14b/0x430
[ 1889.417301]  ? genl_get_cmd+0x480/0x480
[ 1889.417833]  ? netlink_ack+0xab0/0xab0
[ 1889.418350]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1889.418939]  ? is_vmalloc_addr+0x7b/0xb0
[ 1889.419459]  genl_rcv+0x24/0x40
[ 1889.419884]  netlink_unicast+0x6ce/0xa00
[ 1889.420412]  ? netlink_attachskb+0xab0/0xab0
[ 1889.420988]  netlink_sendmsg+0x90f/0xe00
[ 1889.421521]  ? netlink_unicast+0xa00/0xa00
[ 1889.422079]  ? netlink_unicast+0xa00/0xa00
[ 1889.422628]  __sock_sendmsg+0x154/0x190
[ 1889.423146]  ____sys_sendmsg+0x70d/0x870
[ 1889.423681]  ? sock_write_iter+0x3d0/0x3d0
[ 1889.424229]  ? do_recvmmsg+0x6d0/0x6d0
[ 1889.424742]  ___sys_sendmsg+0xf3/0x170
[ 1889.425240]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1889.425834]  ? __fget_files+0x2cf/0x520
[ 1889.426342]  ? lock_downgrade+0x6d0/0x6d0
[ 1889.426881]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1889.427545]  ? futex_exit_release+0x220/0x220
[ 1889.428130]  ? clockevents_program_event+0x14b/0x360
[ 1889.428775]  ? __fget_files+0x2f8/0x520
[ 1889.429286]  ? __fget_light+0xea/0x290
[ 1889.429802]  __sys_sendmsg+0xe5/0x1b0
[ 1889.430292]  ? __sys_sendmsg_sock+0x40/0x40
[ 1889.430838]  ? __do_sys_futex+0x2bb/0x480
[ 1889.431366]  ? vfs_fallocate+0x519/0xda0
[ 1889.431884]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1889.432564]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1889.433230]  ? trace_hardirqs_on+0x5b/0x180
[ 1889.433795]  do_syscall_64+0x33/0x40
[ 1889.434270]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1889.434921] RIP: 0033:0x7f67f1462b19
[ 1889.435392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1889.437746] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1889.438730] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1889.439642] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 1889.440565] RBP: 00007f67f14bcf6d R08: 0000000000000000 R09: 0000000000000000
[ 1889.441478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1889.442390] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:28:14 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:14 executing program 5:
unshare(0x8000000)
unshare(0x20000)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
unshare(0x30000)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)

04:28:14 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c74210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:14 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c09210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:14 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:14 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1889.496966] 9pnet: Insufficient options for proto=fd
[ 1889.507079] 9pnet: Could not find request transport: fd0x0000000000000005
[ 1889.522608] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2332 sclass=netlink_route_socket pid=17961 comm=syz-executor.6
[ 1889.526124] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=29724 sclass=netlink_route_socket pid=17965 comm=syz-executor.3
[ 1889.533923] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2332 sclass=netlink_route_socket pid=17973 comm=syz-executor.6
[ 1889.533993] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=29724 sclass=netlink_route_socket pid=17974 comm=syz-executor.3
04:28:14 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x0, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:28:14 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c0a210c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1889.597242] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2588 sclass=netlink_route_socket pid=18011 comm=syz-executor.6
04:28:14 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:28:14 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

[ 1889.602574] 9pnet: Insufficient options for proto=fd
[ 1889.603756] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2588 sclass=netlink_route_socket pid=18017 comm=syz-executor.6
[ 1889.632657] 9pnet: Insufficient options for proto=fd
[ 1904.223067] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31260 sclass=netlink_route_socket pid=18158 comm=syz-executor.3
04:28:29 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
execveat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)=[&(0x7f0000000040)='!%&\x00', &(0x7f0000000080)='\\\x00'], &(0x7f00000001c0)=[&(0x7f0000000100)='[\x00', &(0x7f0000000140)='\x00', &(0x7f0000000180)=']\x00'], 0x800)
pidfd_send_signal(0xffffffffffffffff, 0x40, &(0x7f0000000200)={0x8, 0x401, 0x1000}, 0x0)
unshare(0x48000000)

04:28:29 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c7a210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:29 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x0, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:28:29 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

04:28:29 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c0f210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:29 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:29 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 1)

04:28:29 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x2}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1904.256797] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31260 sclass=netlink_route_socket pid=18170 comm=syz-executor.3
[ 1904.257741] 9pnet: Insufficient options for proto=fd
[ 1904.261690] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3868 sclass=netlink_route_socket pid=18171 comm=syz-executor.6
[ 1904.276727] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3868 sclass=netlink_route_socket pid=18177 comm=syz-executor.6
[ 1904.278405] FAULT_INJECTION: forcing a failure.
[ 1904.278405] name failslab, interval 1, probability 0, space 0, times 0
[ 1904.281875] 9pnet: Insufficient options for proto=fd
[ 1904.282154] CPU: 1 PID: 18172 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1904.284781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1904.286543] Call Trace:
[ 1904.287101]  dump_stack+0x107/0x167
[ 1904.287868]  should_fail.cold+0x5/0xa
[ 1904.288677]  should_failslab+0x5/0x20
[ 1904.289478]  __kmalloc_track_caller+0x79/0x370
[ 1904.290451]  ? strndup_user+0x74/0xe0
[ 1904.291252]  memdup_user+0x22/0xd0
[ 1904.292004]  strndup_user+0x74/0xe0
[ 1904.292772]  __x64_sys_mount+0x133/0x300
[ 1904.293638]  ? copy_mnt_ns+0xa00/0xa00
[ 1904.294462]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1904.295561]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1904.296653]  do_syscall_64+0x33/0x40
[ 1904.297436]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1904.298568] RIP: 0033:0x7f67f1462b19
[ 1904.299347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1904.303212] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1904.304824] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1904.306329] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1904.307833] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1904.309335] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1904.310853] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:28:29 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c48210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:29 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:28:29 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00600c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:29 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

04:28:29 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1904.450476] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=18460 sclass=netlink_route_socket pid=18197 comm=syz-executor.6
04:28:29 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 2)

[ 1904.465922] 9pnet: Insufficient options for proto=fd
[ 1904.491055] 9pnet: Insufficient options for proto=fd
04:28:29 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00600c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:29 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

[ 1904.571261] FAULT_INJECTION: forcing a failure.
[ 1904.571261] name failslab, interval 1, probability 0, space 0, times 0
[ 1904.573712] CPU: 1 PID: 18283 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1904.575164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1904.576882] Call Trace:
[ 1904.577438]  dump_stack+0x107/0x167
[ 1904.578214]  should_fail.cold+0x5/0xa
[ 1904.579005]  ? create_object.isra.0+0x3a/0xa30
[ 1904.579950]  should_failslab+0x5/0x20
[ 1904.580749]  kmem_cache_alloc+0x5b/0x310
[ 1904.581610]  create_object.isra.0+0x3a/0xa30
[ 1904.582527]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1904.583602]  __kmalloc_track_caller+0x177/0x370
[ 1904.584581]  ? strndup_user+0x74/0xe0
[ 1904.585379]  memdup_user+0x22/0xd0
[ 1904.586134]  strndup_user+0x74/0xe0
[ 1904.586893]  __x64_sys_mount+0x133/0x300
[ 1904.587741]  ? copy_mnt_ns+0xa00/0xa00
[ 1904.588559]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1904.589675]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1904.590754]  do_syscall_64+0x33/0x40
[ 1904.591526]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1904.592594] RIP: 0033:0x7f67f1462b19
[ 1904.593374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1904.597207] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1904.598801] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1904.600285] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1904.601786] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1904.603278] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1904.604752] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 1904.664392] 9p: Unknown uid 18446744073709551615
[ 1904.665076] 9pnet: Insufficient options for proto=fd
[ 1919.208460] FAULT_INJECTION: forcing a failure.
[ 1919.208460] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1919.210908] CPU: 1 PID: 18317 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1919.212207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1919.213761] Call Trace:
[ 1919.214268]  dump_stack+0x107/0x167
[ 1919.214969]  should_fail.cold+0x5/0xa
[ 1919.215683]  _copy_from_user+0x2e/0x1b0
[ 1919.216427]  memdup_user+0x65/0xd0
[ 1919.217105]  strndup_user+0x74/0xe0
[ 1919.217803]  __x64_sys_mount+0x133/0x300
[ 1919.218563]  ? copy_mnt_ns+0xa00/0xa00
[ 1919.219316]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1919.220291]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1919.221243]  do_syscall_64+0x33/0x40
[ 1919.221948]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1919.222904] RIP: 0033:0x7f67f1462b19
04:28:44 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:28:44 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:28:44 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:28:44 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c4c210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:44 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000000)='uid_map\x00')
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x304f000, 0x0, 0x0, 0x0, {0x24}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:28:44 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x0, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:28:44 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002103000000000000000007b342c940"], 0x28}}, 0x0)

04:28:44 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 3)

[ 1919.223580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1919.227455] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1919.228832] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1919.230168] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1919.231471] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1919.232781] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1919.234134] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 1919.237663] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19484 sclass=netlink_route_socket pid=18326 comm=syz-executor.6
[ 1919.244540] 9pnet: Insufficient options for proto=fd
[ 1919.246241] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1919.257648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19484 sclass=netlink_route_socket pid=18333 comm=syz-executor.6
[ 1919.264721] 9pnet: Insufficient options for proto=fd
04:28:44 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r1=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',loose,access=', @ANYRESDEC=r2, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r1, @ANYBLOB="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"])

04:28:44 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x2ed}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:28:44 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002109000000000000000007b342c940"], 0x28}}, 0x0)

04:28:44 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c68210c000000000000000007b342c940"], 0x28}}, 0x0)

04:28:44 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 1919.415023] 9pnet: Insufficient options for proto=fd
[ 1919.423423] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26652 sclass=netlink_route_socket pid=18444 comm=syz-executor.6
[ 1919.436399] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1919.442668] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1919.446697] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26652 sclass=netlink_route_socket pid=18448 comm=syz-executor.6
[ 1919.461989] 9pnet: Insufficient options for proto=fd
04:28:44 executing program 5:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x7f, 0x4)
unshare(0x8020000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:28:44 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 4)

04:28:44 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 1919.590082] FAULT_INJECTION: forcing a failure.
[ 1919.590082] name failslab, interval 1, probability 0, space 0, times 0
[ 1919.592783] CPU: 1 PID: 18454 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1919.594337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1919.596182] Call Trace:
[ 1919.596788]  dump_stack+0x107/0x167
[ 1919.597602]  should_fail.cold+0x5/0xa
[ 1919.598472]  ? copy_mount_options+0x55/0x180
[ 1919.599451]  should_failslab+0x5/0x20
[ 1919.600297]  kmem_cache_alloc_trace+0x55/0x320
[ 1919.601313]  ? _copy_from_user+0xfb/0x1b0
[ 1919.602260]  copy_mount_options+0x55/0x180
[ 1919.603203]  __x64_sys_mount+0x1a8/0x300
[ 1919.604120]  ? copy_mnt_ns+0xa00/0xa00
[ 1919.604993]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1919.606173]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1919.607319]  do_syscall_64+0x33/0x40
[ 1919.608151]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1919.609289] RIP: 0033:0x7f67f1462b19
[ 1919.610133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1919.614210] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1919.615891] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1919.617467] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1919.619066] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1919.620657] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1919.622248] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:29:01 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 5)

04:29:01 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:01 executing program 5:
unshare(0x8000000)
unshare(0xa6bae91d9a4ec95e)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:01 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210a000000000000000007b342c940"], 0x28}}, 0x0)

04:29:01 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c6c210c000000000000000007b342c940"], 0x28}}, 0x0)

04:29:01 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x38, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x4, 0x11}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x38}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:29:01 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:01 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1936.614335] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1936.617369] 9pnet: Insufficient options for proto=fd
04:29:01 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1936.636646] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:29:02 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 1936.643388] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27676 sclass=netlink_route_socket pid=18582 comm=syz-executor.6
[ 1936.649973] FAULT_INJECTION: forcing a failure.
[ 1936.649973] name failslab, interval 1, probability 0, space 0, times 0
[ 1936.653140] CPU: 0 PID: 18583 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1936.655035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1936.657297] Call Trace:
[ 1936.658028]  dump_stack+0x107/0x167
[ 1936.659023]  should_fail.cold+0x5/0xa
[ 1936.660060]  ? create_object.isra.0+0x3a/0xa30
[ 1936.661296]  should_failslab+0x5/0x20
[ 1936.662333]  kmem_cache_alloc+0x5b/0x310
[ 1936.663432]  create_object.isra.0+0x3a/0xa30
[ 1936.664612]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1936.665992]  kmem_cache_alloc_trace+0x151/0x320
[ 1936.667240]  ? _copy_from_user+0xfb/0x1b0
[ 1936.668359]  copy_mount_options+0x55/0x180
[ 1936.669500]  __x64_sys_mount+0x1a8/0x300
[ 1936.670599]  ? copy_mnt_ns+0xa00/0xa00
[ 1936.671650]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1936.673057]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1936.674458]  do_syscall_64+0x33/0x40
[ 1936.675462]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1936.676843] RIP: 0033:0x7f67f1462b19
[ 1936.677853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1936.682809] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1936.684853] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1936.686783] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
04:29:02 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 1936.688700] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1936.690819] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1936.692768] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:29:02 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x38, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x4, 0x11}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x38}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 1936.719098] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27676 sclass=netlink_route_socket pid=18644 comm=syz-executor.6
[ 1936.805204] 9p: Unknown uid 18446744073709551615
04:29:20 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 6)

04:29:20 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:20 executing program 5:
unshare(0x8000000)
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x5, 0x6, 0x9e, 0x7c, 0x0, 0x7, 0x20020, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000000), 0xd}, 0x1ab11, 0xda3, 0x20, 0x9, 0x570, 0x3, 0xd057, 0x0, 0x4, 0x0, 0x100000000}, r0, 0x7, r1, 0x1)
unshare(0x4000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:20 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:20 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c74210c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1955.456929] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1955.462765] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=29724 sclass=netlink_route_socket pid=18706 comm=syz-executor.6
[ 1955.469162] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:29:20 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002118000000000000000007b342c940"], 0x28}}, 0x0)

04:29:20 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x38, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x4, 0x11}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x38}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:29:20 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"]) (fail_nth: 1)

[ 1955.477714] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=29724 sclass=netlink_route_socket pid=18719 comm=syz-executor.6
[ 1955.482688] FAULT_INJECTION: forcing a failure.
[ 1955.482688] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1955.485510] CPU: 1 PID: 18708 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1955.487225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1955.489283] Call Trace:
[ 1955.489950]  dump_stack+0x107/0x167
[ 1955.490716]  should_fail.cold+0x5/0xa
[ 1955.491632]  _copy_from_user+0x2e/0x1b0
[ 1955.492638]  copy_mount_options+0x76/0x180
[ 1955.493523]  __x64_sys_mount+0x1a8/0x300
[ 1955.494381]  ? copy_mnt_ns+0xa00/0xa00
[ 1955.495298]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1955.496503]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1955.497726]  do_syscall_64+0x33/0x40
[ 1955.498615]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1955.499778] RIP: 0033:0x7f67f1462b19
[ 1955.500695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1955.504864] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1955.506766] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1955.508336] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1955.509839] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1955.511331] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1955.512846] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:29:20 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002128000000000000000007b342c940"], 0x28}}, 0x0)

04:29:20 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x38, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x4, 0x11, 0x0, 0x1, [@generic]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x38}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:29:20 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c7a210c000000000000000007b342c940"], 0x28}}, 0x0)

04:29:20 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 1955.615960] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:29:20 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 1955.622902] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31260 sclass=netlink_route_socket pid=18895 comm=syz-executor.6
[ 1955.629790] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1955.646736] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31260 sclass=netlink_route_socket pid=18920 comm=syz-executor.6
04:29:21 executing program 5:
unshare(0x2c000400)
unshare(0x41200)

04:29:21 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x38, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x4, 0x11, 0x0, 0x1, [@generic]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x38}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 1955.680368] 9p: Unknown uid 18446744073709551615
04:29:21 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x42a9}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:21 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 7)

04:29:21 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002160000000000000000007b342c940"], 0x28}}, 0x0)

04:29:21 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001cfd210c000000000000000007b342c940"], 0x28}}, 0x0)

04:29:21 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 1955.790338] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64796 sclass=netlink_route_socket pid=18943 comm=syz-executor.6
[ 1955.813290] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1955.813478] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64796 sclass=netlink_route_socket pid=18947 comm=syz-executor.6
[ 1955.832310] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1955.845992] FAULT_INJECTION: forcing a failure.
[ 1955.845992] name failslab, interval 1, probability 0, space 0, times 0
[ 1955.848651] CPU: 0 PID: 18948 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1955.850223] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1955.852093] Call Trace:
[ 1955.852688]  dump_stack+0x107/0x167
[ 1955.853505]  should_fail.cold+0x5/0xa
[ 1955.854372]  ? getname_flags.part.0+0x50/0x4f0
[ 1955.855397]  should_failslab+0x5/0x20
[ 1955.856255]  kmem_cache_alloc+0x5b/0x310
[ 1955.857174]  getname_flags.part.0+0x50/0x4f0
[ 1955.858173]  ? _copy_from_user+0xfb/0x1b0
[ 1955.859110]  user_path_at_empty+0xa1/0x100
[ 1955.860058]  __x64_sys_mount+0x1e9/0x300
[ 1955.860964]  ? copy_mnt_ns+0xa00/0xa00
[ 1955.861848]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1955.863029]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1955.864186]  do_syscall_64+0x33/0x40
[ 1955.865044]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1955.866210] RIP: 0033:0x7f67f1462b19
[ 1955.867043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1955.871192] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1955.872907] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1955.874516] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1955.876115] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1955.877716] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1955.879329] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:29:35 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xa942}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:35 executing program 5:
unshare(0x8000000)
unshare(0x44000000)
r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setpriority(0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0xfda1)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='fdinfo\x00')
getdents64(r1, &(0x7f00000007c0)=""/180, 0x200007d8)
getdents64(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, 0x0, 0x200049c4)
syz_genetlink_get_family_id$ipvs(0x0, r1)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f0000000000)={0x1, 0x8, 0x401})
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x1277, 0x0)
ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005)
fcntl$dupfd(0xffffffffffffffff, 0xac147466986f3dc5, r0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ip_vti0\x00'})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="018200000000000000000000000000000000f6f62f369fa061a7b0c3cc634fb90c482339edd6660ae4263260b1361512fdec7310cbeaa8ca75b1bf216113e67d96fd2c998088e09ac97ee483d364f96e957259223682bbbd9a960c8ac6ac8be625804654d4f2de10e9d099efa01a1efe9d", @ANYRES32=r3, @ANYBLOB], 0x1c}}, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYRESOCT], 0x100}, 0x1, 0x0, 0x0, 0x404c084}, 0x0)

04:29:35 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 8)

04:29:35 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002163000000000000000007b342c940"], 0x28}}, 0x0)

04:29:35 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x38, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x4, 0x11, 0x0, 0x1, [@generic]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x38}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:29:35 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00600c000000000000000007b342c940"], 0x28}}, 0x0)

04:29:35 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:36 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 1970.650593] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1970.656080] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1970.666432] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1970.667155] FAULT_INJECTION: forcing a failure.
[ 1970.667155] name failslab, interval 1, probability 0, space 0, times 0
[ 1970.671025] CPU: 0 PID: 19073 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1970.672584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1970.674474] Call Trace:
[ 1970.675072]  dump_stack+0x107/0x167
[ 1970.675889]  should_fail.cold+0x5/0xa
[ 1970.676748]  ? create_object.isra.0+0x3a/0xa30
[ 1970.677775]  should_failslab+0x5/0x20
[ 1970.678640]  kmem_cache_alloc+0x5b/0x310
[ 1970.679557]  create_object.isra.0+0x3a/0xa30
[ 1970.680539]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1970.681688]  kmem_cache_alloc+0x159/0x310
[ 1970.682635]  getname_flags.part.0+0x50/0x4f0
[ 1970.683625]  ? _copy_from_user+0xfb/0x1b0
[ 1970.684557]  user_path_at_empty+0xa1/0x100
[ 1970.685512]  __x64_sys_mount+0x1e9/0x300
[ 1970.686437]  ? copy_mnt_ns+0xa00/0xa00
[ 1970.687313]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1970.688490]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1970.689659]  do_syscall_64+0x33/0x40
[ 1970.690506]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1970.691661] RIP: 0033:0x7f67f1462b19
[ 1970.692500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1970.696671] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1970.698394] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1970.700015] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1970.701638] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1970.703274] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1970.704875] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:29:36 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:36 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c0021ffe0f505000000000007b342c940"], 0x28}}, 0x0)

04:29:36 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x40, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0xc, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba0"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x40}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:29:36 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xed02}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:36 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00600c000000000000000007b342c940"], 0x28}}, 0x0)

[ 1970.833359] 9p: Unknown uid 18446744073709551615
[ 1970.835985] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1970.847578] 9pnet: Could not find request transport: fd0x0000000000000004
04:29:36 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x3, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:36 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 9)

[ 1971.042016] FAULT_INJECTION: forcing a failure.
[ 1971.042016] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1971.044762] CPU: 0 PID: 19313 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1971.046346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1971.048231] Call Trace:
[ 1971.048833]  dump_stack+0x107/0x167
[ 1971.049671]  should_fail.cold+0x5/0xa
[ 1971.050553]  strncpy_from_user+0x34/0x470
[ 1971.051494]  getname_flags.part.0+0x95/0x4f0
[ 1971.052486]  ? _copy_from_user+0xfb/0x1b0
[ 1971.053428]  user_path_at_empty+0xa1/0x100
[ 1971.054394]  __x64_sys_mount+0x1e9/0x300
[ 1971.055303]  ? copy_mnt_ns+0xa00/0xa00
[ 1971.056189]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1971.057428]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1971.058601]  do_syscall_64+0x33/0x40
[ 1971.059442]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1971.060603] RIP: 0033:0x7f67f1462b19
[ 1971.061439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1971.065606] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1971.067332] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1971.068937] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1971.070553] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1971.072165] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[ 1971.073771] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:29:52 executing program 5:
unshare(0x8000000)
unshare(0x10000400)
unshare(0x48040800)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x60050000)

04:29:52 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 10)

04:29:52 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x40, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0xc, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba0"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x40}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:29:52 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002103000000000000000007b342c940"], 0x28}}, 0x0)

04:29:52 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:52 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:29:52 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:29:52 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c020000000000000007b342c940"], 0x28}}, 0x0)

[ 1987.559024] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1987.575911] FAULT_INJECTION: forcing a failure.
[ 1987.575911] name failslab, interval 1, probability 0, space 0, times 0
[ 1987.578506] CPU: 1 PID: 19421 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1987.579958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1987.581682] Call Trace:
[ 1987.582262]  dump_stack+0x107/0x167
[ 1987.583016]  should_fail.cold+0x5/0xa
[ 1987.583822]  ? alloc_fs_context+0x57/0x840
[ 1987.584707]  should_failslab+0x5/0x20
[ 1987.585495]  kmem_cache_alloc_trace+0x55/0x320
[ 1987.586458]  alloc_fs_context+0x57/0x840
[ 1987.587303]  path_mount+0xab1/0x21e0
[ 1987.588079]  ? strncpy_from_user+0x9e/0x470
[ 1987.588978]  ? finish_automount+0xa90/0xa90
[ 1987.589873]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1987.590842]  ? _copy_from_user+0xfb/0x1b0
[ 1987.591712]  __x64_sys_mount+0x282/0x300
[ 1987.592551]  ? copy_mnt_ns+0xa00/0xa00
[ 1987.593365]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1987.594466]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1987.595540]  do_syscall_64+0x33/0x40
[ 1987.596313]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1987.597383] RIP: 0033:0x7f67f1462b19
[ 1987.598161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1987.601998] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1987.603577] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1987.605055] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1987.606542] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1987.608024] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 1987.609497] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 1987.654423] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1987.657181] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 1987.660731] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1987.663647] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:29:53 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:53 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:53 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c030000000000000007b342c940"], 0x28}}, 0x0)

04:29:53 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002109000000000000000007b342c940"], 0x28}}, 0x0)

04:29:53 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x40, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0xc, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba0"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x40}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 1987.778086] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 1987.780087] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1987.783580] 9pnet: Insufficient options for proto=fd
[ 1987.788367] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 1987.810955] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:29:53 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 11)

04:29:53 executing program 5:
unshare(0x8000000)
unshare(0xc000200)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x4, 0x7}, 0x4)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
unshare(0x800)
getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f00000004c0)=0x28)
ftruncate(r1, 0xab)

04:29:53 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210a000000000000000007b342c940"], 0x28}}, 0x0)

04:29:53 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:29:53 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:29:53 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 1987.898709] FAULT_INJECTION: forcing a failure.
[ 1987.898709] name failslab, interval 1, probability 0, space 0, times 0
[ 1987.901289] CPU: 0 PID: 19648 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 1987.902904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1987.904777] Call Trace:
[ 1987.905368]  dump_stack+0x107/0x167
[ 1987.906197]  should_fail.cold+0x5/0xa
[ 1987.907097]  ? create_object.isra.0+0x3a/0xa30
[ 1987.908124]  should_failslab+0x5/0x20
[ 1987.909014]  kmem_cache_alloc+0x5b/0x310
[ 1987.909938]  create_object.isra.0+0x3a/0xa30
[ 1987.910939]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1987.912086]  kmem_cache_alloc_trace+0x151/0x320
[ 1987.913136]  alloc_fs_context+0x57/0x840
[ 1987.914064]  path_mount+0xab1/0x21e0
[ 1987.914909]  ? strncpy_from_user+0x9e/0x470
[ 1987.915877]  ? finish_automount+0xa90/0xa90
[ 1987.916847]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1987.917894]  ? _copy_from_user+0xfb/0x1b0
[ 1987.918840]  __x64_sys_mount+0x282/0x300
[ 1987.919750]  ? copy_mnt_ns+0xa00/0xa00
[ 1987.920632]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1987.921816]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1987.923181]  do_syscall_64+0x33/0x40
[ 1987.924023]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1987.924621] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 1987.925177] RIP: 0033:0x7f67f1462b19
[ 1987.925205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1987.932009] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1987.932573] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 1987.933736] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 1987.933748] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 1987.933759] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 1987.933771] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 1987.933782] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 1987.975781] 9pnet: Insufficient options for proto=fd
[ 1988.030818] 9p: Unknown uid 18446744073709551615
04:30:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c040000000000000007b342c940"], 0x28}}, 0x0)

04:30:07 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x44, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x10, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x44}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:30:07 executing program 5:
unshare(0x8000000)
r0 = clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x16}, 0x58)
unshare(0x12000000)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r2, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB="00696c31677f"], &(0x7f00000004c0)=0x28)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r2, r3)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f00000000c0)={0xfffffffffffffffc, 0xfffefffffffffffd, 0x5})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r4, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f00000004c0)=0x28)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f0000000140)='///\\\x00', 0x0, r4)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x4, 0x4, 0x7, 0xb4, 0x0, 0x2517, 0x82000, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x68, 0x2, @perf_bp={&(0x7f0000000080), 0x4}, 0x2, 0x7, 0x3, 0xd, 0x7, 0x2, 0x8000, 0x0, 0x101, 0x0, 0x1}, r0, 0x4, r1, 0xa)

04:30:07 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002118000000000000000007b342c940"], 0x28}}, 0x0)

04:30:07 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:30:07 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x2000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2001.700746] 9pnet: Insufficient options for proto=fd
[ 2001.713604] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2001.724418] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:30:07 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 12)

04:30:07 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x6, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2001.732609] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2001.741897] FAULT_INJECTION: forcing a failure.
[ 2001.741897] name failslab, interval 1, probability 0, space 0, times 0
[ 2001.743602] CPU: 0 PID: 19882 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2001.743633] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2001.744593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2001.744598] Call Trace:
[ 2001.744616]  dump_stack+0x107/0x167
[ 2001.744630]  should_fail.cold+0x5/0xa
[ 2001.744643]  ? legacy_init_fs_context+0x44/0xe0
[ 2001.744662]  should_failslab+0x5/0x20
[ 2001.750397]  kmem_cache_alloc_trace+0x55/0x320
[ 2001.751062]  ? lockdep_init_map_type+0x2c7/0x780
[ 2001.751748]  legacy_init_fs_context+0x44/0xe0
[ 2001.752395]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 2001.753106]  alloc_fs_context+0x4fd/0x840
[ 2001.753706]  path_mount+0xab1/0x21e0
[ 2001.754232]  ? strncpy_from_user+0x9e/0x470
[ 2001.754831]  ? finish_automount+0xa90/0xa90
[ 2001.755418]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2001.756052]  ? _copy_from_user+0xfb/0x1b0
[ 2001.756622]  __x64_sys_mount+0x282/0x300
[ 2001.757182]  ? copy_mnt_ns+0xa00/0xa00
[ 2001.757719]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2001.758441]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2001.759151]  do_syscall_64+0x33/0x40
[ 2001.759656]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2001.760353] RIP: 0033:0x7f67f1462b19
[ 2001.760864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2001.763367] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2001.764414] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2001.765374] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2001.766346] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2001.767326] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2001.768291] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:30:07 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:30:07 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 13)

04:30:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c050000000000000007b342c940"], 0x28}}, 0x0)

04:30:07 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002128000000000000000007b342c940"], 0x28}}, 0x0)

[ 2001.849095] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2001.854246] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2001.856260] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2001.862531] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:30:07 executing program 5:
unshare(0x8000000)
recvmmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)=[{{&(0x7f0000000000), 0x6e, &(0x7f0000000180)=[{&(0x7f0000000080)=""/164, 0xa4}, {&(0x7f0000000140)=""/21, 0x15}], 0x2, &(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0xb8}}, {{0x0, 0xfffffffffffffdd8, &(0x7f0000000540)=[{&(0x7f0000000280)=""/140, 0x8c}, {&(0x7f0000000340)=""/17, 0x11}, {&(0x7f0000000380)=""/32, 0x20}, {&(0x7f00000003c0)=""/133, 0x85}, {&(0x7f0000000480)=""/157, 0x9d}], 0x5}}], 0x1, 0x40010000, &(0x7f0000000640)={0x77359400})
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)

[ 2001.908205] 9pnet: Insufficient options for proto=fd
[ 2001.909962] FAULT_INJECTION: forcing a failure.
[ 2001.909962] name failslab, interval 1, probability 0, space 0, times 0
[ 2001.911411] CPU: 0 PID: 20078 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2001.912295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2001.913380] Call Trace:
[ 2001.913726]  dump_stack+0x107/0x167
[ 2001.914200]  should_fail.cold+0x5/0xa
[ 2001.914697]  ? create_object.isra.0+0x3a/0xa30
[ 2001.915281]  should_failslab+0x5/0x20
[ 2001.915770]  kmem_cache_alloc+0x5b/0x310
[ 2001.916295]  create_object.isra.0+0x3a/0xa30
[ 2001.916865]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2001.917516]  kmem_cache_alloc_trace+0x151/0x320
[ 2001.918120]  ? lockdep_init_map_type+0x2c7/0x780
[ 2001.918727]  legacy_init_fs_context+0x44/0xe0
04:30:07 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:30:07 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002160000000000000000007b342c940"], 0x28}}, 0x0)

04:30:07 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x44, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x10, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x44}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 2001.919307]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 2001.920155]  alloc_fs_context+0x4fd/0x840
[ 2001.920692]  path_mount+0xab1/0x21e0
[ 2001.921173]  ? strncpy_from_user+0x9e/0x470
[ 2001.921723]  ? finish_automount+0xa90/0xa90
[ 2001.922281]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2001.922877]  ? _copy_from_user+0xfb/0x1b0
[ 2001.923407]  __x64_sys_mount+0x282/0x300
[ 2001.923927]  ? copy_mnt_ns+0xa00/0xa00
[ 2001.924426]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2001.925089]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2001.925740]  do_syscall_64+0x33/0x40
[ 2001.926218]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2001.926869] RIP: 0033:0x7f67f1462b19
[ 2001.927338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2001.929664] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2001.930634] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2001.931534] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2001.932437] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2001.933336] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2001.934246] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:30:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c060000000000000007b342c940"], 0x28}}, 0x0)

[ 2001.971064] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2001.977025] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:30:07 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:30:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c070000000000000007b342c940"], 0x28}}, 0x0)

04:30:07 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c002163000000000000000007b342c940"], 0x28}}, 0x0)

[ 2002.082613] 9pnet: Insufficient options for proto=fd
[ 2002.099721] 9p: Unknown uid 18446744073709551615
04:30:23 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 14)

04:30:23 executing program 5:
unshare(0x8000000)
r0 = clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = gettid()
getpgid(r1)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000001c0)=<r2=>0x0)
r3 = gettid()
getpgid(r3)
clone3(&(0x7f0000000240)={0x10040000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x25}, &(0x7f00000000c0)=""/234, 0xea, &(0x7f0000000940)=""/4096, &(0x7f0000000200)=[r1, r2, r0, r0, r3, r0], 0x6}, 0x58)

04:30:23 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c080000000000000007b342c940"], 0x28}}, 0x0)

04:30:23 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x7, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:30:23 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x44, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x10, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x44}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:30:23 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:30:23 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c0021ffe0f505000000000007b342c940"], 0x28}}, 0x0)

04:30:23 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2017.970676] __nla_validate_parse: 6 callbacks suppressed
[ 2017.970689] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2017.973779] 9pnet: Insufficient options for proto=fd
[ 2017.977561] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2017.977696] FAULT_INJECTION: forcing a failure.
[ 2017.977696] name failslab, interval 1, probability 0, space 0, times 0
[ 2017.981895] CPU: 1 PID: 20242 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2017.983345] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2017.985086] Call Trace:
[ 2017.985637]  dump_stack+0x107/0x167
[ 2017.986401]  should_fail.cold+0x5/0xa
[ 2017.987196]  ? v9fs_mount+0x5a/0x8f0
[ 2017.987972]  should_failslab+0x5/0x20
[ 2017.988756]  kmem_cache_alloc_trace+0x55/0x320
[ 2017.989717]  ? v9fs_write_inode+0x60/0x60
[ 2017.990596]  v9fs_mount+0x5a/0x8f0
[ 2017.991342]  ? v9fs_write_inode+0x60/0x60
[ 2017.992213]  legacy_get_tree+0x105/0x220
[ 2017.993056]  vfs_get_tree+0x8e/0x300
[ 2017.993823]  path_mount+0x1490/0x21e0
[ 2017.994630]  ? strncpy_from_user+0x9e/0x470
[ 2017.995536]  ? finish_automount+0xa90/0xa90
[ 2017.996452]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2017.997432]  ? _copy_from_user+0xfb/0x1b0
[ 2017.998127] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2017.998309]  __x64_sys_mount+0x282/0x300
[ 2018.001057]  ? copy_mnt_ns+0xa00/0xa00
[ 2018.001885]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2018.003033]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2018.004119]  do_syscall_64+0x33/0x40
[ 2018.004904]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2018.004918] RIP: 0033:0x7f67f1462b19
[ 2018.004946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2018.006461] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2018.006870] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2018.014312] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2018.015808] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2018.017285] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2018.018787] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2018.020270] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:30:23 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c020000000000000007b342c940"], 0x28}}, 0x0)

04:30:23 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c090000000000000007b342c940"], 0x28}}, 0x0)

04:30:23 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 15)

04:30:23 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2018.230144] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2018.232117] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2018.234261] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2018.238649] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2018.247910] FAULT_INJECTION: forcing a failure.
[ 2018.247910] name failslab, interval 1, probability 0, space 0, times 0
[ 2018.250438] CPU: 1 PID: 20525 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2018.251879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2018.253589] Call Trace:
[ 2018.254160]  dump_stack+0x107/0x167
[ 2018.254920]  should_fail.cold+0x5/0xa
[ 2018.255714]  ? create_object.isra.0+0x3a/0xa30
[ 2018.256663]  should_failslab+0x5/0x20
[ 2018.257465]  kmem_cache_alloc+0x5b/0x310
[ 2018.258320]  ? cred_has_capability.isra.0+0x152/0x2b0
[ 2018.259389]  create_object.isra.0+0x3a/0xa30
[ 2018.260305]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2018.261371]  kmem_cache_alloc_trace+0x151/0x320
[ 2018.262372]  ? v9fs_write_inode+0x60/0x60
[ 2018.263233]  v9fs_mount+0x5a/0x8f0
[ 2018.263968]  ? v9fs_write_inode+0x60/0x60
[ 2018.264819]  legacy_get_tree+0x105/0x220
[ 2018.265670]  vfs_get_tree+0x8e/0x300
[ 2018.266467]  path_mount+0x1490/0x21e0
[ 2018.267271]  ? strncpy_from_user+0x9e/0x470
[ 2018.268169]  ? finish_automount+0xa90/0xa90
[ 2018.269080]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2018.270043]  ? _copy_from_user+0xfb/0x1b0
[ 2018.270925]  __x64_sys_mount+0x282/0x300
[ 2018.271772]  ? copy_mnt_ns+0xa00/0xa00
[ 2018.272581]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2018.273665]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2018.274769]  do_syscall_64+0x33/0x40
[ 2018.275561]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2018.276632] RIP: 0033:0x7f67f1462b19
[ 2018.277400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2018.281298] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2018.282893] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2018.284396] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2018.285909] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2018.287446] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2018.288959] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2018.336363] 9p: Unknown uid 18446744073709551615
04:30:36 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x8, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:30:36 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2031.496421] FAULT_INJECTION: forcing a failure.
[ 2031.496421] name failslab, interval 1, probability 0, space 0, times 0
[ 2031.498012] CPU: 0 PID: 20675 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2031.498938] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2031.500041] Call Trace:
[ 2031.500401]  dump_stack+0x107/0x167
[ 2031.500889]  should_fail.cold+0x5/0xa
[ 2031.501400]  should_failslab+0x5/0x20
[ 2031.501909]  __kmalloc_track_caller+0x79/0x370
[ 2031.502530]  ? v9fs_session_init+0xa7/0x1680
[ 2031.503117]  ? kernel_text_address+0xf2/0x120
[ 2031.503719]  kstrdup+0x36/0x70
[ 2031.504147]  v9fs_session_init+0xa7/0x1680
[ 2031.504713]  ? lock_release+0x680/0x680
[ 2031.505241]  ? find_held_lock+0x2c/0x110
[ 2031.505792]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2031.506443]  ? v9fs_show_options+0x690/0x690
[ 2031.507036]  ? trace_hardirqs_on+0x5b/0x180
[ 2031.507620]  ? kasan_unpoison_shadow+0x33/0x50
[ 2031.508227]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2031.508904]  v9fs_mount+0x79/0x8f0
[ 2031.509378]  ? v9fs_write_inode+0x60/0x60
[ 2031.509943]  legacy_get_tree+0x105/0x220
[ 2031.510497]  vfs_get_tree+0x8e/0x300
[ 2031.510992]  path_mount+0x1490/0x21e0
[ 2031.511512]  ? strncpy_from_user+0x9e/0x470
[ 2031.512083]  ? finish_automount+0xa90/0xa90
[ 2031.512652]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2031.513267]  ? _copy_from_user+0xfb/0x1b0
[ 2031.513820]  __x64_sys_mount+0x282/0x300
[ 2031.514360]  ? copy_mnt_ns+0xa00/0xa00
[ 2031.514877]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2031.515571]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2031.516252]  do_syscall_64+0x33/0x40
[ 2031.516748]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2031.517424] RIP: 0033:0x7f67f1462b19
[ 2031.517916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2031.520344] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2031.521359] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2031.522313] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2031.523442] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2031.524396] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2031.525338] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:30:36 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"]) (fail_nth: 1)

04:30:36 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x12, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:30:36 executing program 5:
unshare(0x40000200)
unshare(0x20020080)
unshare(0x4000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x40000840)
unshare(0x20000000)
unshare(0x2010000)

04:30:36 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0a0000000000000007b342c940"], 0x28}}, 0x0)

04:30:36 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c030000000000000007b342c940"], 0x28}}, 0x0)

04:30:36 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 16)

[ 2031.526909] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2031.535438] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2031.545244] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:30:36 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:30:36 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c040000000000000007b342c940"], 0x28}}, 0x0)

04:30:36 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2031.609444] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2031.617697] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:30:37 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0f0000000000000007b342c940"], 0x28}}, 0x0)

04:30:37 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c050000000000000007b342c940"], 0x28}}, 0x0)

04:30:37 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2031.747496] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2031.748704] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2031.750855] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2031.752687] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:30:51 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 17)

04:30:51 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:30:51 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:30:51 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xa, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:30:51 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c060000000000000007b342c940"], 0x28}}, 0x0)

04:30:51 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c480000000000000007b342c940"], 0x28}}, 0x0)

04:30:51 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x12, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:30:51 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f00000004c0)=0x28)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
unshare(0x20000080)
unshare(0x24020280)

[ 2045.968095] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2045.981765] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2045.983791] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2045.991381] FAULT_INJECTION: forcing a failure.
[ 2045.991381] name failslab, interval 1, probability 0, space 0, times 0
[ 2045.994103] CPU: 0 PID: 21029 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2045.995704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2045.997601] Call Trace:
[ 2045.997630]  dump_stack+0x107/0x167
[ 2045.997651]  should_fail.cold+0x5/0xa
[ 2045.997672]  ? create_object.isra.0+0x3a/0xa30
[ 2045.997690]  should_failslab+0x5/0x20
[ 2045.997719]  kmem_cache_alloc+0x5b/0x310
[ 2046.002764]  create_object.isra.0+0x3a/0xa30
[ 2046.003766]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2046.004927]  __kmalloc_track_caller+0x177/0x370
[ 2046.005986]  ? v9fs_session_init+0xa7/0x1680
[ 2046.007003]  ? kernel_text_address+0xf2/0x120
[ 2046.008033]  kstrdup+0x36/0x70
[ 2046.008771]  v9fs_session_init+0xa7/0x1680
[ 2046.009740]  ? lock_release+0x680/0x680
[ 2046.010658]  ? find_held_lock+0x2c/0x110
[ 2046.011600]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2046.012698]  ? v9fs_show_options+0x690/0x690
[ 2046.013708]  ? trace_hardirqs_on+0x5b/0x180
[ 2046.014708]  ? kasan_unpoison_shadow+0x33/0x50
[ 2046.015746]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2046.016918]  v9fs_mount+0x79/0x8f0
[ 2046.017732]  ? v9fs_write_inode+0x60/0x60
[ 2046.018688]  legacy_get_tree+0x105/0x220
[ 2046.019619]  vfs_get_tree+0x8e/0x300
[ 2046.020469]  path_mount+0x1490/0x21e0
[ 2046.021347]  ? strncpy_from_user+0x9e/0x470
[ 2046.022343]  ? finish_automount+0xa90/0xa90
[ 2046.023328]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2046.024392]  ? _copy_from_user+0xfb/0x1b0
[ 2046.025352]  __x64_sys_mount+0x282/0x300
[ 2046.026287]  ? copy_mnt_ns+0xa00/0xa00
[ 2046.027197]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2046.028402]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2046.029577]  do_syscall_64+0x33/0x40
[ 2046.030447]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2046.031622] RIP: 0033:0x7f67f1462b19
04:30:51 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c4c0000000000000007b342c940"], 0x28}}, 0x0)

[ 2046.032469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2046.036809] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2046.038567] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2046.040204] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2046.041839] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2046.043504] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2046.045136] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2046.076586] 9p: Unknown uid 18446744073709551615
04:30:51 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x3, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2046.184230] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2046.186865] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2046.192607] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:30:51 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xa9420000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:30:51 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c070000000000000007b342c940"], 0x28}}, 0x0)

04:30:51 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xb, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:30:51 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c680000000000000007b342c940"], 0x28}}, 0x0)

[ 2046.295337] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2046.311205] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:30:51 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x12, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 2046.364062] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2046.372265] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:30:51 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 18)

04:30:51 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c080000000000000007b342c940"], 0x28}}, 0x0)

04:30:51 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xe4ffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2046.448131] FAULT_INJECTION: forcing a failure.
[ 2046.448131] name failslab, interval 1, probability 0, space 0, times 0
[ 2046.450665] CPU: 1 PID: 21651 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2046.452153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2046.453907] Call Trace:
[ 2046.454489]  dump_stack+0x107/0x167
[ 2046.455272]  should_fail.cold+0x5/0xa
[ 2046.456085]  ? create_object.isra.0+0x3a/0xa30
[ 2046.457056]  should_failslab+0x5/0x20
[ 2046.457864]  kmem_cache_alloc+0x5b/0x310
[ 2046.458752]  create_object.isra.0+0x3a/0xa30
[ 2046.459685]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2046.460761]  __kmalloc_track_caller+0x177/0x370
[ 2046.461758]  ? v9fs_session_init+0xa7/0x1680
[ 2046.462694]  ? kernel_text_address+0xf2/0x120
[ 2046.463644]  kstrdup+0x36/0x70
[ 2046.464328]  v9fs_session_init+0xa7/0x1680
[ 2046.465225]  ? lock_release+0x680/0x680
[ 2046.466060]  ? find_held_lock+0x2c/0x110
[ 2046.466938]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2046.467965]  ? v9fs_show_options+0x690/0x690
[ 2046.468904]  ? trace_hardirqs_on+0x5b/0x180
[ 2046.469818]  ? kasan_unpoison_shadow+0x33/0x50
[ 2046.470791]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2046.471861]  v9fs_mount+0x79/0x8f0
[ 2046.472618]  ? v9fs_write_inode+0x60/0x60
[ 2046.473496]  legacy_get_tree+0x105/0x220
[ 2046.474369]  vfs_get_tree+0x8e/0x300
[ 2046.475167]  path_mount+0x1490/0x21e0
[ 2046.475988]  ? strncpy_from_user+0x9e/0x470
[ 2046.476900]  ? finish_automount+0xa90/0xa90
[ 2046.477811]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2046.478809]  ? _copy_from_user+0xfb/0x1b0
[ 2046.479699]  __x64_sys_mount+0x282/0x300
[ 2046.480558]  ? copy_mnt_ns+0xa00/0xa00
[ 2046.481386]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2046.482518]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2046.483627]  do_syscall_64+0x33/0x40
[ 2046.484427]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2046.485507] RIP: 0033:0x7f67f1462b19
[ 2046.486296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2046.490218] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2046.491859] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2046.493377] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2046.494917] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2046.496415] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2046.497932] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:30:51 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c6c0000000000000007b342c940"], 0x28}}, 0x0)

04:30:51 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2046.537412] 9p: Unknown uid 18446744073709551615
04:31:06 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:31:06 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xe, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2061.587602] __nla_validate_parse: 4 callbacks suppressed
[ 2061.587614] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2061.597237] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2061.605389] FAULT_INJECTION: forcing a failure.
[ 2061.605389] name failslab, interval 1, probability 0, space 0, times 0
[ 2061.608434] CPU: 0 PID: 21802 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2061.610122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2061.612035] Call Trace:
[ 2061.612650]  dump_stack+0x107/0x167
[ 2061.613489]  should_fail.cold+0x5/0xa
[ 2061.614368]  ? create_object.isra.0+0x3a/0xa30
[ 2061.615407]  should_failslab+0x5/0x20
[ 2061.616282]  kmem_cache_alloc+0x5b/0x310
[ 2061.617210]  create_object.isra.0+0x3a/0xa30
[ 2061.617237]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2061.619330]  __kmalloc_track_caller+0x177/0x370
[ 2061.620396]  ? v9fs_session_init+0xe9/0x1680
[ 2061.621406]  kstrdup+0x36/0x70
[ 2061.622140]  v9fs_session_init+0xe9/0x1680
[ 2061.623123]  ? lock_release+0x680/0x680
[ 2061.624015]  ? find_held_lock+0x2c/0x110
[ 2061.624955]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2061.626056]  ? v9fs_show_options+0x690/0x690
[ 2061.627062]  ? trace_hardirqs_on+0x5b/0x180
[ 2061.628051]  ? kasan_unpoison_shadow+0x33/0x50
[ 2061.629063]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2061.630285]  v9fs_mount+0x79/0x8f0
[ 2061.631239]  ? v9fs_write_inode+0x60/0x60
[ 2061.632354]  legacy_get_tree+0x105/0x220
[ 2061.633446]  vfs_get_tree+0x8e/0x300
[ 2061.634460]  path_mount+0x1490/0x21e0
[ 2061.635493]  ? strncpy_from_user+0x9e/0x470
[ 2061.636660]  ? finish_automount+0xa90/0xa90
[ 2061.637828]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2061.639091]  ? _copy_from_user+0xfb/0x1b0
[ 2061.640213]  __x64_sys_mount+0x282/0x300
[ 2061.641310]  ? copy_mnt_ns+0xa00/0xa00
[ 2061.642364]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2061.643797]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2061.645195]  do_syscall_64+0x33/0x40
[ 2061.646199]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2061.647594] RIP: 0033:0x7f67f1462b19
[ 2061.648592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2061.653552] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2061.655577] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2061.657500] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2061.659409] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2061.661340] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2061.663281] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:31:06 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:31:06 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 19)

04:31:06 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x81}}, './file0\x00'})
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
futimesat(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000940))
unshare(0x8000000)
r1 = clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x9}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
unshare(0x80)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
syz_mount_image$tmpfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x7, &(0x7f00000007c0)=[{&(0x7f0000000480)="06174cbec92a5bae3d916b8f24d850d52831f439a60eaf0975f02ceadfc1", 0x1e, 0x697}, {&(0x7f0000000500)="9cbcac3aafe091857fbe3f09f54a0fc95c5d0a35756911f9525caeb1c2b740b26ab2f27c5168e10b9ee237931efdbdee6ac26aeab14beae0b9ce1a79a5186dfdf11ab51e1bfee0d08a7cf17a6f05d8a4e568cc30e5504077ec28f1c422a6f3eb71ddf38ba4611ed0e769ac8bf49ccb71ec4c7cd67ea81c51c214fa7d44d8daf21a10b9260c691e9016bcf668a5c11a1f58a5a24a74619fe24b5a28d5edffdff55eb17e0d7de45fa231db8a61f82efdeb8e2f315d0cf737bbb4b0a98b2d", 0xbd, 0xf8000000}, {&(0x7f00000005c0)="96aead6c4295d49b13ff76ba13e951cfa5741b7409ff40a1423f939cea2985e8ae542a5a784c6999b5d920703666de5af8859e229e7b9c2361f9d17910bca82ee0b264f9cc1601b3d082655cb0f75debaed4f737801a6c91e115", 0x5a, 0xff}, {&(0x7f0000000640)="e9e78317f39bf2ad0d294103e16ad8905f63e97fc01881a0bd87911b24296273f0f4bbd4c6b24c8c982b151a370802043a88a94e6859e472d13ac249205b982cd099f5f31af1f8fe51c3f34efebe2f8564d49d750c2c1f31165b3138c3bcf147bf54ee6ad7c03c0eb105fbb155f65c1f6df13d69872f6bfae58ecc11225a47d303bcbcfb51935ee95001a7be77ac50d399db6fc09eb3e90b713be961d1e6cc3f3c830332fb347b9e79000ebf2f982cfae6b4f91736", 0xb5, 0x80}, {&(0x7f0000000700)="abbdeb05a094", 0x6, 0x2}, {&(0x7f0000000740)="bdeceef91941b5a48012ce0d00975723b0114af00e42d29554f1390997d48875aff49637740403057e815ff601641f1635d78486d4e37b222f18910b261f", 0x3e, 0xbb}, {&(0x7f0000000780)="423255840782d2e679172b125f11366d13f2f5", 0x13, 0x8261}], 0x0, &(0x7f0000000880)={[{@mpol={'mpol', 0x3d, {'bind', '', @val={0x3a, [0x38, 0x3a]}}}}]})
clone3(&(0x7f0000000380)={0x0, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x19}, &(0x7f0000000180)=""/180, 0xb4, &(0x7f0000000240)=""/234, &(0x7f0000000340)=[r1, r1, 0xffffffffffffffff, r1], 0x4, {r2}}, 0x58)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB="66ea99cdc572"], &(0x7f00000004c0)=0x28)
fcntl$dupfd(0xffffffffffffffff, 0x406, r3)
stat(&(0x7f0000000bc0)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, r4, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000b80)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB="6e2f66696c650008fed92e89d4"])
unshare(0x40000000)
unshare(0x24050000)

04:31:06 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xed020000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:31:06 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c740000000000000007b342c940"], 0x28}}, 0x0)

04:31:06 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c090000000000000007b342c940"], 0x28}}, 0x0)

04:31:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c7a0000000000000007b342c940"], 0x28}}, 0x0)

[ 2061.775959] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2061.804936] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2061.811040] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:31:07 executing program 5:
unshare(0x8000000)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
close(r0)
clone3(&(0x7f00000008c0)={0x80000000, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
eventfd(0x295)
r1 = timerfd_create(0x0, 0x800)
dup3(r0, r1, 0x80000)

[ 2061.832933] 9p: Unknown uid 18446744073709551615
04:31:07 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0a0000000000000007b342c940"], 0x28}}, 0x0)

04:31:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cf00000000000000007b342c940"], 0x28}}, 0x0)

04:31:07 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 20)

04:31:07 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x10, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:31:07 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2061.931276] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:31:07 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 2061.947296] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2061.952770] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2061.960829] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2061.967685] FAULT_INJECTION: forcing a failure.
[ 2061.967685] name failslab, interval 1, probability 0, space 0, times 0
[ 2061.969796] CPU: 1 PID: 22242 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2061.971100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2061.972611] Call Trace:
[ 2061.973091]  dump_stack+0x107/0x167
[ 2061.973754]  should_fail.cold+0x5/0xa
[ 2061.974452]  ? p9_client_create+0xaf/0x1230
[ 2061.975247]  should_failslab+0x5/0x20
[ 2061.975944]  kmem_cache_alloc_trace+0x55/0x320
[ 2061.976770]  ? find_held_lock+0x2c/0x110
[ 2061.977522]  p9_client_create+0xaf/0x1230
[ 2061.978275]  ? lock_downgrade+0x6d0/0x6d0
[ 2061.979041]  ? p9_client_flush+0x430/0x430
[ 2061.979819]  ? trace_hardirqs_on+0x5b/0x180
[ 2061.980590]  ? lockdep_init_map_type+0x2c7/0x780
[ 2061.981417]  ? __raw_spin_lock_init+0x36/0x110
[ 2061.982212]  v9fs_session_init+0x1dd/0x1680
[ 2061.982970]  ? lock_release+0x680/0x680
[ 2061.983670]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2061.984506]  ? v9fs_show_options+0x690/0x690
[ 2061.985308]  ? trace_hardirqs_on+0x5b/0x180
[ 2061.986075]  ? kasan_unpoison_shadow+0x33/0x50
[ 2061.986909]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2061.987827]  v9fs_mount+0x79/0x8f0
[ 2061.988480]  ? v9fs_write_inode+0x60/0x60
[ 2061.989212]  legacy_get_tree+0x105/0x220
[ 2061.989952]  vfs_get_tree+0x8e/0x300
[ 2061.990639]  path_mount+0x1490/0x21e0
[ 2061.991325]  ? strncpy_from_user+0x9e/0x470
[ 2061.992065]  ? finish_automount+0xa90/0xa90
[ 2061.992839]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2061.993672]  ? _copy_from_user+0xfb/0x1b0
[ 2061.994429]  __x64_sys_mount+0x282/0x300
[ 2061.995160]  ? copy_mnt_ns+0xa00/0xa00
[ 2061.995860]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2061.996798]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2061.997712]  do_syscall_64+0x33/0x40
[ 2061.998382]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2061.999313] RIP: 0033:0x7f67f1462b19
[ 2061.999980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2062.003285] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2062.004655] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2062.005912] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2062.007206] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2062.008426] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2062.009645] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:31:25 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2e, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:31:25 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 21)

04:31:25 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xffffffe4}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:31:25 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:31:25 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c130100000000000007b342c940"], 0x28}}, 0x0)

04:31:25 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0f0000000000000007b342c940"], 0x28}}, 0x0)

04:31:25 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x6, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:31:25 executing program 5:
unshare(0x44000080)
r0 = clone3(&(0x7f00000000c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$AUTOFS_IOC_SETTIMEOUT(0xffffffffffffffff, 0x80049367, &(0x7f0000000000)=0x1ff)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {<r2=>0x0}}, './file0\x00'})
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x1, 0x40, 0x1f, 0x0, 0x0, 0x6, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x400, 0x0, @perf_config_ext={0xffffffff, 0x5}, 0x1, 0x597b41f8, 0x80000000, 0x9, 0xf37, 0x4, 0x2, 0x0, 0x4, 0x0, 0x9}, r0, 0x4, r1, 0x8)
[ 2079.700870] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2079.703178] FAULT_INJECTION: forcing a failure.
[ 2079.703178] name failslab, interval 1, probability 0, space 0, times 0
[ 2079.705417] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2079.706798] CPU: 0 PID: 22534 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2079.710813] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2079.713353] Call Trace:
[ 2079.714167]  dump_stack+0x107/0x167
[ 2079.715303]  should_fail.cold+0x5/0xa
[ 2079.715824] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2079.716477]  ? create_object.isra.0+0x3a/0xa30
[ 2079.716501]  should_failslab+0x5/0x20
[ 2079.716535]  kmem_cache_alloc+0x5b/0x310
[ 2079.720189] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2079.720861]  ? kernel_text_address+0xf2/0x120
[ 2079.720893]  create_object.isra.0+0x3a/0xa30
[ 2079.720922]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2079.728410]  kmem_cache_alloc_trace+0x151/0x320
[ 2079.729643]  p9_client_create+0xaf/0x1230
[ 2079.730745]  ? lock_downgrade+0x6d0/0x6d0
[ 2079.731846]  ? p9_client_flush+0x430/0x430
[ 2079.732964]  ? trace_hardirqs_on+0x5b/0x180
[ 2079.734106]  ? lockdep_init_map_type+0x2c7/0x780
[ 2079.735364]  ? __raw_spin_lock_init+0x36/0x110
[ 2079.736576]  v9fs_session_init+0x1dd/0x1680
[ 2079.737712]  ? lock_release+0x680/0x680
[ 2079.738784]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2079.740053]  ? v9fs_show_options+0x690/0x690
[ 2079.741217]  ? trace_hardirqs_on+0x5b/0x180
[ 2079.742352]  ? kasan_unpoison_shadow+0x33/0x50
[ 2079.743566]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2079.744902]  v9fs_mount+0x79/0x8f0
[ 2079.745829]  ? v9fs_write_inode+0x60/0x60
[ 2079.746928]  legacy_get_tree+0x105/0x220
[ 2079.748000]  vfs_get_tree+0x8e/0x300
[ 2079.748976]  path_mount+0x1490/0x21e0
[ 2079.749998]  ? strncpy_from_user+0x9e/0x470
[ 2079.751138]  ? finish_automount+0xa90/0xa90
[ 2079.752270]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2079.753485]  ? _copy_from_user+0xfb/0x1b0
[ 2079.754594]  __x64_sys_mount+0x282/0x300
[ 2079.755652]  ? copy_mnt_ns+0xa00/0xa00
[ 2079.756664]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2079.758012]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2079.759351]  do_syscall_64+0x33/0x40
[ 2079.760319]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2079.761636] RIP: 0033:0x7f67f1462b19
[ 2079.762614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2079.767421] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2079.769384] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2079.771259] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2079.773098] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2079.774968] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2079.776821] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
sendmsg$nl_generic(r1, &(0x7f0000003a40)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000003a00)={&(0x7f00000001c0)={0x3840, 0x3f, 0x400, 0x70bd27, 0x25dfdbfd, {0x19}, [@typed={0x9, 0xb, 0x0, 0x0, @str='%:}.\x00'}, @nested={0x1c9, 0x8d, 0x0, 0x1, [@generic="a4a78500c09c38b9fffaf4ec3c1dfcb57d50a3533bb86f7729703543e2150f87465b3bbcbae15536a59457ee583f3152da7086955837e41794008964c8b4c3fd6c179ff7a5ce5a7271c3c72ec64bb29133893370ef4239e95f59378017764c64bcbf0a91f714f77ddbbc2836cceae65e5caa616d98ada635df6a9474ff86c3d8", @generic="b09770e3310acd9b32fff18eb269f19ace44609161709f9649b1fa9c6e65e5ba9473f7aa06edf7d20435a9febb443321c804f31126c56384ef1c12b818b62f00b72c379e830a6cf5e5601933b6852f7e2f6f7b07da1ea69090f17e8c381410a263fc06a2edc28495c856029234dc1e4142", @typed={0x14, 0x1d, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic="e13017edf1d837a19e3aec7d8dfb1af4e3fe0009af61d085a7d9269e9d6095cd9c779dc250c3693c8f93ffe91298c8af63704531372898cc8124cf0c241b77d84d540046827ee1b7d017864711dc9677afacd8de169737e02cbe51f36219cc6ad97800fd24502d7ac369718ebce68456aa71a1c6e6807da9fc305681c6bc19a57733dbc5cdd527b9f8eb6fc79f4f14be516b9ac2e70f47af19af0bfdeaf44912045a120d1c9c20b2956ce6c9c6c0975b", @typed={0xe, 0x31, 0x0, 0x0, @str='*{{-/,:((\x00'}]}, @nested={0x1293, 0x4a, 0x0, 0x1, [@generic="8385880028366807e89b8df113651b7f7807564b9fa4d9ea594875ebdb3b085b999447ebfaa85fe07c3ff940757b796df5f73ea89e0042c0861eff5e0dfcdc9cff", @typed={0x8, 0x50, 0x0, 0x0, @uid=r2}, @generic="97f732c7c9d06b46d0074fc23afe49c474b3cdf8a7cb823f7def8916813bfd18b374652929816ad3f04fa4e8c128a6fbe17a61bf5c38e00a0ed0f90e05e6aa3fc388fd4c114c7bd8b48e14c5560a2b84cd69749ff364c57af5136a5d328fcd166070e39e24f658ff89e9030e64356b0bc05f6816d118ae9334aa1247a2f1fc8d8142aa5a980929c244f6f974ffbf9b4ccac4779db46f0a4cfb754223867d41420397109ae700aad3252e16d9f9ec4d1e5547272eb9d9f25bcdec89737fd22c6c1105a4dfc013dc690f919eccbacf8fc1eca371ffa5eb936740fa1d9eb4e1e008781433c429bf", @typed={0xf5, 0x79, 0x0, 0x0, @binary="c04cbe330f0070f9e33fec984665cfe76c336512f5af37f23ce9189ca6cc55fe0310fd35d28e1bdaf989cd58d7a4b7f9a5a4cabbea7f0324deb8db07a47c56f2fcb1746ed98a51ef7ac976428521be74985918230f1fa21d9aa2cfe3219daf5aa233ce2e833ae44759d95d20e9728204d22269bb2271457c4b0c9ab26e0e2545c50c49c1b5bc2e392c483af7717d02d6e53960663a224528569e1ca10489755338f3e370411886d3bf754d7a3bbbd841c3fe9f3c6b8996c445e7e50ac2d691ff946f32d382f7485aedd43a14c4ed356022b059354b56faa5f139d25239406a88b80ff34c9ceaaa2b2da426caf307148f60"}, @generic="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", @generic="e76baaa266bc1fc8a10da97890c273681a6d86c60664416925e595b9c9d512c05acebc9874acdb4f2f04fabaeba3a24761e3ce7c10873585725cb1d4d9a0341b8e7b0b74f8a7aeab5379953ae0256cf369986de4d926770c80d2a1be4b701320", @typed={0x8, 0x26, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}]}, @nested={0x12bb, 0x3e, 0x0, 0x1, [@generic="e23d44dc8dfa3cdea116c514b1de27b6171e99de", @generic="aa9b649e21a8af7a9622cebb413f2da94901f6dcec3ecb23b780b863d47ede5dc438e9978ff4182d9d88bf7d4ec920944475dcdf2aa29c36aa11a20e72e3d075f40f5a07958d6b73db83b71b960e995141307d089e18b413465bcf67d30504633a0a3f4a8a5882ce515a7d0551c3a7ee5df688352c62a33f2b1b6577cf8b7179bf99bc7c95dc0f6a23cd9ed823ffbafede55bccfb08e3bd6bf3b88251ab1ae9939717c23a8ea3b47ae4a8d895e80603182bf0f1b2f6a8b5e94eb9b2daf7d72dfd86f29dd917208a7556fe060879e2a10d89f7ed769641d07c6b1ae4e416f899055f9ad3a74d206d4a2263d2790d41662a568f8c570", @generic="d440cb0f91803e5170e8f3e05674f2357ea8d825e228757f907ee22d2bde63c707cedb10dfff10ab6ab7fe0cfe66128bbc3c7c73ebd39f64cc9c57c490fd9f29178cbecf069d3954780b0a20af71d30530063e5946942294eba6aa6868d638216a47af95a8d0af4082964d3b4887221acc2c9b894aff295ab8461616a1fb24a745a28e7f5bede756e6c3adbe9869f94a94f9da24fc4c6333d1377ee6d056487d6902049a2e3ce2f1a1a35ecc9fe1ad2f0c6e8e", @generic="1ddcae24ce90027f145a28d58c5737fe0ee498e2a67ac5d2d1487d5c8da8d6270e34534089976358786de9be95c6f54067002299f94d9302d9cae215e1b249fb5a2c329d5b9108f0e38d0a289999d864aeb796c0f674d1e4a8bc62809444a4cb6164be64528b4e3a4e19ac8a28abc6a073e592b07cf281e59968d293e01a78cedaaa9afc2827ef0f4adb14199929b3e5694481fbc7be810f3db40b54d09b5d00d918f68ed11fd28e98891c4fa01c94ea89cd2f5045cb111750ce443902f0d4d679f84278723a7a14abda9b858f7007285ced93a1dea50bb929c2300420dd497c822bcbc3a3d761359fa35c37084d07ccc258422c3e14733bc92400201d9aa9c88e23211fabfde554f4f48bdbd661d8549258e6ed6f58e8844d66b4a5dbde1bdeed6cda2018d3dd6912fd64e3d35d3448a0cecd0fbd1f7373c39b3a8797b8c5b03f4655df69aadbcfd998056a3bfb64f894949dafc1037b433891d798b1f81a39963077a5db26de5c433ca8fdad43c217aa39d3e741e4fd57e1a4898debb049f0b14c851187e5579eec5f1a80e2218a015e30a447379cfaf5e4ed02524029fdca470fac7ac1376e95c212f5d664611c9c524900e96f2794c4c31732f57482440a691a4b127e70a974de579d2049e2efe481e3af418570a08d9f681617f87b43a78d298aeb656ea2abe2404eefd4267a82d1fa37d6e35349343acfaa9a904ee12a60adffed95a6eaab5d336cb0b6c56b580910b96f5af485086ec0202764206101af4b9ffd0410540d2b9309432536cb0234d33088dfb13cd6b3a7f63f08d0a9987b71054cf58d75bcf02c9d3f21c6f5a8a1e1e9b4ab088b89ffe507943d8b2b81d443b86c3fc382909d606763efe8f7291d2f131e20a1f8b0a5c19935a6846ad04cfe7a5c7ea53c75c4cb621e53e1f1b0f0d3e57f5e1be73069cf75fb332b1de52e91ceffd83f8cde82ef169bec198eac82ddcfa3ee921b175224928a1b092d7d0010ae5374bd62e2de70a15ba03a23b8f0fccac805ff5643dcb1ea7d3ac2b0ca8e1be0d8687580eb68b482b041ac60aceb0f2551a9e67de05fed941f8a3127549ac78908f5b6e1e1be571f4bb725386bf890fe44b8a6be3a7aa26c6ea08b9ce4514c892ca9d50830e20945af976b49bdef42ec7da20fc97dd05c9729216eb34e2e0097d36041e6db7910deff8c109c6cf0be9d436068c93ee1f14dbbdacb8e84ccc20095b2915c7f7e8ac0def516dfbed9bb3128c52848d0f6520642410bc7e495f8502bf1fd0a0bad09a56d92dacd0b9e190d377bf218ff11ff52fad7199131f646b34e293aebc1c96f3ab0f79723b179cb418f025483c5705a87c794065225dcf983abc9cdef5f54fa2240cedd20d8b7d3f8f0377214448667fd8c0ce92bd405750e52ad5c9e42a3f632cc9fc5c30ffb32631775636a65d96a06c2da3f76a7bb9789e688187c40f254c4f881a6cd7a9d9bb0f82f897ba5f8f14d93cefc2fa28543a27cb5621b9d9217c2b550906f1dc8018d0f9d4a62a899f9213e2bda13d7e67a2e51ec45baacbd1e4b6b509bf0844865d67b27a97620ab24aa6f4d6e3bfd1af0ab33ea4a1426714da103814523989486315b89379acb409eb124fe57188e0978b9353819367463ff952b790d0efbb8c6802fdc2dd4beb2a449ad3d3c72497da46502c5f0af092cae3e74c0cdc13212e0fa5e57b4c4eaa6d003783b2219f8f53238815384e42025d7be77b08b307054f018a44dc17e9421ed2fc9c538ae6cd6312f779574e8d90fe986506dfd9a1ba8eaf46c6e958c071218f266f8bcaaf1a1ca313b570241ed54ef06f2dc68ebf9858b3a7879a42fce6584dfdf01ae24cd8b4cef25b6926c59159a4cedcdf1b5209e500ca77b0ba6f74e7c95fd77015bfe39a8d9f6841d35cb5c1baa62ea8b87fee60ccbd7386a251a9a513ed59d77ef8b4bd16ecc31098b3478ca6f629486da338d183464d9a8848fc8ddbc418e1d2a75e41eb2da3091687dd4864e4890481407d1f5f65b45029606d0fb28b6992c5b3dfb4f9ae071c3094ece91a3d5bedaa863071be8c66b8e2e91fa796a193f4f518df41375acf0b433427466aef98e1be0f3b4265afda99b54da722c19ff82776fc569a41b09a257cd2b9ec65bc2a392444d86e368aa6aae74f9d861e45e69fe2e91615b391da7595656774cc9eafd1b6e23bde25a3490dac7b148dbb79bf92f8ec8f209370446680483c887c5adbc2286dba0833c2798cbd6f3c1132658d7f8c6ba95aca3b9041a4e49ee814934c23b1156319dc04f59ef830f3662dd84a26133429670f254efb4aa186f5e4ac07c6af28d27fcca9d56acae8426c55e3e5ec4295f773094e9c7f44517a78b930dd2fe3bf276712d4f2493390176f5c47923a31ffb81ff47e2a100ae53251b6778528ab0a4a2d2cac18ae7e3b5727900f144f9d7c253b34ed2107fb59fdf9c7ceb5e63e8e513266efee48a7f74e0268bad50a6a9e96c6d5c9216e00fb8da0857920d9073278bead4f83776157fcfe77498ff16dbc1f1ece62d9a1ab8a0a817d5a52b2b3041715cba91d26b43fd267ac4050c17146355f563adb874fbed8906526726299fe2b80aae84c6c4fd2571f8508ae66b8e5d0ccffbd29b80a4e5dc4864945672146ea58a19124f91216061e1e741f06c2db22163d918519bddd7ff3c54baed8d5ab9ced1e96cf91f83109c4e3d4c6fa0377dd916228030c206c41e72b32b3014e4c7b083d710f56dec94943c880b0e2dfc749b5068b26d5a5e951c2058af05aaa106084dd77f4cc71b49a564f104f04216fc76119ffbcb151c5c80e2db95781e2d64db8817277a950f7e7c9cde0b0888d8cc04c5019f904c0753fa2f6f1bf565ae7adf62c9a295ace7e0b302bef1be69cd6e7726cb45bb41c4e41072bd3372a879e3dcdab251bcc9acb219123015f57cb82554e709aa4506aeb863d5735220ed0ac88aaff30d490d4f6e19a206d5df96ef0986d41450dc93ef9cebccbbf41c2ab81540757a6580107a7d47c1a6ce92850376cadfa8c06ba6e798ac2bcbe55d5e8fea947b9769f2194d25b3b6d84ee97b564dc305d530d4fda34c9762fbfa6ef57bd801163dba4c06b5c7d845cb8a24f6ce7a74543ddc2a43b6da15dd714a4620842e125b9fc1a2f06a94f8faa5fb1139ed3876faa2c634f7df8aa7ef246d6ee2cf3df940aff5a77a994221de203a5aa17da4957072de1cc0acb60910a9b009437b4f3e32152632c94d7e49bfa892be1461307a26456aa344000cfb1a7b107c6f0d704141e7552c9ff6365d1164012c4a6bcd962aacc2d171698b4f96fd8e78dd62cc4cc3e5ed35c47a8fdfef82c4f9cad77735e74209ed59c52a767135136652be7bf35bcc4bc6f213bf846065ba0af8ebaa0126a3158038b022941c66d2f9c3c675d384707a2cafa30e137030d7fd72c2e5e0f82950deee06d62b061efe77895d0e58718a9bf4d2221544e8ece165fc5388a8fce8d93bf1ec92103cd921fc396573048e668d6d4ca318bcfc1f61b773d2a591eb73f15d7fc869d14db492886cf3bb0960669be6b7077cd8e43b930ea660a9541bc1dfb8ae3eb8b5d40a504e3e692e276c81674b085440f3921bb8dd06b8169fa6e48381905f6a9fa26fae3c601b697e51a59232be8da571ed1e6c52926b8382e03cb26a49fb771939a7dc205aaf4655ad512757e0efe6272da1061751aa67924d62763a3d1875be4e0a7829a845b6dafe89d8b5d539792d3463f47c34c135a1bea0888c8bd624324293d86384dbc784b3785fde2cebca35c4325b4fb2e91b5cdc2fb680db6807e387c351c5073a4d95d306725e2d5c1f7832dbfe956792e4e36cc1672fe46e0ee100dd090b1e1293fd226268e9b56e3353b70a6ca600af2f53ac4fd13354e5504387e27dc0475e67202954660aaaa57b20a99b9d0ddfb9b6c1df903b9989039fded4dfa989897f61bf91d60ee56d7517fe805f2f471db9de826549abab01e3691e64dd61d86134ca723e688773eb255864449d80e72a9891642018da8911483494955b8d4e22d065c431d6e42c048b1d553a73017d9efe44b7c78b6ee70496f9f6d1ddaa4992a0e899a774944088bc623467e1c98d8bd8bfdc1f692c1cb5e13593a845df638aa502768913cd2783c234359644c022ce5271f1317649d147b73a603253ab38b27e35de42ca657afb6a47f7664bbd1b9c7f7034d8dcf4cb2457d291ad45425053e2853fb0b8885a42a4f36f47bbe801f7c913baa038e2a19ad80250ba8904306d7582b4c3277c81d762f8c0745fdfef832c3e5f497a32541080d1813fa813266bee12284c7a850dbb9e4888cbb545a6dc11275da86b11ffd1008553d7a25c68ac91bd6ce8f2b6f84e1a9f663dc694d5aa06c6b5e530c5063c55f6a519d626eddae5a2f2cabcfe92918d2119d0296934aecc248086108e936bbd40f2608bc240e6cc26b1382fd7763b448a8b1189bbb101a93f8f7d2af525a0f25b04a4151e2aa8f4561182b19beba95b5322b2149872cf0e27e3b33c7e1623fadb6ddc73641ad115a81f4358cd29c12ddf6701396bfce319108240b804a39370289601df75656152596fbeb092c9049d8507f4a2c27612888444e03844133066d635021f1e6dddbe4dc63200170e8d640dc78215d9b61988d15fe47aa757e9df468084c624e72ad0c21165bcd860b030f8035d3d3d7ab950d17ee9b3a96a7cca804966d4c163b8700f4abf1155c76d05543c5d44495c17dce46abcba260ade9e5e2649bb86db331227f0094c3a6fabb775a040b6e405a690a6818206558896306cf5f87ab2f2b3108cb65694f5fc0882bbc1518fd2dff9c44e8bfae4dad959a562ee6873621ce5cc1b7ef7049ee04bf8569fa225fc48c33a58772a5c3bad33deefe87d4063ba4234d258b9986983a1404f16e0def1021815cc70aab13fd2c0ba24b145ac82fe9dcbb2b8f6d5f88d5ff5a59078cb6c003d202f78d9ebcc48ab3a312d4dd3054c1c14ff0d57ad60c8d5659b6d79c241edbf4fb07e3c7bd15fc6c7c4401b2d4e8b344e66142949f4a2c131d6accb41e2c0669b049aee5987fcb883c1a648a08e905d3e908137720deb0e7039c7044ed6b82dcc2ab082a2b2ef9f70550ec66174b7d19a90a891383bfd6dd65fd28528ab0a087171706a3ca04bef7c39b44853dd50f3b9b8f3fb08141126deb937aa3e218f04da6d34216894c7fc8ed69364adf77f70b731377eb0dc29f3f90ca0b4fd480d23ac8101afbd0bda35419d7076c812d72d652c233329eecc3b54f8c011e674128766b55968472bd440e232b0a1a31ed7ce3fc6049f81287b164b46353a005d84a7dd5b30e3ecfb987fbafa49a596f514f59432b12a75d676a3fe5ce442e546d55a43f8b249d6c383c2b1d278e0dddc1302676ef4d70aa5938da62fc679862a31a545d1a7cc2eec8812eac8d88b41a64313c00bc24a80238c993d8bb6480b17a019e28270ba7c863e52e4a53ce723bbb4777a925cb099b14053ad37d7239f188e3fa3f97422399025ddb357e499aa10d6daca83d72c429c517ce88096f285ce96a0c537a2a6a57291dba7271f0c6ca2daff14242d45763001cc50cb34d7ae090f5b5521edf1a4babac85120555b3bd97c1f4a9c8b4de92cb792abe1de265acdb968d4e6af2989b184fca749f03ac4d92722131c0cee5e443457fba4843f7382179c1dcac0e87a5a82217939afa89d1d4350c25c523582cc4690d65a9c6ea2dfb84f4d0c5c0e6522095593e6d924a6a0880a2d9cb24bb25965c412c7b357d1dff528cfd8", @generic="dd664eb1577573fc84c7fd57fec87cc5bb4c7eb87a40a3", @generic="644239e5ae17c9cec6cb6bd98a4e5733b518efda1e1a445ca3ee521efe29107b0327f9cfd882f8770818ed5205722b4ddda6b723be17dc5156b46023257b6b7671df657231b43f55d53e8fc93680162cd530476f15b4918101156e2c6de324cfa629c4a7d0f866cf71225e91964c65dba9ebfdb3262ca227912724a67e0645e2ee91bb07c8ee351c34cb5f293204aac17221c7e2b83e9ad863b6dff42f5b53de0290473e75822640c22e8e083237f2f3cfce544970c5a34e7b2d19eeadf1aa40f0d1c30b0f415d02872e46d164807a0d1d7c704086fc315d5e4d54f8c099b827efbf8705"]}, @nested={0x1103, 0x2e, 0x0, 0x1, [@generic="d4779acd92f3b194e69275d1802ca45888e2b4775d3b06790120d7990d377996f4635a848e6dcc23afadbed024b277adcb39b1e19d060e766632fcdb3c13e3711bd0da7d15861e38df67d92fa3d093ae4e8352aba0ef3c1f8cec64ccbe7e377da2aff25441d89261f4d8d44d202f0e58a101eb9bf2e365a652564f29979b4a398674408138b97da9fa8231aedba57ea36020edb65280dbe80bbd508edc20ac7169e8496540b104b46251af009a4b86aac36e882acf767f8bd5eb60d13553f226be8db5a584f3918d6266b63b464e49f1bc46ed2b806b9f9b837529866dc98b8d5d11f53cf8efad690c6d2b3239e2e2", @generic="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", @typed={0x8, 0x66, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @typed={0x8, 0x75, 0x0, 0x0, @u32=0xf8}]}]}, 0x3840}, 0x1, 0x0, 0x0, 0x4000}, 0xf684d0fcb6bf211b)
unshare(0x20000)

04:31:25 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000300000000000007b342c940"], 0x28}}, 0x0)

[ 2079.887642] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2079.890851] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2079.903625] 9p: Unknown uid 18446744073709551615
04:31:39 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c480000000000000007b342c940"], 0x28}}, 0x0)

04:31:39 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x2, 0x0, 0x0}, 0x58)

04:31:39 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x0, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:31:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000500000000000007b342c940"], 0x28}}, 0x0)

[ 2094.299545] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:31:39 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 22)

04:31:39 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x48, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:31:39 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x7, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:31:39 executing program 5:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
ioctl$CDROMEJECT(r0, 0x5309)
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x101]}, 0x8, 0x1000)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000100)=ANY=[@ANYBLOB="66696c74657230362ea923c81d73c4333e0e6700076bb08f9e56c453c765a3929d90a6c326022173e108f449756f57a3f1625ff41a7181e3cac35096"], &(0x7f00000004c0)=0x28)
unshare(0x40060000)
ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0)

[ 2094.319067] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2094.326734] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2094.344890] FAULT_INJECTION: forcing a failure.
[ 2094.344890] name failslab, interval 1, probability 0, space 0, times 0
[ 2094.347265] CPU: 1 PID: 22873 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2094.348856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2094.350837] Call Trace:
[ 2094.351387]  dump_stack+0x107/0x167
[ 2094.352151]  should_fail.cold+0x5/0xa
[ 2094.352985]  should_failslab+0x5/0x20
[ 2094.353901]  __kmalloc_track_caller+0x79/0x370
[ 2094.354986]  ? p9_client_create+0x41d/0x1230
[ 2094.356048]  kstrdup+0x36/0x70
[ 2094.356842]  p9_client_create+0x41d/0x1230
[ 2094.357731]  ? lock_downgrade+0x6d0/0x6d0
[ 2094.358606]  ? p9_client_flush+0x430/0x430
[ 2094.359590]  ? trace_hardirqs_on+0x5b/0x180
[ 2094.360765]  ? lockdep_init_map_type+0x2c7/0x780
[ 2094.361930]  ? __raw_spin_lock_init+0x36/0x110
[ 2094.362894]  v9fs_session_init+0x1dd/0x1680
[ 2094.363945]  ? lock_release+0x680/0x680
[ 2094.364923]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2094.366182]  ? v9fs_show_options+0x690/0x690
[ 2094.367252]  ? trace_hardirqs_on+0x5b/0x180
[ 2094.368327]  ? kasan_unpoison_shadow+0x33/0x50
[ 2094.369496]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2094.370720]  v9fs_mount+0x79/0x8f0
[ 2094.371555]  ? v9fs_write_inode+0x60/0x60
[ 2094.372382]  legacy_get_tree+0x105/0x220
[ 2094.373211]  vfs_get_tree+0x8e/0x300
[ 2094.373977]  path_mount+0x1490/0x21e0
[ 2094.374778]  ? strncpy_from_user+0x9e/0x470
[ 2094.375813]  ? finish_automount+0xa90/0xa90
[ 2094.376854]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2094.377887]  ? _copy_from_user+0xfb/0x1b0
[ 2094.378802]  __x64_sys_mount+0x282/0x300
[ 2094.379793]  ? copy_mnt_ns+0xa00/0xa00
[ 2094.380833]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2094.381913]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2094.382976]  do_syscall_64+0x33/0x40
[ 2094.383727]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2094.384752] RIP: 0033:0x7f67f1462b19
[ 2094.385508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2094.389192] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2094.389212] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2094.389223] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2094.389233] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2094.389242] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2094.389252] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2094.409792] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2094.411785] CPU: 1 PID: 22887 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2094.413176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2094.414861] Call Trace:
[ 2094.415382]  dump_stack+0x107/0x167
[ 2094.416118]  sysfs_warn_dup.cold+0x1c/0x29
[ 2094.416979]  sysfs_do_create_link_sd+0x122/0x140
[ 2094.417946]  sysfs_create_link+0x5f/0xc0
[ 2094.418779]  device_add+0x703/0x1c50
[ 2094.419536]  ? devlink_add_symlinks+0x970/0x970
[ 2094.420471]  ? __mutex_lock+0x4fe/0x10b0
[ 2094.421292]  wiphy_register+0x1da6/0x2850
[ 2094.422136]  ? wiphy_unregister+0xb90/0xb90
[ 2094.423027]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2094.424093]  ieee80211_register_hw+0x23c5/0x38b0
[ 2094.425049]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2094.426014]  ? net_generic+0xdb/0x2b0
[ 2094.426792]  ? lockdep_init_map_type+0x2c7/0x780
[ 2094.427735]  ? memset+0x20/0x50
[ 2094.428383]  ? __hrtimer_init+0x12c/0x270
[ 2094.429210]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2094.430229]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2094.431161]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2094.432070]  ? memcpy+0x39/0x60
[ 2094.432734]  hwsim_new_radio_nl+0x991/0x1080
[ 2094.433626]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2094.434684]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2094.435993]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2094.437292]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2094.438413]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2094.440030]  ? cap_capable+0x1cd/0x230
[ 2094.440849]  ? ns_capable+0xe2/0x110
[ 2094.441630]  genl_rcv_msg+0x36a/0x5a0
[ 2094.442385]  ? genl_get_cmd+0x480/0x480
[ 2094.443192]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2094.444222]  ? lock_release+0x680/0x680
[ 2094.445026]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2094.445912]  netlink_rcv_skb+0x14b/0x430
[ 2094.446723]  ? genl_get_cmd+0x480/0x480
[ 2094.447511]  ? netlink_ack+0xab0/0xab0
[ 2094.448279]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2094.449184]  ? is_vmalloc_addr+0x7b/0xb0
[ 2094.449992]  genl_rcv+0x24/0x40
[ 2094.450656]  netlink_unicast+0x6ce/0xa00
[ 2094.451463]  ? netlink_attachskb+0xab0/0xab0
[ 2094.452334]  netlink_sendmsg+0x90f/0xe00
[ 2094.453156]  ? netlink_unicast+0xa00/0xa00
[ 2094.453982]  ? netlink_unicast+0xa00/0xa00
[ 2094.454835]  ? netlink_unicast+0xa00/0xa00
[ 2094.455672]  __sock_sendmsg+0x154/0x190
[ 2094.456458]  ____sys_sendmsg+0x70d/0x870
[ 2094.457265]  ? sock_write_iter+0x3d0/0x3d0
[ 2094.458096]  ? do_recvmmsg+0x6d0/0x6d0
[ 2094.458910]  ___sys_sendmsg+0xf3/0x170
[ 2094.459685]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2094.460598]  ? __fget_files+0x2cf/0x520
[ 2094.461368]  ? lock_downgrade+0x6d0/0x6d0
[ 2094.462210]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2094.463253]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2094.464308]  ? trace_hardirqs_on+0x5b/0x180
[ 2094.465165]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2094.466219]  ? sockfd_lookup_light+0x112/0x180
[ 2094.467129]  ? __sanitizer_cov_trace_pc+0x4/0x60
[ 2094.468059]  __sys_sendmsg+0xe5/0x1b0
[ 2094.468810]  ? __sys_sendmsg_sock+0x40/0x40
[ 2094.469650]  ? io_schedule_timeout+0x140/0x140
[ 2094.470550]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2094.471596]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2094.472626]  ? trace_hardirqs_on+0x5b/0x180
[ 2094.473656]  do_syscall_64+0x33/0x40
[ 2094.474548]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2094.475777] RIP: 0033:0x7f7bcd366b19
[ 2094.476660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2094.481008] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2094.482820] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2094.484503] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2094.486187] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2094.487861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2094.489524] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:31:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000600000000000007b342c940"], 0x28}}, 0x0)

04:31:39 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58)

04:31:39 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x8, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:31:39 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c4c0000000000000007b342c940"], 0x28}}, 0x0)

04:31:39 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4c, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:31:39 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 23)

[ 2094.605895] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2094.610872] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2094.618953] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2094.636059] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:31:40 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58)

[ 2094.692772] FAULT_INJECTION: forcing a failure.
[ 2094.692772] name failslab, interval 1, probability 0, space 0, times 0
[ 2094.695679] CPU: 1 PID: 23254 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2094.697339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2094.699329] Call Trace:
[ 2094.699965]  dump_stack+0x107/0x167
[ 2094.700881]  should_fail.cold+0x5/0xa
[ 2094.701837]  ? create_object.isra.0+0x3a/0xa30
[ 2094.702939]  should_failslab+0x5/0x20
[ 2094.703850]  kmem_cache_alloc+0x5b/0x310
[ 2094.704813]  ? lock_downgrade+0x6d0/0x6d0
[ 2094.705828]  create_object.isra.0+0x3a/0xa30
[ 2094.706925]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2094.708131]  __kmalloc_track_caller+0x177/0x370
[ 2094.709229]  ? p9_client_create+0x41d/0x1230
[ 2094.710273]  kstrdup+0x36/0x70
[ 2094.711047]  p9_client_create+0x41d/0x1230
[ 2094.712046]  ? lock_downgrade+0x6d0/0x6d0
[ 2094.713037]  ? p9_client_flush+0x430/0x430
[ 2094.714040]  ? trace_hardirqs_on+0x5b/0x180
[ 2094.715078]  ? lockdep_init_map_type+0x2c7/0x780
[ 2094.716197]  ? __raw_spin_lock_init+0x36/0x110
[ 2094.717297]  v9fs_session_init+0x1dd/0x1680
[ 2094.718332]  ? lock_release+0x680/0x680
[ 2094.719325]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2094.720484]  ? v9fs_show_options+0x690/0x690
[ 2094.721570]  ? trace_hardirqs_on+0x5b/0x180
[ 2094.722609]  ? kasan_unpoison_shadow+0x33/0x50
[ 2094.723674]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2094.724899]  v9fs_mount+0x79/0x8f0
[ 2094.725760]  ? v9fs_write_inode+0x60/0x60
[ 2094.726734]  legacy_get_tree+0x105/0x220
[ 2094.727717]  vfs_get_tree+0x8e/0x300
[ 2094.728598]  path_mount+0x1490/0x21e0
[ 2094.729492]  ? strncpy_from_user+0x9e/0x470
[ 2094.730498]  ? finish_automount+0xa90/0xa90
[ 2094.731516]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2094.732609]  ? _copy_from_user+0xfb/0x1b0
[ 2094.733580]  __x64_sys_mount+0x282/0x300
[ 2094.734519]  ? copy_mnt_ns+0xa00/0xa00
[ 2094.735441]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2094.736660]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2094.737866]  do_syscall_64+0x33/0x40
[ 2094.738742]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2094.739933] RIP: 0033:0x7f67f1462b19
[ 2094.740795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2094.745083] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2094.746863] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2094.748493] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2094.750099] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2094.751710] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2094.753317] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:31:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000700000000000007b342c940"], 0x28}}, 0x0)

04:31:40 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c680000000000000007b342c940"], 0x28}}, 0x0)

[ 2094.780071] 9p: Unknown uid 18446744073709551615
[ 2094.788661] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:31:40 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
lseek(r0, 0x101, 0x1)

[ 2094.818621] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:31:40 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x0, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:31:40 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x2ed, 0x0, 0x0}, 0x58)

[ 2094.865923] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:31:40 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2094.944268] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2094.946452] CPU: 1 PID: 23457 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2094.948065] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2094.949962] Call Trace:
[ 2094.950576]  dump_stack+0x107/0x167
[ 2094.951430]  sysfs_warn_dup.cold+0x1c/0x29
[ 2094.952406]  sysfs_do_create_link_sd+0x122/0x140
[ 2094.953487]  sysfs_create_link+0x5f/0xc0
[ 2094.954435]  device_add+0x703/0x1c50
[ 2094.955334]  ? devlink_add_symlinks+0x970/0x970
[ 2094.956400]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2094.957613]  wiphy_register+0x1da6/0x2850
[ 2094.958578]  ? wiphy_unregister+0xb90/0xb90
[ 2094.959593]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2094.960806]  ieee80211_register_hw+0x23c5/0x38b0
[ 2094.961894]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2094.963031]  ? net_generic+0xdb/0x2b0
[ 2094.963926]  ? lockdep_init_map_type+0x2c7/0x780
[ 2094.965006]  ? memset+0x20/0x50
[ 2094.965761]  ? __hrtimer_init+0x12c/0x270
[ 2094.966755]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2094.967912]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2094.968966]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2094.970014]  ? memcpy+0x39/0x60
[ 2094.970784]  hwsim_new_radio_nl+0x991/0x1080
[ 2094.971783]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2094.972965]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2094.974453]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2094.975943]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2094.977045]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2094.978542]  ? cap_capable+0x1cd/0x230
[ 2094.979476]  ? ns_capable+0xe2/0x110
[ 2094.980354]  genl_rcv_msg+0x36a/0x5a0
[ 2094.981228]  ? genl_get_cmd+0x480/0x480
[ 2094.982122]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2094.983311]  ? lock_release+0x680/0x680
[ 2094.984203]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2094.985219]  netlink_rcv_skb+0x14b/0x430
[ 2094.986126]  ? genl_get_cmd+0x480/0x480
[ 2094.987032]  ? netlink_ack+0xab0/0xab0
[ 2094.987913]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2094.988951]  ? is_vmalloc_addr+0x7b/0xb0
[ 2094.989873]  genl_rcv+0x24/0x40
[ 2094.990641]  netlink_unicast+0x6ce/0xa00
[ 2094.991581]  ? netlink_attachskb+0xab0/0xab0
[ 2094.992582]  netlink_sendmsg+0x90f/0xe00
[ 2094.993502]  ? netlink_unicast+0xa00/0xa00
[ 2094.994448]  ? netlink_unicast+0xa00/0xa00
[ 2094.995410]  ? __sock_sendmsg+0x146/0x190
[ 2094.996328]  ? netlink_unicast+0xa00/0xa00
[ 2094.997281]  __sock_sendmsg+0x154/0x190
[ 2094.998163]  ____sys_sendmsg+0x70d/0x870
[ 2094.999075]  ? sock_write_iter+0x3d0/0x3d0
[ 2095.000008]  ? do_recvmmsg+0x6d0/0x6d0
[ 2095.000899]  ___sys_sendmsg+0xf3/0x170
[ 2095.001782]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2095.002807]  ? __fget_files+0x2cf/0x520
[ 2095.003687]  ? lock_downgrade+0x6d0/0x6d0
[ 2095.004614]  ? clockevents_program_event+0x14b/0x360
[ 2095.005745]  ? __fget_files+0x2f8/0x520
[ 2095.006643]  ? __fget_light+0xea/0x290
[ 2095.007513]  __sys_sendmsg+0xe5/0x1b0
[ 2095.008351]  ? __sys_sendmsg_sock+0x40/0x40
[ 2095.009327]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2095.010482]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2095.011620]  ? trace_hardirqs_on+0x5b/0x180
[ 2095.012570]  do_syscall_64+0x33/0x40
[ 2095.013391]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2095.014514] RIP: 0033:0x7f7bcd366b19
[ 2095.015341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2095.019367] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2095.021035] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2095.022587] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2095.024157] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2095.025715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2095.027284] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:31:55 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xa, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:31:55 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x68, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:31:55 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x0, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:31:55 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000900000000000007b342c940"], 0x28}}, 0x0)

04:31:55 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 24)

04:31:55 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c6c0000000000000007b342c940"], 0x28}}, 0x0)

04:31:55 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58)

04:31:55 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x10854100, 0x0, 0x0, 0x0, {0xf}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2109.757928] __nla_validate_parse: 1 callbacks suppressed
[ 2109.757941] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2109.765110] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2109.767712] FAULT_INJECTION: forcing a failure.
[ 2109.767712] name failslab, interval 1, probability 0, space 0, times 0
[ 2109.770179] CPU: 0 PID: 23626 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2109.771732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2109.771845] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2109.773581] Call Trace:
[ 2109.773607]  dump_stack+0x107/0x167
[ 2109.773632]  should_fail.cold+0x5/0xa
[ 2109.777183]  should_failslab+0x5/0x20
[ 2109.778037]  __kmalloc_track_caller+0x79/0x370
[ 2109.779099]  ? p9_client_create+0x51e/0x1230
[ 2109.780172]  kmemdup_nul+0x2d/0xa0
[ 2109.781033]  p9_client_create+0x51e/0x1230
[ 2109.782061]  ? p9_client_flush+0x430/0x430
[ 2109.783108]  ? trace_hardirqs_on+0x5b/0x180
[ 2109.784162]  ? lockdep_init_map_type+0x2c7/0x780
[ 2109.785325]  ? __raw_spin_lock_init+0x36/0x110
[ 2109.786654]  v9fs_session_init+0x1dd/0x1680
[ 2109.787923]  ? lock_release+0x680/0x680
[ 2109.789091]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2109.790486]  ? v9fs_show_options+0x690/0x690
[ 2109.791785]  ? trace_hardirqs_on+0x5b/0x180
[ 2109.793039]  ? kasan_unpoison_shadow+0x33/0x50
[ 2109.794357]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2109.795820]  v9fs_mount+0x79/0x8f0
[ 2109.796827]  ? v9fs_write_inode+0x60/0x60
[ 2109.797973]  legacy_get_tree+0x105/0x220
[ 2109.799131]  vfs_get_tree+0x8e/0x300
[ 2109.800215]  path_mount+0x1490/0x21e0
[ 2109.801333]  ? strncpy_from_user+0x9e/0x470
[ 2109.802594]  ? finish_automount+0xa90/0xa90
[ 2109.803872]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2109.805224]  ? _copy_from_user+0xfb/0x1b0
[ 2109.806441]  __x64_sys_mount+0x282/0x300
[ 2109.807637]  ? copy_mnt_ns+0xa00/0xa00
[ 2109.808776]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2109.810296]  ? syscall_enter_from_user_mode+0x1d/0x50
04:31:55 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58)

[ 2109.811812]  do_syscall_64+0x33/0x40
[ 2109.813070]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2109.814555] RIP: 0033:0x7f67f1462b19
[ 2109.815518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2109.819636] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2109.821310] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2109.822910] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2109.824491] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2109.826109] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
04:31:55 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000a00000000000007b342c940"], 0x28}}, 0x0)

[ 2109.827764] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2109.844416] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2109.846413] CPU: 0 PID: 23636 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2109.847952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2109.849787] Call Trace:
[ 2109.850369]  dump_stack+0x107/0x167
[ 2109.851197]  sysfs_warn_dup.cold+0x1c/0x29
[ 2109.852184]  sysfs_do_create_link_sd+0x122/0x140
[ 2109.853283]  sysfs_create_link+0x5f/0xc0
[ 2109.854228]  device_add+0x703/0x1c50
[ 2109.855102]  ? devlink_add_symlinks+0x970/0x970
[ 2109.856187]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2109.857411]  wiphy_register+0x1da6/0x2850
[ 2109.858385]  ? wiphy_unregister+0xb90/0xb90
[ 2109.859402]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2109.860640]  ieee80211_register_hw+0x23c5/0x38b0
[ 2109.861754]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2109.862876]  ? net_generic+0xdb/0x2b0
[ 2109.863765]  ? lockdep_init_map_type+0x2c7/0x780
[ 2109.864863]  ? memset+0x20/0x50
[ 2109.865631]  ? __hrtimer_init+0x12c/0x270
[ 2109.866596]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2109.867774]  ? hwsim_send_nullfunc_ps+0x80/0x80
04:31:55 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xb, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2109.868847]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2109.870075]  ? memcpy+0x39/0x60
[ 2109.870858]  hwsim_new_radio_nl+0x991/0x1080
[ 2109.871882]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2109.873094]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2109.874626]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2109.876134]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2109.877256]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2109.878794]  ? cap_capable+0x1cd/0x230
[ 2109.879704]  ? ns_capable+0xe2/0x110
[ 2109.880571]  genl_rcv_msg+0x36a/0x5a0
[ 2109.881458]  ? genl_get_cmd+0x480/0x480
[ 2109.882380]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2109.883597]  ? lock_release+0x680/0x680
[ 2109.884519]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2109.885559]  netlink_rcv_skb+0x14b/0x430
[ 2109.886503]  ? genl_get_cmd+0x480/0x480
[ 2109.887427]  ? netlink_ack+0xab0/0xab0
[ 2109.888336]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2109.889395]  ? is_vmalloc_addr+0x7b/0xb0
[ 2109.890337]  genl_rcv+0x24/0x40
[ 2109.891110]  netlink_unicast+0x6ce/0xa00
[ 2109.892053]  ? netlink_attachskb+0xab0/0xab0
[ 2109.893083]  netlink_sendmsg+0x90f/0xe00
[ 2109.894033]  ? netlink_unicast+0xa00/0xa00
[ 2109.895030]  ? netlink_unicast+0xa00/0xa00
[ 2109.896008]  __sock_sendmsg+0x154/0x190
[ 2109.896929]  ____sys_sendmsg+0x70d/0x870
[ 2109.897869]  ? sock_write_iter+0x3d0/0x3d0
[ 2109.898854]  ? do_recvmmsg+0x6d0/0x6d0
[ 2109.899769]  ___sys_sendmsg+0xf3/0x170
[ 2109.900673]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2109.901733]  ? __fget_files+0x2cf/0x520
[ 2109.902651]  ? lock_downgrade+0x6d0/0x6d0
[ 2109.903615]  ? futex_exit_release+0x220/0x220
[ 2109.904645]  ? clockevents_program_event+0x14b/0x360
[ 2109.905827]  ? __fget_files+0x2f8/0x520
[ 2109.906771]  ? __fget_light+0xea/0x290
[ 2109.907679]  __sys_sendmsg+0xe5/0x1b0
[ 2109.908561]  ? __sys_sendmsg_sock+0x40/0x40
[ 2109.909556]  ? __do_sys_futex+0x2bb/0x480
[ 2109.910533]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2109.911753]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2109.912935]  ? trace_hardirqs_on+0x5b/0x180
[ 2109.913938]  do_syscall_64+0x33/0x40
[ 2109.914810]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2109.915988] RIP: 0033:0x7f7bcd366b19
[ 2109.916841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2109.921078] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2109.922762] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2109.924411] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2109.926044] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2109.927654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2109.929249] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:31:55 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58)

04:31:55 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58)

04:31:55 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2110.048835] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2110.051080] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2110.054014] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:32:09 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xe, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:32:09 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_SET(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="88010000", @ANYRES16=r1, @ANYBLOB="01002dbd7000ffdbdf2511000000e40006804400040067636d28616573290000000000000000000000000000000000000000000000001c0000001fe48d13772ebea0b059ee0aa72489eae84aad6bf4e62ed9947e82aa0800010008000000040002008500030076212a081436144eb91da8875dc7a71e05eef6933669cc46893aeb6eb3ad55754f85e3de6c2e975e9f1001f3482bb96b98208d1735e58910f5e8aa161d4682e2bc084095c6bf069309f46881c3f1de4b49ae93460145589197187d6c8166791c7b55b47b340c4d61d675014c1980dea5639b8c750f46934cdb0b3c7a19b29ddbf60000000800010007000000440006804000040067636d286165732900000000000000000000000000000000000000000000000018000000deb79bd851da07a05107ff24db8c90716981f69bde2933ce100007800c00040000080000000000003c0007800c00030005000000000000000c00030003000000000000000800010007000000080001000e00000008000100750000000800010000000100"], 0x188}, 0x1, 0x0, 0x0, 0x20054000}, 0x4000000)
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
semget$private(0x0, 0x2, 0x100)
sendmsg$TIPC_CMD_GET_LINKS(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x10, 0x70bd26, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0x6}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4008004}, 0x4000)

04:32:09 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x0, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:32:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000f00000000000007b342c940"], 0x28}}, 0x0)

04:32:09 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 25)

04:32:09 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x6c, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:32:09 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x42a9, 0x0, 0x0}, 0x58)

04:32:09 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c740000000000000007b342c940"], 0x28}}, 0x0)

[ 2124.389710] FAULT_INJECTION: forcing a failure.
[ 2124.389710] name failslab, interval 1, probability 0, space 0, times 0
[ 2124.392319] CPU: 0 PID: 24170 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2124.393897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2124.395777] Call Trace:
[ 2124.396371]  dump_stack+0x107/0x167
[ 2124.397192]  should_fail.cold+0x5/0xa
[ 2124.398048]  ? create_object.isra.0+0x3a/0xa30
[ 2124.399080]  should_failslab+0x5/0x20
[ 2124.399945]  kmem_cache_alloc+0x5b/0x310
[ 2124.400875]  create_object.isra.0+0x3a/0xa30
[ 2124.401864]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2124.403025]  __kmalloc_track_caller+0x177/0x370
[ 2124.404075]  ? p9_client_create+0x51e/0x1230
[ 2124.405066]  kmemdup_nul+0x2d/0xa0
[ 2124.405864]  p9_client_create+0x51e/0x1230
[ 2124.406834]  ? p9_client_flush+0x430/0x430
[ 2124.407788]  ? trace_hardirqs_on+0x5b/0x180
[ 2124.408761]  ? lockdep_init_map_type+0x2c7/0x780
[ 2124.409833]  ? __raw_spin_lock_init+0x36/0x110
[ 2124.410885]  v9fs_session_init+0x1dd/0x1680
[ 2124.411857]  ? lock_release+0x680/0x680
[ 2124.412765]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2124.413860]  ? v9fs_show_options+0x690/0x690
[ 2124.414867]  ? trace_hardirqs_on+0x5b/0x180
[ 2124.415843]  ? kasan_unpoison_shadow+0x33/0x50
[ 2124.416885]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2124.417804] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2124.418033]  v9fs_mount+0x79/0x8f0
[ 2124.418054]  ? v9fs_write_inode+0x60/0x60
[ 2124.418079]  legacy_get_tree+0x105/0x220
[ 2124.421765] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2124.421884]  vfs_get_tree+0x8e/0x300
[ 2124.425593]  path_mount+0x1490/0x21e0
[ 2124.426462]  ? strncpy_from_user+0x9e/0x470
[ 2124.427445]  ? finish_automount+0xa90/0xa90
[ 2124.428415]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2124.429458]  ? _copy_from_user+0xfb/0x1b0
[ 2124.430402]  __x64_sys_mount+0x282/0x300
[ 2124.431321]  ? copy_mnt_ns+0xa00/0xa00
[ 2124.432107] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2124.432210]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2124.435427]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2124.436591]  do_syscall_64+0x33/0x40
[ 2124.437428]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2124.438714] RIP: 0033:0x7f67f1462b19
[ 2124.439575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2124.439697] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2124.443754] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2124.443774] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2124.443785] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2124.443797] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2124.443818] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2124.453961] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2124.505417] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2124.507843] CPU: 0 PID: 24219 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2124.509417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2124.511296] Call Trace:
[ 2124.511895]  dump_stack+0x107/0x167
[ 2124.512725]  sysfs_warn_dup.cold+0x1c/0x29
[ 2124.513679]  sysfs_do_create_link_sd+0x122/0x140
[ 2124.514747]  sysfs_create_link+0x5f/0xc0
[ 2124.515670]  device_add+0x703/0x1c50
[ 2124.516511]  ? devlink_add_symlinks+0x970/0x970
[ 2124.517566]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2124.518763]  wiphy_register+0x1da6/0x2850
[ 2124.519713]  ? wiphy_unregister+0xb90/0xb90
[ 2124.520705]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2124.521921]  ieee80211_register_hw+0x23c5/0x38b0
[ 2124.523008]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2124.524095]  ? net_generic+0xdb/0x2b0
[ 2124.524956]  ? lockdep_init_map_type+0x2c7/0x780
[ 2124.526019]  ? memset+0x20/0x50
[ 2124.526763]  ? __hrtimer_init+0x12c/0x270
[ 2124.527712]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2124.528853]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2124.529900]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2124.530926]  ? memcpy+0x39/0x60
[ 2124.531678]  hwsim_new_radio_nl+0x991/0x1080
[ 2124.532674]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2124.533850]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2124.535334]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2124.536794]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2124.537890]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2124.539377]  ? cap_capable+0x1cd/0x230
[ 2124.540264]  ? ns_capable+0xe2/0x110
[ 2124.541119]  genl_rcv_msg+0x36a/0x5a0
[ 2124.541982]  ? genl_get_cmd+0x480/0x480
[ 2124.542883]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2124.544045]  ? lock_release+0x680/0x680
[ 2124.544942]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2124.545960]  netlink_rcv_skb+0x14b/0x430
[ 2124.546878]  ? genl_get_cmd+0x480/0x480
[ 2124.547777]  ? netlink_ack+0xab0/0xab0
[ 2124.548663]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2124.549688]  ? is_vmalloc_addr+0x7b/0xb0
[ 2124.550606]  genl_rcv+0x24/0x40
[ 2124.551352]  netlink_unicast+0x6ce/0xa00
[ 2124.552269]  ? netlink_attachskb+0xab0/0xab0
[ 2124.553268]  netlink_sendmsg+0x90f/0xe00
[ 2124.554190]  ? netlink_unicast+0xa00/0xa00
[ 2124.555172]  ? netlink_unicast+0xa00/0xa00
[ 2124.556122]  __sock_sendmsg+0x154/0x190
[ 2124.557022]  ____sys_sendmsg+0x70d/0x870
[ 2124.557940]  ? sock_write_iter+0x3d0/0x3d0
[ 2124.558900]  ? do_recvmmsg+0x6d0/0x6d0
[ 2124.559797]  ___sys_sendmsg+0xf3/0x170
[ 2124.560673]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2124.561707]  ? __fget_files+0x2cf/0x520
[ 2124.562606]  ? lock_downgrade+0x6d0/0x6d0
[ 2124.563553]  ? clockevents_program_event+0x14b/0x360
[ 2124.564700]  ? __fget_files+0x2f8/0x520
[ 2124.565600]  ? __fget_light+0xea/0x290
[ 2124.566480]  __sys_sendmsg+0xe5/0x1b0
[ 2124.567347]  ? __sys_sendmsg_sock+0x40/0x40
[ 2124.568337]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2124.569517]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2124.570670]  ? trace_hardirqs_on+0x5b/0x180
[ 2124.571644]  do_syscall_64+0x33/0x40
[ 2124.572476]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2124.573637] RIP: 0033:0x7f7bcd366b19
[ 2124.574465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2124.578618] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2124.580321] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2124.581924] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2124.583534] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2124.585131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2124.586457] 9p: Unknown uid 18446744073709551615
[ 2124.586730] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:32:09 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c7a0000000000000007b342c940"], 0x28}}, 0x0)

04:32:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c011300000000000007b342c940"], 0x28}}, 0x0)

04:32:10 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x10, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:32:10 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x74, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:32:10 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xa942, 0x0, 0x0}, 0x58)

04:32:10 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 26)

[ 2124.744452] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2124.746574] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2124.750889] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2124.752989] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2124.851908] FAULT_INJECTION: forcing a failure.
[ 2124.851908] name failslab, interval 1, probability 0, space 0, times 0
[ 2124.854627] CPU: 1 PID: 24774 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2124.856239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2124.858237] Call Trace:
[ 2124.858874]  dump_stack+0x107/0x167
[ 2124.859754]  should_fail.cold+0x5/0xa
[ 2124.860651]  should_failslab+0x5/0x20
[ 2124.861548]  __kmalloc_track_caller+0x79/0x370
[ 2124.862630]  ? parse_opts.part.0+0x8e/0x340
[ 2124.863642]  kstrdup+0x36/0x70
[ 2124.864404]  parse_opts.part.0+0x8e/0x340
[ 2124.865364]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2124.866412]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2124.867638]  ? quarantine_put+0x8b/0x1a0
[ 2124.868583]  ? trace_hardirqs_on+0x5b/0x180
[ 2124.869588]  ? kfree+0xd7/0x340
[ 2124.870369]  p9_fd_create+0x98/0x4a0
[ 2124.871256]  ? p9_conn_create+0x510/0x510
[ 2124.872211]  ? p9_client_create+0x798/0x1230
[ 2124.873248]  ? kfree+0xd7/0x340
[ 2124.874020]  ? do_raw_spin_unlock+0x4f/0x220
[ 2124.875069]  p9_client_create+0x7ff/0x1230
[ 2124.876084]  ? p9_client_flush+0x430/0x430
[ 2124.877081]  ? trace_hardirqs_on+0x5b/0x180
[ 2124.878074]  ? lockdep_init_map_type+0x2c7/0x780
[ 2124.879181]  ? __raw_spin_lock_init+0x36/0x110
[ 2124.880250]  v9fs_session_init+0x1dd/0x1680
[ 2124.881247]  ? lock_release+0x680/0x680
[ 2124.882168]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2124.883278]  ? v9fs_show_options+0x690/0x690
[ 2124.884296]  ? trace_hardirqs_on+0x5b/0x180
[ 2124.885305]  ? kasan_unpoison_shadow+0x33/0x50
[ 2124.886363]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2124.887524]  v9fs_mount+0x79/0x8f0
[ 2124.888360]  ? v9fs_write_inode+0x60/0x60
[ 2124.889333]  legacy_get_tree+0x105/0x220
[ 2124.890282]  vfs_get_tree+0x8e/0x300
[ 2124.891173]  path_mount+0x1490/0x21e0
[ 2124.892064]  ? strncpy_from_user+0x9e/0x470
[ 2124.893050]  ? finish_automount+0xa90/0xa90
[ 2124.894067]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2124.895161]  ? _copy_from_user+0xfb/0x1b0
[ 2124.896142]  __x64_sys_mount+0x282/0x300
[ 2124.897081]  ? copy_mnt_ns+0xa00/0xa00
[ 2124.897970]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2124.899170]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2124.900351]  do_syscall_64+0x33/0x40
[ 2124.901196]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2124.902367] RIP: 0033:0x7f67f1462b19
[ 2124.903227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2124.907456] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2124.909207] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2124.910857] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2124.912488] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2124.914091] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2124.915707] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2124.918233] 9pnet: Insufficient options for proto=fd
04:32:24 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c004800000000000007b342c940"], 0x28}}, 0x0)

04:32:24 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x0, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:32:24 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 27)

04:32:24 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cf00000000000000007b342c940"], 0x28}}, 0x0)

04:32:24 executing program 5:
r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ff1000/0x3000)=nil)
shmat(r0, &(0x7f0000ff6000/0x1000)=nil, 0x5000)
shmat(r0, &(0x7f0000ff5000/0x9000)=nil, 0x4000)
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:32:24 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xed02, 0x0, 0x0}, 0x58)

04:32:24 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x7a, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:32:24 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2e, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2139.036091] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2139.043422] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2139.046528] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2139.049798] FAULT_INJECTION: forcing a failure.
[ 2139.049798] name failslab, interval 1, probability 0, space 0, times 0
[ 2139.052207] CPU: 1 PID: 24817 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2139.053668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2139.055456] Call Trace:
[ 2139.056015]  dump_stack+0x107/0x167
[ 2139.056784]  should_fail.cold+0x5/0xa
[ 2139.057588]  ? create_object.isra.0+0x3a/0xa30
[ 2139.058556]  should_failslab+0x5/0x20
[ 2139.059386]  kmem_cache_alloc+0x5b/0x310
[ 2139.060240]  ? legacy_get_tree+0x105/0x220
[ 2139.061122]  ? vfs_get_tree+0x8e/0x300
[ 2139.061943]  create_object.isra.0+0x3a/0xa30
[ 2139.062862]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2139.063959]  __kmalloc_track_caller+0x177/0x370
[ 2139.064942]  ? parse_opts.part.0+0x8e/0x340
[ 2139.065857]  kstrdup+0x36/0x70
[ 2139.066534]  parse_opts.part.0+0x8e/0x340
[ 2139.067421]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2139.068374]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.069441]  ? quarantine_put+0x8b/0x1a0
[ 2139.070297]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.071203]  ? kfree+0xd7/0x340
[ 2139.071914]  p9_fd_create+0x98/0x4a0
[ 2139.072716]  ? p9_conn_create+0x510/0x510
[ 2139.073637]  ? p9_client_create+0x798/0x1230
[ 2139.074627]  ? kfree+0xd7/0x340
[ 2139.075326]  ? do_raw_spin_unlock+0x4f/0x220
[ 2139.076467]  p9_client_create+0x7ff/0x1230
[ 2139.077361]  ? p9_client_flush+0x430/0x430
[ 2139.078300]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.079206]  ? lockdep_init_map_type+0x2c7/0x780
[ 2139.080171]  ? __raw_spin_lock_init+0x36/0x110
[ 2139.081119]  v9fs_session_init+0x1dd/0x1680
[ 2139.082003]  ? lock_release+0x680/0x680
[ 2139.082829]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2139.083833]  ? v9fs_show_options+0x690/0x690
[ 2139.084728]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.085615]  ? kasan_unpoison_shadow+0x33/0x50
[ 2139.086544]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2139.087616]  v9fs_mount+0x79/0x8f0
[ 2139.088346]  ? v9fs_write_inode+0x60/0x60
[ 2139.089197]  legacy_get_tree+0x105/0x220
[ 2139.090039]  vfs_get_tree+0x8e/0x300
[ 2139.090795]  path_mount+0x1490/0x21e0
[ 2139.091584]  ? strncpy_from_user+0x9e/0x470
[ 2139.092456]  ? finish_automount+0xa90/0xa90
[ 2139.093355]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2139.094294]  ? _copy_from_user+0xfb/0x1b0
[ 2139.095171]  __x64_sys_mount+0x282/0x300
[ 2139.095990]  ? copy_mnt_ns+0xa00/0xa00
[ 2139.096790]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.097870]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2139.098909]  do_syscall_64+0x33/0x40
[ 2139.099710]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.100742] RIP: 0033:0x7f67f1462b19
[ 2139.101501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2139.105219] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2139.106765] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2139.108237] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2139.109686] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2139.111163] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2139.112615] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2139.124055] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:32:24 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cfd0000000000000007b342c940"], 0x28}}, 0x0)

[ 2139.165948] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2139.168225] CPU: 0 PID: 24904 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2139.169772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2139.171699] Call Trace:
[ 2139.172318]  dump_stack+0x107/0x167
[ 2139.173154]  sysfs_warn_dup.cold+0x1c/0x29
[ 2139.174129]  sysfs_do_create_link_sd+0x122/0x140
[ 2139.175240]  sysfs_create_link+0x5f/0xc0
[ 2139.176180]  device_add+0x703/0x1c50
[ 2139.177063]  ? devlink_add_symlinks+0x970/0x970
[ 2139.178139]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2139.179373]  wiphy_register+0x1da6/0x2850
[ 2139.180351]  ? wiphy_unregister+0xb90/0xb90
[ 2139.181347]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2139.182587]  ieee80211_register_hw+0x23c5/0x38b0
[ 2139.183687]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2139.184805]  ? net_generic+0xdb/0x2b0
[ 2139.185711]  ? lockdep_init_map_type+0x2c7/0x780
[ 2139.186834]  ? memset+0x20/0x50
[ 2139.187607]  ? __hrtimer_init+0x12c/0x270
[ 2139.188570]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2139.189754]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2139.190023] 9p: Unknown uid 18446744073709551615
[ 2139.190849]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2139.190867]  ? memcpy+0x39/0x60
[ 2139.190899]  hwsim_new_radio_nl+0x991/0x1080
[ 2139.194693]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2139.195929]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2139.197459]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2139.199005]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2139.200117]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2139.201587]  ? cap_capable+0x1cd/0x230
[ 2139.202478]  ? ns_capable+0xe2/0x110
[ 2139.203372]  genl_rcv_msg+0x36a/0x5a0
[ 2139.204252]  ? genl_get_cmd+0x480/0x480
[ 2139.205175]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2139.206386]  ? lock_release+0x680/0x680
[ 2139.207338]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2139.208387]  netlink_rcv_skb+0x14b/0x430
[ 2139.209335]  ? genl_get_cmd+0x480/0x480
[ 2139.210247]  ? netlink_ack+0xab0/0xab0
[ 2139.211226]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2139.212303]  ? is_vmalloc_addr+0x7b/0xb0
[ 2139.213233]  genl_rcv+0x24/0x40
[ 2139.214009]  netlink_unicast+0x6ce/0xa00
[ 2139.214971]  ? netlink_attachskb+0xab0/0xab0
[ 2139.216003]  netlink_sendmsg+0x90f/0xe00
[ 2139.216954]  ? netlink_unicast+0xa00/0xa00
[ 2139.217944]  ? netlink_unicast+0xa00/0xa00
[ 2139.218956]  ? __sock_sendmsg+0x146/0x190
[ 2139.219932]  ? netlink_unicast+0xa00/0xa00
[ 2139.220914]  __sock_sendmsg+0x154/0x190
[ 2139.221831]  ____sys_sendmsg+0x70d/0x870
[ 2139.222764]  ? sock_write_iter+0x3d0/0x3d0
[ 2139.223748]  ? do_recvmmsg+0x6d0/0x6d0
[ 2139.224659]  ___sys_sendmsg+0xf3/0x170
[ 2139.225580]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2139.226646]  ? __fget_files+0x2cf/0x520
[ 2139.227560]  ? lock_downgrade+0x6d0/0x6d0
[ 2139.228574]  ? __fget_files+0x2f8/0x520
[ 2139.229508]  ? __fget_light+0xea/0x290
[ 2139.230427]  __sys_sendmsg+0xe5/0x1b0
[ 2139.231300]  ? __sys_sendmsg_sock+0x40/0x40
[ 2139.232326]  ? io_schedule_timeout+0x140/0x140
[ 2139.233422]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.234630]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2139.235825]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.236816]  do_syscall_64+0x33/0x40
[ 2139.237709]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.238910] RIP: 0033:0x7f7bcd366b19
[ 2139.239762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2139.244146] RSP: 002b:00007f7bca8bb188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2139.245908] RAX: ffffffffffffffda RBX: 00007f7bcd47a020 RCX: 00007f7bcd366b19
[ 2139.247579] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2139.249279] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2139.250979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2139.252664] R13: 00007ffe711e07af R14: 00007f7bca8bb300 R15: 0000000000022000
04:32:24 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c004c00000000000007b342c940"], 0x28}}, 0x0)

04:32:24 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58)

04:32:24 executing program 5:
unshare(0x60000280)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
clone3(&(0x7f00000008c0)={0x104822b00, 0x0, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0xfffffec0)

04:32:24 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x48, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:32:24 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 28)

04:32:24 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x300, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:32:24 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58)

[ 2139.390329] FAULT_INJECTION: forcing a failure.
[ 2139.390329] name failslab, interval 1, probability 0, space 0, times 0
[ 2139.392839] CPU: 1 PID: 25158 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2139.394320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2139.396095] Call Trace:
[ 2139.396661]  dump_stack+0x107/0x167
[ 2139.397449]  should_fail.cold+0x5/0xa
[ 2139.398272]  should_failslab+0x5/0x20
[ 2139.399111]  __kmalloc_track_caller+0x79/0x370
[ 2139.400090]  ? match_number+0xaf/0x1d0
[ 2139.400924]  kmemdup_nul+0x2d/0xa0
[ 2139.401685]  match_number+0xaf/0x1d0
[ 2139.402480]  ? match_u64+0x190/0x190
[ 2139.403284]  ? __kmalloc_track_caller+0x2c6/0x370
[ 2139.404314]  ? memcpy+0x39/0x60
[ 2139.405025]  parse_opts.part.0+0x1f3/0x340
[ 2139.405926]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2139.406887]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.408017]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.408939]  ? kfree+0xd7/0x340
[ 2139.409648]  p9_fd_create+0x98/0x4a0
[ 2139.410440]  ? p9_conn_create+0x510/0x510
[ 2139.411336]  ? p9_client_create+0x798/0x1230
[ 2139.412270]  ? kfree+0xd7/0x340
[ 2139.412967]  ? do_raw_spin_unlock+0x4f/0x220
[ 2139.413911]  p9_client_create+0x7ff/0x1230
[ 2139.414822]  ? p9_client_flush+0x430/0x430
[ 2139.415729]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.416654]  ? lockdep_init_map_type+0x2c7/0x780
[ 2139.417666]  ? __raw_spin_lock_init+0x36/0x110
[ 2139.418652]  v9fs_session_init+0x1dd/0x1680
[ 2139.419587]  ? lock_release+0x680/0x680
[ 2139.420449]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2139.421465]  ? v9fs_show_options+0x690/0x690
[ 2139.422409]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.423339]  ? kasan_unpoison_shadow+0x33/0x50
[ 2139.424306]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2139.425385]  v9fs_mount+0x79/0x8f0
[ 2139.426142]  ? v9fs_write_inode+0x60/0x60
[ 2139.427035]  legacy_get_tree+0x105/0x220
[ 2139.427899]  vfs_get_tree+0x8e/0x300
[ 2139.428693]  path_mount+0x1490/0x21e0
[ 2139.429502]  ? strncpy_from_user+0x9e/0x470
[ 2139.430443]  ? finish_automount+0xa90/0xa90
[ 2139.431399]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2139.432394]  ? _copy_from_user+0xfb/0x1b0
[ 2139.433285]  __x64_sys_mount+0x282/0x300
[ 2139.434149]  ? copy_mnt_ns+0xa00/0xa00
[ 2139.434991]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.436108]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2139.437214]  do_syscall_64+0x33/0x40
[ 2139.438007]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.439108] RIP: 0033:0x7f67f1462b19
[ 2139.439902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2139.443876] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2139.445502] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2139.447036] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2139.448551] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2139.450067] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2139.451591] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2139.478800] 9pnet: Insufficient options for proto=fd
[ 2139.484188] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2139.486329] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2139.520076] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:32:24 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4c, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:32:24 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x500, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:32:24 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000300000000000007b342c940"], 0x28}}, 0x0)

04:32:24 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 29)

04:32:24 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c006800000000000007b342c940"], 0x28}}, 0x0)

04:32:24 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x0, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:32:24 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58)

[ 2139.643123] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2139.648419] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2139.659524] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2139.671018] FAULT_INJECTION: forcing a failure.
[ 2139.671018] name failslab, interval 1, probability 0, space 0, times 0
[ 2139.673563] CPU: 1 PID: 25474 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2139.675040] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2139.676776] Call Trace:
[ 2139.677334]  dump_stack+0x107/0x167
[ 2139.678112]  should_fail.cold+0x5/0xa
[ 2139.678915]  ? create_object.isra.0+0x3a/0xa30
[ 2139.679885]  should_failslab+0x5/0x20
[ 2139.680684]  kmem_cache_alloc+0x5b/0x310
[ 2139.681537]  create_object.isra.0+0x3a/0xa30
[ 2139.682462]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2139.683543]  __kmalloc_track_caller+0x177/0x370
[ 2139.684515]  ? match_number+0xaf/0x1d0
[ 2139.685335]  kmemdup_nul+0x2d/0xa0
[ 2139.686080]  match_number+0xaf/0x1d0
[ 2139.686859]  ? match_u64+0x190/0x190
[ 2139.687644]  ? __kmalloc_track_caller+0x2c6/0x370
[ 2139.688653]  ? memcpy+0x39/0x60
[ 2139.689346]  parse_opts.part.0+0x1f3/0x340
[ 2139.690237]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2139.691194]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.692287]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.693190]  ? kfree+0xd7/0x340
[ 2139.693891]  p9_fd_create+0x98/0x4a0
[ 2139.694665]  ? p9_conn_create+0x510/0x510
[ 2139.695546]  ? p9_client_create+0x798/0x1230
[ 2139.696480]  ? kfree+0xd7/0x340
[ 2139.697169]  ? do_raw_spin_unlock+0x4f/0x220
[ 2139.698090]  p9_client_create+0x7ff/0x1230
[ 2139.698996]  ? p9_client_flush+0x430/0x430
[ 2139.699893]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.700802]  ? lockdep_init_map_type+0x2c7/0x780
[ 2139.701799]  ? __raw_spin_lock_init+0x36/0x110
[ 2139.702766]  v9fs_session_init+0x1dd/0x1680
[ 2139.703682]  ? lock_release+0x680/0x680
[ 2139.704522]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2139.705530]  ? v9fs_show_options+0x690/0x690
[ 2139.706454]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.707384]  ? kasan_unpoison_shadow+0x33/0x50
[ 2139.708337]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2139.709410]  v9fs_mount+0x79/0x8f0
[ 2139.710153]  ? v9fs_write_inode+0x60/0x60
[ 2139.711023]  legacy_get_tree+0x105/0x220
[ 2139.711878]  vfs_get_tree+0x8e/0x300
[ 2139.712667]  path_mount+0x1490/0x21e0
[ 2139.713473]  ? strncpy_from_user+0x9e/0x470
[ 2139.714381]  ? finish_automount+0xa90/0xa90
[ 2139.715303]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2139.716277]  ? _copy_from_user+0xfb/0x1b0
[ 2139.717147]  __x64_sys_mount+0x282/0x300
[ 2139.718009]  ? copy_mnt_ns+0xa00/0xa00
[ 2139.718825]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.719939]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2139.721033]  do_syscall_64+0x33/0x40
[ 2139.721809]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.722901] RIP: 0033:0x7f67f1462b19
[ 2139.722944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2139.727621] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2139.729207] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2139.730716] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2139.731066] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2139.732221] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2139.732232] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2139.732243] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2139.739424] CPU: 0 PID: 25532 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2139.740926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2139.742736] Call Trace:
[ 2139.743329]  dump_stack+0x107/0x167
[ 2139.744121]  sysfs_warn_dup.cold+0x1c/0x29
[ 2139.745038]  sysfs_do_create_link_sd+0x122/0x140
[ 2139.746057]  sysfs_create_link+0x5f/0xc0
[ 2139.746949]  device_add+0x703/0x1c50
[ 2139.747762]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2139.748936]  ? devlink_add_symlinks+0x970/0x970
[ 2139.749956]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2139.751096]  wiphy_register+0x1da6/0x2850
[ 2139.752019]  ? wiphy_unregister+0xb90/0xb90
[ 2139.752957]  ? ieee80211_register_hw+0x17e9/0x38b0
[ 2139.754022]  ? check_memory_region+0x198/0x1f0
[ 2139.755017]  ieee80211_register_hw+0x23c5/0x38b0
[ 2139.756054]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2139.757080]  ? net_generic+0xdb/0x2b0
[ 2139.757908]  ? lockdep_init_map_type+0x2c7/0x780
[ 2139.758936]  ? memset+0x20/0x50
[ 2139.759647]  ? __hrtimer_init+0x12c/0x270
[ 2139.760543]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2139.761633]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2139.762612]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2139.763592]  ? memcpy+0x39/0x60
[ 2139.764301]  hwsim_new_radio_nl+0x991/0x1080
[ 2139.764413] 9p: Unknown uid 18446744073709551615
[ 2139.765245]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2139.765282]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2139.765311]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2139.770177]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2139.771221]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2139.772628]  ? cap_capable+0x1cd/0x230
[ 2139.773464]  ? ns_capable+0xe2/0x110
[ 2139.774255]  genl_rcv_msg+0x36a/0x5a0
[ 2139.775076]  ? genl_get_cmd+0x480/0x480
[ 2139.775925]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2139.777030]  ? lock_release+0x680/0x680
[ 2139.777875]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2139.778843]  netlink_rcv_skb+0x14b/0x430
[ 2139.779717]  ? genl_get_cmd+0x480/0x480
[ 2139.780564]  ? netlink_ack+0xab0/0xab0
[ 2139.781405]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2139.782375]  ? is_vmalloc_addr+0x7b/0xb0
[ 2139.783235]  genl_rcv+0x24/0x40
[ 2139.783927]  netlink_unicast+0x6ce/0xa00
[ 2139.784797]  ? netlink_attachskb+0xab0/0xab0
[ 2139.785731]  netlink_sendmsg+0x90f/0xe00
[ 2139.786593]  ? netlink_unicast+0xa00/0xa00
[ 2139.787507]  ? netlink_unicast+0xa00/0xa00
[ 2139.788401]  __sock_sendmsg+0x154/0x190
[ 2139.789235]  ____sys_sendmsg+0x70d/0x870
[ 2139.790102]  ? sock_write_iter+0x3d0/0x3d0
[ 2139.790992]  ? do_recvmmsg+0x6d0/0x6d0
[ 2139.791834]  ___sys_sendmsg+0xf3/0x170
[ 2139.792664]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2139.793633]  ? __fget_files+0x2cf/0x520
[ 2139.794468]  ? lock_downgrade+0x6d0/0x6d0
[ 2139.795350]  ? clockevents_program_event+0x14b/0x360
[ 2139.796440]  ? __fget_files+0x2f8/0x520
[ 2139.797292]  ? __fget_light+0xea/0x290
[ 2139.798121]  __sys_sendmsg+0xe5/0x1b0
[ 2139.798937]  ? __sys_sendmsg_sock+0x40/0x40
[ 2139.799873]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.800968]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2139.802051]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.802968]  do_syscall_64+0x33/0x40
[ 2139.803760]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.804846] RIP: 0033:0x7f7bcd366b19
[ 2139.805630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2139.809490] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2139.811085] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2139.812577] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2139.814063] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2139.815561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2139.817047] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:32:25 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c006c00000000000007b342c940"], 0x28}}, 0x0)

04:32:25 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000500000000000007b342c940"], 0x28}}, 0x0)

04:32:25 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x68, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:32:38 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000, 0x0, 0x0}, 0x58)

04:32:38 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x60080080)

04:32:38 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000600000000000007b342c940"], 0x28}}, 0x0)

04:32:38 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x600, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:32:38 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(0xffffffffffffffff, 0x0, r4)

04:32:38 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c007400000000000007b342c940"], 0x28}}, 0x0)

04:32:38 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 30)

[ 2153.373952] __nla_validate_parse: 5 callbacks suppressed
[ 2153.373965] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2153.380454] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:32:38 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x6c, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2153.406340] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2153.420509] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2153.444420] FAULT_INJECTION: forcing a failure.
[ 2153.444420] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.447103] CPU: 1 PID: 25902 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2153.448731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2153.450679] Call Trace:
[ 2153.451315]  dump_stack+0x107/0x167
[ 2153.452163]  should_fail.cold+0x5/0xa
[ 2153.453060]  should_failslab+0x5/0x20
[ 2153.453953]  __kmalloc_track_caller+0x79/0x370
[ 2153.455005]  ? match_number+0xaf/0x1d0
[ 2153.455913]  ? kfree+0xd7/0x340
[ 2153.456681]  kmemdup_nul+0x2d/0xa0
[ 2153.457518]  match_number+0xaf/0x1d0
[ 2153.458376]  ? match_u64+0x190/0x190
[ 2153.459253]  ? __kmalloc_track_caller+0x2c6/0x370
[ 2153.460375]  ? memcpy+0x39/0x60
[ 2153.461143]  parse_opts.part.0+0x1f3/0x340
[ 2153.462136]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2153.463194]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2153.464417]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.465415]  ? kfree+0xd7/0x340
[ 2153.466169]  p9_fd_create+0x98/0x4a0
[ 2153.467013]  ? p9_conn_create+0x510/0x510
[ 2153.467981]  ? p9_client_create+0x798/0x1230
[ 2153.468991]  ? kfree+0xd7/0x340
[ 2153.469738]  ? do_raw_spin_unlock+0x4f/0x220
[ 2153.470766]  p9_client_create+0x7ff/0x1230
[ 2153.471759]  ? p9_client_flush+0x430/0x430
[ 2153.472728]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.473709]  ? lockdep_init_map_type+0x2c7/0x780
[ 2153.474793]  ? __raw_spin_lock_init+0x36/0x110
[ 2153.475855]  v9fs_session_init+0x1dd/0x1680
[ 2153.476859]  ? lock_release+0x680/0x680
[ 2153.477774]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2153.478874]  ? v9fs_show_options+0x690/0x690
[ 2153.479903]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.480895]  ? kasan_unpoison_shadow+0x33/0x50
[ 2153.481934]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2153.483118]  v9fs_mount+0x79/0x8f0
[ 2153.483942]  ? v9fs_write_inode+0x60/0x60
[ 2153.484898]  legacy_get_tree+0x105/0x220
[ 2153.485255] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2153.485852]  vfs_get_tree+0x8e/0x300
[ 2153.485872]  path_mount+0x1490/0x21e0
[ 2153.485898]  ? strncpy_from_user+0x9e/0x470
[ 2153.485919]  ? finish_automount+0xa90/0xa90
[ 2153.485939]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2153.485959]  ? _copy_from_user+0xfb/0x1b0
[ 2153.485988]  __x64_sys_mount+0x282/0x300
[ 2153.486015]  ? copy_mnt_ns+0xa00/0xa00
[ 2153.495598]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2153.496825]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2153.498039]  do_syscall_64+0x33/0x40
[ 2153.498912]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2153.500120] RIP: 0033:0x7f67f1462b19
[ 2153.500992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2153.505306] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2153.507099] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2153.508759] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2153.510408] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2153.512068] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2153.513728] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2153.515418] CPU: 0 PID: 25896 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2153.515682] 9pnet: Insufficient options for proto=fd
[ 2153.516970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2153.516977] Call Trace:
[ 2153.517012]  dump_stack+0x107/0x167
[ 2153.521381]  sysfs_warn_dup.cold+0x1c/0x29
[ 2153.522326]  sysfs_do_create_link_sd+0x122/0x140
[ 2153.523393]  sysfs_create_link+0x5f/0xc0
[ 2153.524296]  device_add+0x703/0x1c50
[ 2153.525124]  ? devlink_add_symlinks+0x970/0x970
[ 2153.526156]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2153.527333]  wiphy_register+0x1da6/0x2850
[ 2153.528272]  ? wiphy_unregister+0xb90/0xb90
[ 2153.529246]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2153.530482]  ieee80211_register_hw+0x23c5/0x38b0
[ 2153.531632]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2153.532772]  ? net_generic+0xdb/0x2b0
04:32:38 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000700000000000007b342c940"], 0x28}}, 0x0)

04:32:38 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c007a00000000000007b342c940"], 0x28}}, 0x0)

[ 2153.533806]  ? lockdep_init_map_type+0x2c7/0x780
[ 2153.534945]  ? memset+0x20/0x50
[ 2153.535760]  ? __hrtimer_init+0x12c/0x270
[ 2153.536746]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2153.537947]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2153.539061]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2153.540139]  ? memcpy+0x39/0x60
[ 2153.540923]  hwsim_new_radio_nl+0x991/0x1080
[ 2153.541974]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2153.543226]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2153.544785]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2153.546328]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2153.547497]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2153.549062]  ? cap_capable+0x1cd/0x230
[ 2153.550002]  ? ns_capable+0xe2/0x110
[ 2153.550893]  genl_rcv_msg+0x36a/0x5a0
[ 2153.551816]  ? genl_get_cmd+0x480/0x480
[ 2153.552766]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2153.553995]  ? lock_release+0x680/0x680
[ 2153.554939]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2153.556020]  netlink_rcv_skb+0x14b/0x430
[ 2153.556986]  ? genl_get_cmd+0x480/0x480
[ 2153.557933]  ? netlink_ack+0xab0/0xab0
[ 2153.558871]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2153.559971]  ? is_vmalloc_addr+0x7b/0xb0
[ 2153.560940]  genl_rcv+0x24/0x40
[ 2153.561726]  netlink_unicast+0x6ce/0xa00
[ 2153.562697]  ? netlink_attachskb+0xab0/0xab0
[ 2153.563769]  netlink_sendmsg+0x90f/0xe00
[ 2153.564740]  ? netlink_unicast+0xa00/0xa00
[ 2153.565761]  ? netlink_unicast+0xa00/0xa00
[ 2153.566771]  __sock_sendmsg+0x154/0x190
[ 2153.567733]  ____sys_sendmsg+0x70d/0x870
[ 2153.568703]  ? sock_write_iter+0x3d0/0x3d0
[ 2153.569707]  ? do_recvmmsg+0x6d0/0x6d0
[ 2153.570643]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2153.571933]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.572961]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2153.574256]  ___sys_sendmsg+0xf3/0x170
[ 2153.575199]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2153.576282]  ? lock_release+0x3be/0x680
[ 2153.577233]  ? __fget_files+0x2cf/0x520
[ 2153.578180]  ? lock_downgrade+0x6d0/0x6d0
[ 2153.579183]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2153.580425]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2153.581698]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.582720]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2153.584035]  __sys_sendmsg+0xe5/0x1b0
[ 2153.584938]  ? __sys_sendmsg_sock+0x40/0x40
[ 2153.585957]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.586995]  ? __sys_sendmsg+0x1b0/0x1b0
[ 2153.587971]  ? __x86_indirect_thunk_array+0xc/0x20
[ 2153.589130]  do_syscall_64+0x33/0x40
[ 2153.590008]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2153.591216] RIP: 0033:0x7f7bcd366b19
[ 2153.592082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2153.596279] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2153.597976] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2153.599579] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2153.601159] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2153.602740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2153.604336] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:32:39 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 31)

04:32:39 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x74, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:32:39 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x700, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:32:39 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58)

[ 2153.733438] FAULT_INJECTION: forcing a failure.
[ 2153.733438] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.736112] CPU: 0 PID: 26286 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2153.737669] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2153.739560] Call Trace:
[ 2153.740154]  dump_stack+0x107/0x167
[ 2153.740964]  should_fail.cold+0x5/0xa
[ 2153.741806]  ? create_object.isra.0+0x3a/0xa30
[ 2153.742830]  should_failslab+0x5/0x20
[ 2153.743692]  kmem_cache_alloc+0x5b/0x310
[ 2153.744604]  create_object.isra.0+0x3a/0xa30
[ 2153.745567]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2153.746726]  __kmalloc_track_caller+0x177/0x370
[ 2153.747756]  ? match_number+0xaf/0x1d0
[ 2153.748641]  kmemdup_nul+0x2d/0xa0
[ 2153.749427]  match_number+0xaf/0x1d0
[ 2153.750269]  ? match_u64+0x190/0x190
[ 2153.751115]  ? __kmalloc_track_caller+0x2c6/0x370
[ 2153.752203]  ? memcpy+0x39/0x60
[ 2153.752934]  parse_opts.part.0+0x1f3/0x340
[ 2153.753887]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2153.754887]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2153.756092]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.757064]  ? kfree+0xd7/0x340
[ 2153.757841]  p9_fd_create+0x98/0x4a0
[ 2153.758666]  ? p9_conn_create+0x510/0x510
[ 2153.759621]  ? p9_client_create+0x798/0x1230
[ 2153.760611]  ? kfree+0xd7/0x340
[ 2153.761353]  ? do_raw_spin_unlock+0x4f/0x220
[ 2153.762352]  p9_client_create+0x7ff/0x1230
[ 2153.763325]  ? p9_client_flush+0x430/0x430
[ 2153.764258]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.765248]  ? lockdep_init_map_type+0x2c7/0x780
[ 2153.766292]  ? __raw_spin_lock_init+0x36/0x110
[ 2153.767331]  v9fs_session_init+0x1dd/0x1680
[ 2153.768293]  ? lock_release+0x680/0x680
[ 2153.769197]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2153.770267]  ? v9fs_show_options+0x690/0x690
[ 2153.771271]  ? trace_hardirqs_on+0x5b/0x180
[ 2153.772236]  ? kasan_unpoison_shadow+0x33/0x50
[ 2153.772896] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2153.773270]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2153.773295]  v9fs_mount+0x79/0x8f0
[ 2153.777038]  ? v9fs_write_inode+0x60/0x60
[ 2153.777972]  legacy_get_tree+0x105/0x220
[ 2153.778881]  vfs_get_tree+0x8e/0x300
[ 2153.779761]  path_mount+0x1490/0x21e0
[ 2153.780619]  ? strncpy_from_user+0x9e/0x470
[ 2153.781569]  ? finish_automount+0xa90/0xa90
[ 2153.782199] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2153.782537]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2153.782557]  ? _copy_from_user+0xfb/0x1b0
[ 2153.782583]  __x64_sys_mount+0x282/0x300
[ 2153.787176]  ? copy_mnt_ns+0xa00/0xa00
[ 2153.788060]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2153.789225]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2153.790391]  do_syscall_64+0x33/0x40
[ 2153.791224]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2153.792403] RIP: 0033:0x7f67f1462b19
[ 2153.793268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2153.797752] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2153.799665] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2153.801345] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2153.803045] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2153.804729] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2153.806410] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2153.813532] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2153.822515] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:32:39 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000900000000000007b342c940"], 0x28}}, 0x0)

[ 2153.881160] 9p: Unknown uid 18446744073709551615
[ 2153.948113] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2153.958167] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:32:51 executing program 5:
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0x6, 0x0, 0x9, 0xcbc, 0x100})
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x26000100)

04:32:51 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000a00000000000007b342c940"], 0x28}}, 0x0)

04:32:51 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 32)

04:32:51 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x7a, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:32:51 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c00f000000000000007b342c940"], 0x28}}, 0x0)

04:32:51 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58)

04:32:51 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(0xffffffffffffffff, 0x0, r4)

04:32:51 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x900, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2166.556932] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2166.571515] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2166.573427] CPU: 1 PID: 26536 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2166.574904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2166.576711] Call Trace:
[ 2166.577283]  dump_stack+0x107/0x167
[ 2166.578060]  sysfs_warn_dup.cold+0x1c/0x29
[ 2166.578962]  sysfs_do_create_link_sd+0x122/0x140
[ 2166.580018]  sysfs_create_link+0x5f/0xc0
[ 2166.580883]  device_add+0x703/0x1c50
[ 2166.581687]  ? devlink_add_symlinks+0x970/0x970
[ 2166.582683]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2166.583836]  wiphy_register+0x1da6/0x2850
[ 2166.584670] FAULT_INJECTION: forcing a failure.
[ 2166.584670] name failslab, interval 1, probability 0, space 0, times 0
[ 2166.584728]  ? wiphy_unregister+0xb90/0xb90
[ 2166.587011]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2166.588171]  ieee80211_register_hw+0x23c5/0x38b0
[ 2166.589192]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2166.590211]  ? net_generic+0xdb/0x2b0
[ 2166.591023]  ? lockdep_init_map_type+0x2c7/0x780
[ 2166.592059]  ? memset+0x20/0x50
[ 2166.592757]  ? __hrtimer_init+0x12c/0x270
[ 2166.593639]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2166.594715]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2166.595719]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2166.596688]  ? memcpy+0x39/0x60
[ 2166.597392]  hwsim_new_radio_nl+0x991/0x1080
[ 2166.598335]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2166.599474]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2166.600873]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2166.602250]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2166.603305]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2166.604709]  ? cap_capable+0x1cd/0x230
[ 2166.605561]  ? ns_capable+0xe2/0x110
[ 2166.606355]  genl_rcv_msg+0x36a/0x5a0
[ 2166.607190]  ? genl_get_cmd+0x480/0x480
[ 2166.608033]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2166.609139]  ? lock_release+0x680/0x680
[ 2166.609980]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2166.610939]  netlink_rcv_skb+0x14b/0x430
[ 2166.611828]  ? genl_get_cmd+0x480/0x480
[ 2166.612688]  ? netlink_ack+0xab0/0xab0
[ 2166.613516]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2166.614480]  ? is_vmalloc_addr+0x7b/0xb0
[ 2166.615386]  genl_rcv+0x24/0x40
[ 2166.616098]  netlink_unicast+0x6ce/0xa00
[ 2166.616976]  ? netlink_attachskb+0xab0/0xab0
[ 2166.617927]  netlink_sendmsg+0x90f/0xe00
[ 2166.618802]  ? netlink_unicast+0xa00/0xa00
[ 2166.619750]  ? netlink_unicast+0xa00/0xa00
[ 2166.620654]  __sock_sendmsg+0x154/0x190
[ 2166.621489]  ____sys_sendmsg+0x70d/0x870
[ 2166.622353]  ? sock_write_iter+0x3d0/0x3d0
[ 2166.623268]  ? do_recvmmsg+0x6d0/0x6d0
[ 2166.624121]  ___sys_sendmsg+0xf3/0x170
[ 2166.624961]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2166.625923]  ? __fget_files+0x2cf/0x520
[ 2166.626767]  ? lock_downgrade+0x6d0/0x6d0
[ 2166.627682]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2166.628818]  ? trace_hardirqs_on+0x5b/0x180
[ 2166.629734]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2166.630881]  ? __fget_files+0x2f8/0x520
[ 2166.631759]  ? __fget_light+0xea/0x290
[ 2166.632597]  __sys_sendmsg+0xe5/0x1b0
[ 2166.633414]  ? __sys_sendmsg_sock+0x40/0x40
[ 2166.634329]  ? trace_hardirqs_on+0x5b/0x180
[ 2166.635297]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2166.636395]  ? syscall_enter_from_user_mode+0x27/0x50
[ 2166.637500]  do_syscall_64+0x33/0x40
[ 2166.638288]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2166.639409] RIP: 0033:0x7f7bcd366b19
[ 2166.640202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2166.644135] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2166.645758] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2166.647277] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2166.648802] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2166.650347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2166.651918] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2166.653486] CPU: 0 PID: 26580 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2166.654373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2166.655389] Call Trace:
[ 2166.655720]  dump_stack+0x107/0x167
[ 2166.656163]  should_fail.cold+0x5/0xa
[ 2166.656626]  ? p9_fd_create+0x161/0x4a0
[ 2166.657140]  should_failslab+0x5/0x20
[ 2166.657601]  kmem_cache_alloc_trace+0x55/0x320
[ 2166.658160]  p9_fd_create+0x161/0x4a0
[ 2166.658620]  ? p9_conn_create+0x510/0x510
[ 2166.659131]  ? p9_client_create+0x798/0x1230
[ 2166.659663]  ? kfree+0xd7/0x340
[ 2166.660077]  ? do_raw_spin_unlock+0x4f/0x220
[ 2166.660614]  p9_client_create+0x7ff/0x1230
[ 2166.661140]  ? p9_client_flush+0x430/0x430
[ 2166.661673]  ? trace_hardirqs_on+0x5b/0x180
[ 2166.662196]  ? lockdep_init_map_type+0x2c7/0x780
[ 2166.662782]  ? __raw_spin_lock_init+0x36/0x110
[ 2166.663351]  v9fs_session_init+0x1dd/0x1680
[ 2166.663875]  ? lock_release+0x680/0x680
[ 2166.664365]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2166.664971]  ? v9fs_show_options+0x690/0x690
[ 2166.665519]  ? trace_hardirqs_on+0x5b/0x180
[ 2166.666052]  ? kasan_unpoison_shadow+0x33/0x50
[ 2166.666617]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2166.667253]  v9fs_mount+0x79/0x8f0
[ 2166.667690]  ? v9fs_write_inode+0x60/0x60
[ 2166.668195]  legacy_get_tree+0x105/0x220
[ 2166.668711]  vfs_get_tree+0x8e/0x300
[ 2166.669187]  path_mount+0x1490/0x21e0
[ 2166.669659]  ? strncpy_from_user+0x9e/0x470
[ 2166.670186]  ? finish_automount+0xa90/0xa90
[ 2166.670715]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2166.671287]  ? _copy_from_user+0xfb/0x1b0
[ 2166.671793]  __x64_sys_mount+0x282/0x300
[ 2166.672294]  ? copy_mnt_ns+0xa00/0xa00
[ 2166.672786]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2166.673424]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2166.674060]  do_syscall_64+0x33/0x40
[ 2166.674508]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2166.675140] RIP: 0033:0x7f67f1462b19
[ 2166.675594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2166.677850] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2166.678784] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2166.679655] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2166.680527] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2166.681390] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2166.682257] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:32:52 executing program 5:
unshare(0x4000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:32:52 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58)

[ 2166.720345] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2166.722111] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:32:52 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000008000000000007b342c940"], 0x28}}, 0x0)

04:32:52 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xf0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2166.829401] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2166.831065] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:33:06 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 33)

04:33:06 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2fc, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:33:06 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cfffff0000000000007b342c940"], 0x28}}, 0x0)

04:33:06 executing program 5:
unshare(0x8000000)
unshare(0x200)
unshare(0xc030800)
clone3(&(0x7f0000000000)={0x301040500, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x0)
unshare(0x10040000)

04:33:06 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xa00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:06 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000f00000000000007b342c940"], 0x28}}, 0x0)

04:33:06 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(0xffffffffffffffff, 0x0, r4)

04:33:06 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58)

[ 2181.313141] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2181.329366] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2181.331780] CPU: 0 PID: 26975 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2181.333329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2181.335180] Call Trace:
[ 2181.335782]  dump_stack+0x107/0x167
[ 2181.336598]  sysfs_warn_dup.cold+0x1c/0x29
[ 2181.337098] FAULT_INJECTION: forcing a failure.
[ 2181.337098] name failslab, interval 1, probability 0, space 0, times 0
[ 2181.337540]  sysfs_do_create_link_sd+0x122/0x140
[ 2181.337562]  sysfs_create_link+0x5f/0xc0
[ 2181.337593]  device_add+0x703/0x1c50
[ 2181.343363]  ? devlink_add_symlinks+0x970/0x970
[ 2181.344425]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2181.345610]  wiphy_register+0x1da6/0x2850
[ 2181.346540]  ? wiphy_unregister+0xb90/0xb90
[ 2181.347556]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2181.348752]  ieee80211_register_hw+0x23c5/0x38b0
[ 2181.349832]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2181.350909]  ? net_generic+0xdb/0x2b0
[ 2181.351781]  ? lockdep_init_map_type+0x2c7/0x780
[ 2181.352833]  ? memset+0x20/0x50
[ 2181.353569]  ? __hrtimer_init+0x12c/0x270
[ 2181.354507]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2181.355643]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2181.356686]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2181.357720]  ? memcpy+0x39/0x60
[ 2181.358460]  hwsim_new_radio_nl+0x991/0x1080
[ 2181.359450]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2181.360620]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2181.362097]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2181.363584]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2181.364660]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2181.366138]  ? cap_capable+0x1cd/0x230
[ 2181.367034]  ? ns_capable+0xe2/0x110
[ 2181.367891]  genl_rcv_msg+0x36a/0x5a0
[ 2181.368750]  ? genl_get_cmd+0x480/0x480
[ 2181.369636]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2181.370789]  ? lock_release+0x680/0x680
[ 2181.371681]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2181.372683]  netlink_rcv_skb+0x14b/0x430
[ 2181.373586]  ? genl_get_cmd+0x480/0x480
[ 2181.374473]  ? netlink_ack+0xab0/0xab0
[ 2181.375370]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2181.376386]  ? is_vmalloc_addr+0x7b/0xb0
[ 2181.377295]  genl_rcv+0x24/0x40
[ 2181.378034]  netlink_unicast+0x6ce/0xa00
[ 2181.378952]  ? netlink_attachskb+0xab0/0xab0
[ 2181.379963]  netlink_sendmsg+0x90f/0xe00
[ 2181.380880]  ? netlink_unicast+0xa00/0xa00
[ 2181.381850]  ? netlink_unicast+0xa00/0xa00
[ 2181.382799]  __sock_sendmsg+0x154/0x190
[ 2181.383707]  ____sys_sendmsg+0x70d/0x870
[ 2181.384621]  ? sock_write_iter+0x3d0/0x3d0
[ 2181.385565]  ? do_recvmmsg+0x6d0/0x6d0
[ 2181.386455]  ___sys_sendmsg+0xf3/0x170
[ 2181.387333]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2181.388362]  ? __fget_files+0x2cf/0x520
[ 2181.389254]  ? lock_downgrade+0x6d0/0x6d0
[ 2181.390181]  ? clockevents_program_event+0x14b/0x360
[ 2181.391334]  ? __fget_files+0x2f8/0x520
[ 2181.392231]  ? __fget_light+0xea/0x290
[ 2181.393106]  __sys_sendmsg+0xe5/0x1b0
[ 2181.393954]  ? __sys_sendmsg_sock+0x40/0x40
[ 2181.394948]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2181.396127]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2181.397268]  ? trace_hardirqs_on+0x5b/0x180
[ 2181.398231]  do_syscall_64+0x33/0x40
[ 2181.399066]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2181.400214] RIP: 0033:0x7f7bcd366b19
[ 2181.401041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2181.405176] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2181.406881] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2181.408484] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2181.410081] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2181.411678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2181.413272] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2181.414936] CPU: 1 PID: 26977 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2181.416913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2181.419204] Call Trace:
[ 2181.419960]  dump_stack+0x107/0x167
[ 2181.420965]  should_fail.cold+0x5/0xa
[ 2181.421857]  ? create_object.isra.0+0x3a/0xa30
[ 2181.423098]  should_failslab+0x5/0x20
[ 2181.424062]  kmem_cache_alloc+0x5b/0x310
[ 2181.425013]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2181.426053]  create_object.isra.0+0x3a/0xa30
[ 2181.427069]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2181.428265]  kmem_cache_alloc_trace+0x151/0x320
[ 2181.429345]  p9_fd_create+0x161/0x4a0
[ 2181.430228]  ? p9_conn_create+0x510/0x510
[ 2181.431197]  ? p9_client_create+0x798/0x1230
[ 2181.432226]  ? kfree+0xd7/0x340
[ 2181.433037]  ? do_raw_spin_unlock+0x4f/0x220
[ 2181.434061]  p9_client_create+0x7ff/0x1230
[ 2181.435254]  ? p9_client_flush+0x430/0x430
[ 2181.436236]  ? trace_hardirqs_on+0x5b/0x180
[ 2181.437237]  ? lockdep_init_map_type+0x2c7/0x780
[ 2181.438339]  ? __raw_spin_lock_init+0x36/0x110
[ 2181.439409]  v9fs_session_init+0x1dd/0x1680
[ 2181.440403]  ? lock_release+0x680/0x680
[ 2181.441329]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2181.442442]  ? v9fs_show_options+0x690/0x690
[ 2181.443512]  ? trace_hardirqs_on+0x5b/0x180
[ 2181.444701]  ? kasan_unpoison_shadow+0x33/0x50
[ 2181.445973]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2181.447409]  v9fs_mount+0x79/0x8f0
[ 2181.448393]  ? v9fs_write_inode+0x60/0x60
[ 2181.449551]  legacy_get_tree+0x105/0x220
[ 2181.450699]  vfs_get_tree+0x8e/0x300
[ 2181.451760]  path_mount+0x1490/0x21e0
[ 2181.452818]  ? strncpy_from_user+0x9e/0x470
[ 2181.453907]  ? finish_automount+0xa90/0xa90
[ 2181.455116]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2181.456212]  ? _copy_from_user+0xfb/0x1b0
[ 2181.457404]  __x64_sys_mount+0x282/0x300
[ 2181.458351]  ? copy_mnt_ns+0xa00/0xa00
[ 2181.459456]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2181.460780]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2181.462231]  do_syscall_64+0x33/0x40
[ 2181.463104]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2181.464590] RIP: 0033:0x7f67f1462b19
[ 2181.465472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2181.470749] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2181.472957] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2181.475003] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2181.477060] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2181.479128] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2181.481234] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:33:06 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58)

[ 2181.527889] 9p: Unknown uid 18446744073709551615
[ 2181.539906] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2181.541940] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2181.548072] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:33:06 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x48000000)

04:33:06 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c004800000000000007b342c940"], 0x28}}, 0x0)

04:33:07 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 34)

04:33:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000010000000007b342c940"], 0x28}}, 0x0)

04:33:07 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x300, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:07 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xb00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:07 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58)

[ 2181.687700] FAULT_INJECTION: forcing a failure.
[ 2181.687700] name failslab, interval 1, probability 0, space 0, times 0
[ 2181.690347] CPU: 0 PID: 27300 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2181.691916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2181.693791] Call Trace:
[ 2181.694389]  dump_stack+0x107/0x167
[ 2181.695246]  should_fail.cold+0x5/0xa
[ 2181.696110]  ? p9_client_prepare_req.part.0+0x3a/0xac0
[ 2181.697284]  should_failslab+0x5/0x20
[ 2181.698137]  kmem_cache_alloc+0x5b/0x310
[ 2181.699057]  p9_client_prepare_req.part.0+0x3a/0xac0
[ 2181.700217]  p9_client_rpc+0x220/0x1370
[ 2181.701112]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2181.702301]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2181.703529]  ? pipe_poll+0x21b/0x800
[ 2181.704364]  ? p9_fd_close+0x4a0/0x4a0
[ 2181.705262]  ? wait_for_partner+0x3c0/0x3c0
[ 2181.706232]  ? p9_fd_poll+0x1e0/0x2c0
[ 2181.707104]  ? p9_fd_create+0x357/0x4a0
[ 2181.708013]  ? p9_conn_create+0x510/0x510
[ 2181.708957]  ? p9_client_create+0x798/0x1230
[ 2181.709957]  ? kfree+0xd7/0x340
[ 2181.710706]  ? do_raw_spin_unlock+0x4f/0x220
[ 2181.711779]  p9_client_create+0xa76/0x1230
[ 2181.712750]  ? p9_client_flush+0x430/0x430
[ 2181.713712]  ? trace_hardirqs_on+0x5b/0x180
[ 2181.714694]  ? lockdep_init_map_type+0x2c7/0x780
[ 2181.715774]  ? __raw_spin_lock_init+0x36/0x110
[ 2181.716823]  v9fs_session_init+0x1dd/0x1680
[ 2181.717809]  ? lock_release+0x680/0x680
[ 2181.718721]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2181.719853]  ? v9fs_show_options+0x690/0x690
[ 2181.720877]  ? trace_hardirqs_on+0x5b/0x180
[ 2181.721857]  ? kasan_unpoison_shadow+0x33/0x50
[ 2181.722888]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2181.724051]  v9fs_mount+0x79/0x8f0
[ 2181.724860]  ? v9fs_write_inode+0x60/0x60
[ 2181.725808]  legacy_get_tree+0x105/0x220
[ 2181.726731]  vfs_get_tree+0x8e/0x300
[ 2181.727580]  path_mount+0x1490/0x21e0
[ 2181.728447]  ? strncpy_from_user+0x9e/0x470
[ 2181.729425]  ? finish_automount+0xa90/0xa90
[ 2181.730405]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2181.731467]  ? _copy_from_user+0xfb/0x1b0
[ 2181.732414]  __x64_sys_mount+0x282/0x300
[ 2181.733333]  ? copy_mnt_ns+0xa00/0xa00
[ 2181.734220]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2181.735415]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2181.736585]  do_syscall_64+0x33/0x40
[ 2181.737429]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2181.738591] RIP: 0033:0x7f67f1462b19
[ 2181.739427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2181.743515] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2181.745266] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2181.746894] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2181.748531] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2181.750157] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2181.751796] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2181.762541] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2181.772980] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2181.799771] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2195.094324] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2195.097407] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2195.105733] FAULT_INJECTION: forcing a failure.
[ 2195.105733] name failslab, interval 1, probability 0, space 0, times 0
[ 2195.107219] CPU: 1 PID: 27634 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2195.108131] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2195.109242] Call Trace:
[ 2195.109594]  dump_stack+0x107/0x167
[ 2195.110073]  should_fail.cold+0x5/0xa
[ 2195.110565]  ? create_object.isra.0+0x3a/0xa30
[ 2195.111155]  should_failslab+0x5/0x20
[ 2195.111661]  kmem_cache_alloc+0x5b/0x310
[ 2195.112179]  create_object.isra.0+0x3a/0xa30
[ 2195.112753]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2195.113423]  kmem_cache_alloc+0x159/0x310
[ 2195.113952]  p9_client_prepare_req.part.0+0x3a/0xac0
[ 2195.114627]  p9_client_rpc+0x220/0x1370
[ 2195.115154]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2195.115871]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2195.116566]  ? pipe_poll+0x21b/0x800
[ 2195.117301]  ? p9_fd_close+0x4a0/0x4a0
04:33:20 executing program 5:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
unshare(0x800)

04:33:20 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:20 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)

04:33:20 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xa9420000, 0x0, 0x0}, 0x58)

04:33:20 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000020000000007b342c940"], 0x28}}, 0x0)

04:33:20 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c004c00000000000007b342c940"], 0x28}}, 0x0)

04:33:20 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 35)

04:33:20 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x500, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2195.117869]  ? wait_for_partner+0x3c0/0x3c0
[ 2195.118606]  ? p9_fd_poll+0x1e0/0x2c0
[ 2195.119113]  ? p9_fd_create+0x357/0x4a0
[ 2195.119645]  ? p9_conn_create+0x510/0x510
[ 2195.120165]  ? p9_client_create+0x798/0x1230
[ 2195.120765]  ? kfree+0xd7/0x340
[ 2195.121180]  ? do_raw_spin_unlock+0x4f/0x220
[ 2195.121756]  p9_client_create+0xa76/0x1230
[ 2195.122321]  ? p9_client_flush+0x430/0x430
[ 2195.122885]  ? trace_hardirqs_on+0x5b/0x180
[ 2195.123463]  ? lockdep_init_map_type+0x2c7/0x780
[ 2195.124096]  ? __raw_spin_lock_init+0x36/0x110
[ 2195.124705]  v9fs_session_init+0x1dd/0x1680
[ 2195.124718]  ? lock_release+0x680/0x680
[ 2195.124735]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2195.124746]  ? v9fs_show_options+0x690/0x690
[ 2195.124763]  ? trace_hardirqs_on+0x5b/0x180
[ 2195.124774]  ? kasan_unpoison_shadow+0x33/0x50
[ 2195.124785]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2195.124797]  v9fs_mount+0x79/0x8f0
[ 2195.124808]  ? v9fs_write_inode+0x60/0x60
[ 2195.124819]  legacy_get_tree+0x105/0x220
[ 2195.124830]  vfs_get_tree+0x8e/0x300
[ 2195.124842]  path_mount+0x1490/0x21e0
[ 2195.124857]  ? strncpy_from_user+0x9e/0x470
[ 2195.124867]  ? finish_automount+0xa90/0xa90
[ 2195.124878]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2195.124890]  ? _copy_from_user+0xfb/0x1b0
[ 2195.124905]  __x64_sys_mount+0x282/0x300
[ 2195.124915]  ? copy_mnt_ns+0xa00/0xa00
[ 2195.124929]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2195.124942]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2195.124962]  do_syscall_64+0x33/0x40
[ 2195.136790]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2195.137458] RIP: 0033:0x7f67f1462b19
[ 2195.137939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2195.140351] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2195.141348] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2195.142277] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2195.143172] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2195.143729] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2195.144134] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2195.144142] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2195.150034] CPU: 0 PID: 27627 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2195.151649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2195.153575] Call Trace:
[ 2195.154189]  dump_stack+0x107/0x167
[ 2195.155041]  sysfs_warn_dup.cold+0x1c/0x29
[ 2195.156024]  sysfs_do_create_link_sd+0x122/0x140
[ 2195.157127]  sysfs_create_link+0x5f/0xc0
[ 2195.158068]  device_add+0x703/0x1c50
[ 2195.158940]  ? devlink_add_symlinks+0x970/0x970
[ 2195.160033]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2195.161255]  wiphy_register+0x1da6/0x2850
[ 2195.162223]  ? wiphy_unregister+0xb90/0xb90
[ 2195.163236]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2195.164486]  ieee80211_register_hw+0x23c5/0x38b0
[ 2195.165598]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2195.166712]  ? net_generic+0xdb/0x2b0
[ 2195.167619]  ? lockdep_init_map_type+0x2c7/0x780
[ 2195.168721]  ? memset+0x20/0x50
[ 2195.169483]  ? __hrtimer_init+0x12c/0x270
[ 2195.170444]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2195.171631]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2195.172705]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2195.173751]  ? memcpy+0x39/0x60
[ 2195.174516]  hwsim_new_radio_nl+0x991/0x1080
[ 2195.175552]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2195.176771]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2195.178289]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2195.179814]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2195.180940]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2195.182458]  ? cap_capable+0x1cd/0x230
[ 2195.183376]  ? ns_capable+0xe2/0x110
[ 2195.184261]  genl_rcv_msg+0x36a/0x5a0
[ 2195.185144]  ? genl_get_cmd+0x480/0x480
[ 2195.186062]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2195.187258]  ? lock_release+0x680/0x680
[ 2195.188189]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2195.189227]  netlink_rcv_skb+0x14b/0x430
[ 2195.190163]  ? genl_get_cmd+0x480/0x480
[ 2195.191084]  ? netlink_ack+0xab0/0xab0
[ 2195.192008]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2195.193066]  ? is_vmalloc_addr+0x7b/0xb0
[ 2195.194010]  genl_rcv+0x24/0x40
[ 2195.194769]  netlink_unicast+0x6ce/0xa00
[ 2195.195720]  ? netlink_attachskb+0xab0/0xab0
[ 2195.196743]  netlink_sendmsg+0x90f/0xe00
[ 2195.197688]  ? netlink_unicast+0xa00/0xa00
[ 2195.198677]  ? netlink_unicast+0xa00/0xa00
[ 2195.199664]  __sock_sendmsg+0x154/0x190
[ 2195.200589]  ____sys_sendmsg+0x70d/0x870
[ 2195.201534]  ? sock_write_iter+0x3d0/0x3d0
[ 2195.202529]  ? do_recvmmsg+0x6d0/0x6d0
[ 2195.203464]  ___sys_sendmsg+0xf3/0x170
[ 2195.204364]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2195.205422]  ? __fget_files+0x2cf/0x520
[ 2195.206345]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.207311]  ? clockevents_program_event+0x14b/0x360
[ 2195.208502]  ? __fget_files+0x2f8/0x520
[ 2195.209430]  ? __fget_light+0xea/0x290
[ 2195.210343]  __sys_sendmsg+0xe5/0x1b0
[ 2195.211230]  ? __sys_sendmsg_sock+0x40/0x40
[ 2195.212243]  ? trace_hardirqs_on+0x5b/0x180
[ 2195.213261]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2195.214454]  ? syscall_enter_from_user_mode+0x27/0x50
[ 2195.215657]  do_syscall_64+0x33/0x40
[ 2195.216515]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2195.217695] RIP: 0033:0x7f7bcd366b19
[ 2195.218555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2195.222802] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2195.224559] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2195.226199] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2195.226345] 9p: Unknown uid 18446744073709551615
[ 2195.227849] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2195.227860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2195.227871] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:33:20 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000030000000007b342c940"], 0x28}}, 0x0)

04:33:20 executing program 5:
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:33:20 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x600, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2195.297834] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2195.299084] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2195.301791] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2195.302844] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:33:35 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 36)

04:33:35 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xe4ffffff, 0x0, 0x0}, 0x58)

04:33:35 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)

04:33:35 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000040000000007b342c940"], 0x28}}, 0x0)

[ 2209.875922] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:33:35 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c006800000000000007b342c940"], 0x28}}, 0x0)

04:33:35 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xe00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:35 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x700, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:33:35 executing program 5:
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x8010, r0, 0xf5c56000)
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000040)={0x16c, 0x0, 0x300, 0x70bd28, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x3}}, {@pci={{0x8}, {0xfffffffffffffffd}}, {0x8, 0x8e, 0x2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x3}}, {@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}}]}, 0x16c}}, 0x28874)
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000002dc0), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SET_TUNSRC(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)={0x28, r3, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_DST={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @remote}}]}, 0x28}}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r3, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@SEG6_ATTR_SECRETLEN={0x5}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8081}, 0x0)

[ 2209.903872] FAULT_INJECTION: forcing a failure.
[ 2209.903872] name failslab, interval 1, probability 0, space 0, times 0
[ 2209.906496] CPU: 0 PID: 28164 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2209.906508] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2209.906514] Call Trace:
[ 2209.906548]  dump_stack+0x107/0x167
[ 2209.910956]  should_fail.cold+0x5/0xa
[ 2209.911862]  ? p9_fcall_init+0x97/0x290
[ 2209.912776]  should_failslab+0x5/0x20
[ 2209.913647]  __kmalloc+0x72/0x390
[ 2209.914452]  p9_fcall_init+0x97/0x290
[ 2209.915285] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2209.915337]  p9_client_prepare_req.part.0+0x8c/0xac0
[ 2209.915365]  p9_client_rpc+0x220/0x1370
[ 2209.918647]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2209.919877]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2209.921107]  ? pipe_poll+0x21b/0x800
[ 2209.921962]  ? p9_fd_close+0x4a0/0x4a0
[ 2209.922858]  ? wait_for_partner+0x3c0/0x3c0
[ 2209.923861]  ? p9_fd_poll+0x1e0/0x2c0
[ 2209.924742]  ? p9_fd_create+0x357/0x4a0
[ 2209.925658]  ? p9_conn_create+0x510/0x510
[ 2209.926615]  ? p9_client_create+0x798/0x1230
[ 2209.927643]  ? kfree+0xd7/0x340
[ 2209.928403]  ? do_raw_spin_unlock+0x4f/0x220
[ 2209.929427]  p9_client_create+0xa76/0x1230
[ 2209.930416]  ? p9_client_flush+0x430/0x430
[ 2209.931396]  ? trace_hardirqs_on+0x5b/0x180
[ 2209.932411]  ? lockdep_init_map_type+0x2c7/0x780
[ 2209.933503]  ? __raw_spin_lock_init+0x36/0x110
[ 2209.934567]  v9fs_session_init+0x1dd/0x1680
[ 2209.935567]  ? lock_release+0x680/0x680
[ 2209.936475]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2209.937570]  ? v9fs_show_options+0x690/0x690
[ 2209.938578]  ? trace_hardirqs_on+0x5b/0x180
[ 2209.939569]  ? kasan_unpoison_shadow+0x33/0x50
[ 2209.940606]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2209.941764]  v9fs_mount+0x79/0x8f0
[ 2209.942573]  ? v9fs_write_inode+0x60/0x60
[ 2209.943522]  legacy_get_tree+0x105/0x220
[ 2209.944429]  vfs_get_tree+0x8e/0x300
[ 2209.945293]  path_mount+0x1490/0x21e0
[ 2209.946164]  ? strncpy_from_user+0x9e/0x470
[ 2209.947145]  ? finish_automount+0xa90/0xa90
[ 2209.948141]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2209.949200]  ? _copy_from_user+0xfb/0x1b0
[ 2209.950150]  __x64_sys_mount+0x282/0x300
[ 2209.951074]  ? copy_mnt_ns+0xa00/0xa00
[ 2209.951971]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2209.953167]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2209.954343]  do_syscall_64+0x33/0x40
[ 2209.955193]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2209.956362] RIP: 0033:0x7f67f1462b19
[ 2209.957205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2209.961410] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2209.963145] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2209.964795] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2209.966430] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2209.968065] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2209.969694] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2209.971356] CPU: 1 PID: 28165 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2209.972206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2209.973203] Call Trace:
[ 2209.973525]  dump_stack+0x107/0x167
[ 2209.973966]  sysfs_warn_dup.cold+0x1c/0x29
[ 2209.974460]  sysfs_do_create_link_sd+0x122/0x140
[ 2209.975029]  sysfs_create_link+0x5f/0xc0
[ 2209.975517]  device_add+0x703/0x1c50
[ 2209.975965]  ? devlink_add_symlinks+0x970/0x970
[ 2209.976534]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2209.977182]  wiphy_register+0x1da6/0x2850
[ 2209.977685]  ? wiphy_unregister+0xb90/0xb90
[ 2209.978215]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2209.978860]  ieee80211_register_hw+0x23c5/0x38b0
[ 2209.979414]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2209.980000]  ? net_generic+0xdb/0x2b0
[ 2209.980473]  ? lockdep_init_map_type+0x2c7/0x780
[ 2209.981043]  ? memset+0x20/0x50
[ 2209.981446]  ? __hrtimer_init+0x12c/0x270
[ 2209.981945]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2209.982564]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2209.983129]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2209.983679]  ? memcpy+0x39/0x60
[ 2209.984077]  hwsim_new_radio_nl+0x991/0x1080
[ 2209.984582]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2209.985214]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2209.985997]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2209.986783]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2209.987362]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2209.988156]  ? cap_capable+0x1cd/0x230
[ 2209.988629]  ? ns_capable+0xe2/0x110
[ 2209.989076]  genl_rcv_msg+0x36a/0x5a0
[ 2209.989534]  ? genl_get_cmd+0x480/0x480
[ 2209.990012]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2209.990605]  ? lock_release+0x680/0x680
[ 2209.991076]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2209.991600]  netlink_rcv_skb+0x14b/0x430
[ 2209.992087]  ? genl_get_cmd+0x480/0x480
[ 2209.992539]  ? netlink_ack+0xab0/0xab0
[ 2209.992990]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2209.993512]  ? is_vmalloc_addr+0x7b/0xb0
[ 2209.993995]  genl_rcv+0x24/0x40
[ 2209.994389]  netlink_unicast+0x6ce/0xa00
[ 2209.994858]  ? netlink_attachskb+0xab0/0xab0
[ 2209.995389]  netlink_sendmsg+0x90f/0xe00
[ 2209.995864]  ? netlink_unicast+0xa00/0xa00
[ 2209.996374]  ? netlink_unicast+0xa00/0xa00
[ 2209.996879]  __sock_sendmsg+0x154/0x190
[ 2209.997363]  ____sys_sendmsg+0x70d/0x870
[ 2209.997860]  ? sock_write_iter+0x3d0/0x3d0
[ 2209.998364]  ? do_recvmmsg+0x6d0/0x6d0
[ 2209.998821]  ___sys_sendmsg+0xf3/0x170
[ 2209.999288]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2209.999847]  ? __fget_files+0x2cf/0x520
[ 2210.000326]  ? lock_downgrade+0x6d0/0x6d0
[ 2210.000818]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2210.001455]  ? trace_hardirqs_on+0x5b/0x180
[ 2210.001965]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2210.002612]  ? __fget_files+0x2f8/0x520
[ 2210.003085]  ? __fget_light+0xea/0x290
[ 2210.003545]  __sys_sendmsg+0xe5/0x1b0
[ 2210.004001]  ? __sys_sendmsg_sock+0x40/0x40
[ 2210.004488]  ? io_schedule_timeout+0x140/0x140
[ 2210.005042]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2210.005637]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2210.006247]  ? trace_hardirqs_on+0x5b/0x180
[ 2210.006735]  do_syscall_64+0x33/0x40
[ 2210.007178]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2210.007766] RIP: 0033:0x7f7bcd366b19
[ 2210.008211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2210.010395] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2210.011296] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2210.012146] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2210.012994] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2210.013841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2210.014685] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2210.022541] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2210.024597] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2210.027633] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:33:35 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 37)

04:33:35 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xed020000, 0x0, 0x0}, 0x58)

[ 2210.100743] FAULT_INJECTION: forcing a failure.
[ 2210.100743] name failslab, interval 1, probability 0, space 0, times 0
[ 2210.102001] CPU: 1 PID: 28462 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2210.102749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2210.103654] Call Trace:
[ 2210.103956]  dump_stack+0x107/0x167
[ 2210.104355]  should_fail.cold+0x5/0xa
[ 2210.104771]  ? create_object.isra.0+0x3a/0xa30
[ 2210.105267]  should_failslab+0x5/0x20
[ 2210.105682]  kmem_cache_alloc+0x5b/0x310
[ 2210.106124]  create_object.isra.0+0x3a/0xa30
[ 2210.106601]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2210.107153]  __kmalloc+0x16e/0x390
[ 2210.107549]  p9_fcall_init+0x97/0x290
[ 2210.107965]  p9_client_prepare_req.part.0+0x8c/0xac0
[ 2210.108518]  p9_client_rpc+0x220/0x1370
[ 2210.108948]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2210.109520]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2210.110103]  ? pipe_poll+0x21b/0x800
[ 2210.110507]  ? p9_fd_close+0x4a0/0x4a0
[ 2210.110928]  ? wait_for_partner+0x3c0/0x3c0
[ 2210.111393]  ? p9_fd_poll+0x1e0/0x2c0
[ 2210.111819]  ? p9_fd_create+0x357/0x4a0
[ 2210.112255]  ? p9_conn_create+0x510/0x510
[ 2210.112727]  ? p9_client_create+0x798/0x1230
[ 2210.113207]  ? kfree+0xd7/0x340
[ 2210.113560]  ? do_raw_spin_unlock+0x4f/0x220
[ 2210.114032]  p9_client_create+0xa76/0x1230
[ 2210.114492]  ? p9_client_flush+0x430/0x430
[ 2210.114946]  ? trace_hardirqs_on+0x5b/0x180
[ 2210.115409]  ? lockdep_init_map_type+0x2c7/0x780
[ 2210.115924]  ? __raw_spin_lock_init+0x36/0x110
[ 2210.116418]  v9fs_session_init+0x1dd/0x1680
[ 2210.116879]  ? lock_release+0x680/0x680
[ 2210.117310]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2210.117825]  ? v9fs_show_options+0x690/0x690
[ 2210.118301]  ? trace_hardirqs_on+0x5b/0x180
[ 2210.118761]  ? kasan_unpoison_shadow+0x33/0x50
[ 2210.119250]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2210.119800]  v9fs_mount+0x79/0x8f0
[ 2210.120184]  ? v9fs_write_inode+0x60/0x60
[ 2210.120628]  legacy_get_tree+0x105/0x220
[ 2210.121061]  vfs_get_tree+0x8e/0x300
[ 2210.121462]  path_mount+0x1490/0x21e0
[ 2210.121874]  ? strncpy_from_user+0x9e/0x470
[ 2210.122337]  ? finish_automount+0xa90/0xa90
[ 2210.122802]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2210.123301]  ? _copy_from_user+0xfb/0x1b0
[ 2210.123787]  __x64_sys_mount+0x282/0x300
[ 2210.124229]  ? copy_mnt_ns+0xa00/0xa00
[ 2210.124649]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2210.125258]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2210.125821]  do_syscall_64+0x33/0x40
[ 2210.126219]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2210.126768] RIP: 0033:0x7f67f1462b19
[ 2210.127168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2210.129139] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2210.129953] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2210.130717] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2210.131489] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2210.132250] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2210.133007] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:33:35 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000050000000007b342c940"], 0x28}}, 0x0)

04:33:35 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)

04:33:35 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c006c00000000000007b342c940"], 0x28}}, 0x0)

04:33:35 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x1020, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:33:35 executing program 5:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:33:35 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x900, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2210.178019] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2210.181301] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2210.187123] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2210.189074] CPU: 0 PID: 28491 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2210.190626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2210.192505] Call Trace:
[ 2210.193101]  dump_stack+0x107/0x167
[ 2210.193923]  sysfs_warn_dup.cold+0x1c/0x29
[ 2210.194880]  sysfs_do_create_link_sd+0x122/0x140
[ 2210.195959]  sysfs_create_link+0x5f/0xc0
[ 2210.196875]  device_add+0x703/0x1c50
[ 2210.197728]  ? devlink_add_symlinks+0x970/0x970
[ 2210.198778]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2210.199976]  wiphy_register+0x1da6/0x2850
[ 2210.200920]  ? wiphy_unregister+0xb90/0xb90
[ 2210.201902]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2210.203118]  ieee80211_register_hw+0x23c5/0x38b0
[ 2210.204207]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2210.205285]  ? net_generic+0xdb/0x2b0
[ 2210.206155]  ? lockdep_init_map_type+0x2c7/0x780
[ 2210.207225]  ? memset+0x20/0x50
[ 2210.207977]  ? __hrtimer_init+0x12c/0x270
[ 2210.208919]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2210.210065]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2210.211108]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2210.212147]  ? memcpy+0x39/0x60
[ 2210.212896]  hwsim_new_radio_nl+0x991/0x1080
[ 2210.213889]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2210.215061]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2210.216555]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2210.218023]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2210.219118]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2210.220603]  ? cred_has_capability.isra.0+0x2b0/0x2b0
[ 2210.221763]  ? cap_capable+0x1cd/0x230
[ 2210.222646]  ? ns_capable+0xe2/0x110
[ 2210.223499]  genl_rcv_msg+0x36a/0x5a0
[ 2210.224355]  ? genl_get_cmd+0x480/0x480
[ 2210.225253]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2210.226415]  ? lock_release+0x680/0x680
[ 2210.227304]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2210.228320]  netlink_rcv_skb+0x14b/0x430
[ 2210.229235]  ? genl_get_cmd+0x480/0x480
[ 2210.230126]  ? netlink_ack+0xab0/0xab0
[ 2210.231006]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2210.232041]  ? is_vmalloc_addr+0x7b/0xb0
[ 2210.232957]  genl_rcv+0x24/0x40
[ 2210.233697]  netlink_unicast+0x6ce/0xa00
[ 2210.234614]  ? netlink_attachskb+0xab0/0xab0
[ 2210.235631]  netlink_sendmsg+0x90f/0xe00
[ 2210.236548]  ? netlink_unicast+0xa00/0xa00
[ 2210.237507]  ? netlink_unicast+0xa00/0xa00
[ 2210.238458]  __sock_sendmsg+0x154/0x190
[ 2210.239350]  ____sys_sendmsg+0x70d/0x870
[ 2210.240272]  ? sock_write_iter+0x3d0/0x3d0
[ 2210.241221]  ? do_recvmmsg+0x6d0/0x6d0
[ 2210.241550] 9p: Unknown uid 18446744073709551615
[ 2210.242115]  ___sys_sendmsg+0xf3/0x170
[ 2210.243527]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2210.244554]  ? __fget_files+0x2cf/0x520
[ 2210.245445]  ? lock_downgrade+0x6d0/0x6d0
[ 2210.246387]  ? clockevents_program_event+0x14b/0x360
[ 2210.247546]  ? __fget_files+0x2f8/0x520
[ 2210.248445]  ? __fget_light+0xea/0x290
[ 2210.249325]  __sys_sendmsg+0xe5/0x1b0
[ 2210.250183]  ? __sys_sendmsg_sock+0x40/0x40
[ 2210.251170]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2210.252358]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2210.253506]  ? trace_hardirqs_on+0x5b/0x180
[ 2210.254478]  do_syscall_64+0x33/0x40
[ 2210.255318]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2210.256470] RIP: 0033:0x7f7bcd366b19
[ 2210.257308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2210.261441] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2210.263148] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2210.264764] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2210.266368] RBP: 00007f7bcd3c0f6d R08: 0000000000000000 R09: 0000000000000000
[ 2210.267989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2210.269599] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2210.305001] FAULT_INJECTION: forcing a failure.
[ 2210.305001] name failslab, interval 1, probability 0, space 0, times 0
[ 2210.306307] CPU: 1 PID: 28719 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2210.307059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2210.307964] Call Trace:
[ 2210.308263]  dump_stack+0x107/0x167
[ 2210.308655]  should_fail.cold+0x5/0xa
[ 2210.309065]  ? create_object.isra.0+0x3a/0xa30
[ 2210.309564]  should_failslab+0x5/0x20
[ 2210.309974]  kmem_cache_alloc+0x5b/0x310
[ 2210.310415]  create_object.isra.0+0x3a/0xa30
[ 2210.310883]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2210.311443]  __kmalloc+0x16e/0x390
[ 2210.311835]  p9_fcall_init+0x97/0x290
[ 2210.312250]  p9_client_prepare_req.part.0+0x8c/0xac0
[ 2210.312804]  p9_client_rpc+0x220/0x1370
[ 2210.313243]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2210.313818]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2210.314402]  ? pipe_poll+0x21b/0x800
[ 2210.314802]  ? p9_fd_close+0x4a0/0x4a0
[ 2210.315225]  ? wait_for_partner+0x3c0/0x3c0
[ 2210.315698]  ? p9_fd_poll+0x1e0/0x2c0
[ 2210.316112]  ? p9_fd_create+0x357/0x4a0
[ 2210.316543]  ? p9_conn_create+0x510/0x510
[ 2210.316989]  ? p9_client_create+0x798/0x1230
[ 2210.317474]  ? kfree+0xd7/0x340
[ 2210.317833]  ? do_raw_spin_unlock+0x4f/0x220
[ 2210.318309]  p9_client_create+0xa76/0x1230
[ 2210.318775]  ? p9_client_flush+0x430/0x430
[ 2210.319231]  ? trace_hardirqs_on+0x5b/0x180
[ 2210.319710]  ? lockdep_init_map_type+0x2c7/0x780
[ 2210.320224]  ? __raw_spin_lock_init+0x36/0x110
[ 2210.320729]  v9fs_session_init+0x1dd/0x1680
[ 2210.321201]  ? lock_release+0x680/0x680
[ 2210.321634]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2210.322154]  ? v9fs_show_options+0x690/0x690
[ 2210.322638]  ? trace_hardirqs_on+0x5b/0x180
[ 2210.323104]  ? kasan_unpoison_shadow+0x33/0x50
[ 2210.323605]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2210.324154]  v9fs_mount+0x79/0x8f0
[ 2210.324537]  ? v9fs_write_inode+0x60/0x60
[ 2210.324985]  legacy_get_tree+0x105/0x220
[ 2210.325422]  vfs_get_tree+0x8e/0x300
[ 2210.325824]  path_mount+0x1490/0x21e0
[ 2210.326242]  ? strncpy_from_user+0x9e/0x470
[ 2210.326714]  ? finish_automount+0xa90/0xa90
[ 2210.327178]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2210.327687]  ? _copy_from_user+0xfb/0x1b0
[ 2210.328136]  __x64_sys_mount+0x282/0x300
[ 2210.328603]  ? copy_mnt_ns+0xa00/0xa00
[ 2210.329026]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2210.329589]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2210.330144]  do_syscall_64+0x33/0x40
[ 2210.330541]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2210.331092] RIP: 0033:0x7f67f1462b19
[ 2210.331497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2210.333473] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2210.334291] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2210.335056] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2210.335830] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2210.336595] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2210.337359] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2210.338408] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2210.340567] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:33:35 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 38)

04:33:35 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xa00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:35 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2000, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:35 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffe4, 0x0, 0x0}, 0x58)

[ 2210.370094] 9p: Unknown uid 18446744073709551615
04:33:35 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000060000000007b342c940"], 0x28}}, 0x0)

04:33:35 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c007400000000000007b342c940"], 0x28}}, 0x0)

04:33:35 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58)

[ 2210.517050] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2210.518265] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:33:50 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c007a00000000000007b342c940"], 0x28}}, 0x0)

[ 2224.885503] __nla_validate_parse: 2 callbacks suppressed
[ 2224.885516] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2224.892641] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:33:50 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xb00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:33:50 executing program 5:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:33:50 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2010, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:33:50 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 39)

04:33:50 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58)

04:33:50 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000070000000007b342c940"], 0x28}}, 0x0)

[ 2224.904202] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2224.915928] FAULT_INJECTION: forcing a failure.
[ 2224.915928] name failslab, interval 1, probability 0, space 0, times 0
[ 2224.919135] CPU: 1 PID: 29144 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2224.920652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2224.922437] Call Trace:
[ 2224.923018]  dump_stack+0x107/0x167
[ 2224.923811]  should_fail.cold+0x5/0xa
[ 2224.923835]  ? create_object.isra.0+0x3a/0xa30
[ 2224.923852]  should_failslab+0x5/0x20
[ 2224.923871]  kmem_cache_alloc+0x5b/0x310
[ 2224.923895]  create_object.isra.0+0x3a/0xa30
[ 2224.923911]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2224.923933]  __kmalloc+0x16e/0x390
[ 2224.923959]  p9_fcall_init+0x97/0x290
[ 2224.923984]  p9_client_prepare_req.part.0+0xf4/0xac0
[ 2224.924011]  p9_client_rpc+0x220/0x1370
[ 2224.924032]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2224.924059]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2224.924082]  ? pipe_poll+0x21b/0x800
[ 2224.924108]  ? p9_fd_close+0x4a0/0x4a0
[ 2224.936953]  ? wait_for_partner+0x3c0/0x3c0
[ 2224.937887]  ? p9_fd_poll+0x1e0/0x2c0
[ 2224.938707]  ? p9_fd_create+0x357/0x4a0
[ 2224.939571]  ? p9_conn_create+0x510/0x510
[ 2224.940463]  ? p9_client_create+0x798/0x1230
[ 2224.941410]  ? kfree+0xd7/0x340
[ 2224.942122]  ? do_raw_spin_unlock+0x4f/0x220
[ 2224.943076]  p9_client_create+0xa76/0x1230
[ 2224.944003]  ? p9_client_flush+0x430/0x430
[ 2224.944915]  ? trace_hardirqs_on+0x5b/0x180
[ 2224.945849]  ? lockdep_init_map_type+0x2c7/0x780
[ 2224.946869]  ? __raw_spin_lock_init+0x36/0x110
[ 2224.947868]  v9fs_session_init+0x1dd/0x1680
[ 2224.948795]  ? lock_release+0x680/0x680
[ 2224.949657]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2224.950693]  ? v9fs_show_options+0x690/0x690
[ 2224.951657]  ? trace_hardirqs_on+0x5b/0x180
[ 2224.952582]  ? kasan_unpoison_shadow+0x33/0x50
[ 2224.953563]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2224.954652]  v9fs_mount+0x79/0x8f0
[ 2224.955420]  ? v9fs_write_inode+0x60/0x60
[ 2224.956315]  legacy_get_tree+0x105/0x220
[ 2224.957190]  vfs_get_tree+0x8e/0x300
[ 2224.957991]  path_mount+0x1490/0x21e0
[ 2224.958814]  ? strncpy_from_user+0x9e/0x470
[ 2224.959751]  ? finish_automount+0xa90/0xa90
[ 2224.960894]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2224.961936]  ? _copy_from_user+0xfb/0x1b0
[ 2224.962831]  __x64_sys_mount+0x282/0x300
[ 2224.963718]  ? copy_mnt_ns+0xa00/0xa00
[ 2224.964561]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2224.965928]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2224.967135]  do_syscall_64+0x33/0x40
[ 2224.967939]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2224.969091] RIP: 0033:0x7f67f1462b19
[ 2224.969892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2224.974022] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2224.975676] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2224.977227] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2224.978770] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2224.980322] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2224.981856] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:33:50 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c00f000000000000007b342c940"], 0x28}}, 0x0)

[ 2225.005215] 9p: Unknown uid 18446744073709551615
04:33:50 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000000000, 0x0, 0x0}, 0x58)

[ 2225.076805] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:33:50 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000090000000007b342c940"], 0x28}}, 0x0)

04:33:50 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 1)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 2225.090990] FAULT_INJECTION: forcing a failure.
[ 2225.090990] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2225.093818] CPU: 1 PID: 29367 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2225.095326] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2225.097146] Call Trace:
[ 2225.097726]  dump_stack+0x107/0x167
[ 2225.098530]  should_fail.cold+0x5/0xa
[ 2225.099366]  _copy_from_user+0x2e/0x1b0
[ 2225.100254]  __copy_msghdr_from_user+0x91/0x4b0
[ 2225.101275]  ? __ia32_sys_shutdown+0x80/0x80
[ 2225.102235]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2225.103385]  ? __lock_acquire+0x1657/0x5b00
[ 2225.104333]  ? __lock_acquire+0xbb1/0x5b00
[ 2225.105237]  sendmsg_copy_msghdr+0xa1/0x160
[ 2225.106150]  ? do_recvmmsg+0x6d0/0x6d0
[ 2225.106969]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2225.108085]  ? lock_downgrade+0x6d0/0x6d0
[ 2225.108533] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2225.108967]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2225.108998]  ___sys_sendmsg+0xc6/0x170
[ 2225.112880]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2225.113851]  ? __fget_files+0x2cf/0x520
[ 2225.114698]  ? lock_downgrade+0x6d0/0x6d0
[ 2225.115577]  ? find_held_lock+0x2c/0x110
[ 2225.116452]  ? __fget_files+0x2f8/0x520
[ 2225.117303]  ? __fget_light+0xea/0x290
[ 2225.118130]  __sys_sendmsg+0xe5/0x1b0
[ 2225.118933]  ? __sys_sendmsg_sock+0x40/0x40
[ 2225.119852]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2225.120829]  ? fput_many+0x2f/0x1a0
[ 2225.121596]  ? ksys_write+0x1a9/0x260
[ 2225.122401]  ? __ia32_sys_read+0xb0/0xb0
[ 2225.123265]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2225.124380]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2225.125460]  ? trace_hardirqs_on+0x5b/0x180
[ 2225.126369]  do_syscall_64+0x33/0x40
[ 2225.127157]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2225.128257] RIP: 0033:0x7f7bcd366b19
[ 2225.129040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2225.129144] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2225.132921] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2225.132941] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2225.132952] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2225.132962] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2225.132973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2225.132996] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2225.150126] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2241.163590] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:34:06 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 40)

04:34:06 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 2)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:34:06 executing program 5:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:34:06 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:06 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2e00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:06 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000000a0000000007b342c940"], 0x28}}, 0x0)

04:34:06 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58)

04:34:06 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c00fd00000000000007b342c940"], 0x28}}, 0x0)

[ 2241.171349] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2241.191792] FAULT_INJECTION: forcing a failure.
[ 2241.191792] name failslab, interval 1, probability 0, space 0, times 0
[ 2241.194407] CPU: 1 PID: 29475 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2241.195891] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2241.197618] Call Trace:
[ 2241.198174]  dump_stack+0x107/0x167
[ 2241.198937]  should_fail.cold+0x5/0xa
[ 2241.199757]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2241.200960]  should_failslab+0x5/0x20
[ 2241.201758]  kmem_cache_alloc+0x5b/0x310
[ 2241.202608]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2241.203792]  idr_get_free+0x4b5/0x8f0
[ 2241.204594] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2241.204609]  idr_alloc_u32+0x170/0x2d0
[ 2241.207335]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2241.208369]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 2241.209481]  ? lock_release+0x680/0x680
[ 2241.210306]  idr_alloc+0xc2/0x130
[ 2241.210429] FAULT_INJECTION: forcing a failure.
[ 2241.210429] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2241.211025]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2241.211041]  ? rwlock_bug.part.0+0x90/0x90
[ 2241.211074]  p9_client_prepare_req.part.0+0x612/0xac0
[ 2241.211103]  p9_client_rpc+0x220/0x1370
[ 2241.217246]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2241.218349]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2241.219459]  ? pipe_poll+0x21b/0x800
[ 2241.220245]  ? p9_fd_close+0x4a0/0x4a0
[ 2241.221049]  ? wait_for_partner+0x3c0/0x3c0
[ 2241.221942]  ? p9_fd_poll+0x1e0/0x2c0
[ 2241.222736]  ? p9_fd_create+0x357/0x4a0
[ 2241.223557]  ? p9_conn_create+0x510/0x510
[ 2241.224422]  ? p9_client_create+0x798/0x1230
[ 2241.225339]  ? kfree+0xd7/0x340
[ 2241.226025]  ? do_raw_spin_unlock+0x4f/0x220
[ 2241.226951]  p9_client_create+0xa76/0x1230
[ 2241.227850]  ? p9_client_flush+0x430/0x430
[ 2241.228731]  ? trace_hardirqs_on+0x5b/0x180
[ 2241.229624]  ? lockdep_init_map_type+0x2c7/0x780
[ 2241.230615]  ? __raw_spin_lock_init+0x36/0x110
[ 2241.231570]  v9fs_session_init+0x1dd/0x1680
[ 2241.232483]  ? lock_release+0x680/0x680
[ 2241.233314]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2241.234318]  ? v9fs_show_options+0x690/0x690
[ 2241.235250]  ? trace_hardirqs_on+0x5b/0x180
[ 2241.236158]  ? kasan_unpoison_shadow+0x33/0x50
[ 2241.237100]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2241.238159]  v9fs_mount+0x79/0x8f0
[ 2241.238897]  ? v9fs_write_inode+0x60/0x60
[ 2241.239762]  legacy_get_tree+0x105/0x220
[ 2241.240606]  vfs_get_tree+0x8e/0x300
[ 2241.241375]  path_mount+0x1490/0x21e0
[ 2241.242171]  ? strncpy_from_user+0x9e/0x470
[ 2241.243066]  ? finish_automount+0xa90/0xa90
[ 2241.243965]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2241.244931]  ? _copy_from_user+0xfb/0x1b0
[ 2241.245796]  __x64_sys_mount+0x282/0x300
[ 2241.246635]  ? copy_mnt_ns+0xa00/0xa00
[ 2241.247446]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2241.248548]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2241.249625]  do_syscall_64+0x33/0x40
[ 2241.250397]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2241.251458] RIP: 0033:0x7f67f1462b19
[ 2241.252242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2241.256067] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2241.257651] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2241.259137] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2241.260621] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2241.262103] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2241.263590] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2241.265106] CPU: 0 PID: 29482 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2241.266679] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2241.268545] Call Trace:
[ 2241.269142]  dump_stack+0x107/0x167
[ 2241.269973]  should_fail.cold+0x5/0xa
[ 2241.270828]  _copy_from_user+0x2e/0x1b0
[ 2241.271724]  iovec_from_user+0x141/0x400
[ 2241.272643]  __import_iovec+0x67/0x590
[ 2241.273514]  ? __ia32_sys_shutdown+0x80/0x80
[ 2241.274515]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2241.275704]  import_iovec+0x83/0xb0
[ 2241.276528]  sendmsg_copy_msghdr+0x131/0x160
[ 2241.277518]  ? do_recvmmsg+0x6d0/0x6d0
[ 2241.278398]  ? lock_downgrade+0x6d0/0x6d0
[ 2241.279331]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2241.280518]  ___sys_sendmsg+0xc6/0x170
[ 2241.281391]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2241.282418]  ? __fget_files+0x2cf/0x520
[ 2241.283315]  ? lock_downgrade+0x6d0/0x6d0
[ 2241.284254]  ? find_held_lock+0x2c/0x110
[ 2241.285169]  ? __fget_files+0x2f8/0x520
[ 2241.286067]  ? __fget_light+0xea/0x290
[ 2241.286943]  __sys_sendmsg+0xe5/0x1b0
[ 2241.287802]  ? __sys_sendmsg_sock+0x40/0x40
[ 2241.288766]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2241.289803]  ? fput_many+0x2f/0x1a0
[ 2241.290617]  ? ksys_write+0x1a9/0x260
[ 2241.291474]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
04:34:06 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000008000000000007b342c940"], 0x28}}, 0x0)

[ 2241.292657]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2241.293991]  ? trace_hardirqs_on+0x5b/0x180
[ 2241.294962]  do_syscall_64+0x33/0x40
[ 2241.295815]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2241.296962] RIP: 0033:0x7f7bcd366b19
[ 2241.297793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2241.301918] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2241.303617] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2241.305228] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2241.306838] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2241.308455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2241.310060] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2241.329579] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2241.375829] 9p: Unknown uid 18446744073709551615
[ 2241.385120] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:34:06 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000000f0000000007b342c940"], 0x28}}, 0x0)

[ 2241.402957] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:34:06 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 41)

04:34:06 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x3f00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:06 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cfffff0000000000007b342c940"], 0x28}}, 0x0)

04:34:06 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xe00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:34:06 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58)

[ 2241.589886] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2241.592114] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2241.596082] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2241.598861] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:34:06 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 3)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:34:07 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x1)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
accept$unix(0xffffffffffffffff, &(0x7f0000000040)=@abs, &(0x7f0000000300)=0x6e)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x101}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000001b80)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001b40)={&(0x7f0000000500)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000580)=""/161, 0xa1}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000000640)=""/142, 0x8e}, {&(0x7f0000000700)=""/163, 0xa3}, {&(0x7f0000001940)=""/254, 0xfe}, {&(0x7f00000007c0)=""/119, 0x77}, {&(0x7f0000001a40)=""/253, 0xfd}], 0x7, &(0x7f0000000440)=""/30, 0x1e}, 0x0, 0x40000000, 0x1, {0x3}}, 0x25)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)}, {0x0}, {0x0}], 0x3}, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
r6 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000340))
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x14, 0x11, 0x101}, 0x14}}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x3b)
setresuid(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2241.725146] FAULT_INJECTION: forcing a failure.
[ 2241.725146] name failslab, interval 1, probability 0, space 0, times 0
[ 2241.727973] CPU: 0 PID: 30109 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2241.729524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2241.731383] Call Trace:
[ 2241.731995]  dump_stack+0x107/0x167
[ 2241.732461] FAULT_INJECTION: forcing a failure.
[ 2241.732461] name failslab, interval 1, probability 0, space 0, times 0
[ 2241.732813]  should_fail.cold+0x5/0xa
[ 2241.736023]  ? __alloc_skb+0x6d/0x5b0
[ 2241.736878]  should_failslab+0x5/0x20
[ 2241.737728]  kmem_cache_alloc_node+0x55/0x330
[ 2241.738730]  __alloc_skb+0x6d/0x5b0
[ 2241.739551]  netlink_sendmsg+0x998/0xe00
[ 2241.740469]  ? netlink_unicast+0xa00/0xa00
[ 2241.741420]  ? netlink_unicast+0xa00/0xa00
[ 2241.742361]  __sock_sendmsg+0x154/0x190
[ 2241.743253]  ____sys_sendmsg+0x70d/0x870
[ 2241.744167]  ? sock_write_iter+0x3d0/0x3d0
[ 2241.745106]  ? do_recvmmsg+0x6d0/0x6d0
[ 2241.745983]  ? lock_downgrade+0x6d0/0x6d0
[ 2241.746922]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2241.748106]  ___sys_sendmsg+0xf3/0x170
[ 2241.748981]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2241.750001]  ? __fget_files+0x2cf/0x520
[ 2241.750885]  ? lock_downgrade+0x6d0/0x6d0
[ 2241.751815]  ? find_held_lock+0x2c/0x110
[ 2241.752733]  ? __fget_files+0x2f8/0x520
[ 2241.753629]  ? __fget_light+0xea/0x290
[ 2241.754504]  __sys_sendmsg+0xe5/0x1b0
[ 2241.755352]  ? __sys_sendmsg_sock+0x40/0x40
[ 2241.756320]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2241.757376]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2241.758548]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2241.759698]  ? trace_hardirqs_on+0x5b/0x180
[ 2241.760662]  do_syscall_64+0x33/0x40
[ 2241.761491]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2241.762631] RIP: 0033:0x7f7bcd366b19
[ 2241.763459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2241.767582] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2241.769287] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2241.770873] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2241.772491] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2241.774087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2241.775685] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2241.777303] CPU: 1 PID: 30111 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2241.778772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2241.780540] Call Trace:
[ 2241.781102]  dump_stack+0x107/0x167
[ 2241.781878]  should_fail.cold+0x5/0xa
[ 2241.782692]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2241.783916]  should_failslab+0x5/0x20
[ 2241.784747]  kmem_cache_alloc+0x5b/0x310
[ 2241.785612]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2241.786808]  idr_get_free+0x4b5/0x8f0
[ 2241.787628]  idr_alloc_u32+0x170/0x2d0
[ 2241.788464]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2241.789479]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 2241.790602]  ? lock_release+0x680/0x680
[ 2241.791441]  idr_alloc+0xc2/0x130
[ 2241.792186]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2241.793029]  ? rwlock_bug.part.0+0x90/0x90
[ 2241.793932]  p9_client_prepare_req.part.0+0x612/0xac0
[ 2241.795026]  p9_client_rpc+0x220/0x1370
[ 2241.795904]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2241.797062]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2241.798188]  ? pipe_poll+0x21b/0x800
[ 2241.798967]  ? p9_fd_close+0x4a0/0x4a0
[ 2241.799794]  ? wait_for_partner+0x3c0/0x3c0
[ 2241.800705]  ? p9_fd_poll+0x1e0/0x2c0
[ 2241.801513]  ? p9_fd_create+0x357/0x4a0
[ 2241.802352]  ? p9_conn_create+0x510/0x510
[ 2241.803219]  ? p9_client_create+0x798/0x1230
[ 2241.804155]  ? kfree+0xd7/0x340
[ 2241.804846]  ? do_raw_spin_unlock+0x4f/0x220
[ 2241.805783]  p9_client_create+0xa76/0x1230
[ 2241.806677]  ? p9_client_flush+0x430/0x430
[ 2241.807565]  ? trace_hardirqs_on+0x5b/0x180
[ 2241.808481]  ? lockdep_init_map_type+0x2c7/0x780
[ 2241.809476]  ? __raw_spin_lock_init+0x36/0x110
[ 2241.810445]  v9fs_session_init+0x1dd/0x1680
[ 2241.811359]  ? lock_release+0x680/0x680
[ 2241.812219]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2241.813227]  ? v9fs_show_options+0x690/0x690
[ 2241.814156]  ? trace_hardirqs_on+0x5b/0x180
[ 2241.815064]  ? kasan_unpoison_shadow+0x33/0x50
[ 2241.816082]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2241.817180]  v9fs_mount+0x79/0x8f0
[ 2241.817949]  ? v9fs_write_inode+0x60/0x60
[ 2241.818842]  legacy_get_tree+0x105/0x220
[ 2241.819731]  vfs_get_tree+0x8e/0x300
[ 2241.820536]  path_mount+0x1490/0x21e0
[ 2241.821362]  ? strncpy_from_user+0x9e/0x470
[ 2241.822294]  ? finish_automount+0xa90/0xa90
[ 2241.823225]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2241.824240]  ? _copy_from_user+0xfb/0x1b0
[ 2241.825145]  __x64_sys_mount+0x282/0x300
[ 2241.826017]  ? copy_mnt_ns+0xa00/0xa00
[ 2241.826863]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2241.828004]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2241.829122]  do_syscall_64+0x33/0x40
[ 2241.829926]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2241.831049] RIP: 0033:0x7f67f1462b19
[ 2241.831861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2241.835843] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2241.837488] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2241.839026] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2241.840577] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2241.842113] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2241.843653] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2241.900026] 9p: Unknown uid 18446744073709551615
[ 2257.241310] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:34:22 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000001130000000007b342c940"], 0x28}}, 0x0)

04:34:22 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 4)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:34:22 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x1020, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:22 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 42)

04:34:22 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58)

04:34:22 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000010000000007b342c940"], 0x28}}, 0x0)

[ 2257.267045] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2257.271283] FAULT_INJECTION: forcing a failure.
[ 2257.271283] name failslab, interval 1, probability 0, space 0, times 0
[ 2257.273722] CPU: 1 PID: 30225 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2257.275170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2257.276917] Call Trace:
[ 2257.277470]  dump_stack+0x107/0x167
[ 2257.278226]  should_fail.cold+0x5/0xa
[ 2257.279007]  ? create_object.isra.0+0x3a/0xa30
[ 2257.279964]  should_failslab+0x5/0x20
[ 2257.280755]  kmem_cache_alloc+0x5b/0x310
[ 2257.281601]  create_object.isra.0+0x3a/0xa30
[ 2257.282512]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2257.283574]  kmem_cache_alloc_node+0x169/0x330
04:34:22 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4000, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:34:22 executing program 5:
bind$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e24, @rand_addr=0x64010101}, 0x10)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c4600000007000000000000000003003e000000000000000000000000000000000000000000000000000000000000003800030000eeff00000a00000000000020000000000000b668a6b6a109f3ce9d71c50000000000000000000000000069efa6ef6d71b47ce4339fd99e459c6e3822b437fb770fbecc07e88c99af4b0860c5b46ca471b76fc9bb220fb37104d0bbae3e3f9bfdc97cbb939dbc6057337cddc4c0cdaa0c56196a289f21a2038d96244fc47c993ca92a3abb93b6be375ee3d4acdca3d845b25bfda26d4a1518bd3607b4b46eadc4b2a5ea08105224cd16e9f5ccd714677e4c1443f432f68f02ff5cabb1a6ee453d92c51cd2b027b77715af0cf482d83b555a7d7dd800"], 0xaf2)
close(r0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000000, 0x30, r1, 0x10000000)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f00000004c0)=0x28)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000080)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x4007, @fd=r3, 0x40, 0x4, 0x5128, 0x1c, 0x0, {0x0, r4}}, 0x4)

[ 2257.284536]  __alloc_skb+0x6d/0x5b0
[ 2257.285482]  netlink_sendmsg+0x998/0xe00
[ 2257.286340]  ? netlink_unicast+0xa00/0xa00
[ 2257.287232]  ? netlink_unicast+0xa00/0xa00
[ 2257.287677] FAULT_INJECTION: forcing a failure.
[ 2257.287677] name failslab, interval 1, probability 0, space 0, times 0
[ 2257.288146]  __sock_sendmsg+0x154/0x190
[ 2257.291431]  ____sys_sendmsg+0x70d/0x870
[ 2257.292290]  ? sock_write_iter+0x3d0/0x3d0
[ 2257.293176]  ? do_recvmmsg+0x6d0/0x6d0
[ 2257.293997]  ? lock_downgrade+0x6d0/0x6d0
[ 2257.294865]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2257.295972]  ___sys_sendmsg+0xf3/0x170
[ 2257.296773]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2257.297745]  ? __fget_files+0x2cf/0x520
[ 2257.298590]  ? lock_downgrade+0x6d0/0x6d0
[ 2257.299455]  ? find_held_lock+0x2c/0x110
[ 2257.300334]  ? __fget_files+0x2f8/0x520
[ 2257.301169]  ? __fget_light+0xea/0x290
[ 2257.301995]  __sys_sendmsg+0xe5/0x1b0
[ 2257.302796]  ? __sys_sendmsg_sock+0x40/0x40
[ 2257.303697]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2257.304698]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2257.305792]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2257.306864]  ? trace_hardirqs_on+0x5b/0x180
[ 2257.307758]  do_syscall_64+0x33/0x40
[ 2257.308549]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2257.309610] RIP: 0033:0x7f7bcd366b19
[ 2257.310385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2257.314216] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2257.315825] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2257.317311] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2257.318790] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2257.320288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2257.321792] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2257.323322] CPU: 0 PID: 30226 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2257.324898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2257.326734] Call Trace:
[ 2257.327326]  dump_stack+0x107/0x167
[ 2257.328141]  should_fail.cold+0x5/0xa
[ 2257.329000]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2257.330283]  should_failslab+0x5/0x20
[ 2257.331143]  kmem_cache_alloc+0x5b/0x310
[ 2257.332089]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2257.333349]  idr_get_free+0x4b5/0x8f0
[ 2257.334225]  idr_alloc_u32+0x170/0x2d0
[ 2257.335100]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2257.336189]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 2257.336416] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2257.337388]  ? lock_release+0x680/0x680
[ 2257.337411]  idr_alloc+0xc2/0x130
[ 2257.337435]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2257.341743]  ? rwlock_bug.part.0+0x90/0x90
[ 2257.342704]  p9_client_prepare_req.part.0+0x612/0xac0
[ 2257.343885]  p9_client_rpc+0x220/0x1370
[ 2257.344776]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2257.345970]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2257.347176]  ? pipe_poll+0x21b/0x800
[ 2257.348028]  ? p9_fd_close+0x4a0/0x4a0
[ 2257.348289] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2257.348895]  ? wait_for_partner+0x3c0/0x3c0
[ 2257.348915]  ? p9_fd_poll+0x1e0/0x2c0
[ 2257.348939]  ? p9_fd_create+0x357/0x4a0
[ 2257.348963]  ? p9_conn_create+0x510/0x510
[ 2257.354310]  ? p9_client_create+0x798/0x1230
[ 2257.355297]  ? kfree+0xd7/0x340
[ 2257.356044]  ? do_raw_spin_unlock+0x4f/0x220
[ 2257.357045]  p9_client_create+0xa76/0x1230
[ 2257.358006]  ? p9_client_flush+0x430/0x430
[ 2257.358958]  ? trace_hardirqs_on+0x5b/0x180
[ 2257.359943]  ? lockdep_init_map_type+0x2c7/0x780
[ 2257.361030]  ? __raw_spin_lock_init+0x36/0x110
[ 2257.362065]  v9fs_session_init+0x1dd/0x1680
[ 2257.363041]  ? lock_release+0x680/0x680
[ 2257.363960]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2257.365045]  ? v9fs_show_options+0x690/0x690
[ 2257.366043]  ? trace_hardirqs_on+0x5b/0x180
[ 2257.367020]  ? kasan_unpoison_shadow+0x33/0x50
[ 2257.368059]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2257.369201]  v9fs_mount+0x79/0x8f0
[ 2257.370008]  ? v9fs_write_inode+0x60/0x60
[ 2257.370945]  legacy_get_tree+0x105/0x220
[ 2257.371873]  vfs_get_tree+0x8e/0x300
[ 2257.372719]  path_mount+0x1490/0x21e0
[ 2257.373584]  ? strncpy_from_user+0x9e/0x470
[ 2257.374551]  ? finish_automount+0xa90/0xa90
[ 2257.375519]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2257.376581]  ? _copy_from_user+0xfb/0x1b0
[ 2257.377525]  __x64_sys_mount+0x282/0x300
[ 2257.378438]  ? copy_mnt_ns+0xa00/0xa00
[ 2257.379320]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2257.380517]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2257.381693]  do_syscall_64+0x33/0x40
[ 2257.382534]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2257.383691] RIP: 0033:0x7f67f1462b19
[ 2257.384542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2257.388710] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2257.390404] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2257.392005] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2257.393606] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2257.395192] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2257.396788] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2257.420719] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2257.422925] CPU: 0 PID: 30225 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2257.424515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2257.426418] Call Trace:
[ 2257.427015]  dump_stack+0x107/0x167
[ 2257.427861]  sysfs_warn_dup.cold+0x1c/0x29
[ 2257.428828]  sysfs_do_create_link_sd+0x122/0x140
[ 2257.429896]  sysfs_create_link+0x5f/0xc0
[ 2257.430820]  device_add+0x703/0x1c50
[ 2257.431667]  ? devlink_add_symlinks+0x970/0x970
[ 2257.432736]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2257.433926]  wiphy_register+0x1da6/0x2850
[ 2257.434880]  ? wiphy_unregister+0xb90/0xb90
[ 2257.435880]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2257.437098]  ieee80211_register_hw+0x23c5/0x38b0
[ 2257.438183]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2257.439270]  ? net_generic+0xdb/0x2b0
[ 2257.440142]  ? lockdep_init_map_type+0x2c7/0x780
[ 2257.441207]  ? memset+0x20/0x50
[ 2257.441952]  ? __hrtimer_init+0x12c/0x270
[ 2257.442901]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2257.444049]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2257.445092]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2257.446118]  ? memcpy+0x39/0x60
[ 2257.446870]  hwsim_new_radio_nl+0x991/0x1080
[ 2257.447869]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2257.449061]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2257.450544]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2257.452022]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2257.453119]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2257.454594]  ? cap_capable+0x1cd/0x230
[ 2257.455521]  ? ns_capable+0xe2/0x110
[ 2257.456378]  genl_rcv_msg+0x36a/0x5a0
[ 2257.457240]  ? genl_get_cmd+0x480/0x480
[ 2257.458112]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2257.459271]  ? lock_release+0x680/0x680
[ 2257.460184]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2257.461197]  netlink_rcv_skb+0x14b/0x430
[ 2257.462114]  ? genl_get_cmd+0x480/0x480
[ 2257.463011]  ? netlink_ack+0xab0/0xab0
[ 2257.463905]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2257.464932]  ? is_vmalloc_addr+0x7b/0xb0
[ 2257.465847]  genl_rcv+0x24/0x40
[ 2257.466587]  netlink_unicast+0x6ce/0xa00
[ 2257.467506]  ? netlink_attachskb+0xab0/0xab0
[ 2257.468518]  netlink_sendmsg+0x90f/0xe00
[ 2257.469438]  ? netlink_unicast+0xa00/0xa00
[ 2257.470399]  ? netlink_unicast+0xa00/0xa00
[ 2257.471352]  __sock_sendmsg+0x154/0x190
[ 2257.472260]  ____sys_sendmsg+0x70d/0x870
[ 2257.473178]  ? sock_write_iter+0x3d0/0x3d0
[ 2257.474125]  ? do_recvmmsg+0x6d0/0x6d0
[ 2257.475006]  ? lock_downgrade+0x6d0/0x6d0
[ 2257.475951]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2257.477138]  ___sys_sendmsg+0xf3/0x170
[ 2257.478014]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2257.479045]  ? __fget_files+0x2cf/0x520
[ 2257.479942]  ? lock_downgrade+0x6d0/0x6d0
[ 2257.480874]  ? find_held_lock+0x2c/0x110
[ 2257.481797]  ? __fget_files+0x2f8/0x520
[ 2257.482698]  ? __fget_light+0xea/0x290
[ 2257.483579]  __sys_sendmsg+0xe5/0x1b0
[ 2257.484445]  ? __sys_sendmsg_sock+0x40/0x40
[ 2257.485417]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2257.486486]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2257.487660]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2257.488834]  ? trace_hardirqs_on+0x5b/0x180
[ 2257.489815]  do_syscall_64+0x33/0x40
[ 2257.490650]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2257.491807] RIP: 0033:0x7f7bcd366b19
[ 2257.492653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2257.496795] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2257.498515] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2257.500132] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2257.501749] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2257.503348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2257.504957] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:34:22 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000020000000007b342c940"], 0x28}}, 0x0)

04:34:22 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000480000000007b342c940"], 0x28}}, 0x0)

04:34:22 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4084, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2257.528006] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2257.531886] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2257.556389] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2257.570627] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2257.600717] 9p: Unknown uid 18446744073709551615
04:34:39 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000030000000007b342c940"], 0x28}}, 0x0)

04:34:39 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x41ed, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:39 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 43)

04:34:39 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 5)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:34:39 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2000, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:34:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000004c0000000007b342c940"], 0x28}}, 0x0)

04:34:39 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58)

[ 2274.535650] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2274.546755] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2274.548225] FAULT_INJECTION: forcing a failure.
[ 2274.548225] name failslab, interval 1, probability 0, space 0, times 0
[ 2274.551909] CPU: 0 PID: 30761 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2274.553547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2274.555504] Call Trace:
[ 2274.556139]  dump_stack+0x107/0x167
[ 2274.556999]  should_fail.cold+0x5/0xa
[ 2274.557905]  should_failslab+0x5/0x20
[ 2274.558806]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2274.559532] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2274.559985]  ? netlink_sendmsg+0x998/0xe00
[ 2274.560013]  __alloc_skb+0xb1/0x5b0
[ 2274.563730]  netlink_sendmsg+0x998/0xe00
[ 2274.564704]  ? netlink_unicast+0xa00/0xa00
[ 2274.565713]  ? netlink_unicast+0xa00/0xa00
[ 2274.566711]  __sock_sendmsg+0x154/0x190
[ 2274.567653]  ____sys_sendmsg+0x70d/0x870
[ 2274.568640]  ? sock_write_iter+0x3d0/0x3d0
[ 2274.569636]  ? do_recvmmsg+0x6d0/0x6d0
[ 2274.570560]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.571540]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2274.572788]  ___sys_sendmsg+0xf3/0x170
[ 2274.573709]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2274.574790]  ? __fget_files+0x2cf/0x520
04:34:39 executing program 5:
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000004, 0x50, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x37f8, &(0x7f0000000000)={0x0, 0xa4b2, 0x10, 0x0, 0x378}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000100)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3}, 0xfffffffd)
syz_mount_image$iso9660(0x0, &(0x7f0000000fc0)='./file0\x00', 0x0, 0x2, &(0x7f0000002240)=[{0x0, 0x0, 0xba}, {0x0, 0x0, 0x6}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="63727566742c6d61736b3d5e4d41595f415050454e442c7569643e9b5fdf3ca593f5ea5e54f26565dac5260a33492a78295940ab2a105972539449ac2a529a27c1bc9bb09bfac7933ff6854ed9781cf70661819301500a43221efc0289c12662cf8a8582f5e59ae65b42a4c6980c9b703ef97ab11bbeab0ed50e955aa1e93fc4045117eee44625c2edd0a6a87c2da4e943d7297242035270010fce3fc828c0b7dd52b6b3a98f30ad54ea2c40c413d3da88c628e2f31d1917f15f8e11a759bfa42a0723acf41759ed0c4e1350bed3d0bc99640b06acfd4cbc6b54d57c814a1098ac83e754a3e9412d29130adbf2ed5b371b7d22888ea134ede848c8fa62456234f355fc1fd08165a93ba6df3fbc203d925bc55989e77157e27e72933e45ddc4d608f2459a9a05d8a7dffdc2d14ddd5a4b1b48eec4459e802727e9a7", @ANYRESDEC=0xee00, @ANYBLOB=',subj_type=(#,\x00'])

[ 2274.575726]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.576905]  ? find_held_lock+0x2c/0x110
[ 2274.577885]  ? __fget_files+0x2f8/0x520
[ 2274.578841]  ? __fget_light+0xea/0x290
[ 2274.579779]  __sys_sendmsg+0xe5/0x1b0
[ 2274.580701]  ? __sys_sendmsg_sock+0x40/0x40
[ 2274.581730]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2274.582854]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2274.584118]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2274.585343]  ? trace_hardirqs_on+0x5b/0x180
[ 2274.586376]  do_syscall_64+0x33/0x40
[ 2274.587268]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2274.588502] RIP: 0033:0x7f7bcd366b19
[ 2274.589394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.593757] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2274.595567] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2274.597271] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2274.598963] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2274.600664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2274.602356] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2274.615965] FAULT_INJECTION: forcing a failure.
[ 2274.615965] name failslab, interval 1, probability 0, space 0, times 0
[ 2274.618448] CPU: 1 PID: 30759 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2274.620038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2274.621879] Call Trace:
[ 2274.622541]  dump_stack+0x107/0x167
[ 2274.623350]  should_fail.cold+0x5/0xa
[ 2274.624216]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2274.625480]  should_failslab+0x5/0x20
[ 2274.626319]  kmem_cache_alloc+0x5b/0x310
[ 2274.627223]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2274.628472]  idr_get_free+0x4b5/0x8f0
[ 2274.629335]  idr_alloc_u32+0x170/0x2d0
[ 2274.630198]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2274.631256]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 2274.632441]  ? lock_release+0x680/0x680
[ 2274.633335]  idr_alloc+0xc2/0x130
[ 2274.634098]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2274.634984]  ? rwlock_bug.part.0+0x90/0x90
[ 2274.635941]  p9_client_prepare_req.part.0+0x612/0xac0
[ 2274.637095]  p9_client_rpc+0x220/0x1370
[ 2274.637971]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2274.639130]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2274.640320]  ? pipe_poll+0x21b/0x800
[ 2274.641150]  ? p9_fd_close+0x4a0/0x4a0
[ 2274.642014]  ? wait_for_partner+0x3c0/0x3c0
[ 2274.642963]  ? p9_fd_poll+0x1e0/0x2c0
[ 2274.643797]  ? p9_fd_create+0x357/0x4a0
[ 2274.644691]  ? p9_conn_create+0x510/0x510
[ 2274.645614]  ? p9_client_create+0x798/0x1230
[ 2274.646582]  ? kfree+0xd7/0x340
[ 2274.647312]  ? do_raw_spin_unlock+0x4f/0x220
[ 2274.648304]  p9_client_create+0xa76/0x1230
[ 2274.649258]  ? p9_client_flush+0x430/0x430
[ 2274.650194]  ? trace_hardirqs_on+0x5b/0x180
[ 2274.651149]  ? lockdep_init_map_type+0x2c7/0x780
[ 2274.652210]  ? __raw_spin_lock_init+0x36/0x110
[ 2274.653232]  v9fs_session_init+0x1dd/0x1680
[ 2274.654186]  ? lock_release+0x680/0x680
[ 2274.655075]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2274.656158]  ? v9fs_show_options+0x690/0x690
[ 2274.657152]  ? trace_hardirqs_on+0x5b/0x180
[ 2274.658102]  ? kasan_unpoison_shadow+0x33/0x50
[ 2274.659103]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2274.660244]  v9fs_mount+0x79/0x8f0
[ 2274.661043]  ? v9fs_write_inode+0x60/0x60
[ 2274.661955]  legacy_get_tree+0x105/0x220
[ 2274.662853]  vfs_get_tree+0x8e/0x300
[ 2274.663661]  path_mount+0x1490/0x21e0
[ 2274.664525]  ? strncpy_from_user+0x9e/0x470
[ 2274.665488]  ? finish_automount+0xa90/0xa90
[ 2274.666440]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2274.667464]  ? _copy_from_user+0xfb/0x1b0
[ 2274.668402]  __x64_sys_mount+0x282/0x300
[ 2274.669313]  ? copy_mnt_ns+0xa00/0xa00
[ 2274.670180]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2274.671333]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2274.672491]  do_syscall_64+0x33/0x40
[ 2274.673326]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2274.674452] RIP: 0033:0x7f67f1462b19
[ 2274.675295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.679292] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2274.680983] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2274.682539] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2274.684112] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2274.685674] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2274.687235] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:34:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000680000000007b342c940"], 0x28}}, 0x0)

04:34:40 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000040000000007b342c940"], 0x28}}, 0x0)

04:34:40 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 6)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 2274.768903] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:34:40 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4800, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2274.778427] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2274.792216] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:34:40 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x200000000000000, 0x0, 0x0}, 0x58)

[ 2274.800657] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:34:40 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2010, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:40 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getpgrp(0x0)
sendmmsg$unix(r0, &(0x7f0000001d40), 0x0, 0x0)

[ 2274.874902] FAULT_INJECTION: forcing a failure.
[ 2274.874902] name failslab, interval 1, probability 0, space 0, times 0
[ 2274.877751] CPU: 0 PID: 31095 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2274.879305] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2274.881179] Call Trace:
[ 2274.881781]  dump_stack+0x107/0x167
[ 2274.882598]  should_fail.cold+0x5/0xa
[ 2274.883461]  ? create_object.isra.0+0x3a/0xa30
[ 2274.884501]  should_failslab+0x5/0x20
[ 2274.885363]  kmem_cache_alloc+0x5b/0x310
[ 2274.886279]  create_object.isra.0+0x3a/0xa30
[ 2274.887269]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2274.888419]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2274.889559]  ? netlink_sendmsg+0x998/0xe00
[ 2274.890512]  __alloc_skb+0xb1/0x5b0
[ 2274.891351]  netlink_sendmsg+0x998/0xe00
[ 2274.892278]  ? netlink_unicast+0xa00/0xa00
[ 2274.893245]  ? netlink_unicast+0xa00/0xa00
[ 2274.894196]  __sock_sendmsg+0x154/0x190
[ 2274.895091]  ____sys_sendmsg+0x70d/0x870
[ 2274.896044]  ? sock_write_iter+0x3d0/0x3d0
[ 2274.896994]  ? do_recvmmsg+0x6d0/0x6d0
[ 2274.897877]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.898811]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2274.899999]  ___sys_sendmsg+0xf3/0x170
[ 2274.900876]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2274.901902]  ? __fget_files+0x2cf/0x520
[ 2274.902793]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.903723]  ? find_held_lock+0x2c/0x110
04:34:40 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000050000000007b342c940"], 0x28}}, 0x0)

[ 2274.904655]  ? __fget_files+0x2f8/0x520
[ 2274.905773]  ? __fget_light+0xea/0x290
[ 2274.906660]  __sys_sendmsg+0xe5/0x1b0
[ 2274.907517]  ? __sys_sendmsg_sock+0x40/0x40
[ 2274.908492]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2274.909562]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2274.910739]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2274.911883]  ? trace_hardirqs_on+0x5b/0x180
[ 2274.912866]  do_syscall_64+0x33/0x40
[ 2274.913704]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2274.914854] RIP: 0033:0x7f7bcd366b19
[ 2274.915693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.919839] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2274.921558] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2274.923166] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2274.924788] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2274.926415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2274.928038] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:34:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000006c0000000007b342c940"], 0x28}}, 0x0)

04:34:40 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58)

[ 2274.983807] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2274.994326] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2275.021745] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2275.090740] 9p: Unknown uid 18446744073709551615
[ 2275.110336] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2275.112598] CPU: 1 PID: 31095 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2275.114317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2275.116392] Call Trace:
[ 2275.117048]  dump_stack+0x107/0x167
[ 2275.117967]  sysfs_warn_dup.cold+0x1c/0x29
[ 2275.119034]  sysfs_do_create_link_sd+0x122/0x140
[ 2275.120235]  sysfs_create_link+0x5f/0xc0
[ 2275.121242]  device_add+0x703/0x1c50
[ 2275.122180]  ? devlink_add_symlinks+0x970/0x970
[ 2275.123333]  ? __mutex_lock+0x4fe/0x10b0
[ 2275.124350]  wiphy_register+0x1da6/0x2850
[ 2275.125393]  ? wiphy_unregister+0xb90/0xb90
[ 2275.126476]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2275.127796]  ieee80211_register_hw+0x23c5/0x38b0
[ 2275.128992]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2275.130185]  ? net_generic+0xdb/0x2b0
[ 2275.131136]  ? lockdep_init_map_type+0x2c7/0x780
[ 2275.132326]  ? memset+0x20/0x50
[ 2275.133135]  ? __hrtimer_init+0x12c/0x270
[ 2275.134165]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2275.135428]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2275.136584]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2275.137742]  ? memcpy+0x39/0x60
[ 2275.138581]  hwsim_new_radio_nl+0x991/0x1080
[ 2275.139670]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2275.140979]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2275.142613]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2275.144268]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2275.145465]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2275.147099]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2275.148416]  ? cap_capable+0x1cd/0x230
[ 2275.149405]  ? ns_capable+0xe2/0x110
[ 2275.150334]  genl_rcv_msg+0x36a/0x5a0
[ 2275.151282]  ? genl_get_cmd+0x480/0x480
[ 2275.152283]  ? lock_acquire+0x1b9/0x470
[ 2275.153265]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2275.154563]  ? lock_release+0x680/0x680
[ 2275.155559]  netlink_rcv_skb+0x14b/0x430
[ 2275.156580]  ? genl_get_cmd+0x480/0x480
[ 2275.157577]  ? netlink_ack+0xab0/0xab0
[ 2275.158563]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2275.159705]  ? is_vmalloc_addr+0x7b/0xb0
[ 2275.160721]  genl_rcv+0x24/0x40
[ 2275.161543]  netlink_unicast+0x6ce/0xa00
[ 2275.162563]  ? netlink_attachskb+0xab0/0xab0
[ 2275.163664]  netlink_sendmsg+0x90f/0xe00
[ 2275.164699]  ? netlink_unicast+0xa00/0xa00
[ 2275.165769]  ? netlink_unicast+0xa00/0xa00
[ 2275.166818]  __sock_sendmsg+0x154/0x190
[ 2275.167813]  ____sys_sendmsg+0x70d/0x870
[ 2275.168846]  ? sock_write_iter+0x3d0/0x3d0
[ 2275.169888]  ? do_recvmmsg+0x6d0/0x6d0
[ 2275.170866]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.171900]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2275.173218]  ___sys_sendmsg+0xf3/0x170
[ 2275.174173]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2275.175302]  ? __fget_files+0x2cf/0x520
[ 2275.176298]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.177347]  ? find_held_lock+0x2c/0x110
[ 2275.178357]  ? __fget_files+0x2f8/0x520
[ 2275.179357]  ? __fget_light+0xea/0x290
[ 2275.180350]  __sys_sendmsg+0xe5/0x1b0
[ 2275.181302]  ? __sys_sendmsg_sock+0x40/0x40
[ 2275.182390]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2275.183557]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2275.184857]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2275.186127]  ? trace_hardirqs_on+0x5b/0x180
[ 2275.187180]  do_syscall_64+0x33/0x40
[ 2275.188098]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2275.189354] RIP: 0033:0x7f7bcd366b19
[ 2275.190284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2275.194810] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2275.196734] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2275.198518] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2275.200330] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2275.202102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2275.203906] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:34:57 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x2e00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2292.016260] FAULT_INJECTION: forcing a failure.
[ 2292.016260] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2292.019286] CPU: 0 PID: 31411 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2292.020881] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2292.022781] Call Trace:
[ 2292.023388]  dump_stack+0x107/0x167
[ 2292.024238]  should_fail.cold+0x5/0xa
[ 2292.025113]  _copy_from_iter_full+0x201/0xa60
[ 2292.026142]  ? __virt_addr_valid+0x170/0x5d0
[ 2292.027151]  ? __check_object_size+0x319/0x440
[ 2292.028437]  netlink_sendmsg+0x879/0xe00
[ 2292.029371]  ? netlink_unicast+0xa00/0xa00
[ 2292.030347]  ? netlink_unicast+0xa00/0xa00
[ 2292.031322]  __sock_sendmsg+0x154/0x190
[ 2292.032240]  ____sys_sendmsg+0x70d/0x870
[ 2292.033167]  ? sock_write_iter+0x3d0/0x3d0
[ 2292.034131]  ? do_recvmmsg+0x6d0/0x6d0
[ 2292.035026]  ? lock_downgrade+0x6d0/0x6d0
[ 2292.035977]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2292.037190]  ___sys_sendmsg+0xf3/0x170
[ 2292.038086]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2292.039136]  ? __fget_files+0x2cf/0x520
[ 2292.040042]  ? lock_downgrade+0x6d0/0x6d0
[ 2292.040998]  ? find_held_lock+0x2c/0x110
[ 2292.041940]  ? __fget_files+0x2f8/0x520
[ 2292.042874]  ? __fget_light+0xea/0x290
[ 2292.043485] FAULT_INJECTION: forcing a failure.
[ 2292.043485] name failslab, interval 1, probability 0, space 0, times 0
[ 2292.043776]  __sys_sendmsg+0xe5/0x1b0
[ 2292.046971]  ? __sys_sendmsg_sock+0x40/0x40
[ 2292.047968]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2292.049067]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2292.050295]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2292.051473]  ? trace_hardirqs_on+0x5b/0x180
[ 2292.052476]  do_syscall_64+0x33/0x40
[ 2292.053354]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2292.054536] RIP: 0033:0x7f7bcd366b19
[ 2292.055442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2292.059715] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2292.061481] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2292.063110] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2292.064750] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2292.066381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2292.068033] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2292.069695] CPU: 1 PID: 31420 Comm: syz-executor.1 Not tainted 5.10.244 #1
04:34:57 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 7)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:34:57 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58)

04:34:57 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000740000000007b342c940"], 0x28}}, 0x0)

04:34:57 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000060000000007b342c940"], 0x28}}, 0x0)

04:34:57 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4c00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:34:57 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 44)

04:34:57 executing program 5:
setpgid(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r2, 0xc0045878, &(0x7f00000001c0)={'wlan1\x00', &(0x7f0000000480)=ANY=[@ANYBLOB="0473b560491f74216e157704fdc4b65a914a512a1eec4c3234b9ca5875f7c17413408526a6822189586a11c110366f9ac5f1241108587c39e04fc72e7cdecf8db70a59b4be76fe54ca171174579c5e9e21cbae5ed0728bc6795ee9c5e40c9fd28728d773ea4607e6270ac0ae3a0bbf2b071fcec02f6564b2ff75360d1a42dda7d6eea9b685e240bdb6a65e4f70079bf55731908de093d0e29d70130ea901b41a02ef4c852f504265d6d4b7d340f99d065d435e0051c305426d65aa917f6e62f8d250a0f6f1174d8abfcb2fd59e04594c7495cebd610bc9315c7bb97a024fded02b"]})
setsockopt$inet6_udp_int(r2, 0x11, 0xb, &(0x7f0000000080)=0x6, 0x4)
r3 = creat(&(0x7f0000000000)='./file2\x00', 0x0)
preadv2(r1, &(0x7f0000000340)=[{&(0x7f0000000180)=""/68, 0x44}, {&(0x7f0000000200)=""/120, 0x78}, {&(0x7f00000002c0)=""/21, 0x15}, {&(0x7f0000000300)=""/35, 0x23}], 0x4, 0x5, 0x0, 0x1)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xfffffffe}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
openat(r3, &(0x7f0000000280)='./file2\x00', 0x200002, 0x84)
fcntl$setlease(r3, 0x400, 0x1)
lremovexattr(&(0x7f00000000c0)='./file2\x00', &(0x7f0000000100)=@random={'security.', '\x00'})
r5 = fork()
ptrace$peeksig(0x4209, r5, &(0x7f0000000040), &(0x7f0000000180))
openat2(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x40}, 0x18)

[ 2292.071354] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2292.073199] __nla_validate_parse: 1 callbacks suppressed
[ 2292.073213] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2292.073225] Call Trace:
[ 2292.073256]  dump_stack+0x107/0x167
[ 2292.077536]  should_fail.cold+0x5/0xa
[ 2292.077754] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2292.078344]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2292.081466]  should_failslab+0x5/0x20
[ 2292.082272]  kmem_cache_alloc+0x5b/0x310
[ 2292.083135]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2292.084316]  idr_get_free+0x4b5/0x8f0
[ 2292.085133]  idr_alloc_u32+0x170/0x2d0
[ 2292.085946]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2292.086971]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 2292.088102]  ? lock_release+0x680/0x680
[ 2292.088209] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2292.088936]  idr_alloc+0xc2/0x130
[ 2292.088955]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2292.088978]  ? rwlock_bug.part.0+0x90/0x90
[ 2292.093349]  p9_client_prepare_req.part.0+0x612/0xac0
[ 2292.094428]  p9_client_rpc+0x220/0x1370
[ 2292.095260]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2292.096386]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2292.097515]  ? pipe_poll+0x21b/0x800
[ 2292.098289]  ? p9_fd_close+0x4a0/0x4a0
[ 2292.099107]  ? wait_for_partner+0x3c0/0x3c0
[ 2292.100011]  ? p9_fd_poll+0x1e0/0x2c0
[ 2292.100827]  ? p9_fd_create+0x357/0x4a0
[ 2292.101650]  ? p9_conn_create+0x510/0x510
[ 2292.102522]  ? p9_client_create+0x798/0x1230
[ 2292.103448]  ? kfree+0xd7/0x340
[ 2292.103857] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2292.104144]  ? do_raw_spin_unlock+0x4f/0x220
[ 2292.104173]  p9_client_create+0xa76/0x1230
[ 2292.107939]  ? p9_client_flush+0x430/0x430
[ 2292.108848]  ? trace_hardirqs_on+0x5b/0x180
[ 2292.109756]  ? lockdep_init_map_type+0x2c7/0x780
[ 2292.110752]  ? __raw_spin_lock_init+0x36/0x110
[ 2292.111727]  v9fs_session_init+0x1dd/0x1680
[ 2292.112649]  ? lock_release+0x680/0x680
[ 2292.113493]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2292.114510]  ? v9fs_show_options+0x690/0x690
[ 2292.115440]  ? trace_hardirqs_on+0x5b/0x180
[ 2292.116353]  ? kasan_unpoison_shadow+0x33/0x50
[ 2292.117308]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2292.118380]  v9fs_mount+0x79/0x8f0
[ 2292.119130]  ? v9fs_write_inode+0x60/0x60
[ 2292.120000]  legacy_get_tree+0x105/0x220
[ 2292.120858]  vfs_get_tree+0x8e/0x300
[ 2292.121640]  path_mount+0x1490/0x21e0
[ 2292.122446]  ? strncpy_from_user+0x9e/0x470
[ 2292.123347]  ? finish_automount+0xa90/0xa90
[ 2292.124263]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2292.125240]  ? _copy_from_user+0xfb/0x1b0
[ 2292.126122]  __x64_sys_mount+0x282/0x300
[ 2292.126970]  ? copy_mnt_ns+0xa00/0xa00
[ 2292.127800]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2292.128909]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2292.129998]  do_syscall_64+0x33/0x40
[ 2292.130778]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2292.131850] RIP: 0033:0x7f67f1462b19
[ 2292.132634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2292.136519] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2292.138108] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2292.139611] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2292.141108] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2292.142605] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2292.144102] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:34:57 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58)

04:34:57 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000070000000007b342c940"], 0x28}}, 0x0)

04:34:57 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000007a0000000007b342c940"], 0x28}}, 0x0)

[ 2292.204884] 9p: Unknown uid 18446744073709551615
04:34:57 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x3f00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:57 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 45)

[ 2292.260282] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2292.276240] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2292.283688] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:34:57 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58)

[ 2292.297726] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2292.335698] FAULT_INJECTION: forcing a failure.
[ 2292.335698] name failslab, interval 1, probability 0, space 0, times 0
[ 2292.338307] CPU: 0 PID: 31738 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2292.339901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2292.341819] Call Trace:
[ 2292.342436]  dump_stack+0x107/0x167
[ 2292.343282]  should_fail.cold+0x5/0xa
[ 2292.344188]  ? create_object.isra.0+0x3a/0xa30
[ 2292.345243]  should_failslab+0x5/0x20
[ 2292.346139]  kmem_cache_alloc+0x5b/0x310
[ 2292.347100]  create_object.isra.0+0x3a/0xa30
[ 2292.348134]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2292.349337]  kmem_cache_alloc+0x159/0x310
[ 2292.350322]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2292.351658]  idr_get_free+0x4b5/0x8f0
[ 2292.352550]  idr_alloc_u32+0x170/0x2d0
[ 2292.353451]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2292.354598]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 2292.355854]  ? lock_release+0x680/0x680
[ 2292.356800]  idr_alloc+0xc2/0x130
[ 2292.357615]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2292.358560]  ? rwlock_bug.part.0+0x90/0x90
[ 2292.359571]  p9_client_prepare_req.part.0+0x612/0xac0
[ 2292.360812]  p9_client_rpc+0x220/0x1370
[ 2292.361745]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2292.363001]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 2292.364274]  ? pipe_poll+0x21b/0x800
[ 2292.365136]  ? p9_fd_close+0x4a0/0x4a0
[ 2292.366051]  ? wait_for_partner+0x3c0/0x3c0
[ 2292.367057]  ? p9_fd_poll+0x1e0/0x2c0
[ 2292.367930]  ? p9_fd_create+0x357/0x4a0
[ 2292.368863]  ? p9_conn_create+0x510/0x510
[ 2292.369812]  ? p9_client_create+0x798/0x1230
[ 2292.370828]  ? kfree+0xd7/0x340
[ 2292.371590]  ? do_raw_spin_unlock+0x4f/0x220
[ 2292.372631]  p9_client_create+0xa76/0x1230
[ 2292.373623]  ? p9_client_flush+0x430/0x430
[ 2292.374615]  ? trace_hardirqs_on+0x5b/0x180
[ 2292.375611]  ? lockdep_init_map_type+0x2c7/0x780
[ 2292.376722]  ? __raw_spin_lock_init+0x36/0x110
[ 2292.377794]  v9fs_session_init+0x1dd/0x1680
[ 2292.378797]  ? lock_release+0x680/0x680
[ 2292.379765]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2292.380897]  ? v9fs_show_options+0x690/0x690
[ 2292.381910]  ? trace_hardirqs_on+0x5b/0x180
[ 2292.382904]  ? kasan_unpoison_shadow+0x33/0x50
[ 2292.383949]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2292.385154]  v9fs_mount+0x79/0x8f0
[ 2292.385974]  ? v9fs_write_inode+0x60/0x60
[ 2292.386941]  legacy_get_tree+0x105/0x220
[ 2292.387894]  vfs_get_tree+0x8e/0x300
[ 2292.388788]  path_mount+0x1490/0x21e0
[ 2292.389681]  ? strncpy_from_user+0x9e/0x470
[ 2292.390681]  ? finish_automount+0xa90/0xa90
[ 2292.391677]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2292.392813]  ? _copy_from_user+0xfb/0x1b0
[ 2292.393781]  __x64_sys_mount+0x282/0x300
[ 2292.394720]  ? copy_mnt_ns+0xa00/0xa00
[ 2292.395678]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2292.396958]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2292.398163]  do_syscall_64+0x33/0x40
[ 2292.399034]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2292.400241] RIP: 0033:0x7f67f1462b19
[ 2292.401100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2292.405364] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2292.407134] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2292.408805] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2292.410458] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2292.412149] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2292.413837] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:34:57 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x6800, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:34:57 executing program 5:
r0 = epoll_create(0x8000)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
epoll_wait(r0, &(0x7f0000000140)=[{}], 0x1, 0x0)
epoll_wait(r0, &(0x7f0000000100)=[{}, {}], 0x2, 0x60f7ad29)
fcntl$getownex(r1, 0x10, &(0x7f0000000040)={0x0, <r2=>0x0})
fcntl$setownex(r0, 0xf, &(0x7f00000000c0)={0x0, r2})

04:34:57 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cffffff9e0000000007b342c940"], 0x28}}, 0x0)

04:34:57 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 8)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:34:57 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000090000000007b342c940"], 0x28}}, 0x0)

04:34:57 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58)

[ 2292.517852] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2292.529228] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2292.566416] FAULT_INJECTION: forcing a failure.
[ 2292.566416] name failslab, interval 1, probability 0, space 0, times 0
[ 2292.569148] CPU: 1 PID: 31958 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2292.570603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2292.572359] Call Trace:
[ 2292.572919]  dump_stack+0x107/0x167
[ 2292.573689]  should_fail.cold+0x5/0xa
[ 2292.574491]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280
[ 2292.575855]  should_failslab+0x5/0x20
[ 2292.576661]  __kmalloc+0x72/0x390
[ 2292.577404]  genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280
[ 2292.578743]  genl_family_rcv_msg_doit+0xda/0x330
[ 2292.579742]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2292.581127]  ? cap_capable+0x1cd/0x230
[ 2292.581951]  ? security_capable+0x95/0xc0
[ 2292.582826]  ? ns_capable+0xe2/0x110
[ 2292.583608]  genl_rcv_msg+0x36a/0x5a0
[ 2292.584411]  ? genl_get_cmd+0x480/0x480
[ 2292.585250]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2292.586334]  ? lock_release+0x680/0x680
[ 2292.587166]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2292.588117]  netlink_rcv_skb+0x14b/0x430
[ 2292.588969]  ? genl_get_cmd+0x480/0x480
[ 2292.589807]  ? netlink_ack+0xab0/0xab0
[ 2292.590631]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2292.591586]  ? is_vmalloc_addr+0x7b/0xb0
[ 2292.592440]  genl_rcv+0x24/0x40
[ 2292.593130]  netlink_unicast+0x6ce/0xa00
[ 2292.593978]  ? netlink_attachskb+0xab0/0xab0
[ 2292.594912]  netlink_sendmsg+0x90f/0xe00
[ 2292.595764]  ? netlink_unicast+0xa00/0xa00
[ 2292.596665]  ? netlink_unicast+0xa00/0xa00
[ 2292.597554]  __sock_sendmsg+0x154/0x190
[ 2292.598386]  ____sys_sendmsg+0x70d/0x870
[ 2292.599236]  ? sock_write_iter+0x3d0/0x3d0
[ 2292.600125]  ? do_recvmmsg+0x6d0/0x6d0
[ 2292.600941]  ? lock_downgrade+0x6d0/0x6d0
[ 2292.601814]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2292.602914]  ___sys_sendmsg+0xf3/0x170
[ 2292.603730]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2292.604709]  ? __fget_files+0x2cf/0x520
[ 2292.605538]  ? lock_downgrade+0x6d0/0x6d0
[ 2292.606404]  ? find_held_lock+0x2c/0x110
[ 2292.607263]  ? __fget_files+0x2f8/0x520
[ 2292.608122]  ? __fget_light+0xea/0x290
[ 2292.608942]  __sys_sendmsg+0xe5/0x1b0
[ 2292.609724]  ? __sys_sendmsg_sock+0x40/0x40
[ 2292.610622]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2292.611609]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2292.612716]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2292.613790]  ? trace_hardirqs_on+0x5b/0x180
[ 2292.614695]  do_syscall_64+0x33/0x40
[ 2292.615471]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2292.616551] RIP: 0033:0x7f7bcd366b19
[ 2292.617324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2292.621181] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2292.622772] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2292.623915] 9p: Unknown uid 18446744073709551615
[ 2292.624280] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2292.626941] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2292.628450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2292.629948] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2308.608770] __nla_validate_parse: 2 callbacks suppressed
[ 2308.608782] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2308.637847] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2308.647680] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:35:13 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xa942000000000000, 0x0, 0x0}, 0x58)

04:35:13 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4000, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:35:13 executing program 5:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
ioctl$CDROMREADAUDIO(r0, 0x530e, &(0x7f0000000440)={@msf={0x20, 0xdb, 0x1}, 0x2, 0x36, &(0x7f0000000400)=""/54})
mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91})
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100))
r2 = syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
fadvise64(r5, 0x0, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r5, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000000c0)='./file0\x00', 0x18, 0x0, 0x12345}, 0x0)
r6 = syz_open_dev$vcsu(&(0x7f0000000480), 0x1, 0x803)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000)
syz_io_uring_submit(r8, r4, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x0)
r9 = syz_open_dev$vcsa(&(0x7f0000000080), 0x4, 0x8800)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, r9, &(0x7f0000000340)={0x0, 0x80}, &(0x7f0000000380)='./file0\x00', 0x18, 0x0, 0x12345}, 0x1)

04:35:13 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 9)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:35:13 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cfffffff00000000007b342c940"], 0x28}}, 0x0)

04:35:13 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 46)

04:35:13 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x6c00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:13 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000000a0000000007b342c940"], 0x28}}, 0x0)

[ 2308.654281] FAULT_INJECTION: forcing a failure.
[ 2308.654281] name failslab, interval 1, probability 0, space 0, times 0
[ 2308.657117] CPU: 0 PID: 32075 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2308.658675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.660574] Call Trace:
[ 2308.660600]  dump_stack+0x107/0x167
[ 2308.660622]  should_fail.cold+0x5/0xa
[ 2308.660643]  ? create_object.isra.0+0x3a/0xa30
[ 2308.660661]  should_failslab+0x5/0x20
[ 2308.660680]  kmem_cache_alloc+0x5b/0x310
[ 2308.660705]  create_object.isra.0+0x3a/0xa30
[ 2308.660721]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2308.660745]  __kmalloc+0x16e/0x390
[ 2308.660775]  genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280
[ 2308.660802]  genl_family_rcv_msg_doit+0xda/0x330
[ 2308.660825]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2308.660845]  ? cap_capable+0x1cd/0x230
[ 2308.660870]  ? security_capable+0x95/0xc0
[ 2308.660894]  ? ns_capable+0xe2/0x110
[ 2308.660917]  genl_rcv_msg+0x36a/0x5a0
[ 2308.660940]  ? genl_get_cmd+0x480/0x480
[ 2308.660962]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2308.660987]  ? lock_release+0x680/0x680
[ 2308.661012]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2308.679909]  netlink_rcv_skb+0x14b/0x430
[ 2308.680845]  ? genl_get_cmd+0x480/0x480
[ 2308.681739]  ? netlink_ack+0xab0/0xab0
[ 2308.682626]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2308.683654]  ? is_vmalloc_addr+0x7b/0xb0
[ 2308.684576]  genl_rcv+0x24/0x40
[ 2308.685318]  netlink_unicast+0x6ce/0xa00
[ 2308.686242]  ? netlink_attachskb+0xab0/0xab0
[ 2308.687242]  netlink_sendmsg+0x90f/0xe00
[ 2308.688166]  ? netlink_unicast+0xa00/0xa00
[ 2308.689141]  ? netlink_unicast+0xa00/0xa00
[ 2308.690095]  __sock_sendmsg+0x154/0x190
[ 2308.690992]  ____sys_sendmsg+0x70d/0x870
[ 2308.691908]  ? sock_write_iter+0x3d0/0x3d0
[ 2308.692870]  ? do_recvmmsg+0x6d0/0x6d0
[ 2308.693756]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.694690]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2308.695868]  ___sys_sendmsg+0xf3/0x170
[ 2308.696760]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2308.697784]  ? __fget_files+0x2cf/0x520
[ 2308.698677]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.699604]  ? find_held_lock+0x2c/0x110
[ 2308.700542]  ? __fget_files+0x2f8/0x520
[ 2308.701438]  ? __fget_light+0xea/0x290
[ 2308.702317]  __sys_sendmsg+0xe5/0x1b0
[ 2308.703169]  ? __sys_sendmsg_sock+0x40/0x40
[ 2308.704136]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2308.705200]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2308.706379]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2308.707529]  ? trace_hardirqs_on+0x5b/0x180
[ 2308.708516]  do_syscall_64+0x33/0x40
[ 2308.709348]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2308.710496] RIP: 0033:0x7f7bcd366b19
[ 2308.711335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.715499] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2308.717211] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2308.718815] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2308.720425] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2308.722016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2308.723620] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:35:14 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x7400, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2308.743319] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2308.746649] FAULT_INJECTION: forcing a failure.
[ 2308.746649] name failslab, interval 1, probability 0, space 0, times 0
[ 2308.748672] CPU: 1 PID: 32079 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2308.749886] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.751384] Call Trace:
[ 2308.751865]  dump_stack+0x107/0x167
[ 2308.752533]  should_fail.cold+0x5/0xa
[ 2308.753200]  ? p9pdu_readf+0xadb/0x1d40
[ 2308.753895]  should_failslab+0x5/0x20
[ 2308.754555]  __kmalloc+0x72/0x390
[ 2308.755156]  p9pdu_readf+0xadb/0x1d40
[ 2308.755807]  ? pipe_poll+0x21b/0x800
[ 2308.756467]  ? p9pdu_writef+0x100/0x100
[ 2308.757174]  ? p9_fd_poll+0x1e0/0x2c0
[ 2308.757822]  ? p9_fd_create+0x357/0x4a0
[ 2308.758502]  ? p9_conn_create+0x510/0x510
[ 2308.759236]  ? p9_client_create+0x798/0x1230
[ 2308.759992]  ? kfree+0xd7/0x340
[ 2308.760585]  ? do_raw_spin_unlock+0x4f/0x220
[ 2308.761360]  p9_client_create+0xaee/0x1230
[ 2308.762102]  ? p9_client_flush+0x430/0x430
[ 2308.762852]  ? trace_hardirqs_on+0x5b/0x180
[ 2308.763598]  ? lockdep_init_map_type+0x2c7/0x780
[ 2308.764420]  ? __raw_spin_lock_init+0x36/0x110
[ 2308.765219]  v9fs_session_init+0x1dd/0x1680
[ 2308.765956]  ? lock_release+0x680/0x680
[ 2308.766648]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2308.767492]  ? v9fs_show_options+0x690/0x690
[ 2308.768290]  ? trace_hardirqs_on+0x5b/0x180
[ 2308.769032]  ? kasan_unpoison_shadow+0x33/0x50
[ 2308.769834]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2308.770712]  v9fs_mount+0x79/0x8f0
[ 2308.771319]  ? v9fs_write_inode+0x60/0x60
[ 2308.772028]  legacy_get_tree+0x105/0x220
[ 2308.772746]  vfs_get_tree+0x8e/0x300
[ 2308.773381]  path_mount+0x1490/0x21e0
[ 2308.774044]  ? strncpy_from_user+0x9e/0x470
[ 2308.774780]  ? finish_automount+0xa90/0xa90
[ 2308.775517]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2308.776345]  ? _copy_from_user+0xfb/0x1b0
[ 2308.777064]  __x64_sys_mount+0x282/0x300
[ 2308.777757]  ? copy_mnt_ns+0xa00/0xa00
[ 2308.778430]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2308.779326]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2308.780195]  do_syscall_64+0x33/0x40
[ 2308.780863]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2308.781745] RIP: 0033:0x7f67f1462b19
[ 2308.782381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.785550] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2308.786858] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2308.788080] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2308.789309] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2308.790517] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2308.791719] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2308.804343] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2308.805807] CPU: 1 PID: 32075 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2308.806966] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.808373] Call Trace:
[ 2308.808809]  dump_stack+0x107/0x167
[ 2308.809425]  sysfs_warn_dup.cold+0x1c/0x29
[ 2308.810136]  sysfs_do_create_link_sd+0x122/0x140
[ 2308.810922]  sysfs_create_link+0x5f/0xc0
[ 2308.811614]  device_add+0x703/0x1c50
[ 2308.812278]  ? devlink_add_symlinks+0x970/0x970
[ 2308.813133]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2308.814038]  wiphy_register+0x1da6/0x2850
[ 2308.814765]  ? wiphy_unregister+0xb90/0xb90
[ 2308.815511]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2308.816454]  ieee80211_register_hw+0x23c5/0x38b0
[ 2308.817285]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2308.818099]  ? net_generic+0xdb/0x2b0
[ 2308.818747]  ? lockdep_init_map_type+0x2c7/0x780
[ 2308.819558]  ? memset+0x20/0x50
[ 2308.820117]  ? __hrtimer_init+0x12c/0x270
[ 2308.820851]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2308.821729]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2308.822513]  ? kstrndup+0x7f/0x110
[ 2308.823108]  ? memcpy+0x39/0x60
[ 2308.823677]  hwsim_new_radio_nl+0x991/0x1080
[ 2308.824455]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2308.825339]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2308.826462]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2308.827563]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2308.828404]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2308.829515]  ? cap_capable+0x1cd/0x230
[ 2308.830184]  ? ns_capable+0xe2/0x110
[ 2308.830822]  genl_rcv_msg+0x36a/0x5a0
[ 2308.831472]  ? genl_get_cmd+0x480/0x480
[ 2308.832130]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2308.833013]  ? lock_release+0x680/0x680
[ 2308.833690]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2308.834437]  netlink_rcv_skb+0x14b/0x430
[ 2308.835112]  ? genl_get_cmd+0x480/0x480
[ 2308.835787]  ? netlink_ack+0xab0/0xab0
[ 2308.836473]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2308.837231]  ? is_vmalloc_addr+0x7b/0xb0
[ 2308.837916]  genl_rcv+0x24/0x40
[ 2308.838469]  netlink_unicast+0x6ce/0xa00
[ 2308.839159]  ? netlink_attachskb+0xab0/0xab0
[ 2308.839909]  netlink_sendmsg+0x90f/0xe00
[ 2308.840625]  ? netlink_unicast+0xa00/0xa00
[ 2308.841336]  ? netlink_unicast+0xa00/0xa00
[ 2308.842045]  __sock_sendmsg+0x154/0x190
[ 2308.842717]  ____sys_sendmsg+0x70d/0x870
[ 2308.843407]  ? sock_write_iter+0x3d0/0x3d0
[ 2308.844091]  ? do_recvmmsg+0x6d0/0x6d0
[ 2308.844784]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.845483]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2308.846376]  ___sys_sendmsg+0xf3/0x170
[ 2308.847022]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2308.847791]  ? __fget_files+0x2cf/0x520
[ 2308.848495]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.849185]  ? find_held_lock+0x2c/0x110
[ 2308.849886]  ? __fget_files+0x2f8/0x520
[ 2308.850564]  ? __fget_light+0xea/0x290
[ 2308.851220]  __sys_sendmsg+0xe5/0x1b0
[ 2308.851850]  ? __sys_sendmsg_sock+0x40/0x40
[ 2308.852607]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2308.853407]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2308.854264]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2308.855127]  ? trace_hardirqs_on+0x5b/0x180
[ 2308.855848]  do_syscall_64+0x33/0x40
[ 2308.856491]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2308.857343] RIP: 0033:0x7f7bcd366b19
[ 2308.857958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.861009] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2308.862262] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2308.863458] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2308.864753] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2308.866102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2308.867309] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:35:27 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x7a00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:27 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 10)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:35:27 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c00f0ffff0000000007b342c940"], 0x28}}, 0x0)

04:35:27 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000000f0000000007b342c940"], 0x28}}, 0x0)

04:35:27 executing program 5:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
setxattr$security_ima(&(0x7f0000000240)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0)=@ng={0x4, 0xd, "8f5873735710fc7cb4"}, 0xb, 0x0)
accept4$unix(r0, 0x0, 0x0, 0x800)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000008c0)={{{@in=@multicast1, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@multicast1}, 0x0, @in=@loopback}}, &(0x7f00000001c0)=0xe8)
syz_mount_image$nfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xffffffff7fffffff, 0x4, &(0x7f0000000740)=[{&(0x7f00000004c0)="bf14ecd40a5b19d69cca7b8a9bb32677ec2b33cc250db4f9fe075ba946b6ab9b9841d323ab2902b6dc9232301a31e8a3f741679779e293bec02432f330e0de25a5cb37754f3671dc30bcf093d06ad83bbfd79c0667ebfa3eb64ac7f31b48ba6d89736aaff5219b3bf78e9bc3ed794e6d9c71853d59d750eea1974ed538495c9c02406bd46a89daf8451e959d1486200200ddb34b330202f0778dbdf8b49e8c4e0f61a4f316218a530bf8f191417704993072fa014444209d764d3c245da21b012e1ec221fd9e5d37ffb6b3f8422719ca0d3b48b169bee0584c2d7b5a", 0xdc, 0x6}, {&(0x7f00000005c0)="58054dbe911cc53c652c5a6a12bb993282d3d620e53b2621c6f776a289530edff3a18c87c710cb9fec03fe67c00b1e9e59016021cd66315a3b82cdf4d5e3c3497ef3c90001c728ca441646c5e2ca71f0037652ca9e01536d25ae07353fa8efe352b941372e", 0x65, 0x400}, {0xfffffffffffffffe, 0x0, 0x3}, {&(0x7f0000000640)="3582d2ce24c53a6a75134d30f70c749e24d7bdac883a8e5767a856e0ff3320e4beb7be6d7ce2eb7f072c7636a0234bf995fe77c9cf8029832be5fd9b73ff40f45a775416283331bfccbb991f9f62698eb4ee732579831d555fb4a7774cdb79d9af86a17c4c61d3a30a490047449058db70d90f83808cb10ecaaf8945c8b12d118732cfeb853c0d79e30fd57608c99a2241c03ff16ca9cd025f12f987e0fcd41bdeda240196e7e438eda921e30d1479e789d971ba3487123e47e1a117e2ac3a541bdc28", 0xc3, 0x4}], 0x180008, &(0x7f00000007c0)={[{',--'}, {'security.ima\x00'}, {'{\']'}, {'subj_type'}, {'subj_type'}], [{@uid_gt}, {@obj_user={'obj_user', 0x3d, '\x00'}}, {@subj_type={'subj_type', 0x3d, '+(-@'}}, {@fowner_lt={'fowner<', r1}}]})
utimes(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200))
fcntl$setpipe(r0, 0x407, 0xffffffffffffffab)
syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x80000000, 0x2, &(0x7f00000003c0)=[{&(0x7f00000002c0)="35bc509f73d5e8302df76eb47762a30933e235a88f4e5a9bc46aa3a56b4cb8e0a98c2166871aca51bb4c96bdc3abdeef147f7bf1a40651d94aafc0", 0x3b, 0xffff}, {&(0x7f0000000300)="14108807695d30b5015bcfc75fc24ad9bb39243920f9f850ffa6847fbf10c3c37d70e85e9470afb7adb078f2618ab2e8c3196818576da0700c818d2bb4dd4aaf9df8f402bcb97862b524d172747de0a3cabb4a5ef169e770544c17dd827b76ed7452918c4ea1d3d47ee2762a7d8ec3e845fd9fc70d5e89393556bb1f5a0778a9f6eabd9cb6d22ea38fc7f86c", 0x8c, 0x10200000000000}], 0x800, &(0x7f0000000400)={[{'+!\\-:'}, {}, {'security.ima\x00'}, {'{\']'}], [{@subj_type={'subj_type', 0x3d, 'security.ima\x00'}}]})
fspick(0xffffffffffffffff, &(0x7f0000000480)='./file0\x00', 0x0)
mq_open(&(0x7f0000000840)='.[(,\x00', 0x75e07cfcbfcb48f4, 0x4, &(0x7f0000000880)={0x1, 0x1, 0x8, 0x8000})

04:35:27 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 47)

04:35:27 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xe4ffffff00000000, 0x0, 0x0}, 0x58)

04:35:27 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4084, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2321.938353] FAULT_INJECTION: forcing a failure.
[ 2321.938353] name failslab, interval 1, probability 0, space 0, times 0
[ 2321.939590] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2321.939709] CPU: 1 PID: 32594 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2321.942403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2321.943357] Call Trace:
[ 2321.943672]  dump_stack+0x107/0x167
[ 2321.944092]  should_fail.cold+0x5/0xa
[ 2321.944550]  should_failslab+0x5/0x20
[ 2321.944983]  __kmalloc_track_caller+0x79/0x370
[ 2321.945507]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2321.946029]  kstrndup+0x5f/0x110
[ 2321.946417]  hwsim_new_radio_nl+0x967/0x1080
[ 2321.946921]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2321.947525]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2321.948276]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2321.949049]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2321.949603]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2321.950364]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2321.950962]  ? cap_capable+0x1cd/0x230
[ 2321.951411]  ? ns_capable+0xe2/0x110
[ 2321.951836]  genl_rcv_msg+0x36a/0x5a0
[ 2321.952274]  ? genl_get_cmd+0x480/0x480
[ 2321.952752]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2321.953341]  ? lock_release+0x680/0x680
[ 2321.953798]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2321.954308]  netlink_rcv_skb+0x14b/0x430
[ 2321.954769]  ? genl_get_cmd+0x480/0x480
[ 2321.955225]  ? netlink_ack+0xab0/0xab0
[ 2321.955681]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2321.956210]  ? is_vmalloc_addr+0x7b/0xb0
[ 2321.956703]  genl_rcv+0x24/0x40
[ 2321.957080]  netlink_unicast+0x6ce/0xa00
[ 2321.957546]  ? netlink_attachskb+0xab0/0xab0
[ 2321.958055]  netlink_sendmsg+0x90f/0xe00
[ 2321.958519]  ? netlink_unicast+0xa00/0xa00
[ 2321.959016]  ? netlink_unicast+0xa00/0xa00
[ 2321.959495]  __sock_sendmsg+0x154/0x190
[ 2321.959949]  ____sys_sendmsg+0x70d/0x870
[ 2321.960437]  ? sock_write_iter+0x3d0/0x3d0
[ 2321.960920]  ? do_recvmmsg+0x6d0/0x6d0
[ 2321.961366]  ? mark_held_locks+0x9e/0xe0
[ 2321.961832]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2321.962430]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2321.963045]  ? trace_hardirqs_on+0x5b/0x180
[ 2321.963540]  ___sys_sendmsg+0xf3/0x170
[ 2321.963984]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2321.964526]  ? __fget_files+0x2cf/0x520
[ 2321.964978]  ? lock_downgrade+0x6d0/0x6d0
[ 2321.965454]  ? find_held_lock+0x2c/0x110
[ 2321.965922]  ? __fget_files+0x2f8/0x520
[ 2321.966246] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2321.966386]  ? __fget_light+0xea/0x290
[ 2321.968766]  __sys_sendmsg+0xe5/0x1b0
[ 2321.969212]  ? __sys_sendmsg_sock+0x40/0x40
[ 2321.969714]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2321.970253]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2321.970850]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2321.971430]  ? trace_hardirqs_on+0x5b/0x180
[ 2321.971925]  do_syscall_64+0x33/0x40
[ 2321.972364]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2321.972953] RIP: 0033:0x7f7bcd366b19
[ 2321.973378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2321.973863] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2321.975474] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2321.975486] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2321.975493] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2321.975499] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2321.975505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2321.975512] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2321.997771] loop5: detected capacity change from 0 to 135266304
[ 2322.002088] FAULT_INJECTION: forcing a failure.
[ 2322.002088] name failslab, interval 1, probability 0, space 0, times 0
[ 2322.004757] CPU: 0 PID: 32609 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2322.006318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.008185] Call Trace:
[ 2322.008781]  dump_stack+0x107/0x167
[ 2322.009613]  should_fail.cold+0x5/0xa
[ 2322.010458]  ? create_object.isra.0+0x3a/0xa30
[ 2322.011515]  should_failslab+0x5/0x20
[ 2322.012372]  kmem_cache_alloc+0x5b/0x310
[ 2322.013318]  create_object.isra.0+0x3a/0xa30
[ 2322.014305]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2322.015443]  __kmalloc+0x16e/0x390
[ 2322.016244]  p9pdu_readf+0xadb/0x1d40
[ 2322.017119]  ? pipe_poll+0x21b/0x800
[ 2322.017961]  ? p9pdu_writef+0x100/0x100
[ 2322.018842]  ? p9_fd_poll+0x1e0/0x2c0
[ 2322.019733]  ? p9_fd_create+0x357/0x4a0
[ 2322.020657]  ? p9_conn_create+0x510/0x510
[ 2322.021585]  ? p9_client_create+0x798/0x1230
[ 2322.022573]  ? kfree+0xd7/0x340
[ 2322.023312]  ? do_raw_spin_unlock+0x4f/0x220
[ 2322.024348]  p9_client_create+0xaee/0x1230
[ 2322.025294]  ? p9_client_flush+0x430/0x430
[ 2322.026242]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.027213]  ? lockdep_init_map_type+0x2c7/0x780
[ 2322.028323]  ? __raw_spin_lock_init+0x36/0x110
[ 2322.029356]  v9fs_session_init+0x1dd/0x1680
[ 2322.030308]  ? lock_release+0x680/0x680
[ 2322.031216]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2322.032357]  ? v9fs_show_options+0x690/0x690
[ 2322.033333]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.034294]  ? kasan_unpoison_shadow+0x33/0x50
[ 2322.035290]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2322.036485]  v9fs_mount+0x79/0x8f0
[ 2322.037271]  ? v9fs_write_inode+0x60/0x60
[ 2322.038200]  legacy_get_tree+0x105/0x220
[ 2322.039110]  ? vfs_get_tree+0x81/0x300
[ 2322.039994]  vfs_get_tree+0x8e/0x300
[ 2322.040841]  path_mount+0x1490/0x21e0
[ 2322.041707]  ? strncpy_from_user+0x9e/0x470
[ 2322.042675]  ? finish_automount+0xa90/0xa90
[ 2322.043642]  ? getname_flags.part.0+0x1dd/0x4f0
04:35:27 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c7fffffff0000000007b342c940"], 0x28}}, 0x0)

[ 2322.044695]  ? _copy_from_user+0xfb/0x1b0
[ 2322.045824]  __x64_sys_mount+0x282/0x300
[ 2322.046747]  ? copy_mnt_ns+0xa00/0xa00
[ 2322.047631]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.048837]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2322.050006]  do_syscall_64+0x33/0x40
[ 2322.050842]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2322.052004] RIP: 0033:0x7f67f1462b19
[ 2322.052848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.056976] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2322.058683] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2322.060272] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2322.061887] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2322.063485] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2322.065093] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2322.089788] 9p: Unknown uid 18446744073709551615
[ 2322.103922] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:35:27 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xbce2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:27 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 11)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 2322.125448] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2322.138823] FAULT_INJECTION: forcing a failure.
[ 2322.138823] name failslab, interval 1, probability 0, space 0, times 0
[ 2322.140240] CPU: 1 PID: 32853 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2322.141054] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.141993] Call Trace:
[ 2322.142300]  dump_stack+0x107/0x167
[ 2322.142718]  should_fail.cold+0x5/0xa
[ 2322.143160]  ? create_object.isra.0+0x3a/0xa30
[ 2322.143677]  should_failslab+0x5/0x20
[ 2322.144109]  kmem_cache_alloc+0x5b/0x310
[ 2322.144588]  ? do_syscall_64+0x33/0x40
[ 2322.145033]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2322.145647]  create_object.isra.0+0x3a/0xa30
[ 2322.146152]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2322.146734]  __kmalloc_track_caller+0x177/0x370
[ 2322.147264]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2322.147788]  kstrndup+0x5f/0x110
[ 2322.148179]  hwsim_new_radio_nl+0x967/0x1080
[ 2322.148698]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2322.149318]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2322.149910]  ? check_memory_region+0x198/0x1f0
[ 2322.150439]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2322.150997]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2322.151751]  ? cap_capable+0x1cd/0x230
[ 2322.152204]  ? ns_capable+0xe2/0x110
[ 2322.152651]  genl_rcv_msg+0x36a/0x5a0
[ 2322.153091]  ? genl_get_cmd+0x480/0x480
[ 2322.153544]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2322.154139]  ? lock_release+0x680/0x680
[ 2322.154591]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2322.155107]  netlink_rcv_skb+0x14b/0x430
[ 2322.155573]  ? genl_get_cmd+0x480/0x480
[ 2322.156030]  ? netlink_ack+0xab0/0xab0
[ 2322.156507]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2322.157025]  ? is_vmalloc_addr+0x7b/0xb0
[ 2322.157490]  genl_rcv+0x24/0x40
[ 2322.157863]  netlink_unicast+0x6ce/0xa00
[ 2322.158327]  ? netlink_attachskb+0xab0/0xab0
[ 2322.158832]  netlink_sendmsg+0x90f/0xe00
[ 2322.159303]  ? netlink_unicast+0xa00/0xa00
[ 2322.159788]  ? netlink_unicast+0xa00/0xa00
[ 2322.160273]  __sock_sendmsg+0x154/0x190
[ 2322.160748]  ____sys_sendmsg+0x70d/0x870
[ 2322.161218]  ? sock_write_iter+0x3d0/0x3d0
[ 2322.161701]  ? do_recvmmsg+0x6d0/0x6d0
[ 2322.162150]  ? lock_downgrade+0x6d0/0x6d0
[ 2322.162620]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2322.163234]  ___sys_sendmsg+0xf3/0x170
[ 2322.163687]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2322.164214]  ? __fget_files+0x2cf/0x520
[ 2322.164686]  ? lock_downgrade+0x6d0/0x6d0
[ 2322.165166]  ? find_held_lock+0x2c/0x110
[ 2322.165640]  ? __fget_files+0x2f8/0x520
[ 2322.166105]  ? __fget_light+0xea/0x290
[ 2322.166556]  __sys_sendmsg+0xe5/0x1b0
[ 2322.166989]  ? __sys_sendmsg_sock+0x40/0x40
[ 2322.167487]  ? ksys_write+0x1a4/0x260
[ 2322.167941]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.168558]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2322.169151]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.169648]  do_syscall_64+0x33/0x40
[ 2322.170078]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2322.170661] RIP: 0033:0x7f7bcd366b19
[ 2322.171091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.173202] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2322.174070] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2322.174881] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2322.175693] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2322.176533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2322.177347] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:35:27 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000480000000007b342c940"], 0x28}}, 0x0)

04:35:27 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xed02000000000000, 0x0, 0x0}, 0x58)

04:35:27 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x41ed, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:27 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 48)

04:35:27 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c9effffff0000000007b342c940"], 0x28}}, 0x0)

[ 2322.225240] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2322.234253] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2322.242680] FAULT_INJECTION: forcing a failure.
[ 2322.242680] name failslab, interval 1, probability 0, space 0, times 0
[ 2322.243908] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2322.244107] CPU: 1 PID: 32970 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2322.246700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.247657] Call Trace:
[ 2322.247962]  dump_stack+0x107/0x167
[ 2322.248413]  should_fail.cold+0x5/0xa
[ 2322.248862]  should_failslab+0x5/0x20
[ 2322.249305]  __kmalloc_track_caller+0x79/0x370
[ 2322.249825]  ? kasprintf+0xbb/0xf0
[ 2322.250231]  ? __delete_object+0xb3/0x100
[ 2322.250705]  kvasprintf+0xb5/0x150
[ 2322.250723] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2322.251116]  ? bust_spinlocks+0xe0/0xe0
[ 2322.251128]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.251145]  kasprintf+0xbb/0xf0
[ 2322.254455]  ? kvasprintf_const+0x1a0/0x1a0
[ 2322.254948]  ? kmem_cache_free+0x249/0x2d0
[ 2322.255438]  ? p9_client_create+0xbfa/0x1230
[ 2322.255936]  p9_client_create+0xc1b/0x1230
[ 2322.256446]  ? p9_client_flush+0x430/0x430
[ 2322.256927]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.257419]  ? lockdep_init_map_type+0x2c7/0x780
[ 2322.257954]  ? __raw_spin_lock_init+0x36/0x110
[ 2322.258482]  v9fs_session_init+0x1dd/0x1680
[ 2322.258973]  ? lock_release+0x680/0x680
[ 2322.259427]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2322.259974]  ? v9fs_show_options+0x690/0x690
[ 2322.260498]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.260985]  ? kasan_unpoison_shadow+0x33/0x50
[ 2322.261504]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2322.262088]  v9fs_mount+0x79/0x8f0
[ 2322.262496]  ? v9fs_write_inode+0x60/0x60
[ 2322.262971]  legacy_get_tree+0x105/0x220
[ 2322.263436]  vfs_get_tree+0x8e/0x300
[ 2322.263858]  path_mount+0x1490/0x21e0
[ 2322.264301]  ? strncpy_from_user+0x9e/0x470
[ 2322.264816]  ? finish_automount+0xa90/0xa90
[ 2322.265320]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2322.265848]  ? _copy_from_user+0xfb/0x1b0
[ 2322.266326]  __x64_sys_mount+0x282/0x300
[ 2322.266788]  ? copy_mnt_ns+0xa00/0xa00
[ 2322.267236]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.267831]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2322.268437]  do_syscall_64+0x33/0x40
[ 2322.268859]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2322.269443] RIP: 0033:0x7f67f1462b19
[ 2322.269870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.271967] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2322.272855] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2322.273658] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2322.274466] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2322.275278] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2322.276087] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:35:27 executing program 5:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x11400, 0x0, 0x0, 0x0, 0x4, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x7fff)
r1 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8023c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff8101b915}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000000)="14fb1f7be5b6ec89236ae38c6baf1c062ac33d58f9d4ce0cf85c52328e4cf797fde3e7a8b8982b2e632ba3cfcf0f98da4fe9aeef72ff13658ac85e1da12b2727c6190b316f9630f5c68b9974e38117095fa42518dd", 0x55}, {&(0x7f0000000080)="6c05ede71a996f6f937b1674de58e9e3c24a831a1e716a9ec9a4ecfc84e901a2481e2f5c78ab7391db94f38c24ab60dd20c32203f1e8b08c8b71b7643c79dfcd1caedbfe180e4e3a68a367e7f05698d2b2c547db3686dc6df2ecac1eaa7c23e0c0badaad41335cba693ff2946576ac339db7a0a25e7c620eb56a36a7342b7e4e95f4b62368921ba656a8c0727013244b5c2c9d068368e84695e6ad303a2628dc957aefcbda0071ec5b257e9274d397e35082f722842b5fd5044df706573d", 0xbe}], 0x2)

04:35:27 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x58)

[ 2322.305111] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2322.307027] CPU: 0 PID: 32853 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2322.308599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.310480] Call Trace:
[ 2322.311095]  dump_stack+0x107/0x167
[ 2322.311952]  sysfs_warn_dup.cold+0x1c/0x29
[ 2322.312935]  sysfs_do_create_link_sd+0x122/0x140
[ 2322.314000]  sysfs_create_link+0x5f/0xc0
[ 2322.314921]  device_add+0x703/0x1c50
[ 2322.315775]  ? devlink_add_symlinks+0x970/0x970
[ 2322.316832]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2322.318025]  wiphy_register+0x1da6/0x2850
[ 2322.318970]  ? wiphy_unregister+0xb90/0xb90
[ 2322.319955]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2322.321158]  ieee80211_register_hw+0x23c5/0x38b0
[ 2322.322238]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2322.323322]  ? net_generic+0xdb/0x2b0
[ 2322.324217]  ? lockdep_init_map_type+0x2c7/0x780
[ 2322.325288]  ? memset+0x20/0x50
[ 2322.326029]  ? __hrtimer_init+0x12c/0x270
[ 2322.326960]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2322.328096]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2322.329160]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2322.330180]  ? memcpy+0x39/0x60
[ 2322.330930]  hwsim_new_radio_nl+0x991/0x1080
[ 2322.331915]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2322.333164]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2322.334330]  ? check_memory_region+0x198/0x1f0
[ 2322.335364]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2322.336459]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2322.337938]  ? cap_capable+0x1cd/0x230
[ 2322.338832]  ? ns_capable+0xe2/0x110
[ 2322.339683]  genl_rcv_msg+0x36a/0x5a0
[ 2322.340566]  ? genl_get_cmd+0x480/0x480
[ 2322.341475]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2322.342635]  ? lock_release+0x680/0x680
[ 2322.343507]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2322.344520]  netlink_rcv_skb+0x14b/0x430
[ 2322.345420]  ? genl_get_cmd+0x480/0x480
[ 2322.346315]  ? netlink_ack+0xab0/0xab0
04:35:27 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58)

[ 2322.347186]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2322.348438]  ? is_vmalloc_addr+0x7b/0xb0
[ 2322.349365]  genl_rcv+0x24/0x40
[ 2322.350110]  netlink_unicast+0x6ce/0xa00
[ 2322.351010]  ? netlink_attachskb+0xab0/0xab0
[ 2322.352017]  netlink_sendmsg+0x90f/0xe00
[ 2322.352953]  ? netlink_unicast+0xa00/0xa00
[ 2322.353918]  ? netlink_unicast+0xa00/0xa00
[ 2322.354866]  __sock_sendmsg+0x154/0x190
[ 2322.355768]  ____sys_sendmsg+0x70d/0x870
[ 2322.356699]  ? sock_write_iter+0x3d0/0x3d0
[ 2322.357651]  ? do_recvmmsg+0x6d0/0x6d0
[ 2322.358537]  ? lock_downgrade+0x6d0/0x6d0
[ 2322.359475]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2322.360692]  ___sys_sendmsg+0xf3/0x170
[ 2322.361570]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2322.362607]  ? __fget_files+0x2cf/0x520
[ 2322.363492]  ? lock_downgrade+0x6d0/0x6d0
[ 2322.364433]  ? find_held_lock+0x2c/0x110
[ 2322.365346]  ? __fget_files+0x2f8/0x520
[ 2322.366226]  ? __fget_light+0xea/0x290
[ 2322.367111]  __sys_sendmsg+0xe5/0x1b0
[ 2322.367966]  ? __sys_sendmsg_sock+0x40/0x40
[ 2322.368941]  ? ksys_write+0x1a4/0x260
[ 2322.369817]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.370998]  ? syscall_enter_from_user_mode+0x1d/0x50
04:35:27 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020701000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
openat(r0, &(0x7f0000000000)='./file0\x00', 0x20000, 0xf9d54ea606470c06)

[ 2322.372167]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.373207]  do_syscall_64+0x33/0x40
[ 2322.374044]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2322.375205] RIP: 0033:0x7f7bcd366b19
[ 2322.376037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.380191] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2322.381913] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2322.383517] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2322.385113] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2322.386681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2322.388328] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:35:27 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cf0ffffff0000000007b342c940"], 0x28}}, 0x0)

[ 2322.425873] loop5: detected capacity change from 0 to 33559552
[ 2322.444124] FAT-fs (loop5): bogus sectors per cluster 7
[ 2322.444813] FAT-fs (loop5): Can't find a valid FAT filesystem
04:35:27 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xbde2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:27 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000004c0000000007b342c940"], 0x28}}, 0x0)

[ 2322.463949] loop5: detected capacity change from 0 to 33559552
[ 2322.466911] FAT-fs (loop5): bogus sectors per cluster 7
[ 2322.467571] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 2322.531090] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:35:40 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"]) (fail_nth: 49)

04:35:40 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 12)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:35:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000080007b342c940"], 0x28}}, 0x0)

[ 2335.270071] __nla_validate_parse: 3 callbacks suppressed
[ 2335.270084] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:35:40 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x7da}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000400)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x200143, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000000, 0x40010, r0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000003c0)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=@nfc_llcp={0x27, 0x1, 0x1, 0x6, 0xe0, 0x68, "1bc0bb3d7866e7817184cef9a80b760b52c806f8b4c2b44dc500dd93d8d71c6b84c2d40a9a4e5ba98fbb6e9092227dcaa0890e8e870cafa8f0c6c6cab251c6", 0x3e}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000200)="0abed55f17b5e9c81a4bc957592f3661170a4be531100af105f48eea2165f0071e56c1f4400b68f6f5836d5629a34d05378398fe2ed0b24c31df569ca143aeb53a3a20f3ca7aa45dab8ac43e93b9aef95f941636e53e990966e18a37dfb16ce6f69c1031588026cf959127e87ffd8290c2c652e6c615ebb513e9f34fccca59ae0365e8efae4850becd547417aa174161ad8446bdb2d97748a24db7f942579892283fa33d1854976b1e143157d5f5e23de4c0173581cf4e3b75a8b2a357618fffafc41cf64d1453d25f61524e2f86160c0cfbeb6d077c802d0e73e0a7b4004b88da74a23d0d28393c1352", 0xea}, {&(0x7f0000000440)="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", 0x1000}, {&(0x7f0000000300)="1630daf798dd37c2609276d1a886b73a1543bde1ab2f6d9c18b214c64367a04b61d670ffc8fd6215173f9ad28bd424a7faf7cbee31953aa87bfd2734bb74b21b465cf08c381de751e03bfc45c90140d2b7c0c0de9194420c3c371488e71b5737f6c255", 0x63}], 0x3, &(0x7f0000000180)=[{0x30, 0x102, 0x7f, "01162e80d6c36788ed1b81feea29b2b0e1678018bfc8b248adf8f2def2"}], 0x30}, 0x0, 0x2400c800}, 0xe9)

04:35:40 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58)

04:35:40 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4800, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2335.288548] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:35:40 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000680000000007b342c940"], 0x28}}, 0x0)

04:35:40 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xbee2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2335.294896] FAULT_INJECTION: forcing a failure.
[ 2335.294896] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2335.296621] loop5: detected capacity change from 0 to 3584
[ 2335.298096] CPU: 0 PID: 33475 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2335.299965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2335.301835] Call Trace:
[ 2335.302434]  dump_stack+0x107/0x167
[ 2335.302874] FAT-fs (loop5): Directory bread(block 7) failed
[ 2335.303254]  should_fail.cold+0x5/0xa
[ 2335.303280]  __alloc_pages_nodemask+0x182/0x600
[ 2335.305867]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2335.305892] FAT-fs (loop5): Directory bread(block 8) failed
[ 2335.307213]  ? lock_chain_count+0x20/0x20
[ 2335.307236]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2335.307262]  alloc_pages_current+0x187/0x280
[ 2335.307997] FAT-fs (loop5): Directory bread(block 9) failed
[ 2335.308884]  kmalloc_order+0x35/0x160
[ 2335.308906]  kmalloc_order_trace+0x14/0xa0
[ 2335.311413] FAT-fs (loop5): Directory bread(block 10) failed
[ 2335.311800]  wiphy_new_nm+0x6f3/0x1e00
[ 2335.311825]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2335.312297] FAT-fs (loop5): Directory bread(block 11) failed
[ 2335.313238]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.313256]  ? __local_bh_enable_ip+0x9d/0x100
[ 2335.313275]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.318349] FAULT_INJECTION: forcing a failure.
[ 2335.318349] name failslab, interval 1, probability 0, space 0, times 0
[ 2335.319329]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2335.319354]  ? mark_held_locks+0x9e/0xe0
[ 2335.324330]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.325308]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2335.326353]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2335.327381]  ? memcpy+0x39/0x60
[ 2335.328125]  hwsim_new_radio_nl+0x991/0x1080
[ 2335.329129]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2335.330297]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2335.331778]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2335.333272]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2335.334364]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2335.335848]  ? cap_capable+0x1cd/0x230
[ 2335.336746]  ? ns_capable+0xe2/0x110
[ 2335.337595]  genl_rcv_msg+0x36a/0x5a0
[ 2335.338461]  ? genl_get_cmd+0x480/0x480
[ 2335.339359]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2335.340536]  ? lock_release+0x680/0x680
[ 2335.341432]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2335.342453]  netlink_rcv_skb+0x14b/0x430
[ 2335.343366]  ? genl_get_cmd+0x480/0x480
[ 2335.344266]  ? netlink_ack+0xab0/0xab0
[ 2335.345157]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2335.346184]  ? is_vmalloc_addr+0x7b/0xb0
[ 2335.347116]  genl_rcv+0x24/0x40
[ 2335.347859]  netlink_unicast+0x6ce/0xa00
[ 2335.348784]  ? netlink_attachskb+0xab0/0xab0
[ 2335.349780]  netlink_sendmsg+0x90f/0xe00
[ 2335.350699]  ? netlink_unicast+0xa00/0xa00
[ 2335.351660]  ? netlink_unicast+0xa00/0xa00
[ 2335.352637]  __sock_sendmsg+0x154/0x190
[ 2335.353535]  ____sys_sendmsg+0x70d/0x870
[ 2335.354460]  ? sock_write_iter+0x3d0/0x3d0
[ 2335.355407]  ? do_recvmmsg+0x6d0/0x6d0
[ 2335.356285]  ? lock_downgrade+0x6d0/0x6d0
[ 2335.357241]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2335.358439]  ___sys_sendmsg+0xf3/0x170
[ 2335.359323]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2335.360371]  ? __fget_files+0x2cf/0x520
[ 2335.361271]  ? lock_downgrade+0x6d0/0x6d0
[ 2335.362203]  ? find_held_lock+0x2c/0x110
[ 2335.363130]  ? __fget_files+0x2f8/0x520
[ 2335.364037]  ? __fget_light+0xea/0x290
[ 2335.364927]  __sys_sendmsg+0xe5/0x1b0
[ 2335.365790]  ? __sys_sendmsg_sock+0x40/0x40
[ 2335.366767]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2335.367842]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.369037]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2335.370209]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.371192]  do_syscall_64+0x33/0x40
[ 2335.372028]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2335.373187] RIP: 0033:0x7f7bcd366b19
[ 2335.374023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2335.378184] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2335.379900] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2335.381517] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2335.383130] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2335.384754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2335.386362] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2335.387998] CPU: 1 PID: 33465 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2335.388868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2335.389880] Call Trace:
[ 2335.390248]  dump_stack+0x107/0x167
[ 2335.390688]  should_fail.cold+0x5/0xa
[ 2335.391146]  ? create_object.isra.0+0x3a/0xa30
[ 2335.391696]  should_failslab+0x5/0x20
[ 2335.392155]  kmem_cache_alloc+0x5b/0x310
[ 2335.392664]  ? vsnprintf+0x4ba/0x1600
[ 2335.393122]  create_object.isra.0+0x3a/0xa30
[ 2335.393644]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2335.394257]  __kmalloc_track_caller+0x177/0x370
[ 2335.394808]  ? kasprintf+0xbb/0xf0
[ 2335.395241]  kvasprintf+0xb5/0x150
[ 2335.395674]  ? bust_spinlocks+0xe0/0xe0
[ 2335.396168]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.396831]  kasprintf+0xbb/0xf0
[ 2335.397244]  ? kvasprintf_const+0x1a0/0x1a0
[ 2335.397774]  ? kmem_cache_free+0x249/0x2d0
[ 2335.398297]  ? p9_client_create+0xbfa/0x1230
[ 2335.398821]  p9_client_create+0xc1b/0x1230
[ 2335.399336]  ? p9_client_flush+0x430/0x430
[ 2335.399840]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.400356]  ? lockdep_init_map_type+0x2c7/0x780
[ 2335.400928]  ? __raw_spin_lock_init+0x36/0x110
[ 2335.401487]  v9fs_session_init+0x1dd/0x1680
[ 2335.401999]  ? lock_release+0x680/0x680
[ 2335.402474]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2335.403052]  ? v9fs_show_options+0x690/0x690
[ 2335.403576]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.404090]  ? kasan_unpoison_shadow+0x33/0x50
[ 2335.404650]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2335.405255]  v9fs_mount+0x79/0x8f0
[ 2335.405681]  ? v9fs_write_inode+0x60/0x60
[ 2335.406186]  legacy_get_tree+0x105/0x220
[ 2335.406671]  vfs_get_tree+0x8e/0x300
[ 2335.407114]  path_mount+0x1490/0x21e0
[ 2335.407568]  ? strncpy_from_user+0x9e/0x470
[ 2335.408079]  ? finish_automount+0xa90/0xa90
[ 2335.408613]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2335.409169]  ? _copy_from_user+0xfb/0x1b0
[ 2335.409667]  __x64_sys_mount+0x282/0x300
[ 2335.410150]  ? copy_mnt_ns+0xa00/0xa00
[ 2335.410619]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.411245]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2335.411857]  do_syscall_64+0x33/0x40
[ 2335.412302]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2335.412927] RIP: 0033:0x7f67f1462b19
[ 2335.413369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2335.415547] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2335.416466] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2335.417327] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2335.418178] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2335.419018] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2335.419858] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2335.421514] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2335.422159] FAT-fs (loop5): Directory bread(block 7) failed
[ 2335.423205] 9p: Unknown uid 18446744073709551615
[ 2335.436703] FAT-fs (loop5): Directory bread(block 8) failed
[ 2335.438105] FAT-fs (loop5): Directory bread(block 9) failed
[ 2335.448757] FAT-fs (loop5): Directory bread(block 10) failed
[ 2335.450268] FAT-fs (loop5): Directory bread(block 11) failed
[ 2335.481101] FAULT_INJECTION: forcing a failure.
[ 2335.481101] name failslab, interval 1, probability 0, space 0, times 0
[ 2335.482588] CPU: 1 PID: 33567 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2335.483388] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2335.484343] Call Trace:
[ 2335.484669]  dump_stack+0x107/0x167
[ 2335.485091]  should_fail.cold+0x5/0xa
[ 2335.485536]  ? create_object.isra.0+0x3a/0xa30
[ 2335.486058]  should_failslab+0x5/0x20
[ 2335.486498]  kmem_cache_alloc+0x5b/0x310
[ 2335.486969]  create_object.isra.0+0x3a/0xa30
[ 2335.487472]  ? kasan_unpoison_shadow+0x33/0x50
[ 2335.487999]  kmalloc_order+0xfe/0x160
[ 2335.488455]  kmalloc_order_trace+0x14/0xa0
[ 2335.488957]  wiphy_new_nm+0x6f3/0x1e00
[ 2335.489408]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2335.489938]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.490540]  ? __local_bh_enable_ip+0x9d/0x100
[ 2335.491065]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.491566]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2335.492130]  ? mark_held_locks+0x9e/0xe0
[ 2335.492614]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.493108]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2335.493643]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2335.494170]  ? memcpy+0x39/0x60
[ 2335.494549]  hwsim_new_radio_nl+0x991/0x1080
[ 2335.495061]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2335.495666]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2335.496439]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2335.497193]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2335.497753]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2335.498510]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2335.499127]  ? cap_capable+0x1cd/0x230
[ 2335.499579]  ? ns_capable+0xe2/0x110
[ 2335.500007]  genl_rcv_msg+0x36a/0x5a0
[ 2335.500460]  ? genl_get_cmd+0x480/0x480
[ 2335.500922]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2335.501512]  ? lock_release+0x680/0x680
[ 2335.501965]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2335.502476]  netlink_rcv_skb+0x14b/0x430
[ 2335.502941]  ? genl_get_cmd+0x480/0x480
[ 2335.503395]  ? netlink_ack+0xab0/0xab0
[ 2335.503844]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2335.504365]  ? is_vmalloc_addr+0x7b/0xb0
[ 2335.504847]  genl_rcv+0x24/0x40
[ 2335.505227]  netlink_unicast+0x6ce/0xa00
[ 2335.505694]  ? netlink_attachskb+0xab0/0xab0
[ 2335.506200]  netlink_sendmsg+0x90f/0xe00
[ 2335.506666]  ? netlink_unicast+0xa00/0xa00
[ 2335.507156]  ? netlink_unicast+0xa00/0xa00
[ 2335.507645]  __sock_sendmsg+0x154/0x190
[ 2335.508096]  ____sys_sendmsg+0x70d/0x870
[ 2335.508574]  ? sock_write_iter+0x3d0/0x3d0
[ 2335.509057]  ? do_recvmmsg+0x6d0/0x6d0
[ 2335.509502]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.510100]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2335.510718]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2335.511351]  ___sys_sendmsg+0xf3/0x170
[ 2335.511799]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2335.512327]  ? __fget_files+0x2cf/0x520
[ 2335.512798]  ? lock_downgrade+0x6d0/0x6d0
[ 2335.513275]  ? find_held_lock+0x2c/0x110
[ 2335.513751]  ? __fget_files+0x2f8/0x520
[ 2335.514210]  ? __fget_light+0xea/0x290
[ 2335.514660]  __sys_sendmsg+0xe5/0x1b0
[ 2335.515097]  ? __sys_sendmsg_sock+0x40/0x40
[ 2335.515592]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2335.516137]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.516764]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2335.517352]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.517853]  do_syscall_64+0x33/0x40
[ 2335.518277]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2335.518879] RIP: 0033:0x7f7bcd366b19
[ 2335.519310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2335.521464] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2335.522337] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2335.523165] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2335.523995] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2335.524865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2335.525692] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2335.532261] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:35:40 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 50)

04:35:40 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 13)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:35:40 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000006c0000000007b342c940"], 0x28}}, 0x0)

04:35:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cfffffffffffff00007b342c940"], 0x28}}, 0x0)

[ 2335.536581] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:35:40 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2ed}, 0x58)

04:35:40 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000740000000007b342c940"], 0x28}}, 0x0)

[ 2335.563963] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2335.565548] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2335.583382] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2335.584971] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:35:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000107b342c940"], 0x28}}, 0x0)

[ 2335.621809] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:35:40 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c0000007a0000000007b342c940"], 0x28}}, 0x0)

[ 2335.624122] FAULT_INJECTION: forcing a failure.
[ 2335.624122] name failslab, interval 1, probability 0, space 0, times 0
[ 2335.627122] CPU: 0 PID: 33770 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2335.628703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2335.630585] Call Trace:
[ 2335.631197]  dump_stack+0x107/0x167
[ 2335.632030]  should_fail.cold+0x5/0xa
[ 2335.632912]  should_failslab+0x5/0x20
[ 2335.633793]  __kmalloc_track_caller+0x79/0x370
[ 2335.634824]  ? kstrdup_const+0x53/0x80
[ 2335.635703]  ? kasprintf+0xbb/0xf0
[ 2335.636528]  kstrdup+0x36/0x70
[ 2335.637253]  kstrdup_const+0x53/0x80
[ 2335.638114]  kmem_cache_create_usercopy+0x12f/0x2f0
[ 2335.639252]  p9_client_create+0xc6a/0x1230
[ 2335.640229]  ? p9_client_flush+0x430/0x430
[ 2335.641191]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.642178]  ? lockdep_init_map_type+0x2c7/0x780
[ 2335.643273]  ? __raw_spin_lock_init+0x36/0x110
[ 2335.644318]  v9fs_session_init+0x1dd/0x1680
[ 2335.645306]  ? lock_release+0x680/0x680
[ 2335.646213]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2335.647318]  ? v9fs_show_options+0x690/0x690
[ 2335.648346]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.649334]  ? kasan_unpoison_shadow+0x33/0x50
[ 2335.650370]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2335.651513]  v9fs_mount+0x79/0x8f0
[ 2335.652321]  ? v9fs_write_inode+0x60/0x60
[ 2335.653260]  legacy_get_tree+0x105/0x220
[ 2335.654195]  vfs_get_tree+0x8e/0x300
[ 2335.655044]  path_mount+0x1490/0x21e0
[ 2335.655921]  ? strncpy_from_user+0x9e/0x470
[ 2335.656913]  ? finish_automount+0xa90/0xa90
[ 2335.657907]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2335.658960]  ? _copy_from_user+0xfb/0x1b0
[ 2335.659904]  __x64_sys_mount+0x282/0x300
[ 2335.660838]  ? copy_mnt_ns+0xa00/0xa00
[ 2335.661722]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.662906]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2335.664083]  do_syscall_64+0x33/0x40
[ 2335.664931]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2335.666088] RIP: 0033:0x7f67f1462b19
[ 2335.666933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2335.671102] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2335.672836] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2335.674459] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2335.676075] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2335.677703] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2335.679329] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2335.681045] kmem_cache_create(9p-fcall-cache-412) failed with error -12
[ 2335.681373] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2335.682617] CPU: 0 PID: 33770 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2335.682627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2335.682633] Call Trace:
[ 2335.682652]  dump_stack+0x107/0x167
[ 2335.682676]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2335.682710]  p9_client_create+0xc6a/0x1230
[ 2335.690674]  ? p9_client_flush+0x430/0x430
[ 2335.691626]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.692606]  ? lockdep_init_map_type+0x2c7/0x780
[ 2335.693679]  ? __raw_spin_lock_init+0x36/0x110
[ 2335.694720]  v9fs_session_init+0x1dd/0x1680
[ 2335.695701]  ? lock_release+0x680/0x680
[ 2335.696615]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2335.697706]  ? v9fs_show_options+0x690/0x690
[ 2335.698726]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.699698]  ? kasan_unpoison_shadow+0x33/0x50
[ 2335.700738]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2335.701896]  v9fs_mount+0x79/0x8f0
[ 2335.702699]  ? v9fs_write_inode+0x60/0x60
[ 2335.703655]  legacy_get_tree+0x105/0x220
[ 2335.704590]  vfs_get_tree+0x8e/0x300
[ 2335.705426]  path_mount+0x1490/0x21e0
[ 2335.706295]  ? strncpy_from_user+0x9e/0x470
[ 2335.707280]  ? finish_automount+0xa90/0xa90
[ 2335.708257]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2335.709327]  ? _copy_from_user+0xfb/0x1b0
[ 2335.710292]  __x64_sys_mount+0x282/0x300
[ 2335.711205]  ? copy_mnt_ns+0xa00/0xa00
[ 2335.712087]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.713277]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2335.714445]  do_syscall_64+0x33/0x40
[ 2335.715308]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2335.716469] RIP: 0033:0x7f67f1462b19
[ 2335.717330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2335.721492] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2335.723236] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2335.724857] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2335.726466] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2335.728079] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2335.729701] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2335.731323] CPU: 1 PID: 33567 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2335.732125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2335.733104] Call Trace:
[ 2335.733429]  dump_stack+0x107/0x167
[ 2335.733849]  sysfs_warn_dup.cold+0x1c/0x29
[ 2335.734333]  sysfs_do_create_link_sd+0x122/0x140
[ 2335.734874]  sysfs_create_link+0x5f/0xc0
[ 2335.735340]  device_add+0x703/0x1c50
[ 2335.735769]  ? devlink_add_symlinks+0x970/0x970
[ 2335.736310]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2335.736933]  wiphy_register+0x1da6/0x2850
[ 2335.737411]  ? wiphy_unregister+0xb90/0xb90
[ 2335.737907]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2335.738535]  ? ieee80211_register_hw+0x19ae/0x38b0
[ 2335.739098]  ieee80211_register_hw+0x23c5/0x38b0
[ 2335.739659]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2335.740208]  ? net_generic+0xdb/0x2b0
[ 2335.740667]  ? lockdep_init_map_type+0x2c7/0x780
[ 2335.741207]  ? memset+0x20/0x50
[ 2335.741597]  ? __hrtimer_init+0x12c/0x270
[ 2335.742070]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2335.742654]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2335.743182]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2335.743708]  ? memcpy+0x39/0x60
[ 2335.744090]  hwsim_new_radio_nl+0x991/0x1080
[ 2335.744613]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2335.745214]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2335.745966]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2335.746709]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2335.747262]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2335.748011]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2335.748646]  ? cap_capable+0x1cd/0x230
[ 2335.749095]  ? ns_capable+0xe2/0x110
[ 2335.749521]  genl_rcv_msg+0x36a/0x5a0
[ 2335.749957]  ? genl_get_cmd+0x480/0x480
[ 2335.750408]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2335.750996]  ? lock_release+0x680/0x680
[ 2335.751454]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2335.751968]  netlink_rcv_skb+0x14b/0x430
[ 2335.752443]  ? genl_get_cmd+0x480/0x480
[ 2335.752917]  ? netlink_ack+0xab0/0xab0
[ 2335.753368]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2335.753887]  ? is_vmalloc_addr+0x7b/0xb0
[ 2335.754355]  genl_rcv+0x24/0x40
[ 2335.754735]  netlink_unicast+0x6ce/0xa00
[ 2335.755200]  ? netlink_attachskb+0xab0/0xab0
[ 2335.755708]  netlink_sendmsg+0x90f/0xe00
[ 2335.756172]  ? netlink_unicast+0xa00/0xa00
[ 2335.756686]  ? netlink_unicast+0xa00/0xa00
[ 2335.757172]  __sock_sendmsg+0x154/0x190
[ 2335.757623]  ____sys_sendmsg+0x70d/0x870
[ 2335.758090]  ? sock_write_iter+0x3d0/0x3d0
[ 2335.758574]  ? do_recvmmsg+0x6d0/0x6d0
[ 2335.759017]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.759615]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2335.760234]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2335.760874]  ___sys_sendmsg+0xf3/0x170
[ 2335.761327]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2335.761856]  ? __fget_files+0x2cf/0x520
[ 2335.762312]  ? lock_downgrade+0x6d0/0x6d0
[ 2335.762786]  ? find_held_lock+0x2c/0x110
[ 2335.763254]  ? __fget_files+0x2f8/0x520
[ 2335.763712]  ? __fget_light+0xea/0x290
[ 2335.764164]  __sys_sendmsg+0xe5/0x1b0
[ 2335.764614]  ? __sys_sendmsg_sock+0x40/0x40
[ 2335.765114]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2335.765654]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2335.766259]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2335.766843]  ? trace_hardirqs_on+0x5b/0x180
[ 2335.767335]  do_syscall_64+0x33/0x40
[ 2335.767759]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2335.768345] RIP: 0033:0x7f7bcd366b19
[ 2335.768792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2335.770934] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2335.771796] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2335.772637] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2335.773481] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2335.774307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2335.775121] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2335.778563] 9p: Unknown uid 18446744073709551615
04:35:41 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58)

04:35:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000207b342c940"], 0x28}}, 0x0)

04:35:41 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x4c00, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:55 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x57e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:55 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xbfe2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:35:55 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 51)

04:35:55 executing program 5:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000400)=ANY=[@ANYRES16, @ANYBLOB="90d50b0761728e20b05ec474feae14aa9ab2a22c3a5064a286cc3cee1ef607d15d248fbc247421409a710c3b9086d9e587c46b432dc3233214a0003a6f8aa5ec2056b934456c427dc2b508b51f2312e4fb524689808bb1"])
chdir(&(0x7f00000000c0)='./file0\x00')
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r2, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f00000004c0)=0x28)
sendfile(r0, r2, &(0x7f0000000180)=0x865, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x10, r1, 0x8000000)
r4 = syz_io_uring_setup(0x804ebb, &(0x7f0000000340)={0x0, 0x1b9b, 0x10}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r4, 0x0)
syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x2, 0x6, 0x0, 0x9}, 0x8001)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000240)=@phonet={0x23, 0x6}, 0x0, 0x0, 0x1, {0x0, r9}}, 0xff)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r10, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f00000004c0)=0x28)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={&(0x7f0000000e00)={0x514, 0xa, 0xa, 0x201, 0x70bd2a, 0x25dfdbfd, {0x7, 0x0, 0x3}, [@nested={0x88, 0x82, 0x0, 0x1, [@typed={0x4, 0x75}, @typed={0x8, 0x54, 0x0, 0x0, @pid}, @generic="7388dcda588b79b093bddd54ae299a636596423d7ba0f080e94d708c71f57d6edcdf5a3def91437b6d503a8e560645122c1b8ed9b89485760ea8d1009226c230d003c4623fae7e60fe1b2e50f1922ff97d46e29302d2262e5bad4c8bc224dd6528058a01423efbb534649149eecbd96f", @typed={0x8, 0x6d, 0x0, 0x0, @fd=r4}]}, @typed={0x4, 0x24}, @typed={0xc, 0x56, 0x0, 0x0, @u64=0x8000}, @typed={0x14, 0x5b, 0x0, 0x0, @ipv6=@loopback}, @nested={0x115, 0x1f, 0x0, 0x1, [@typed={0x4, 0x48}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x23}}, @generic="7ed18e837491be2ad5f9c075a292d0a0d3797a9b7c89d608ab5fd26856f121de9f7fc0c238b6ac0f3701acc36fcac6e06025fc63d436fbcd6d1a0100282c4b112dbcc1a974dd8d316d5b23065922472456d74e3fa6c10888f6bd161f3f490318edbe4a843511a8983b5ab10e9062fd16885b0c5679e14b3343de824d9f7865ccf17105751ef5c6b662ceda4a3a1325d40d8d2ce9529fbac0f6190de0791fe1c3c5c61fe3fdf5201fddd9d74f3b3c5de8d16e6393e483627865e34c3d2775a6424fd0a7431868a9e38d9c853ea1767b995644b0b46326befacc05c6d5218d32c5efae5f5757bb296415c9d00ca3fddc55d5714c8bf14e50731e"]}, @nested={0x33b, 0x7e, 0x0, 0x1, [@typed={0xb0, 0x2e, 0x0, 0x0, @binary="bdc6c44838bdc900f8f203c7e43c2f1e1116d25176e52df9d9fc31ff7e6f345a12f6745c259dc1336985950aedc722e912c3137c2de0fc1f0852bec9740933e2fa807eea5fb5b29c2ff9cd7177b3325a7dfab3c398f79d8f879f24cdf7adef8c5b1cfbf1b9ed817a0e565af341c5e6215f9e9f1d007f2d72818dc9350bdb8d7b2c2f862be7ddac5648ef3c6ec20568dafcce3526691ba3d425f4ec46e267a19c480433681f03d48d8bc807aa"}, @typed={0xc, 0x3e, 0x0, 0x0, @u64=0x9}, @typed={0xf6, 0x18ac, 0x0, 0x0, @binary="09c381bc0de445517dd487b8da6b3d119b95017fd99cfd8e1d1f5b58a2a4bef9003833e3a85806d343dc855e8a6a788bf5ba83bc77d1a68518ace52cd09b7ee8d6e40f60d1a2825fa8c972b9611643700e0f6d9874761eed95fa9e0458f90c0abb602811d3664aa87677b3afc2337eb0bab4fb2fe5a6dcb65050698773ab48e15774ccf297cd648ed124223a82531bf4aaee83742f94688514760459b62ae2ebc58208a14b1e778e4cb7cdd248df8d3c337c47be7819dda95b3c53fa2034a81caf18e304135379dbad368acda5cb0de6fb00826565b6a8ff442f5362bf5e0517e301f31cb9ec0cfdf2e32c94092a58a485b0"}, @generic="ff03f165f36b086a02ae442b77bdd852f9e518f570adc6a5752729e76ef6cb46a1bd94989e71a919892eb80723bda15a962f65757236731de41494dff4eb0906a3489447a5c249459eece09c5c75cb53a25d9e76eeba107d144535c0e0252299c5289b43807342c91d301121c74d7a1e17b59184f1", @typed={0x8, 0x45, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x3d, 0x0, 0x0, @fd=r10}, @generic="9c1d77e3b48d0a3cffa1785f9fc41e852d4e5962dcfe22ddc9fd49643c298e897263d96b3be5a870def161c6c3cb001afc8c344ed5ff75f56a087c1fad5c072b8920ab3b575db6a99b942d548e3894015f0b7553148e1ef8739d92de5c863b37373af0a490219614be7347b71902a5c7c1a9bf45d22815e351d2355b3f594a15b0a6db3b98949885e05ff54e9a168f11f06445b6aca9e46118a483da0fad5509c4f81806f5d2f4441d35b50e6fe5b91c257490c1d9e50860c30e6b78b98ff3d5f9be9b3dda22c8eb02c29ce2361a757d7c01e6655f5ca987fad72a30fffa0d182cbfb20eb0b488e3dcd10412b824218fa721ca8cd2fa42b99f0af6eccb89"]}]}, 0x514}, 0x1, 0x0, 0x0, 0x1}, 0x4040001)
write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfdef)
ftruncate(r1, 0x2)
write$tun(r1, &(0x7f0000000000)={@val, @val, @x25}, 0x11)

04:35:55 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cffffff9e0000000007b342c940"], 0x28}}, 0x0)

04:35:55 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000307b342c940"], 0x28}}, 0x0)

04:35:55 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 14)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

[ 2350.323645] __nla_validate_parse: 5 callbacks suppressed
[ 2350.323660] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:35:55 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58)

[ 2350.328151] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2350.335172] FAULT_INJECTION: forcing a failure.
[ 2350.335172] name failslab, interval 1, probability 0, space 0, times 0
[ 2350.337728] CPU: 1 PID: 33926 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2350.339102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2350.340763] Call Trace:
[ 2350.341299]  dump_stack+0x107/0x167
[ 2350.342034]  should_fail.cold+0x5/0xa
[ 2350.342802]  should_failslab+0x5/0x20
[ 2350.343569]  __kmalloc_track_caller+0x79/0x370
[ 2350.344472]  ? kstrdup_const+0x53/0x80
[ 2350.345260]  kstrdup+0x36/0x70
[ 2350.345893]  kstrdup_const+0x53/0x80
[ 2350.346634]  kvasprintf_const+0x10c/0x1a0
[ 2350.346695] FAULT_INJECTION: forcing a failure.
[ 2350.346695] name failslab, interval 1, probability 0, space 0, times 0
[ 2350.347467]  kobject_set_name_vargs+0x56/0x150
[ 2350.347488]  dev_set_name+0xbb/0xf0
[ 2350.347516]  ? device_initialize+0x620/0x620
[ 2350.352991]  ? trace_event_raw_event_rpcgss_svc_authenticate+0x3c0/0x3c0
[ 2350.354351]  wiphy_new_nm+0x17d5/0x1e00
[ 2350.355142]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2350.356068]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2350.357113]  ? __local_bh_enable_ip+0x9d/0x100
[ 2350.358009]  ? trace_hardirqs_on+0x5b/0x180
[ 2350.358867]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2350.359852]  ? mark_held_locks+0x9e/0xe0
[ 2350.360668]  ? trace_hardirqs_on+0x5b/0x180
[ 2350.361530]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2350.362453]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2350.363356]  ? memcpy+0x39/0x60
[ 2350.364018]  hwsim_new_radio_nl+0x991/0x1080
[ 2350.364913]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2350.365958]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2350.367269]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2350.368579]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2350.369535]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2350.370842]  ? cap_capable+0x1cd/0x230
[ 2350.371619]  ? ns_capable+0xe2/0x110
[ 2350.372367]  genl_rcv_msg+0x36a/0x5a0
[ 2350.373156]  ? genl_get_cmd+0x480/0x480
[ 2350.373938]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2350.374959]  ? lock_release+0x680/0x680
[ 2350.375746]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2350.376632]  netlink_rcv_skb+0x14b/0x430
[ 2350.377434]  ? genl_get_cmd+0x480/0x480
[ 2350.378218]  ? netlink_ack+0xab0/0xab0
[ 2350.378986]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2350.379880]  ? is_vmalloc_addr+0x7b/0xb0
[ 2350.380681]  genl_rcv+0x24/0x40
[ 2350.381329]  netlink_unicast+0x6ce/0xa00
[ 2350.382125]  ? netlink_attachskb+0xab0/0xab0
[ 2350.382995]  netlink_sendmsg+0x90f/0xe00
[ 2350.383795]  ? netlink_unicast+0xa00/0xa00
[ 2350.384650]  ? netlink_unicast+0xa00/0xa00
[ 2350.385475]  __sock_sendmsg+0x154/0x190
[ 2350.386254]  ____sys_sendmsg+0x70d/0x870
[ 2350.387055]  ? sock_write_iter+0x3d0/0x3d0
[ 2350.387886]  ? do_recvmmsg+0x6d0/0x6d0
[ 2350.388664]  ? lock_downgrade+0x6d0/0x6d0
[ 2350.389483]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2350.390516]  ___sys_sendmsg+0xf3/0x170
[ 2350.391274]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2350.392174]  ? __fget_files+0x2cf/0x520
[ 2350.392962]  ? lock_downgrade+0x6d0/0x6d0
[ 2350.393769]  ? find_held_lock+0x2c/0x110
[ 2350.394561]  ? __fget_files+0x2f8/0x520
[ 2350.395334]  ? __fget_light+0xea/0x290
[ 2350.396094]  __sys_sendmsg+0xe5/0x1b0
[ 2350.396834]  ? __sys_sendmsg_sock+0x40/0x40
[ 2350.397669]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2350.398581]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2350.399595]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2350.400590]  ? trace_hardirqs_on+0x5b/0x180
[ 2350.401433]  do_syscall_64+0x33/0x40
[ 2350.402148]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2350.403141] RIP: 0033:0x7f7bcd366b19
[ 2350.403856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2350.407412] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2350.408892] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2350.410283] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2350.411660] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2350.413051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2350.414428] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2350.415820] CPU: 0 PID: 33920 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2350.417414] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2350.419284] Call Trace:
[ 2350.419884]  dump_stack+0x107/0x167
[ 2350.420711]  should_fail.cold+0x5/0xa
[ 2350.421572]  ? create_object.isra.0+0x3a/0xa30
[ 2350.422596]  should_failslab+0x5/0x20
[ 2350.423447]  kmem_cache_alloc+0x5b/0x310
[ 2350.424380]  ? lock_acquire+0x197/0x470
[ 2350.425306]  create_object.isra.0+0x3a/0xa30
[ 2350.426293]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2350.427435]  __kmalloc_track_caller+0x177/0x370
[ 2350.427807] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2350.428474]  ? kstrdup_const+0x53/0x80
[ 2350.428489]  ? kasprintf+0xbb/0xf0
[ 2350.428511]  kstrdup+0x36/0x70
[ 2350.428532]  kstrdup_const+0x53/0x80
[ 2350.433331]  kmem_cache_create_usercopy+0x12f/0x2f0
[ 2350.434460]  p9_client_create+0xc6a/0x1230
[ 2350.435421]  ? p9_client_flush+0x430/0x430
[ 2350.436375]  ? trace_hardirqs_on+0x5b/0x180
[ 2350.437351]  ? lockdep_init_map_type+0x2c7/0x780
[ 2350.438415]  ? __raw_spin_lock_init+0x36/0x110
[ 2350.439449]  v9fs_session_init+0x1dd/0x1680
[ 2350.440423]  ? lock_release+0x680/0x680
[ 2350.441340]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2350.442416]  ? v9fs_show_options+0x690/0x690
[ 2350.443411]  ? trace_hardirqs_on+0x5b/0x180
[ 2350.444378]  ? kasan_unpoison_shadow+0x33/0x50
[ 2350.445412]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2350.446559]  v9fs_mount+0x79/0x8f0
[ 2350.447359]  ? v9fs_write_inode+0x60/0x60
[ 2350.448292]  legacy_get_tree+0x105/0x220
[ 2350.449216]  vfs_get_tree+0x8e/0x300
[ 2350.450051]  path_mount+0x1490/0x21e0
[ 2350.450917]  ? strncpy_from_user+0x9e/0x470
[ 2350.451884]  ? finish_automount+0xa90/0xa90
[ 2350.452869]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2350.453908]  ? _copy_from_user+0xfb/0x1b0
[ 2350.454845]  __x64_sys_mount+0x282/0x300
[ 2350.455752]  ? copy_mnt_ns+0xa00/0xa00
[ 2350.456632]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2350.457807]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2350.458972]  do_syscall_64+0x33/0x40
[ 2350.459806]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2350.460970] RIP: 0033:0x7f67f1462b19
[ 2350.461803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2350.465960] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2350.467670] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2350.469277] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2350.470870] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2350.472478] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2350.474087] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2350.486755] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2350.496006] loop5: detected capacity change from 0 to 33559552
[ 2350.509097] FAT-fs (loop5): Unrecognized mount option "ÿÿ�ÕarŽ °^Ätþ®ªš²¢" or missing value
[ 2350.643953] 9p: Unknown uid 18446744073709551615
04:36:09 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 15)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:36:09 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cfffffff00000000007b342c940"], 0x28}}, 0x0)

04:36:09 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 52)

04:36:09 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc0e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000407b342c940"], 0x28}}, 0x0)

04:36:09 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58)

04:36:09 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x58e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:09 executing program 5:
r0 = syz_io_uring_setup(0x3875, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
r4 = dup2(r0, r2)
syz_io_uring_submit(r3, r1, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x6000, @fd_index}, 0x80000001)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x100010, r4, 0x8000000)
syz_io_uring_submit(r5, r1, &(0x7f0000002400)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r2, 0x0, &(0x7f00000023c0)={&(0x7f0000000180)=@isdn={0x22, 0x1, 0xf7, 0xfd, 0x2}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000200)="69b98d4a0525a760778ab6e6fbae54db37c846c5c6ac116c7c4add0ad6df5ef04da195379e6762503afdfdad4ce938c74a7f95f4eeb86cdd7e1bbf507a19fe50d10c476b916a3f7d1cc4d2a015b525096905773744b30eb6232a0572d645d9399b3b4cd6a7cd25f97f6889cab8704143232b73b57e4a9c0b5b60d23e61dfbf55e6fac01953fd24ce2dca799c71720373f4cfefdbfb", 0x95}, {&(0x7f0000000300)="0f1b4e4a34f13094bcb186acc2bde172b26e30faf11e8d9955270b6c563430c4fff4387c5365c660a2088ddb61adcc0a6eded0412f484e4c4e50d510e3904d527c19a53c0a6f1f683f5f8608722ae2ad837ccaa4c3818ebdf490dbec2abbfcef4a0f68976e", 0x65}], 0x2, &(0x7f0000002480)=ANY=[@ANYBLOB="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"], 0x2030}, 0x0, 0x4000, 0x1}, 0xffff)
io_uring_enter(r4, 0x0, 0x1d42, 0x3, &(0x7f0000000140)={[0x7ec1c00000000000]}, 0x8)
io_uring_enter(r4, 0x457f, 0x0, 0x0, 0x0, 0x0)

[ 2363.813252] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2363.814853] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2363.824956] FAULT_INJECTION: forcing a failure.
[ 2363.824956] name failslab, interval 1, probability 0, space 0, times 0
[ 2363.826277] CPU: 1 PID: 34251 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2363.827063] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2363.828007] Call Trace:
[ 2363.828317]  dump_stack+0x107/0x167
[ 2363.828744]  should_fail.cold+0x5/0xa
[ 2363.829183]  ? create_object.isra.0+0x3a/0xa30
[ 2363.829704]  should_failslab+0x5/0x20
[ 2363.830144]  kmem_cache_alloc+0x5b/0x310
[ 2363.830610]  create_object.isra.0+0x3a/0xa30
[ 2363.831112]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2363.831699]  __kmalloc_track_caller+0x177/0x370
[ 2363.832229]  ? kstrdup_const+0x53/0x80
[ 2363.832699]  kstrdup+0x36/0x70
[ 2363.833065]  kstrdup_const+0x53/0x80
[ 2363.833492]  kvasprintf_const+0x10c/0x1a0
[ 2363.833966]  kobject_set_name_vargs+0x56/0x150
[ 2363.834495]  dev_set_name+0xbb/0xf0
[ 2363.834911]  ? device_initialize+0x620/0x620
[ 2363.835423]  ? trace_event_raw_event_rpcgss_svc_authenticate+0x3c0/0x3c0
[ 2363.836201]  wiphy_new_nm+0x17d5/0x1e00
[ 2363.836670]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2363.837211]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2363.837812]  ? __local_bh_enable_ip+0x9d/0x100
[ 2363.838331]  ? trace_hardirqs_on+0x5b/0x180
[ 2363.838830]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2363.839388]  ? mark_held_locks+0x9e/0xe0
[ 2363.839852]  ? trace_hardirqs_on+0x5b/0x180
[ 2363.840349]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2363.840889]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2363.841410]  ? memcpy+0x39/0x60
[ 2363.841799]  hwsim_new_radio_nl+0x991/0x1080
[ 2363.842300]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2363.842895]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2363.843642]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2363.844387]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2363.844946]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2363.845699]  ? cap_capable+0x1cd/0x230
[ 2363.846153]  ? ns_capable+0xe2/0x110
[ 2363.846583]  genl_rcv_msg+0x36a/0x5a0
[ 2363.847020]  ? genl_get_cmd+0x480/0x480
[ 2363.847476]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2363.848069]  ? lock_release+0x680/0x680
[ 2363.848524]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2363.849050]  netlink_rcv_skb+0x14b/0x430
[ 2363.849515]  ? genl_get_cmd+0x480/0x480
[ 2363.849970]  ? netlink_ack+0xab0/0xab0
[ 2363.850417]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2363.850938]  ? is_vmalloc_addr+0x7b/0xb0
[ 2363.851399]  genl_rcv+0x24/0x40
[ 2363.851777]  netlink_unicast+0x6ce/0xa00
[ 2363.852245]  ? netlink_attachskb+0xab0/0xab0
[ 2363.852760]  netlink_sendmsg+0x90f/0xe00
[ 2363.853235]  ? netlink_unicast+0xa00/0xa00
[ 2363.853726]  ? netlink_unicast+0xa00/0xa00
[ 2363.854219]  __sock_sendmsg+0x154/0x190
[ 2363.854671]  ____sys_sendmsg+0x70d/0x870
[ 2363.855134]  ? sock_write_iter+0x3d0/0x3d0
[ 2363.855615]  ? do_recvmmsg+0x6d0/0x6d0
[ 2363.856058]  ? lock_downgrade+0x6d0/0x6d0
[ 2363.856538]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2363.857153]  ___sys_sendmsg+0xf3/0x170
[ 2363.857601]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2363.858136]  ? __fget_files+0x2cf/0x520
[ 2363.858591]  ? lock_downgrade+0x6d0/0x6d0
[ 2363.859075]  ? find_held_lock+0x2c/0x110
[ 2363.859544]  ? __fget_files+0x2f8/0x520
[ 2363.860004]  ? __fget_light+0xea/0x290
[ 2363.860457]  __sys_sendmsg+0xe5/0x1b0
[ 2363.860901]  ? __sys_sendmsg_sock+0x40/0x40
[ 2363.861389]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2363.861929]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2363.862534]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2363.863118]  ? trace_hardirqs_on+0x5b/0x180
04:36:09 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000fd0000000007b342c940"], 0x28}}, 0x0)

[ 2363.863609]  do_syscall_64+0x33/0x40
[ 2363.864209]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2363.864817] RIP: 0033:0x7f7bcd366b19
[ 2363.865247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2363.867209] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2363.868087] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2363.868910] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2363.869680] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2363.870500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2363.871269] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2363.884709] FAULT_INJECTION: forcing a failure.
[ 2363.884709] name failslab, interval 1, probability 0, space 0, times 0
[ 2363.887307] CPU: 0 PID: 34247 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2363.888853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2363.890679] Call Trace:
[ 2363.891262]  dump_stack+0x107/0x167
[ 2363.892065]  should_fail.cold+0x5/0xa
[ 2363.892909]  ? create_object.isra.0+0x3a/0xa30
[ 2363.893916]  should_failslab+0x5/0x20
[ 2363.894751]  kmem_cache_alloc+0x5b/0x310
[ 2363.895639]  ? lock_acquire+0x197/0x470
[ 2363.896517]  create_object.isra.0+0x3a/0xa30
[ 2363.897491]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2363.898612]  __kmalloc_track_caller+0x177/0x370
[ 2363.899631]  ? kstrdup_const+0x53/0x80
[ 2363.900479]  ? kasprintf+0xbb/0xf0
[ 2363.901278]  kstrdup+0x36/0x70
[ 2363.901986]  kstrdup_const+0x53/0x80
[ 2363.902813]  kmem_cache_create_usercopy+0x12f/0x2f0
[ 2363.903927]  p9_client_create+0xc6a/0x1230
[ 2363.904928]  ? p9_client_flush+0x430/0x430
[ 2363.905868]  ? trace_hardirqs_on+0x5b/0x180
[ 2363.906827]  ? lockdep_init_map_type+0x2c7/0x780
[ 2363.907880]  ? __raw_spin_lock_init+0x36/0x110
[ 2363.908908]  v9fs_session_init+0x1dd/0x1680
[ 2363.909864]  ? lock_release+0x680/0x680
[ 2363.910753]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2363.911820]  ? v9fs_show_options+0x690/0x690
[ 2363.912810]  ? trace_hardirqs_on+0x5b/0x180
[ 2363.913767]  ? kasan_unpoison_shadow+0x33/0x50
[ 2363.914781]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2363.915911]  v9fs_mount+0x79/0x8f0
[ 2363.916711]  ? v9fs_write_inode+0x60/0x60
[ 2363.917632]  legacy_get_tree+0x105/0x220
[ 2363.918533]  vfs_get_tree+0x8e/0x300
[ 2363.919368]  path_mount+0x1490/0x21e0
[ 2363.920226]  ? strncpy_from_user+0x9e/0x470
[ 2363.921198]  ? finish_automount+0xa90/0xa90
[ 2363.922164]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2363.923206]  ? _copy_from_user+0xfb/0x1b0
[ 2363.924142]  __x64_sys_mount+0x282/0x300
[ 2363.925056]  ? copy_mnt_ns+0xa00/0xa00
[ 2363.925929]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2363.927107]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2363.928264]  do_syscall_64+0x33/0x40
[ 2363.929106]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2363.930254] RIP: 0033:0x7f67f1462b19
[ 2363.931090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2363.935226] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2363.936934] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2363.938537] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2363.940151] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2363.941774] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2363.943397] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:36:09 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x59e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:09 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58)

04:36:09 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x42a9}, 0x58)

[ 2363.997184] 9p: Unknown uid 18446744073709551615
[ 2363.999956] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2364.004990] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2364.007869] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2364.015443] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:36:09 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 53)

[ 2364.047364] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2364.049789] CPU: 0 PID: 34251 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2364.051360] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2364.053248] Call Trace:
[ 2364.053846]  dump_stack+0x107/0x167
[ 2364.054687]  sysfs_warn_dup.cold+0x1c/0x29
[ 2364.055646]  sysfs_do_create_link_sd+0x122/0x140
[ 2364.056736]  sysfs_create_link+0x5f/0xc0
[ 2364.057661]  device_add+0x703/0x1c50
[ 2364.058506]  ? devlink_add_symlinks+0x970/0x970
[ 2364.059567]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2364.060773]  wiphy_register+0x1da6/0x2850
[ 2364.061709]  ? wiphy_unregister+0xb90/0xb90
[ 2364.062708]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2364.063607] FAULT_INJECTION: forcing a failure.
[ 2364.063607] name failslab, interval 1, probability 0, space 0, times 0
[ 2364.063894]  ieee80211_register_hw+0x23c5/0x38b0
[ 2364.066210]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2364.067291]  ? net_generic+0xdb/0x2b0
[ 2364.068158]  ? lockdep_init_map_type+0x2c7/0x780
[ 2364.069244]  ? memset+0x20/0x50
[ 2364.069993]  ? __hrtimer_init+0x12c/0x270
[ 2364.070937]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2364.072083]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2364.073146]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2364.074174]  ? memcpy+0x39/0x60
[ 2364.074922]  hwsim_new_radio_nl+0x991/0x1080
[ 2364.075918]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2364.077111]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2364.078590]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2364.080068]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2364.081170]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2364.082658]  ? cap_capable+0x1cd/0x230
[ 2364.083546]  ? ns_capable+0xe2/0x110
[ 2364.084381]  genl_rcv_msg+0x36a/0x5a0
[ 2364.085261]  ? genl_get_cmd+0x480/0x480
[ 2364.086151]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2364.087319]  ? lock_release+0x680/0x680
[ 2364.088212]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2364.089242]  netlink_rcv_skb+0x14b/0x430
[ 2364.090166]  ? genl_get_cmd+0x480/0x480
[ 2364.091061]  ? netlink_ack+0xab0/0xab0
[ 2364.091947]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2364.092987]  ? is_vmalloc_addr+0x7b/0xb0
[ 2364.093911]  genl_rcv+0x24/0x40
[ 2364.094656]  netlink_unicast+0x6ce/0xa00
[ 2364.095575]  ? netlink_attachskb+0xab0/0xab0
[ 2364.096580]  netlink_sendmsg+0x90f/0xe00
[ 2364.097520]  ? netlink_unicast+0xa00/0xa00
[ 2364.098484]  ? netlink_unicast+0xa00/0xa00
[ 2364.099436]  __sock_sendmsg+0x154/0x190
[ 2364.100332]  ____sys_sendmsg+0x70d/0x870
[ 2364.101264]  ? sock_write_iter+0x3d0/0x3d0
[ 2364.102213]  ? do_recvmmsg+0x6d0/0x6d0
[ 2364.103097]  ? lock_downgrade+0x6d0/0x6d0
[ 2364.104037]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2364.105233]  ___sys_sendmsg+0xf3/0x170
[ 2364.106110]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2364.107144]  ? __fget_files+0x2cf/0x520
[ 2364.108037]  ? lock_downgrade+0x6d0/0x6d0
[ 2364.108981]  ? find_held_lock+0x2c/0x110
[ 2364.109902]  ? __fget_files+0x2f8/0x520
[ 2364.110810]  ? __fget_light+0xea/0x290
[ 2364.111693]  __sys_sendmsg+0xe5/0x1b0
[ 2364.112554]  ? __sys_sendmsg_sock+0x40/0x40
[ 2364.113541]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2364.114607]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2364.115786]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2364.116950]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.117924]  do_syscall_64+0x33/0x40
[ 2364.118758]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2364.119910] RIP: 0033:0x7f7bcd366b19
[ 2364.120755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2364.124902] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2364.126617] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2364.128234] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2364.129856] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2364.131467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2364.133086] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2364.134713] CPU: 1 PID: 34680 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2364.135519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2364.136429] Call Trace:
[ 2364.136745]  dump_stack+0x107/0x167
[ 2364.137166]  should_fail.cold+0x5/0xa
[ 2364.137618]  ? __kmem_cache_create+0x10e/0x520
[ 2364.138144]  should_failslab+0x5/0x20
04:36:09 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5ae9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2364.138579]  kmem_cache_alloc_node+0x55/0x330
[ 2364.139229]  __kmem_cache_create+0x10e/0x520
[ 2364.139757]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2364.140302]  p9_client_create+0xc6a/0x1230
[ 2364.140793]  ? p9_client_flush+0x430/0x430
[ 2364.141279]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.141774]  ? lockdep_init_map_type+0x2c7/0x780
[ 2364.142317]  ? __raw_spin_lock_init+0x36/0x110
[ 2364.142817]  v9fs_session_init+0x1dd/0x1680
[ 2364.143310]  ? lock_release+0x680/0x680
[ 2364.143766]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2364.144312]  ? v9fs_show_options+0x690/0x690
[ 2364.144801]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.145299]  ? kasan_unpoison_shadow+0x33/0x50
[ 2364.145815]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2364.146364]  v9fs_mount+0x79/0x8f0
[ 2364.146769]  ? v9fs_write_inode+0x60/0x60
[ 2364.147215]  legacy_get_tree+0x105/0x220
[ 2364.147679]  vfs_get_tree+0x8e/0x300
[ 2364.148104]  path_mount+0x1490/0x21e0
[ 2364.148521]  ? strncpy_from_user+0x9e/0x470
[ 2364.149017]  ? finish_automount+0xa90/0xa90
[ 2364.149484]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2364.150013]  ? _copy_from_user+0xfb/0x1b0
[ 2364.150466]  __x64_sys_mount+0x282/0x300
[ 2364.150924]  ? copy_mnt_ns+0xa00/0xa00
[ 2364.151373]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2364.151937]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2364.152524]  do_syscall_64+0x33/0x40
[ 2364.152950]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2364.153531] RIP: 0033:0x7f67f1462b19
[ 2364.153954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2364.156049] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2364.156916] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2364.157723] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2364.158529] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2364.159338] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2364.160145] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2364.161048] kmem_cache_create(9p-fcall-cache-415) failed with error -22
[ 2364.161839] CPU: 1 PID: 34680 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2364.162595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2364.163481] Call Trace:
[ 2364.163762]  dump_stack+0x107/0x167
[ 2364.164157]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2364.164732]  p9_client_create+0xc6a/0x1230
[ 2364.165189]  ? p9_client_flush+0x430/0x430
[ 2364.165641]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.166103]  ? lockdep_init_map_type+0x2c7/0x780
[ 2364.166608]  ? __raw_spin_lock_init+0x36/0x110
[ 2364.167097]  v9fs_session_init+0x1dd/0x1680
[ 2364.167557]  ? lock_release+0x680/0x680
[ 2364.168017]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2364.168533]  ? v9fs_show_options+0x690/0x690
[ 2364.169053]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.169518]  ? kasan_unpoison_shadow+0x33/0x50
[ 2364.170003]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2364.170584]  v9fs_mount+0x79/0x8f0
[ 2364.170968]  ? v9fs_write_inode+0x60/0x60
[ 2364.171438]  legacy_get_tree+0x105/0x220
[ 2364.171873]  vfs_get_tree+0x8e/0x300
[ 2364.172298]  path_mount+0x1490/0x21e0
[ 2364.172716]  ? strncpy_from_user+0x9e/0x470
[ 2364.173175]  ? finish_automount+0xa90/0xa90
[ 2364.173634]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2364.174127]  ? _copy_from_user+0xfb/0x1b0
[ 2364.174571]  __x64_sys_mount+0x282/0x300
[ 2364.175002]  ? copy_mnt_ns+0xa00/0xa00
[ 2364.175421]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2364.175977]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2364.176566]  do_syscall_64+0x33/0x40
[ 2364.176976]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2364.177560] RIP: 0033:0x7f67f1462b19
[ 2364.177979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2364.180072] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2364.180948] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2364.181759] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2364.182569] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2364.183382] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
04:36:09 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c00f0ffff0000000007b342c940"], 0x28}}, 0x0)

04:36:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000507b342c940"], 0x28}}, 0x0)

[ 2364.184192] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2364.247953] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2364.250069] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2364.253954] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2364.256643] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:36:09 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 16)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:36:09 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xa942}, 0x58)

04:36:09 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc1e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:09 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5be9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:36:09 executing program 5:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk', 0x22902, 0x0)
copy_file_range(r0, 0x0, r1, 0x0, 0x4, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
write$P9_RREADLINK(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="1000000017616c7831000040000000b8"], 0x10)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='fdinfo\x00')
syz_genetlink_get_family_id$ipvs(0x0, r3)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000001f9ff0018000000", @ANYRES32=r3, @ANYBLOB="0013000000002769d85b3acd19eaed3ec200002e2f660506c16b9d41d27c5141996caf2654adbcb08e8eae71b4ff4bfa75168ba547fa9e97b530e54436c89b451ad226df3353fc13c4fc144a268d0b6eb87515b491c4cb5365035832964a13247dd6b3b04a0c17dc13b2aea72d4432a13b042ce47316fe70068d09f0dd54ab3541f1c811800b44ad2c686c124cc9254eac130373551cb9c3cc7f33697ea62e6c534303b9c9617ff1f038a8de"])
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000140))
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000300)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd, 0x1, 0x0, 0x808, 0x0, 0x1}, 0x39)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
creat(&(0x7f0000000000)='./file1/file0\x00', 0x21)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@cache_loose}, {@cache_none}]}})

[ 2364.314874] FAULT_INJECTION: forcing a failure.
[ 2364.314874] name failslab, interval 1, probability 0, space 0, times 0
[ 2364.316206] CPU: 1 PID: 34799 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2364.316999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2364.317946] Call Trace:
[ 2364.318254]  dump_stack+0x107/0x167
[ 2364.318675]  should_fail.cold+0x5/0xa
[ 2364.319114]  should_failslab+0x5/0x20
04:36:09 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xed02}, 0x58)

04:36:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000607b342c940"], 0x28}}, 0x0)

04:36:09 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c7fffffff0000000007b342c940"], 0x28}}, 0x0)

[ 2364.319553]  __kmalloc_track_caller+0x79/0x370
[ 2364.320204]  ? kobject_set_name_vargs+0x8f/0x150
[ 2364.320752]  ? kstrdup+0x56/0x70
[ 2364.321140]  kstrdup+0x36/0x70
[ 2364.321510]  kobject_set_name_vargs+0x8f/0x150
[ 2364.322015]  dev_set_name+0xbb/0xf0
[ 2364.322432]  ? device_initialize+0x620/0x620
[ 2364.322930]  ? trace_event_raw_event_rpcgss_svc_authenticate+0x3c0/0x3c0
[ 2364.323704]  wiphy_new_nm+0x17d5/0x1e00
[ 2364.324165]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2364.324705]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2364.325301]  ? __local_bh_enable_ip+0x9d/0x100
[ 2364.325803]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.326300]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2364.326862]  ? mark_held_locks+0x9e/0xe0
[ 2364.327325]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.327819]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2364.328324]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2364.328851]  ? memcpy+0x39/0x60
[ 2364.329213]  hwsim_new_radio_nl+0x991/0x1080
[ 2364.329719]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2364.330313]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2364.331062]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2364.331770]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2364.332325]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2364.333039]  ? cap_capable+0x1cd/0x230
[ 2364.333465]  ? ns_capable+0xe2/0x110
[ 2364.333867]  genl_rcv_msg+0x36a/0x5a0
[ 2364.334280]  ? genl_get_cmd+0x480/0x480
[ 2364.334707]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2364.335301]  ? lock_release+0x680/0x680
[ 2364.335731]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2364.336249]  netlink_rcv_skb+0x14b/0x430
[ 2364.336720]  ? genl_get_cmd+0x480/0x480
[ 2364.337175]  ? netlink_ack+0xab0/0xab0
[ 2364.337625]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2364.338149]  ? is_vmalloc_addr+0x7b/0xb0
[ 2364.338613]  genl_rcv+0x24/0x40
[ 2364.338991]  netlink_unicast+0x6ce/0xa00
[ 2364.339459]  ? netlink_attachskb+0xab0/0xab0
[ 2364.339969]  netlink_sendmsg+0x90f/0xe00
[ 2364.340412]  ? netlink_unicast+0xa00/0xa00
[ 2364.340914]  ? netlink_unicast+0xa00/0xa00
[ 2364.341375]  __sock_sendmsg+0x154/0x190
[ 2364.341833]  ____sys_sendmsg+0x70d/0x870
[ 2364.342295]  ? sock_write_iter+0x3d0/0x3d0
[ 2364.342774]  ? do_recvmmsg+0x6d0/0x6d0
[ 2364.343198]  ? lock_downgrade+0x6d0/0x6d0
[ 2364.343676]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2364.344248]  ___sys_sendmsg+0xf3/0x170
[ 2364.344706]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2364.345228]  ? __fget_files+0x2cf/0x520
[ 2364.345684]  ? lock_downgrade+0x6d0/0x6d0
[ 2364.346155]  ? find_held_lock+0x2c/0x110
[ 2364.346624]  ? __fget_files+0x2f8/0x520
[ 2364.347083]  ? __fget_light+0xea/0x290
[ 2364.347537]  __sys_sendmsg+0xe5/0x1b0
[ 2364.347978]  ? __sys_sendmsg_sock+0x40/0x40
[ 2364.348472]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2364.349022]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2364.349621]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2364.350208]  ? trace_hardirqs_on+0x5b/0x180
[ 2364.350708]  do_syscall_64+0x33/0x40
[ 2364.351133]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2364.351721] RIP: 0033:0x7f7bcd366b19
[ 2364.352148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2364.354247] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2364.355112] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2364.355929] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2364.356748] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2364.357560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2364.358374] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:36:09 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58)

04:36:09 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5ce9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000707b342c940"], 0x28}}, 0x0)

04:36:09 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c9effffff0000000007b342c940"], 0x28}}, 0x0)

[ 2364.598250] 9p: Unknown uid 18446744073709551615
04:36:23 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 54)

04:36:23 executing program 5:
lstat(0x0, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000080), 0x5, 0x647f88eb6bbdcc9f)
r1 = openat(r0, &(0x7f0000000400)='./file1\x00', 0xc0002, 0x84)
chown(&(0x7f00000000c0)='./file1\x00', 0x0, 0xee00)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
io_setup(0x3, &(0x7f0000000000)=<r3=>0x0)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
r5 = socket$nl_generic(0x10, 0x3, 0x10)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240)='devpts\x00', 0x103080d, &(0x7f0000000280)=':\x00')
r6 = syz_io_uring_complete(0x0)
r7 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000003c0), 0xc0, 0x0)
ioctl$EXT4_IOC_GETSTATE(r1, 0x40046629, &(0x7f00000004c0))
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r6, 0xc018937d, &(0x7f0000000440)={{0x1, 0x1, 0x18, r7, {0x7f}}, './file1\x00'})
pwrite64(r7, &(0x7f0000000500)="8763166be0d037d79899a29b007b313c53042c6e0ab1986abb2597ef319b4842be67a23b18aa894d2274c78bbe50e351421005e8e594f9af76f89922d3d995cd8a7566dbcf983bc1c86230953ee1c746d005925f75b8a328b65022e2772dc2acb165a8dd3e2c9900f4936fd324232750d6068632312ce4b3655f71ee627c1746c6b6f43d3d5fee90e3408ae5bd91b2235c89424078e43f839128dcff260ae0146a5e8c0ae17d477643cfd64677bc2a561e3d843161bec795412d1f825984b2a3f3d675b6b654048fe4c248625354bbace29188f1ace2ae5a4cc4cd026c22d6669717d772bc17361988d40728198d7bbca1432132b3", 0xf5, 0x5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', &(0x7f0000000180), 0x400)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x40042409, 0x1)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200527c0c00008a0e000000000000865604215f59c723cc7c468995d1dfebcd6c7e2e52c8048cc0b6888900000000c22008950c3e6b637eb94e65dee66648fa61aeb37767b33f2b65abb4abbafaa48a10066015e48f9c8793ac642adbe53f031bb97f4b515804de91c333a2b7f45e09d5805f8e70564cf05d37ca7a0e39328eea2043c47775b448b50000005b832fe67e5bf81aeb9998d5d9ba"], 0x1c}}, 0x0)

04:36:23 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5de9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:23 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc2e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:23 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58)

04:36:23 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 17)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:36:23 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000907b342c940"], 0x28}}, 0x0)

04:36:23 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cf0ffffff0000000007b342c940"], 0x28}}, 0x0)

[ 2378.537394] __nla_validate_parse: 8 callbacks suppressed
[ 2378.537406] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2378.542722] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2378.550696] FAULT_INJECTION: forcing a failure.
[ 2378.550696] name failslab, interval 1, probability 0, space 0, times 0
[ 2378.553679] CPU: 0 PID: 35237 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2378.555337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2378.557444] Call Trace:
[ 2378.558112]  dump_stack+0x107/0x167
[ 2378.558967]  should_fail.cold+0x5/0xa
[ 2378.559866]  ? create_object.isra.0+0x3a/0xa30
[ 2378.560971]  should_failslab+0x5/0x20
[ 2378.561872]  kmem_cache_alloc+0x5b/0x310
[ 2378.562818]  create_object.isra.0+0x3a/0xa30
[ 2378.563819]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2378.564983]  kmem_cache_alloc_node+0x169/0x330
[ 2378.566011]  __kmem_cache_create+0x10e/0x520
[ 2378.566055] FAULT_INJECTION: forcing a failure.
[ 2378.566055] name failslab, interval 1, probability 0, space 0, times 0
[ 2378.566998]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2378.567026]  p9_client_create+0xc6a/0x1230
[ 2378.567057]  ? p9_client_flush+0x430/0x430
[ 2378.567091]  ? trace_hardirqs_on+0x5b/0x180
[ 2378.573398]  ? lockdep_init_map_type+0x2c7/0x780
[ 2378.574532]  ? __raw_spin_lock_init+0x36/0x110
[ 2378.575685]  v9fs_session_init+0x1dd/0x1680
[ 2378.576804]  ? lock_release+0x680/0x680
[ 2378.577747]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2378.578856]  ? v9fs_show_options+0x690/0x690
[ 2378.579852]  ? trace_hardirqs_on+0x5b/0x180
[ 2378.580897]  ? kasan_unpoison_shadow+0x33/0x50
[ 2378.582003]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2378.583157]  v9fs_mount+0x79/0x8f0
[ 2378.583951]  ? v9fs_write_inode+0x60/0x60
[ 2378.584945]  legacy_get_tree+0x105/0x220
[ 2378.585903]  vfs_get_tree+0x8e/0x300
[ 2378.586746]  path_mount+0x1490/0x21e0
[ 2378.587612]  ? strncpy_from_user+0x9e/0x470
[ 2378.588624]  ? finish_automount+0xa90/0xa90
[ 2378.589668]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2378.590742]  ? _copy_from_user+0xfb/0x1b0
[ 2378.591683]  __x64_sys_mount+0x282/0x300
[ 2378.592590]  ? copy_mnt_ns+0xa00/0xa00
[ 2378.593485]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2378.594668]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2378.595875]  do_syscall_64+0x33/0x40
[ 2378.596788]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2378.597964] RIP: 0033:0x7f67f1462b19
[ 2378.598801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2378.603079] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2378.604804] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2378.606409] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2378.608153] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2378.609773] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2378.611418] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2378.613145] CPU: 1 PID: 35242 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2378.614612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2378.616322] Call Trace:
[ 2378.616888]  dump_stack+0x107/0x167
[ 2378.617637]  should_fail.cold+0x5/0xa
[ 2378.618500]  ? create_object.isra.0+0x3a/0xa30
[ 2378.619771]  should_failslab+0x5/0x20
[ 2378.620586]  kmem_cache_alloc+0x5b/0x310
[ 2378.621533]  create_object.isra.0+0x3a/0xa30
[ 2378.622717]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2378.623035] 9p: Unknown uid 18446744073709551615
[ 2378.623892]  __kmalloc_track_caller+0x177/0x370
[ 2378.623914]  ? kobject_set_name_vargs+0x8f/0x150
[ 2378.623940]  kstrdup+0x36/0x70
[ 2378.627974]  kobject_set_name_vargs+0x8f/0x150
[ 2378.629262]  dev_set_name+0xbb/0xf0
[ 2378.630073]  ? device_initialize+0x620/0x620
[ 2378.631132]  ? trace_event_raw_event_rpcgss_svc_authenticate+0x3c0/0x3c0
[ 2378.632905]  wiphy_new_nm+0x17d5/0x1e00
[ 2378.633962]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2378.635084]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2378.636389]  ? __local_bh_enable_ip+0x9d/0x100
[ 2378.637558]  ? trace_hardirqs_on+0x5b/0x180
[ 2378.638501]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2378.639670]  ? mark_held_locks+0x9e/0xe0
[ 2378.640739]  ? trace_hardirqs_on+0x5b/0x180
[ 2378.641695]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2378.642936]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2378.643976]  ? memcpy+0x39/0x60
[ 2378.644903]  hwsim_new_radio_nl+0x991/0x1080
[ 2378.645934]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2378.647222]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2378.648654]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2378.650124]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2378.651170]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2378.652593]  ? cap_capable+0x1cd/0x230
[ 2378.653462]  ? ns_capable+0xe2/0x110
[ 2378.654269]  genl_rcv_msg+0x36a/0x5a0
[ 2378.655092]  ? genl_get_cmd+0x480/0x480
[ 2378.655950]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2378.657077]  ? lock_release+0x680/0x680
[ 2378.657936]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2378.659030]  netlink_rcv_skb+0x14b/0x430
[ 2378.660046]  ? genl_get_cmd+0x480/0x480
[ 2378.660926]  ? netlink_ack+0xab0/0xab0
[ 2378.661923]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2378.663059]  ? is_vmalloc_addr+0x7b/0xb0
[ 2378.663946]  genl_rcv+0x24/0x40
[ 2378.664798]  netlink_unicast+0x6ce/0xa00
[ 2378.665861]  ? netlink_attachskb+0xab0/0xab0
[ 2378.666828]  netlink_sendmsg+0x90f/0xe00
[ 2378.667718]  ? netlink_unicast+0xa00/0xa00
[ 2378.668699]  ? netlink_unicast+0xa00/0xa00
[ 2378.669859]  __sock_sendmsg+0x154/0x190
[ 2378.670728]  ____sys_sendmsg+0x70d/0x870
[ 2378.671615]  ? sock_write_iter+0x3d0/0x3d0
[ 2378.672641]  ? do_recvmmsg+0x6d0/0x6d0
[ 2378.673667]  ? lock_downgrade+0x6d0/0x6d0
[ 2378.674568]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2378.675853]  ___sys_sendmsg+0xf3/0x170
[ 2378.676814]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2378.677971]  ? __fget_files+0x2cf/0x520
[ 2378.678904]  ? lock_downgrade+0x6d0/0x6d0
[ 2378.679978]  ? find_held_lock+0x2c/0x110
[ 2378.680939]  ? __fget_files+0x2f8/0x520
[ 2378.681998]  ? __fget_light+0xea/0x290
[ 2378.682876]  __sys_sendmsg+0xe5/0x1b0
[ 2378.683879]  ? __sys_sendmsg_sock+0x40/0x40
[ 2378.684856]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2378.685887]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2378.687019]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2378.688173]  ? trace_hardirqs_on+0x5b/0x180
[ 2378.689127]  do_syscall_64+0x33/0x40
[ 2378.689940]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2378.691058] RIP: 0033:0x7f7bcd366b19
[ 2378.691866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2378.695856] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2378.697508] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2378.699062] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2378.700615] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2378.702172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2378.703720] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2378.706829] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2378.709097] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2378.758143] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2378.759945] CPU: 1 PID: 35242 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2378.761361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2378.763055] Call Trace:
[ 2378.763603]  dump_stack+0x107/0x167
[ 2378.764350]  sysfs_warn_dup.cold+0x1c/0x29
[ 2378.765244]  sysfs_do_create_link_sd+0x122/0x140
[ 2378.766225]  sysfs_create_link+0x5f/0xc0
[ 2378.767085]  device_add+0x703/0x1c50
[ 2378.767875]  ? devlink_add_symlinks+0x970/0x970
[ 2378.768891]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2378.769973]  wiphy_register+0x1da6/0x2850
[ 2378.770861]  ? wiphy_unregister+0xb90/0xb90
[ 2378.771762]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2378.772892]  ieee80211_register_hw+0x23c5/0x38b0
[ 2378.773877]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2378.774893]  ? net_generic+0xdb/0x2b0
[ 2378.775683]  ? lockdep_init_map_type+0x2c7/0x780
[ 2378.776661]  ? memset+0x20/0x50
[ 2378.777349]  ? __hrtimer_init+0x12c/0x270
[ 2378.778226]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2378.779267]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2378.780254]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2378.781213]  ? memcpy+0x39/0x60
[ 2378.781917]  hwsim_new_radio_nl+0x991/0x1080
[ 2378.782821]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2378.783933]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2378.785308]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2378.786689]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2378.787682]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2378.789091]  ? cap_capable+0x1cd/0x230
[ 2378.789899]  ? ns_capable+0xe2/0x110
[ 2378.790699]  genl_rcv_msg+0x36a/0x5a0
[ 2378.791490]  ? genl_get_cmd+0x480/0x480
[ 2378.792340]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2378.793415]  ? lock_release+0x680/0x680
[ 2378.794261]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2378.795188]  netlink_rcv_skb+0x14b/0x430
[ 2378.796056]  ? genl_get_cmd+0x480/0x480
[ 2378.796884]  ? netlink_ack+0xab0/0xab0
[ 2378.797720]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2378.798654]  ? is_vmalloc_addr+0x7b/0xb0
[ 2378.799516]  genl_rcv+0x24/0x40
[ 2378.800192]  netlink_unicast+0x6ce/0xa00
[ 2378.801083]  ? netlink_attachskb+0xab0/0xab0
[ 2378.802055]  netlink_sendmsg+0x90f/0xe00
[ 2378.802891]  ? netlink_unicast+0xa00/0xa00
[ 2378.803817]  ? netlink_unicast+0xa00/0xa00
[ 2378.804682]  __sock_sendmsg+0x154/0x190
[ 2378.805542]  ____sys_sendmsg+0x70d/0x870
[ 2378.806400]  ? sock_write_iter+0x3d0/0x3d0
[ 2378.807272]  ? do_recvmmsg+0x6d0/0x6d0
[ 2378.808107]  ? lock_downgrade+0x6d0/0x6d0
[ 2378.808974]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2378.810088]  ___sys_sendmsg+0xf3/0x170
[ 2378.810892]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2378.811876]  ? __fget_files+0x2cf/0x520
[ 2378.812711]  ? lock_downgrade+0x6d0/0x6d0
[ 2378.813611]  ? find_held_lock+0x2c/0x110
[ 2378.814479]  ? __fget_files+0x2f8/0x520
[ 2378.815340]  ? __fget_light+0xea/0x290
[ 2378.816171]  __sys_sendmsg+0xe5/0x1b0
[ 2378.816970]  ? __sys_sendmsg_sock+0x40/0x40
[ 2378.817876]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2378.818872]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2378.819978]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2378.821064]  ? trace_hardirqs_on+0x5b/0x180
[ 2378.821984]  do_syscall_64+0x33/0x40
[ 2378.822768]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2378.823849] RIP: 0033:0x7f7bcd366b19
[ 2378.824632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2378.828491] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2378.830112] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2378.831605] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2378.833104] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2378.834601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2378.836107] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:36:39 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 55)

04:36:39 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 18)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:36:39 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
ioctl$HIDIOCINITREPORT(r1, 0x550c, 0x20000000)
r2 = mq_open(&(0x7f0000000100)='wfdno', 0x801, 0x83, &(0x7f0000000200)={0x6, 0x4, 0xb0, 0x7})
write$binfmt_elf64(r2, &(0x7f0000000780)=ANY=[@ANYBLOB="7f454c46010400010000000000e500c0038203008c01000009010000000000004000000000000000a7030000000000000380000004003800020007000101050000000070000000000800000010000000090000000000000001000000f94949969214170fb00000000001000000000000003d00000000000000090000000000000051e57464010000000400000000000000000000000000000001000000000000000300000000000000ffffffffffffffffff000000000000004f96338ba86e5cdfe44ee0f43ab046f63282228a899c796de403b7cdc51e00bd5222da942c52daca00009f38cf00864cec4c272653ef65cfc48b4a049be7f0e33406e7c056004c104e6bd0d9b03d1734627bcf5e67a9bbda831e1dd7d8ae93c8038162605cd2ad2e5d9e7bc449c8b941d8f05aa7544be2f4c333ce52065cc196dffa62f6265d5d8cda213114f428de04e2404de639d40ea3a405b71b4aaf5f52c8152fb492d4f94fd9027300d931185efd044aee2b9937b6cf911e1fd0a2b3f1761c2274e0899b33cde9a27706f7a33304ac5188604c684acdc763a8795c537bef3a5ee28d49bd280b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010100000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005429dc230bad4df8c9113ed5d5c446aa4a05ffb4da16ae61b4793c460e792b6dc69fdb774f1a645e5744a6185a51b34a1d1cc19fd84cd587b7081a7a552b04b1e018b0554e53f8c58c14bf8f4607a6532365bf5161679ba4638a8f115e7910c550df362788905fa4eb"], 0x299)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000080))
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = dup2(r5, r5)
ioctl$HIDIOCINITREPORT(r6, 0x550c, 0x20000000)
fcntl$F_SET_RW_HINT(r6, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r7, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000240), 0x3002808, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cachetag}, {@version_L}, {@version_L}, {@noextend}, {@version_L}, {@access_any}, {@dfltgid}, {@cachetag}, {@version_L}], [{@subj_role={'subj_role', 0x3d, '%&&}$:,\'\x89'}}, {@measure}]}})
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})

[ 2393.697026] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2393.698881] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2393.717045] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:36:39 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58)

04:36:39 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000080007b342c940"], 0x28}}, 0x0)

04:36:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000a07b342c940"], 0x28}}, 0x0)

04:36:39 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc3e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:39 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5ee9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2393.726279] FAULT_INJECTION: forcing a failure.
[ 2393.726279] name failslab, interval 1, probability 0, space 0, times 0
[ 2393.729178] CPU: 1 PID: 35568 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2393.730695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2393.732522] Call Trace:
[ 2393.733123]  dump_stack+0x107/0x167
[ 2393.733939]  should_fail.cold+0x5/0xa
[ 2393.734779]  ? create_object.isra.0+0x3a/0xa30
[ 2393.735793]  should_failslab+0x5/0x20
[ 2393.736642]  kmem_cache_alloc+0x5b/0x310
[ 2393.737550]  create_object.isra.0+0x3a/0xa30
[ 2393.738514]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2393.739641]  __kmalloc_track_caller+0x177/0x370
[ 2393.740662]  ? kobject_set_name_vargs+0x8f/0x150
[ 2393.741718]  kstrdup+0x36/0x70
[ 2393.742426]  kobject_set_name_vargs+0x8f/0x150
[ 2393.743441]  dev_set_name+0xbb/0xf0
04:36:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000f07b342c940"], 0x28}}, 0x0)

[ 2393.744244]  ? device_initialize+0x620/0x620
04:36:39 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210cfffffffffffff00007b342c940"], 0x28}}, 0x0)

[ 2393.745345]  ? trace_event_raw_event_rpcgss_svc_authenticate+0x3c0/0x3c0
[ 2393.746958]  wiphy_new_nm+0x17d5/0x1e00
[ 2393.747850]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2393.748879]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2393.750052]  ? __local_bh_enable_ip+0x9d/0x100
[ 2393.751075]  ? trace_hardirqs_on+0x5b/0x180
[ 2393.752037]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2393.753153]  ? mark_held_locks+0x9e/0xe0
[ 2393.754054]  ? trace_hardirqs_on+0x5b/0x180
[ 2393.755046]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2393.756064]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2393.757100]  ? memcpy+0x39/0x60
[ 2393.757834]  hwsim_new_radio_nl+0x991/0x1080
[ 2393.758844]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2393.760011]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2393.761508]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2393.762958]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2393.764062]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2393.765531]  ? cap_capable+0x1cd/0x230
[ 2393.766398]  ? ns_capable+0xe2/0x110
[ 2393.767232]  genl_rcv_msg+0x36a/0x5a0
[ 2393.768077]  ? genl_get_cmd+0x480/0x480
[ 2393.768962]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2393.770107]  ? lock_release+0x680/0x680
[ 2393.770967]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2393.771957]  netlink_rcv_skb+0x14b/0x430
[ 2393.772853]  ? genl_get_cmd+0x480/0x480
[ 2393.773725]  ? netlink_ack+0xab0/0xab0
[ 2393.774587]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2393.775576]  ? is_vmalloc_addr+0x7b/0xb0
[ 2393.776462]  genl_rcv+0x24/0x40
[ 2393.777211]  netlink_unicast+0x6ce/0xa00
[ 2393.778082]  ? netlink_attachskb+0xab0/0xab0
[ 2393.779055]  netlink_sendmsg+0x90f/0xe00
[ 2393.779940]  ? netlink_unicast+0xa00/0xa00
[ 2393.780877]  ? netlink_unicast+0xa00/0xa00
[ 2393.781805]  __sock_sendmsg+0x154/0x190
[ 2393.782663]  ____sys_sendmsg+0x70d/0x870
[ 2393.783553]  ? sock_write_iter+0x3d0/0x3d0
[ 2393.784456]  ? do_recvmmsg+0x6d0/0x6d0
[ 2393.785322]  ? lock_downgrade+0x6d0/0x6d0
[ 2393.786230]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2393.787378]  ___sys_sendmsg+0xf3/0x170
[ 2393.788232]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2393.789246]  ? __fget_files+0x2cf/0x520
[ 2393.790106]  ? lock_downgrade+0x6d0/0x6d0
[ 2393.791001]  ? find_held_lock+0x2c/0x110
[ 2393.791898]  ? __fget_files+0x2f8/0x520
[ 2393.792767]  ? __fget_light+0xea/0x290
[ 2393.793650]  __sys_sendmsg+0xe5/0x1b0
[ 2393.794506]  ? __sys_sendmsg_sock+0x40/0x40
[ 2393.795468]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2393.796523]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2393.797701]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2393.798847]  ? trace_hardirqs_on+0x5b/0x180
[ 2393.799787]  do_syscall_64+0x33/0x40
[ 2393.800585]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2393.801729] RIP: 0033:0x7f7bcd366b19
04:36:39 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc4e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2393.802558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2393.806726] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2393.808367] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2393.809909] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2393.811441] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2393.812981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2393.814514] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2393.817347] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2393.819295] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2393.823235] FAULT_INJECTION: forcing a failure.
[ 2393.823235] name failslab, interval 1, probability 0, space 0, times 0
[ 2393.825755] CPU: 1 PID: 35564 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2393.827245] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2393.829028] Call Trace:
[ 2393.829594]  dump_stack+0x107/0x167
[ 2393.830375]  should_fail.cold+0x5/0xa
[ 2393.831196]  ? create_object.isra.0+0x3a/0xa30
[ 2393.832169]  should_failslab+0x5/0x20
[ 2393.832990]  kmem_cache_alloc+0x5b/0x310
[ 2393.833862]  create_object.isra.0+0x3a/0xa30
[ 2393.834815]  kmemleak_alloc_percpu+0xa0/0x100
[ 2393.835780]  pcpu_alloc+0x4e2/0x1240
[ 2393.836591]  __kmem_cache_create+0x35a/0x520
[ 2393.837548]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2393.838619]  p9_client_create+0xc6a/0x1230
[ 2393.839535]  ? p9_client_flush+0x430/0x430
[ 2393.840446]  ? trace_hardirqs_on+0x5b/0x180
[ 2393.841380]  ? lockdep_init_map_type+0x2c7/0x780
[ 2393.842391]  ? __raw_spin_lock_init+0x36/0x110
[ 2393.843379]  v9fs_session_init+0x1dd/0x1680
[ 2393.844292]  ? lock_release+0x680/0x680
[ 2393.845150]  ? kmem_cache_alloc_trace+0x151/0x320
04:36:39 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x58)

[ 2393.846166]  ? v9fs_show_options+0x690/0x690
[ 2393.847251]  ? trace_hardirqs_on+0x5b/0x180
[ 2393.848167]  ? kasan_unpoison_shadow+0x33/0x50
[ 2393.849145]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2393.850218]  v9fs_mount+0x79/0x8f0
[ 2393.850973]  ? v9fs_write_inode+0x60/0x60
[ 2393.851847]  legacy_get_tree+0x105/0x220
[ 2393.852710]  vfs_get_tree+0x8e/0x300
[ 2393.853513]  path_mount+0x1490/0x21e0
[ 2393.854327]  ? strncpy_from_user+0x9e/0x470
[ 2393.855241]  ? finish_automount+0xa90/0xa90
[ 2393.856154]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2393.857145]  ? _copy_from_user+0xfb/0x1b0
[ 2393.858029]  __x64_sys_mount+0x282/0x300
[ 2393.858889]  ? copy_mnt_ns+0xa00/0xa00
[ 2393.859719]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2393.860827]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2393.861916]  do_syscall_64+0x33/0x40
[ 2393.862698]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2393.863770] RIP: 0033:0x7f67f1462b19
[ 2393.864559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2393.868409] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2393.870017] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2393.871507] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2393.873010] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2393.874503] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2393.876004] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2393.886981] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2393.890157] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2393.900627] 9p: Unknown uid 18446744073709551615
[ 2394.000030] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2394.002113] CPU: 1 PID: 35568 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2394.003652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2394.005548] Call Trace:
[ 2394.006152]  dump_stack+0x107/0x167
[ 2394.006971]  sysfs_warn_dup.cold+0x1c/0x29
[ 2394.007939]  sysfs_do_create_link_sd+0x122/0x140
[ 2394.009033]  sysfs_create_link+0x5f/0xc0
[ 2394.009953]  device_add+0x703/0x1c50
[ 2394.010809]  ? devlink_add_symlinks+0x970/0x970
[ 2394.011865]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2394.013068]  wiphy_register+0x1da6/0x2850
[ 2394.014008]  ? wiphy_unregister+0xb90/0xb90
[ 2394.015007]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2394.016219]  ieee80211_register_hw+0x23c5/0x38b0
[ 2394.017331]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2394.018431]  ? net_generic+0xdb/0x2b0
[ 2394.019309]  ? lockdep_init_map_type+0x2c7/0x780
[ 2394.020398]  ? memset+0x20/0x50
[ 2394.021163]  ? __hrtimer_init+0x12c/0x270
[ 2394.022115]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2394.023275]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2394.024339]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2394.025390]  ? memcpy+0x39/0x60
[ 2394.026155]  hwsim_new_radio_nl+0x991/0x1080
[ 2394.027168]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2394.028367]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2394.029892]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2394.031389]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2394.032457]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2394.033981]  ? cap_capable+0x1cd/0x230
[ 2394.034891]  ? ns_capable+0xe2/0x110
[ 2394.035749]  genl_rcv_msg+0x36a/0x5a0
[ 2394.036623]  ? genl_get_cmd+0x480/0x480
[ 2394.037540]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2394.038725]  ? lock_release+0x680/0x680
[ 2394.039630]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2394.040641]  netlink_rcv_skb+0x14b/0x430
[ 2394.041579]  ? genl_get_cmd+0x480/0x480
[ 2394.042495]  ? netlink_ack+0xab0/0xab0
[ 2394.043377]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2394.044419]  ? is_vmalloc_addr+0x7b/0xb0
[ 2394.045361]  genl_rcv+0x24/0x40
[ 2394.046149]  netlink_unicast+0x6ce/0xa00
[ 2394.047072]  ? netlink_attachskb+0xab0/0xab0
[ 2394.048085]  netlink_sendmsg+0x90f/0xe00
[ 2394.049029]  ? netlink_unicast+0xa00/0xa00
[ 2394.049987]  ? netlink_unicast+0xa00/0xa00
[ 2394.050959]  __sock_sendmsg+0x154/0x190
[ 2394.051874]  ____sys_sendmsg+0x70d/0x870
[ 2394.052802]  ? sock_write_iter+0x3d0/0x3d0
[ 2394.053770]  ? do_recvmmsg+0x6d0/0x6d0
[ 2394.054664]  ? lock_downgrade+0x6d0/0x6d0
[ 2394.055620]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2394.056826]  ___sys_sendmsg+0xf3/0x170
[ 2394.057717]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2394.058768]  ? __fget_files+0x2cf/0x520
[ 2394.059663]  ? lock_downgrade+0x6d0/0x6d0
[ 2394.060607]  ? find_held_lock+0x2c/0x110
[ 2394.061549]  ? __fget_files+0x2f8/0x520
[ 2394.062445]  ? __fget_light+0xea/0x290
[ 2394.063335]  __sys_sendmsg+0xe5/0x1b0
[ 2394.064184]  ? __sys_sendmsg_sock+0x40/0x40
[ 2394.065162]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2394.066246]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2394.067439]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2394.068617]  ? trace_hardirqs_on+0x5b/0x180
[ 2394.069607]  do_syscall_64+0x33/0x40
[ 2394.070458]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2394.071625] RIP: 0033:0x7f7bcd366b19
[ 2394.072470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2394.076649] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2394.078389] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2394.080000] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2394.081648] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2394.083283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2394.084930] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2411.254648] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2411.259242] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:36:56 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000011307b342c940"], 0x28}}, 0x0)

04:36:56 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000107b342c940"], 0x28}}, 0x0)

04:36:56 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 19)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:36:56 executing program 5:
r0 = semget$private(0x0, 0x4, 0x100)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0xa0080, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1)
getresgid(&(0x7f00000010c0)=<r1=>0x0, &(0x7f0000001100), &(0x7f0000001140)=<r2=>0x0)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r3=>0x0, <r4=>0x0})
mount$9p_fd(0x0, &(0x7f0000000280)='./file0/file0/file0\x00', 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r4, @ANYRESDEC=r2, @ANYRES16=r1, @ANYBLOB="f8d47f0d987ad7676d935031e34457b3fef004cee82456b0c7d3d2fed754565b411e0a58af3df05def688b1d62860c5b0ee3d6bfed4a44dbdc738568ea4dec7838eac89f2d24f2e1e9672cfef8be971d6bbfb0046300001fe350eebf2a4a81edac342ae4d1404abee6aa656b9a1fd22da735ea123fbeb4a08adf4e3025549b7c2597c91c42d53718af5cb48eb27d6d11a16ed99a8b5dc560e3d94c0eba4fd3d2dd6bd39b712317114747ce0a61dc", @ANYRES16=r4])
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, r3, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
semctl$IPC_RMID(0x0, 0x0, 0x0)
r5 = semget(0x2, 0x0, 0x20b)
r6 = getuid()
stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
semctl$IPC_SET(r5, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r6, r2, r7, 0x0, 0x39}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
clock_gettime(0x0, &(0x7f00000000c0)={<r8=>0x0, <r9=>0x0})
semtimedop(r5, &(0x7f0000000080)=[{0x0, 0x4, 0x1000}], 0x1, &(0x7f0000000100)={r8, r9+10000000})
semctl$SEM_INFO(0x0, 0x935a4533181df21f, 0x13, &(0x7f0000001e00)=""/4096)
semtimedop(0x0, &(0x7f0000000040)=[{0x0, 0xff7e}, {}], 0x2, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
semctl$SEM_INFO(0x0, 0x3, 0x13, &(0x7f0000000340)=""/66)
semctl$SEM_INFO(r0, 0x3, 0x13, 0x0)
unshare(0x48020200)

04:36:56 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 56)

04:36:56 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc5e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:56 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x5fe9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:36:56 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58)

[ 2411.288217] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2411.301998] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:36:56 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000207b342c940"], 0x28}}, 0x0)

[ 2411.316436] FAULT_INJECTION: forcing a failure.
[ 2411.316436] name failslab, interval 1, probability 0, space 0, times 0
[ 2411.319670] CPU: 1 PID: 36007 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2411.321243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2411.323105] Call Trace:
[ 2411.323705]  dump_stack+0x107/0x167
[ 2411.324528]  should_fail.cold+0x5/0xa
[ 2411.325400]  ? create_object.isra.0+0x3a/0xa30
[ 2411.326424]  should_failslab+0x5/0x20
[ 2411.327277]  kmem_cache_alloc+0x5b/0x310
[ 2411.328195]  create_object.isra.0+0x3a/0xa30
[ 2411.329186]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2411.330328]  __kmalloc+0x16e/0x390
[ 2411.331134]  rfkill_alloc+0xa6/0x2c0
[ 2411.331976]  wiphy_new_nm+0x12a3/0x1e00
[ 2411.332868]  ieee80211_alloc_hw_nm+0x37a/0x2320
[ 2411.333927]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2411.335106]  ? __local_bh_enable_ip+0x9d/0x100
[ 2411.336125]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.337106]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2411.338211]  ? mark_held_locks+0x9e/0xe0
[ 2411.339129]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.340099]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2411.341147]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2411.342171]  ? memcpy+0x39/0x60
[ 2411.342922]  hwsim_new_radio_nl+0x991/0x1080
[ 2411.343919]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2411.345102]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2411.346601]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2411.348075]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2411.349180]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2411.350669]  ? selinux_capable+0x45/0x70
[ 2411.351586]  ? cap_capable+0x1cd/0x230
[ 2411.352480]  ? ns_capable+0xe2/0x110
[ 2411.353346]  genl_rcv_msg+0x36a/0x5a0
[ 2411.354078] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2411.354214]  ? genl_get_cmd+0x480/0x480
[ 2411.357068]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2411.358288]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2411.359457]  ? netlink_rcv_skb+0x2d7/0x430
[ 2411.360412]  ? netlink_rcv_skb+0x2e1/0x430
[ 2411.361383]  netlink_rcv_skb+0x14b/0x430
[ 2411.362299]  ? genl_get_cmd+0x480/0x480
[ 2411.363205]  ? netlink_ack+0xab0/0xab0
[ 2411.364090]  ? down_read+0x10f/0x430
[ 2411.364928]  ? genl_get_cmd+0x480/0x480
[ 2411.365834]  genl_rcv+0x24/0x40
[ 2411.366576]  netlink_unicast+0x6ce/0xa00
[ 2411.367498]  ? netlink_attachskb+0xab0/0xab0
[ 2411.368500]  netlink_sendmsg+0x90f/0xe00
[ 2411.369442]  ? netlink_unicast+0xa00/0xa00
[ 2411.370407]  ? netlink_unicast+0xa00/0xa00
[ 2411.371346]  __sock_sendmsg+0x154/0x190
[ 2411.372240]  ____sys_sendmsg+0x70d/0x870
[ 2411.373161]  ? sock_write_iter+0x3d0/0x3d0
[ 2411.373319] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2411.374100]  ? do_recvmmsg+0x6d0/0x6d0
[ 2411.374127]  ? lock_downgrade+0x6d0/0x6d0
[ 2411.374157]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2411.379013]  ___sys_sendmsg+0xf3/0x170
[ 2411.379892]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2411.380922]  ? __fget_files+0x2cf/0x520
[ 2411.381825]  ? lock_downgrade+0x6d0/0x6d0
[ 2411.382756]  ? find_held_lock+0x2c/0x110
[ 2411.383686]  ? __fget_files+0x2f8/0x520
[ 2411.384601]  ? __fget_light+0xea/0x290
[ 2411.385497]  __sys_sendmsg+0xe5/0x1b0
[ 2411.386353]  ? __sys_sendmsg_sock+0x40/0x40
[ 2411.387325]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2411.388389]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2411.389579]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2411.390735]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.391708]  do_syscall_64+0x33/0x40
[ 2411.392546]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2411.393710] RIP: 0033:0x7f7bcd366b19
[ 2411.394549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2411.395457] FAULT_INJECTION: forcing a failure.
[ 2411.395457] name failslab, interval 1, probability 0, space 0, times 0
[ 2411.398694] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2411.398718] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2411.398740] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2411.406111] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2411.407702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2411.409318] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2411.410944] CPU: 0 PID: 36004 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2411.412524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2411.414419] Call Trace:
[ 2411.415023]  dump_stack+0x107/0x167
[ 2411.415842]  should_fail.cold+0x5/0xa
[ 2411.416709]  ? create_object.isra.0+0x3a/0xa30
[ 2411.417743]  should_failslab+0x5/0x20
[ 2411.418601]  kmem_cache_alloc+0x5b/0x310
[ 2411.419520]  create_object.isra.0+0x3a/0xa30
[ 2411.420515]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2411.421678]  kmem_cache_alloc_node+0x169/0x330
[ 2411.422704]  __kmem_cache_create+0x10e/0x520
[ 2411.423724]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2411.424873]  p9_client_create+0xc6a/0x1230
[ 2411.425866]  ? p9_client_flush+0x430/0x430
[ 2411.426841]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.427836]  ? lockdep_init_map_type+0x2c7/0x780
[ 2411.428923]  ? __raw_spin_lock_init+0x36/0x110
[ 2411.429987]  v9fs_session_init+0x1dd/0x1680
[ 2411.430977]  ? lock_release+0x680/0x680
[ 2411.431897]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2411.432975]  ? v9fs_show_options+0x690/0x690
[ 2411.434002]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.434998]  ? kasan_unpoison_shadow+0x33/0x50
[ 2411.436049]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2411.437224]  v9fs_mount+0x79/0x8f0
[ 2411.438041]  ? v9fs_write_inode+0x60/0x60
[ 2411.438994]  legacy_get_tree+0x105/0x220
[ 2411.439938]  vfs_get_tree+0x8e/0x300
[ 2411.440796]  path_mount+0x1490/0x21e0
[ 2411.441686]  ? strncpy_from_user+0x9e/0x470
[ 2411.442655]  ? finish_automount+0xa90/0xa90
[ 2411.443646]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2411.444708]  ? _copy_from_user+0xfb/0x1b0
[ 2411.445674]  __x64_sys_mount+0x282/0x300
[ 2411.446613]  ? copy_mnt_ns+0xa00/0xa00
[ 2411.447498]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2411.448717]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2411.449891]  do_syscall_64+0x33/0x40
[ 2411.450750]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2411.451908] RIP: 0033:0x7f67f1462b19
[ 2411.452769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2411.456938] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2411.458698] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2411.460345] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2411.461999] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2411.463649] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2411.465317] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2411.465425] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:36:56 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000004807b342c940"], 0x28}}, 0x0)

04:36:56 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58)

[ 2411.499821] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:36:56 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000307b342c940"], 0x28}}, 0x0)

[ 2411.540931] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2411.543090] CPU: 0 PID: 36007 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2411.544660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2411.546541] Call Trace:
[ 2411.547141]  dump_stack+0x107/0x167
[ 2411.547971]  sysfs_warn_dup.cold+0x1c/0x29
[ 2411.548931]  sysfs_do_create_link_sd+0x122/0x140
[ 2411.550010]  sysfs_create_link+0x5f/0xc0
[ 2411.550932]  device_add+0x703/0x1c50
[ 2411.551780]  ? devlink_add_symlinks+0x970/0x970
[ 2411.552835]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2411.554168]  wiphy_register+0x1da6/0x2850
[ 2411.555290]  ? wiphy_unregister+0xb90/0xb90
[ 2411.556550]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2411.558051]  ieee80211_register_hw+0x23c5/0x38b0
[ 2411.559198]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2411.560296]  ? net_generic+0xdb/0x2b0
[ 2411.561195]  ? lockdep_init_map_type+0x2c7/0x780
[ 2411.562279]  ? memset+0x20/0x50
[ 2411.563040]  ? __hrtimer_init+0x12c/0x270
[ 2411.563992]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2411.565168]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2411.566231]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2411.567275]  ? memcpy+0x39/0x60
[ 2411.568040]  hwsim_new_radio_nl+0x991/0x1080
[ 2411.569068]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2411.570266]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2411.571772]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2411.573271]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2411.574372]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
04:36:56 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000004c07b342c940"], 0x28}}, 0x0)

[ 2411.575855]  ? selinux_capable+0x45/0x70
[ 2411.576969]  ? cap_capable+0x1cd/0x230
[ 2411.577872]  ? ns_capable+0xe2/0x110
[ 2411.578734]  genl_rcv_msg+0x36a/0x5a0
[ 2411.579601]  ? genl_get_cmd+0x480/0x480
[ 2411.580513]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2411.581770]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2411.583170]  ? netlink_rcv_skb+0x2d7/0x430
[ 2411.584126]  ? netlink_rcv_skb+0x2e1/0x430
[ 2411.585291]  netlink_rcv_skb+0x14b/0x430
[ 2411.586271]  ? genl_get_cmd+0x480/0x480
[ 2411.587333]  ? netlink_ack+0xab0/0xab0
[ 2411.588433]  ? down_read+0x10f/0x430
[ 2411.589516]  ? genl_get_cmd+0x480/0x480
[ 2411.590664]  genl_rcv+0x24/0x40
[ 2411.591609]  netlink_unicast+0x6ce/0xa00
[ 2411.592784]  ? netlink_attachskb+0xab0/0xab0
[ 2411.594057]  netlink_sendmsg+0x90f/0xe00
[ 2411.595193]  ? netlink_unicast+0xa00/0xa00
[ 2411.596380]  ? netlink_unicast+0xa00/0xa00
[ 2411.597597]  __sock_sendmsg+0x154/0x190
[ 2411.598723]  ____sys_sendmsg+0x70d/0x870
[ 2411.599874]  ? sock_write_iter+0x3d0/0x3d0
04:36:56 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc6e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2411.601082]  ? do_recvmmsg+0x6d0/0x6d0
[ 2411.602305]  ? lock_downgrade+0x6d0/0x6d0
[ 2411.603440]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2411.604881]  ___sys_sendmsg+0xf3/0x170
[ 2411.606024]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2411.607296]  ? __fget_files+0x2cf/0x520
[ 2411.608449]  ? lock_downgrade+0x6d0/0x6d0
[ 2411.609623]  ? find_held_lock+0x2c/0x110
[ 2411.610814]  ? __fget_files+0x2f8/0x520
[ 2411.611924]  ? __fget_light+0xea/0x290
[ 2411.613050]  __sys_sendmsg+0xe5/0x1b0
[ 2411.614143]  ? __sys_sendmsg_sock+0x40/0x40
[ 2411.615357]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2411.616663]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2411.618191]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2411.619651]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.620848]  do_syscall_64+0x33/0x40
[ 2411.621750]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2411.622915] RIP: 0033:0x7f7bcd366b19
[ 2411.623757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2411.627960] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2411.629814] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2411.631596] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2411.633362] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2411.634718] 9p: Unknown uid 18446744073709551615
[ 2411.635043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2411.635065] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:36:57 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x60e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:36:57 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58)

04:36:57 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 57)

[ 2411.802170] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2411.804254] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2411.848341] FAULT_INJECTION: forcing a failure.
[ 2411.848341] name failslab, interval 1, probability 0, space 0, times 0
[ 2411.851091] CPU: 1 PID: 36435 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2411.852650] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2411.854520] Call Trace:
[ 2411.855114]  dump_stack+0x107/0x167
[ 2411.855943]  should_fail.cold+0x5/0xa
[ 2411.856807]  should_failslab+0x5/0x20
[ 2411.857676]  __kmalloc_track_caller+0x79/0x370
[ 2411.858694]  ? kstrdup_const+0x53/0x80
[ 2411.859603]  kstrdup+0x36/0x70
[ 2411.860324]  kstrdup_const+0x53/0x80
[ 2411.861203]  kvasprintf_const+0x10c/0x1a0
[ 2411.862171]  kobject_set_name_vargs+0x56/0x150
[ 2411.863235]  kobject_init_and_add+0xc9/0x160
[ 2411.864260]  ? kobject_create_and_add+0xb0/0xb0
[ 2411.865352]  ? wait_for_completion_io+0x270/0x270
[ 2411.866470]  ? kernfs_name_hash+0xe7/0x110
[ 2411.867456]  ? kernfs_find_ns+0x256/0x380
[ 2411.868432]  sysfs_slab_add+0x172/0x200
[ 2411.869362]  __kmem_cache_create+0x3db/0x520
[ 2411.870392]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2411.871565]  p9_client_create+0xc6a/0x1230
[ 2411.872560]  ? p9_client_flush+0x430/0x430
[ 2411.873556]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.874562]  ? lockdep_init_map_type+0x2c7/0x780
[ 2411.875667]  ? __raw_spin_lock_init+0x36/0x110
[ 2411.876737]  v9fs_session_init+0x1dd/0x1680
[ 2411.877753]  ? lock_release+0x680/0x680
[ 2411.878690]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2411.879813]  ? v9fs_show_options+0x690/0x690
[ 2411.880849]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.881860]  ? kasan_unpoison_shadow+0x33/0x50
[ 2411.882921]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2411.884107]  v9fs_mount+0x79/0x8f0
[ 2411.884929]  ? v9fs_write_inode+0x60/0x60
[ 2411.885896]  legacy_get_tree+0x105/0x220
[ 2411.886835]  vfs_get_tree+0x8e/0x300
[ 2411.887691]  path_mount+0x1490/0x21e0
[ 2411.888580]  ? strncpy_from_user+0x9e/0x470
[ 2411.889579]  ? finish_automount+0xa90/0xa90
[ 2411.890573]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2411.891638]  ? _copy_from_user+0xfb/0x1b0
[ 2411.892605]  __x64_sys_mount+0x282/0x300
[ 2411.893557]  ? copy_mnt_ns+0xa00/0xa00
[ 2411.894457]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2411.895670]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2411.896860]  do_syscall_64+0x33/0x40
[ 2411.897725]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2411.898900] RIP: 0033:0x7f67f1462b19
[ 2411.899760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2411.904002] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2411.905772] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2411.907408] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2411.909046] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2411.910704] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2411.912348] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2411.915011] kobject: can not set name properly!
[ 2411.916337] kmem_cache_create(9p-fcall-cache-420) failed with error -12
[ 2411.917931] CPU: 1 PID: 36435 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2411.919525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2411.921448] Call Trace:
[ 2411.922053]  dump_stack+0x107/0x167
[ 2411.922895]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2411.924122]  p9_client_create+0xc6a/0x1230
[ 2411.925117]  ? p9_client_flush+0x430/0x430
[ 2411.926097]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.927095]  ? lockdep_init_map_type+0x2c7/0x780
[ 2411.928192]  ? __raw_spin_lock_init+0x36/0x110
[ 2411.929260]  v9fs_session_init+0x1dd/0x1680
[ 2411.930259]  ? lock_release+0x680/0x680
[ 2411.931188]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2411.932299]  ? v9fs_show_options+0x690/0x690
[ 2411.933331]  ? trace_hardirqs_on+0x5b/0x180
[ 2411.934327]  ? kasan_unpoison_shadow+0x33/0x50
[ 2411.935382]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2411.936561]  v9fs_mount+0x79/0x8f0
[ 2411.937392]  ? v9fs_write_inode+0x60/0x60
[ 2411.938349]  legacy_get_tree+0x105/0x220
[ 2411.939287]  vfs_get_tree+0x8e/0x300
[ 2411.940143]  path_mount+0x1490/0x21e0
[ 2411.941026]  ? strncpy_from_user+0x9e/0x470
[ 2411.942030]  ? finish_automount+0xa90/0xa90
[ 2411.943026]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2411.944093]  ? _copy_from_user+0xfb/0x1b0
[ 2411.945078]  __x64_sys_mount+0x282/0x300
[ 2411.946035]  ? copy_mnt_ns+0xa00/0xa00
[ 2411.946939]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2411.948143]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2411.949340]  do_syscall_64+0x33/0x40
[ 2411.950194]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2411.951371] RIP: 0033:0x7f67f1462b19
[ 2411.952228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2411.956476] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2411.958231] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2411.959870] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2411.961531] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2411.963195] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2411.964857] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:36:57 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000407b342c940"], 0x28}}, 0x0)

[ 2411.984266] 9p: Unknown uid 18446744073709551615
04:37:10 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_setup(0x804ebb, &(0x7f0000000340)={0x0, 0x1b9b, 0x10}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r4}}, 0x1)
sendmmsg$inet(r0, &(0x7f0000004f80)=[{{&(0x7f0000001840)={0x2, 0x4e23, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x30}}], 0x1, 0x0)

04:37:10 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 20)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:37:10 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000006807b342c940"], 0x28}}, 0x0)

04:37:10 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc7e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:37:10 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000507b342c940"], 0x28}}, 0x0)

04:37:10 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 58)

04:37:10 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58)

04:37:10 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x61e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2424.852216] FAULT_INJECTION: forcing a failure.
[ 2424.852216] name failslab, interval 1, probability 0, space 0, times 0
[ 2424.853816] CPU: 1 PID: 36548 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2424.854763] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2424.855900] Call Trace:
[ 2424.856266]  dump_stack+0x107/0x167
[ 2424.856774]  should_fail.cold+0x5/0xa
[ 2424.857308]  ? create_object.isra.0+0x3a/0xa30
[ 2424.857930]  should_failslab+0x5/0x20
[ 2424.858454]  kmem_cache_alloc+0x5b/0x310
[ 2424.859012]  ? lock_release+0x680/0x680
[ 2424.859557]  create_object.isra.0+0x3a/0xa30
[ 2424.860164]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.860857]  __kmalloc_track_caller+0x177/0x370
[ 2424.861494]  ? kstrdup_const+0x53/0x80
[ 2424.862031]  kstrdup+0x36/0x70
[ 2424.862470]  kstrdup_const+0x53/0x80
[ 2424.862988]  kvasprintf_const+0x10c/0x1a0
[ 2424.863554]  kobject_set_name_vargs+0x56/0x150
[ 2424.864175]  kobject_init_and_add+0xc9/0x160
[ 2424.864785]  ? kobject_create_and_add+0xb0/0xb0
[ 2424.865437]  ? wait_for_completion_io+0x270/0x270
[ 2424.866097]  ? kernfs_name_hash+0xe7/0x110
[ 2424.866673]  ? kernfs_find_ns+0x256/0x380
[ 2424.867245]  sysfs_slab_add+0x172/0x200
[ 2424.867785]  __kmem_cache_create+0x3db/0x520
[ 2424.868384]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2424.869067]  p9_client_create+0xc6a/0x1230
[ 2424.869661]  ? p9_client_flush+0x430/0x430
[ 2424.870236]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.870829]  ? lockdep_init_map_type+0x2c7/0x780
[ 2424.871480]  ? __raw_spin_lock_init+0x36/0x110
[ 2424.872117]  v9fs_session_init+0x1dd/0x1680
[ 2424.872703]  ? lock_release+0x680/0x680
[ 2424.873259]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2424.873907]  ? v9fs_show_options+0x690/0x690
[ 2424.874514]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.875103]  ? kasan_unpoison_shadow+0x33/0x50
[ 2424.875722]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2424.876404]  v9fs_mount+0x79/0x8f0
[ 2424.876892]  ? v9fs_write_inode+0x60/0x60
[ 2424.877463]  legacy_get_tree+0x105/0x220
[ 2424.878034]  vfs_get_tree+0x8e/0x300
[ 2424.878542]  path_mount+0x1490/0x21e0
[ 2424.879072]  ? strncpy_from_user+0x9e/0x470
[ 2424.879658]  ? finish_automount+0xa90/0xa90
[ 2424.880254]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2424.880887]  ? _copy_from_user+0xfb/0x1b0
[ 2424.881464]  __x64_sys_mount+0x282/0x300
[ 2424.882011]  ? copy_mnt_ns+0xa00/0xa00
[ 2424.882549]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2424.883259]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2424.883891] FAULT_INJECTION: forcing a failure.
[ 2424.883891] name failslab, interval 1, probability 0, space 0, times 0
[ 2424.883966]  do_syscall_64+0x33/0x40
[ 2424.887318]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2424.888012] RIP: 0033:0x7f67f1462b19
[ 2424.888513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2424.891029] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2424.892075] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2424.893049] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2424.894039] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2424.895008] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2424.895976] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2424.896987] CPU: 0 PID: 36553 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2424.898783] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2424.899592] __nla_validate_parse: 4 callbacks suppressed
[ 2424.899600] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2424.900899] Call Trace:
[ 2424.900923]  dump_stack+0x107/0x167
[ 2424.900947]  should_fail.cold+0x5/0xa
[ 2424.905700] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2424.906352]  ? kvmalloc_node+0x119/0x170
[ 2424.906371]  should_failslab+0x5/0x20
[ 2424.909490]  __kmalloc_node+0x76/0x420
[ 2424.910481]  kvmalloc_node+0x119/0x170
[ 2424.911472]  bucket_table_alloc.isra.0+0x88/0x490
[ 2424.912670]  rhashtable_init+0x341/0x760
[ 2424.913717]  rhltable_init+0x1c/0x60
[ 2424.914657]  sta_info_init+0x1f/0x110
[ 2424.915599]  ieee80211_alloc_hw_nm+0x6a0/0x2320
[ 2424.916777]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.917861]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2424.919115]  ? mark_held_locks+0x9e/0xe0
[ 2424.920143]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.921241]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2424.922407]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2424.923562]  ? memcpy+0x39/0x60
[ 2424.924385]  hwsim_new_radio_nl+0x991/0x1080
[ 2424.925508]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2424.926809]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2424.928479]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2424.930131]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2424.931351]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2424.932997]  ? cap_capable+0x1cd/0x230
[ 2424.933999]  ? ns_capable+0xe2/0x110
[ 2424.934934]  genl_rcv_msg+0x36a/0x5a0
[ 2424.936104]  ? genl_get_cmd+0x480/0x480
[ 2424.937101]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2424.938427]  ? lock_release+0x680/0x680
[ 2424.939419]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2424.939867] 9p: Unknown uid 18446744073709551615
[ 2424.940556]  netlink_rcv_skb+0x14b/0x430
[ 2424.940578]  ? genl_get_cmd+0x480/0x480
[ 2424.943194]  ? netlink_ack+0xab0/0xab0
[ 2424.944173]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2424.945329]  ? is_vmalloc_addr+0x7b/0xb0
[ 2424.946338]  genl_rcv+0x24/0x40
[ 2424.947166]  netlink_unicast+0x6ce/0xa00
[ 2424.948173]  ? netlink_attachskb+0xab0/0xab0
[ 2424.949295]  netlink_sendmsg+0x90f/0xe00
[ 2424.950307]  ? netlink_unicast+0xa00/0xa00
[ 2424.951379]  ? netlink_unicast+0xa00/0xa00
[ 2424.952420]  __sock_sendmsg+0x154/0x190
[ 2424.953448]  ____sys_sendmsg+0x70d/0x870
[ 2424.954451]  ? sock_write_iter+0x3d0/0x3d0
[ 2424.955499]  ? do_recvmmsg+0x6d0/0x6d0
[ 2424.956458]  ? lock_downgrade+0x6d0/0x6d0
[ 2424.957501]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2424.958793]  ___sys_sendmsg+0xf3/0x170
[ 2424.959767]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2424.961028]  ? __fget_files+0x2cf/0x520
[ 2424.962097]  ? lock_downgrade+0x6d0/0x6d0
[ 2424.963112]  ? find_held_lock+0x2c/0x110
[ 2424.964128]  ? __fget_files+0x2f8/0x520
[ 2424.965110]  ? __fget_light+0xea/0x290
[ 2424.966098]  __sys_sendmsg+0xe5/0x1b0
[ 2424.967032]  ? __sys_sendmsg_sock+0x40/0x40
[ 2424.968098]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2424.969264]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2424.970564]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2424.971821]  ? trace_hardirqs_on+0x5b/0x180
[ 2424.972899]  do_syscall_64+0x33/0x40
04:37:10 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 59)

[ 2424.973814]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2424.975228] RIP: 0033:0x7f7bcd366b19
[ 2424.976131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2424.980629] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2424.982489] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2424.984219] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2424.985964] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2424.987706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2424.989585] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:37:10 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000607b342c940"], 0x28}}, 0x0)

[ 2425.016544] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2425.033997] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2425.047134] FAULT_INJECTION: forcing a failure.
[ 2425.047134] name failslab, interval 1, probability 0, space 0, times 0
[ 2425.048743] CPU: 1 PID: 36774 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2425.049631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2425.050674] Call Trace:
[ 2425.051037]  dump_stack+0x107/0x167
[ 2425.051510]  should_fail.cold+0x5/0xa
[ 2425.052028]  ? create_object.isra.0+0x3a/0xa30
[ 2425.052623]  should_failslab+0x5/0x20
[ 2425.053127]  kmem_cache_alloc+0x5b/0x310
[ 2425.053647]  ? lock_release+0x680/0x680
[ 2425.054159]  create_object.isra.0+0x3a/0xa30
[ 2425.054713]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2425.055377]  __kmalloc_track_caller+0x177/0x370
[ 2425.055970]  ? kstrdup_const+0x53/0x80
[ 2425.056465]  kstrdup+0x36/0x70
[ 2425.056871]  kstrdup_const+0x53/0x80
[ 2425.057351]  kvasprintf_const+0x10c/0x1a0
[ 2425.057878]  kobject_set_name_vargs+0x56/0x150
[ 2425.058453]  kobject_init_and_add+0xc9/0x160
[ 2425.059010]  ? kobject_create_and_add+0xb0/0xb0
[ 2425.059599]  ? wait_for_completion_io+0x270/0x270
[ 2425.060202]  ? kernfs_name_hash+0xe7/0x110
[ 2425.060737]  ? kernfs_find_ns+0x256/0x380
[ 2425.061289]  sysfs_slab_add+0x172/0x200
[ 2425.061791]  __kmem_cache_create+0x3db/0x520
[ 2425.062360]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2425.062998]  p9_client_create+0xc6a/0x1230
[ 2425.063548]  ? p9_client_flush+0x430/0x430
[ 2425.064088]  ? trace_hardirqs_on+0x5b/0x180
[ 2425.064631]  ? lockdep_init_map_type+0x2c7/0x780
[ 2425.065238]  ? __raw_spin_lock_init+0x36/0x110
[ 2425.065813]  v9fs_session_init+0x1dd/0x1680
[ 2425.066353]  ? lock_release+0x680/0x680
[ 2425.066861]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2425.067468]  ? v9fs_show_options+0x690/0x690
[ 2425.068021]  ? trace_hardirqs_on+0x5b/0x180
[ 2425.068565]  ? kasan_unpoison_shadow+0x33/0x50
[ 2425.069136]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2425.069781]  v9fs_mount+0x79/0x8f0
[ 2425.070236]  ? v9fs_write_inode+0x60/0x60
[ 2425.070757]  legacy_get_tree+0x105/0x220
[ 2425.071270]  vfs_get_tree+0x8e/0x300
[ 2425.071740]  path_mount+0x1490/0x21e0
[ 2425.072221]  ? strncpy_from_user+0x9e/0x470
[ 2425.072759]  ? finish_automount+0xa90/0xa90
[ 2425.073312]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2425.073893]  ? _copy_from_user+0xfb/0x1b0
[ 2425.074415]  __x64_sys_mount+0x282/0x300
[ 2425.074927]  ? copy_mnt_ns+0xa00/0xa00
[ 2425.075418]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2425.076079]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2425.076734]  do_syscall_64+0x33/0x40
[ 2425.077210]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2425.077855] RIP: 0033:0x7f67f1462b19
[ 2425.078324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2425.080621] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2425.081575] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2425.082460] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2425.083359] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2425.084242] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2425.085128] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2425.092703] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:37:10 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f000000}, 0x58)

04:37:10 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000006c07b342c940"], 0x28}}, 0x0)

04:37:10 executing program 5:
syz_emit_ethernet(0x5e, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "96f936", 0x28, 0x3a, 0xff, @empty, @mcast2, {[@srh={0x5e, 0x2, 0x4, 0x1, 0x6, 0x8, 0x1, [@private0]}], @ndisc_ra={0x86, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000080)={@empty, @multicast, @void, {@canfd={0xd, {{0x0, 0x1, 0x0, 0x1}, 0x35, 0x1, 0x0, 0x0, "e8f2abdfe6da35e515d365bdbb29f9e0bda7743f12480a39b4fb7a81d9e512d7fa0dd9b3dfe46d87f08bf8538734732e7774d32df74a8eabb258455285fed98a"}}}}, &(0x7f0000000100)={0x1, 0x2, [0xf80, 0xcab, 0xf38, 0x1c3]})
syz_emit_ethernet(0x174, &(0x7f0000000140)={@remote, @broadcast, @void, {@ipv6={0x86dd, @generic={0x6, 0x6, "ffc27b", 0x13e, 0xff, 0x1, @dev={0xfe, 0x80, '\x00', 0x44}, @mcast1, {[@hopopts={0x3b, 0x4, '\x00', [@calipso={0x7, 0x10, {0x3, 0x2, 0x1, 0x1, [0xd9]}}, @pad1, @pad1, @enc_lim={0x4, 0x1, 0x80}, @jumbo={0xc2, 0x4, 0x8000}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}, @routing={0x3a, 0x6, 0x2, 0x20, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, @ipv4={'\x00', '\xff\xff', @multicast1}]}], "1cedb3c58f451be4f38bbef962890f7018d75ebcb1cb5ffca0f1ec308b0babc58c701a2dd1e160152753d40008234b7e5d7558383a38746a17e98774b1492c5ab7503c7e5d54dd71031f1ebd8948bde78b203153a61e32e22ef38d3726d09e21207ca48a18aaa8cb9df829fc709c5059238308f715c0db3af96f36076ec28857815b00251532a8898bc8224ea3f4d6a72b39344b797f6ab5bc50f91e7cba58aae6735efe7eec11848af5ddcde0c1e1aaf05f5604c51320c1a5100718726813b5c27255cf3d8ddcc648a642f889f660174b3f58807c38"}}}}}, &(0x7f00000002c0)={0x0, 0x2, [0x3a0, 0xa1b, 0x10, 0x96d]})

[ 2425.105038] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:37:10 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x62e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2425.156037] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2425.157100] CPU: 1 PID: 36553 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2425.157939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2425.158934] Call Trace:
[ 2425.159261]  dump_stack+0x107/0x167
[ 2425.159703]  sysfs_warn_dup.cold+0x1c/0x29
[ 2425.160221]  sysfs_do_create_link_sd+0x122/0x140
[ 2425.160786]  sysfs_create_link+0x5f/0xc0
[ 2425.161284]  device_add+0x703/0x1c50
[ 2425.161733]  ? devlink_add_symlinks+0x970/0x970
[ 2425.162293]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2425.162921]  wiphy_register+0x1da6/0x2850
[ 2425.163429]  ? wiphy_unregister+0xb90/0xb90
[ 2425.163956]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2425.164595]  ieee80211_register_hw+0x23c5/0x38b0
[ 2425.165182]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2425.165760]  ? net_generic+0xdb/0x2b0
[ 2425.166223]  ? lockdep_init_map_type+0x2c7/0x780
[ 2425.166788]  ? memset+0x20/0x50
[ 2425.167186]  ? __hrtimer_init+0x12c/0x270
[ 2425.167680]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2425.168290]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2425.168839]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2425.169394]  ? memcpy+0x39/0x60
[ 2425.169789]  hwsim_new_radio_nl+0x991/0x1080
[ 2425.170322]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2425.170946]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2425.171737]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2425.172513]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2425.173086]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2425.173874]  ? cap_capable+0x1cd/0x230
[ 2425.174351]  ? ns_capable+0xe2/0x110
[ 2425.174793]  genl_rcv_msg+0x36a/0x5a0
[ 2425.175252]  ? genl_get_cmd+0x480/0x480
[ 2425.175724]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2425.176349]  ? lock_release+0x680/0x680
[ 2425.176820]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2425.177371]  netlink_rcv_skb+0x14b/0x430
[ 2425.177853]  ? genl_get_cmd+0x480/0x480
[ 2425.178334]  ? netlink_ack+0xab0/0xab0
[ 2425.178797]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2425.179343]  ? is_vmalloc_addr+0x7b/0xb0
[ 2425.179826]  genl_rcv+0x24/0x40
[ 2425.180223]  netlink_unicast+0x6ce/0xa00
[ 2425.180708]  ? netlink_attachskb+0xab0/0xab0
[ 2425.181247]  netlink_sendmsg+0x90f/0xe00
[ 2425.181734]  ? netlink_unicast+0xa00/0xa00
[ 2425.182243]  ? netlink_unicast+0xa00/0xa00
[ 2425.182746]  __sock_sendmsg+0x154/0x190
[ 2425.183221]  ____sys_sendmsg+0x70d/0x870
[ 2425.183719]  ? sock_write_iter+0x3d0/0x3d0
[ 2425.183729] 9p: Unknown uid 18446744073709551615
[ 2425.184784]  ? do_recvmmsg+0x6d0/0x6d0
[ 2425.185259]  ? lock_downgrade+0x6d0/0x6d0
[ 2425.185755]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2425.186377]  ___sys_sendmsg+0xf3/0x170
[ 2425.186845]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2425.187389]  ? __fget_files+0x2cf/0x520
[ 2425.187859]  ? lock_downgrade+0x6d0/0x6d0
[ 2425.188351]  ? find_held_lock+0x2c/0x110
[ 2425.188835]  ? __fget_files+0x2f8/0x520
[ 2425.189329]  ? __fget_light+0xea/0x290
[ 2425.189804]  __sys_sendmsg+0xe5/0x1b0
[ 2425.190259]  ? __sys_sendmsg_sock+0x40/0x40
[ 2425.190764]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2425.191325]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2425.191942]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2425.192546]  ? trace_hardirqs_on+0x5b/0x180
[ 2425.193056]  do_syscall_64+0x33/0x40
[ 2425.193522]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2425.194124] RIP: 0033:0x7f7bcd366b19
[ 2425.194566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2425.196727] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2425.197633] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2425.198471] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2425.199312] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2425.200152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2425.200991] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:37:10 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000707b342c940"], 0x28}}, 0x0)

04:37:10 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc8e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:37:10 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x63e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

[ 2425.295190] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2425.297526] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2425.299164] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2425.301130] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2439.961291] FAULT_INJECTION: forcing a failure.
[ 2439.961291] name failslab, interval 1, probability 0, space 0, times 0
04:37:25 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x64e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:37:25 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58)

04:37:25 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 21)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:37:25 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000907b342c940"], 0x28}}, 0x0)

04:37:25 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 60)

04:37:25 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0800}]})
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYRESHEX])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
stat(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180))
renameat2(r0, &(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x0)

[ 2439.965993] CPU: 0 PID: 37301 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2439.967565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2439.967792] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2439.969427] Call Trace:
[ 2439.969454]  dump_stack+0x107/0x167
[ 2439.969487]  should_fail.cold+0x5/0xa
[ 2439.973634]  ? kvmalloc_node+0x119/0x170
[ 2439.974543]  should_failslab+0x5/0x20
[ 2439.975396]  __kmalloc_node+0x76/0x420
[ 2439.976272]  kvmalloc_node+0x119/0x170
[ 2439.977149]  bucket_table_alloc.isra.0+0x88/0x490
[ 2439.978247]  rhashtable_init+0x341/0x760
[ 2439.979162]  rhltable_init+0x1c/0x60
[ 2439.980000]  sta_info_init+0x1f/0x110
[ 2439.980850]  ieee80211_alloc_hw_nm+0x6a0/0x2320
[ 2439.981911]  ? trace_hardirqs_on+0x5b/0x180
[ 2439.982882]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2439.983981]  ? mark_held_locks+0x9e/0xe0
[ 2439.984893]  ? trace_hardirqs_on+0x5b/0x180
[ 2439.985067] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2439.985874]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2439.985891]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2439.985920]  ? memcpy+0x39/0x60
[ 2439.990616]  hwsim_new_radio_nl+0x991/0x1080
[ 2439.991608]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2439.992779]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2439.994285]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2439.995768]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2439.996854]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2439.998348]  ? cap_capable+0x1cd/0x230
[ 2439.999237]  ? ns_capable+0xe2/0x110
[ 2440.000078]  genl_rcv_msg+0x36a/0x5a0
[ 2440.000944]  ? genl_get_cmd+0x480/0x480
[ 2440.001851]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2440.003013]  ? lock_release+0x680/0x680
[ 2440.003901]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2440.004922]  netlink_rcv_skb+0x14b/0x430
[ 2440.005838]  ? genl_get_cmd+0x480/0x480
[ 2440.006729]  ? netlink_ack+0xab0/0xab0
[ 2440.007608]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2440.008634]  ? is_vmalloc_addr+0x7b/0xb0
[ 2440.009558]  genl_rcv+0x24/0x40
[ 2440.010300]  netlink_unicast+0x6ce/0xa00
[ 2440.011218]  ? netlink_attachskb+0xab0/0xab0
[ 2440.012220]  netlink_sendmsg+0x90f/0xe00
[ 2440.013134]  ? netlink_unicast+0xa00/0xa00
[ 2440.014101]  ? netlink_unicast+0xa00/0xa00
[ 2440.015055]  __sock_sendmsg+0x154/0x190
[ 2440.015947]  ____sys_sendmsg+0x70d/0x870
[ 2440.016863]  ? sock_write_iter+0x3d0/0x3d0
[ 2440.017822]  ? do_recvmmsg+0x6d0/0x6d0
[ 2440.018703]  ? lock_downgrade+0x6d0/0x6d0
[ 2440.019642]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2440.020836]  ___sys_sendmsg+0xf3/0x170
[ 2440.021718]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2440.022743]  ? __fget_files+0x2cf/0x520
[ 2440.023637]  ? lock_downgrade+0x6d0/0x6d0
[ 2440.024563]  ? find_held_lock+0x2c/0x110
[ 2440.025492]  ? __fget_files+0x2f8/0x520
[ 2440.026391]  ? __fget_light+0xea/0x290
[ 2440.027271]  __sys_sendmsg+0xe5/0x1b0
[ 2440.028123]  ? __sys_sendmsg_sock+0x40/0x40
[ 2440.029084]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2440.030157]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2440.031338]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2440.032496]  ? trace_hardirqs_on+0x5b/0x180
04:37:25 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xc9e2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2440.033472]  do_syscall_64+0x33/0x40
[ 2440.034571]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2440.035726] RIP: 0033:0x7f7bcd366b19
[ 2440.036570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2440.040735] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2440.042459] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2440.044064] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2440.045669] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2440.047273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2440.048885] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:37:25 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000007407b342c940"], 0x28}}, 0x0)

[ 2440.072712] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:37:25 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xa9420000}, 0x58)

[ 2440.077707] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2440.081392] FAULT_INJECTION: forcing a failure.
[ 2440.081392] name failslab, interval 1, probability 0, space 0, times 0
[ 2440.083941] CPU: 0 PID: 37409 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2440.085513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2440.087376] Call Trace:
[ 2440.087967]  dump_stack+0x107/0x167
[ 2440.088789]  should_fail.cold+0x5/0xa
[ 2440.089657]  ? create_object.isra.0+0x3a/0xa30
[ 2440.090677]  should_failslab+0x5/0x20
[ 2440.091535]  kmem_cache_alloc+0x5b/0x310
[ 2440.092449]  create_object.isra.0+0x3a/0xa30
[ 2440.093461]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2440.094603]  __kmalloc_track_caller+0x177/0x370
[ 2440.095634]  ? kstrdup_const+0x53/0x80
[ 2440.096511]  kstrdup+0x36/0x70
[ 2440.097230]  kstrdup_const+0x53/0x80
[ 2440.098075]  __kernfs_new_node+0x9d/0x860
[ 2440.099003]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2440.100069]  ? lock_acquire+0x197/0x470
[ 2440.100964]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2440.102166]  ? lock_release+0x680/0x680
[ 2440.103051]  ? find_held_lock+0x2c/0x110
[ 2440.103959]  kernfs_new_node+0x18d/0x250
[ 2440.104871]  kernfs_create_dir_ns+0x49/0x160
[ 2440.105873]  sysfs_create_dir_ns+0x127/0x290
[ 2440.106860]  ? sysfs_create_mount_point+0xb0/0xb0
[ 2440.107934]  ? rwlock_bug.part.0+0x90/0x90
[ 2440.108886]  ? do_raw_spin_unlock+0x4f/0x220
[ 2440.109883]  kobject_add_internal+0x25e/0xa30
[ 2440.110899]  kobject_init_and_add+0x101/0x160
[ 2440.111905]  ? kobject_create_and_add+0xb0/0xb0
[ 2440.112966]  ? wait_for_completion_io+0x270/0x270
[ 2440.114053]  ? kernfs_name_hash+0xe7/0x110
[ 2440.115001]  ? kernfs_find_ns+0x256/0x380
[ 2440.115939]  sysfs_slab_add+0x172/0x200
[ 2440.116862]  __kmem_cache_create+0x3db/0x520
[ 2440.117861]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2440.118985]  p9_client_create+0xc6a/0x1230
[ 2440.119942]  ? p9_client_flush+0x430/0x430
[ 2440.120896]  ? trace_hardirqs_on+0x5b/0x180
[ 2440.121890]  ? lockdep_init_map_type+0x2c7/0x780
[ 2440.122951]  ? __raw_spin_lock_init+0x36/0x110
[ 2440.123988]  v9fs_session_init+0x1dd/0x1680
[ 2440.124956]  ? lock_release+0x680/0x680
[ 2440.125864]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2440.126943]  ? v9fs_show_options+0x690/0x690
[ 2440.127937]  ? trace_hardirqs_on+0x5b/0x180
[ 2440.128915]  ? kasan_unpoison_shadow+0x33/0x50
[ 2440.129954]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2440.131087]  v9fs_mount+0x79/0x8f0
[ 2440.131888]  ? v9fs_write_inode+0x60/0x60
[ 2440.132813]  legacy_get_tree+0x105/0x220
[ 2440.133737]  vfs_get_tree+0x8e/0x300
[ 2440.134573]  path_mount+0x1490/0x21e0
[ 2440.135428]  ? strncpy_from_user+0x9e/0x470
[ 2440.136393]  ? finish_automount+0xa90/0xa90
[ 2440.137364]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2440.138403]  ? _copy_from_user+0xfb/0x1b0
[ 2440.139340]  __x64_sys_mount+0x282/0x300
[ 2440.140246]  ? copy_mnt_ns+0xa00/0xa00
[ 2440.141122]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2440.142307]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2440.143464]  do_syscall_64+0x33/0x40
[ 2440.144297]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2440.145451] RIP: 0033:0x7f67f1462b19
[ 2440.146283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2440.150404] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2440.152108] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2440.153720] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2440.155313] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2440.156916] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2440.158519] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
04:37:25 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000a07b342c940"], 0x28}}, 0x0)

04:37:25 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x65e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

[ 2440.198125] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2440.204224] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:37:25 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000007a07b342c940"], 0x28}}, 0x0)

[ 2440.225958] kauditd_printk_skb: 1 callbacks suppressed
[ 2440.225979] audit: type=1326 audit(1757997445.584:256): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=37408 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f965a65db19 code=0x7ffc0000
[ 2440.239643] audit: type=1326 audit(1757997445.593:257): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=37408 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f965a65db19 code=0x7ffc0000
[ 2440.277938] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:37:25 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff}, 0x58)

[ 2440.288337] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2440.353901] 9p: Unknown uid 18446744073709551615
[ 2440.376043] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2440.378785] CPU: 0 PID: 37301 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2440.380540] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2440.382651] Call Trace:
[ 2440.383328]  dump_stack+0x107/0x167
[ 2440.384259]  sysfs_warn_dup.cold+0x1c/0x29
[ 2440.385349]  sysfs_do_create_link_sd+0x122/0x140
[ 2440.386552]  sysfs_create_link+0x5f/0xc0
[ 2440.387593]  device_add+0x703/0x1c50
[ 2440.388686]  ? devlink_add_symlinks+0x970/0x970
[ 2440.389898]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2440.391244]  wiphy_register+0x1da6/0x2850
[ 2440.392307]  ? wiphy_unregister+0xb90/0xb90
[ 2440.393415]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2440.394759]  ieee80211_register_hw+0x23c5/0x38b0
[ 2440.395967]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2440.397170]  ? net_generic+0xdb/0x2b0
[ 2440.398140]  ? lockdep_init_map_type+0x2c7/0x780
[ 2440.399334]  ? memset+0x20/0x50
[ 2440.400167]  ? __hrtimer_init+0x12c/0x270
[ 2440.401215]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2440.402503]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2440.403670]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2440.404810]  ? memcpy+0x39/0x60
[ 2440.405665]  hwsim_new_radio_nl+0x991/0x1080
[ 2440.406770]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2440.408082]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2440.409745]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2440.411389]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2440.412602]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2440.414259]  ? cap_capable+0x1cd/0x230
[ 2440.415246]  ? ns_capable+0xe2/0x110
[ 2440.416176]  genl_rcv_msg+0x36a/0x5a0
[ 2440.417128]  ? genl_get_cmd+0x480/0x480
[ 2440.418131]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2440.419437]  ? lock_release+0x680/0x680
[ 2440.420432]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2440.421569]  netlink_rcv_skb+0x14b/0x430
[ 2440.422580]  ? genl_get_cmd+0x480/0x480
[ 2440.423574]  ? netlink_ack+0xab0/0xab0
[ 2440.424548]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2440.425695]  ? is_vmalloc_addr+0x7b/0xb0
[ 2440.426714]  genl_rcv+0x24/0x40
[ 2440.427533]  netlink_unicast+0x6ce/0xa00
[ 2440.428549]  ? netlink_attachskb+0xab0/0xab0
[ 2440.429665]  netlink_sendmsg+0x90f/0xe00
[ 2440.430680]  ? netlink_unicast+0xa00/0xa00
[ 2440.431746]  ? netlink_unicast+0xa00/0xa00
[ 2440.432795]  __sock_sendmsg+0x154/0x190
[ 2440.433779]  ____sys_sendmsg+0x70d/0x870
[ 2440.434792]  ? sock_write_iter+0x3d0/0x3d0
[ 2440.435839]  ? do_recvmmsg+0x6d0/0x6d0
[ 2440.436806]  ? lock_downgrade+0x6d0/0x6d0
[ 2440.437834]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2440.439128]  ___sys_sendmsg+0xf3/0x170
[ 2440.440090]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2440.441221]  ? __fget_files+0x2cf/0x520
[ 2440.442213]  ? lock_downgrade+0x6d0/0x6d0
[ 2440.443229]  ? find_held_lock+0x2c/0x110
[ 2440.444237]  ? __fget_files+0x2f8/0x520
[ 2440.445221]  ? __fget_light+0xea/0x290
[ 2440.446215]  __sys_sendmsg+0xe5/0x1b0
[ 2440.447155]  ? __sys_sendmsg_sock+0x40/0x40
[ 2440.448210]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2440.449383]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2440.450684]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2440.451988]  ? trace_hardirqs_on+0x5b/0x180
[ 2440.453087]  do_syscall_64+0x33/0x40
[ 2440.454044]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2440.455337] RIP: 0033:0x7f7bcd366b19
[ 2440.456279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2440.460987] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2440.462932] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2440.464757] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2440.466579] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2440.468393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2440.470225] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2452.909789] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
04:37:38 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xed020000}, 0x58)

04:37:38 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000000f07b342c940"], 0x28}}, 0x0)

04:37:38 executing program 4:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r0 = io_uring_setup(0x3972, 0x0)
r1 = gettid()
getpgid(r1)
pidfd_open(r1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff})
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]})
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fallocate(r2, 0x2, 0xab36, 0x7)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) (fail_nth: 22)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
fcntl$dupfd(r5, 0x0, r4)

04:37:38 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x66e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:37:38 executing program 0:
syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0xcae2, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="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"])

04:37:38 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c00000000ffffff9e07b342c940"], 0x28}}, 0x0)

04:37:38 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 61)

04:37:38 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0xbf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000000))
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef)
fallocate(r0, 0x3, 0x0, 0x8000)

[ 2452.917420] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2452.932729] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2452.937072] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2452.944132] FAULT_INJECTION: forcing a failure.
[ 2452.944132] name failslab, interval 1, probability 0, space 0, times 0
[ 2452.946256] CPU: 0 PID: 37846 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2452.947407] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2452.948804] Call Trace:
[ 2452.949240]  dump_stack+0x107/0x167
[ 2452.949842]  should_fail.cold+0x5/0xa
[ 2452.950488]  should_failslab+0x5/0x20
[ 2452.951128]  __kmalloc_track_caller+0x79/0x370
[ 2452.951894]  ? kasprintf+0xbb/0xf0
[ 2452.952479]  kvasprintf+0xb5/0x150
[ 2452.953067]  ? bust_spinlocks+0xe0/0xe0
[ 2452.953734]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2452.954612]  ? get_random_u32+0x3cb/0x670
[ 2452.955306]  kasprintf+0xbb/0xf0
[ 2452.955867]  ? kvasprintf_const+0x1a0/0x1a0
[ 2452.956581]  ? lockdep_init_map_type+0x2c7/0x780
[ 2452.957368]  ? lockdep_init_map_type+0x2c7/0x780
[ 2452.958172]  ieee80211_alloc_led_names+0x82/0x420
[ 2452.958990]  ieee80211_alloc_hw_nm+0x1b51/0x2320
[ 2452.959772]  ? trace_hardirqs_on+0x5b/0x180
[ 2452.960496]  mac80211_hwsim_new_radio+0x1cd/0x4290
[ 2452.961313]  ? mark_held_locks+0x9e/0xe0
[ 2452.962009]  ? trace_hardirqs_on+0x5b/0x180
[ 2452.962727]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2452.963506]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2452.964259]  ? memcpy+0x39/0x60
[ 2452.964811]  hwsim_new_radio_nl+0x991/0x1080
[ 2452.965547]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2452.966424]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2452.967528]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2452.968636]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2452.969470]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2452.970584]  ? cap_capable+0x1cd/0x230
[ 2452.971237]  ? ns_capable+0xe2/0x110
[ 2452.971878]  genl_rcv_msg+0x36a/0x5a0
[ 2452.972528]  ? genl_get_cmd+0x480/0x480
[ 2452.973207]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2452.974105]  ? lock_release+0x680/0x680
[ 2452.974776]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2452.975550]  netlink_rcv_skb+0x14b/0x430
[ 2452.976244]  ? genl_get_cmd+0x480/0x480
[ 2452.976926]  ? netlink_ack+0xab0/0xab0
[ 2452.977600]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2452.978382]  ? is_vmalloc_addr+0x7b/0xb0
[ 2452.979080]  genl_rcv+0x24/0x40
[ 2452.979639]  netlink_unicast+0x6ce/0xa00
[ 2452.980331]  ? netlink_attachskb+0xab0/0xab0
[ 2452.981095]  netlink_sendmsg+0x90f/0xe00
[ 2452.981807]  ? netlink_unicast+0xa00/0xa00
[ 2452.982533]  ? netlink_unicast+0xa00/0xa00
[ 2452.983258]  __sock_sendmsg+0x154/0x190
[ 2452.983938]  ____sys_sendmsg+0x70d/0x870
[ 2452.984635]  ? sock_write_iter+0x3d0/0x3d0
[ 2452.985363]  ? do_recvmmsg+0x6d0/0x6d0
[ 2452.986034]  ? lock_downgrade+0x6d0/0x6d0
[ 2452.986746]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2452.987662]  ___sys_sendmsg+0xf3/0x170
[ 2452.988321]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2452.989091]  ? __fget_files+0x2cf/0x520
[ 2452.989777]  ? lock_downgrade+0x6d0/0x6d0
[ 2452.990495]  ? find_held_lock+0x2c/0x110
[ 2452.991192]  ? __fget_files+0x2f8/0x520
[ 2452.991864]  ? __fget_light+0xea/0x290
[ 2452.992531]  __sys_sendmsg+0xe5/0x1b0
[ 2452.993186]  ? __sys_sendmsg_sock+0x40/0x40
[ 2452.993938]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2452.994738]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2452.995627]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2452.996501]  ? trace_hardirqs_on+0x5b/0x180
[ 2452.997234]  do_syscall_64+0x33/0x40
[ 2452.997887]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2452.998756] RIP: 0033:0x7f7bcd366b19
[ 2452.999386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2453.002518] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2453.003838] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2453.005047] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2453.006271] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2453.007487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2453.008699] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
[ 2453.015104] FAULT_INJECTION: forcing a failure.
[ 2453.015104] name failslab, interval 1, probability 0, space 0, times 0
[ 2453.017144] CPU: 0 PID: 37852 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2453.018342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2453.019767] Call Trace:
[ 2453.020216]  dump_stack+0x107/0x167
[ 2453.020842]  should_fail.cold+0x5/0xa
[ 2453.021503]  ? __kernfs_new_node+0xd4/0x860
[ 2453.022235]  should_failslab+0x5/0x20
[ 2453.022892]  kmem_cache_alloc+0x5b/0x310
[ 2453.023589]  __kernfs_new_node+0xd4/0x860
[ 2453.024298]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2453.025108]  ? lock_acquire+0x197/0x470
[ 2453.025809]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2453.026715]  ? lock_release+0x680/0x680
[ 2453.027394]  ? find_held_lock+0x2c/0x110
[ 2453.028091]  kernfs_new_node+0x18d/0x250
[ 2453.028795]  kernfs_create_dir_ns+0x49/0x160
[ 2453.029554]  sysfs_create_dir_ns+0x127/0x290
[ 2453.030306]  ? sysfs_create_mount_point+0xb0/0xb0
[ 2453.031125]  ? rwlock_bug.part.0+0x90/0x90
[ 2453.031843]  ? do_raw_spin_unlock+0x4f/0x220
[ 2453.032587]  kobject_add_internal+0x25e/0xa30
[ 2453.033358]  kobject_init_and_add+0x101/0x160
[ 2453.034125]  ? kobject_create_and_add+0xb0/0xb0
[ 2453.034916]  ? wait_for_completion_io+0x270/0x270
[ 2453.035712]  ? kernfs_name_hash+0xe7/0x110
[ 2453.036409]  ? kernfs_find_ns+0x256/0x380
[ 2453.037126]  sysfs_slab_add+0x172/0x200
[ 2453.037817]  __kmem_cache_create+0x3db/0x520
[ 2453.038580]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2453.039447]  p9_client_create+0xc6a/0x1230
[ 2453.040186]  ? p9_client_flush+0x430/0x430
[ 2453.040917]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.041679]  ? lockdep_init_map_type+0x2c7/0x780
[ 2453.042511]  ? __raw_spin_lock_init+0x36/0x110
[ 2453.043310]  v9fs_session_init+0x1dd/0x1680
[ 2453.044058]  ? lock_release+0x680/0x680
[ 2453.044753]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2453.045595]  ? v9fs_show_options+0x690/0x690
[ 2453.046364]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.047113]  ? kasan_unpoison_shadow+0x33/0x50
[ 2453.047909]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2453.048783]  v9fs_mount+0x79/0x8f0
[ 2453.049396]  ? v9fs_write_inode+0x60/0x60
[ 2453.050117]  legacy_get_tree+0x105/0x220
[ 2453.050826]  vfs_get_tree+0x8e/0x300
[ 2453.051469]  path_mount+0x1490/0x21e0
[ 2453.052128]  ? strncpy_from_user+0x9e/0x470
[ 2453.052848]  ? finish_automount+0xa90/0xa90
[ 2453.053587]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2453.054361]  ? _copy_from_user+0xfb/0x1b0
[ 2453.055063]  __x64_sys_mount+0x282/0x300
[ 2453.055750]  ? copy_mnt_ns+0xa00/0xa00
[ 2453.056379]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2453.057270]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2453.058168]  do_syscall_64+0x33/0x40
[ 2453.058809]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2453.059692] RIP: 0033:0x7f67f1462b19
[ 2453.060321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2453.063477] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2453.064774] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2453.065995] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2453.067213] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2453.068430] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2453.069646] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2453.070932] kobject_add_internal failed for 9p-fcall-cache-424 (error: -12 parent: slab)
[ 2453.072369] kmem_cache_create(9p-fcall-cache-424) failed with error -12
[ 2453.073521] CPU: 0 PID: 37852 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2453.074653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2453.076040] Call Trace:
[ 2453.076480]  dump_stack+0x107/0x167
[ 2453.077109]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2453.078048]  p9_client_create+0xc6a/0x1230
[ 2453.078802]  ? p9_client_flush+0x430/0x430
[ 2453.079543]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.080295]  ? lockdep_init_map_type+0x2c7/0x780
[ 2453.081110]  ? __raw_spin_lock_init+0x36/0x110
[ 2453.081907]  v9fs_session_init+0x1dd/0x1680
[ 2453.082642]  ? lock_release+0x680/0x680
[ 2453.083337]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2453.084174]  ? v9fs_show_options+0x690/0x690
[ 2453.084956]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.085142] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2453.085712]  ? kasan_unpoison_shadow+0x33/0x50
[ 2453.085726]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2453.085751]  v9fs_mount+0x79/0x8f0
[ 2453.089791]  ? v9fs_write_inode+0x60/0x60
[ 2453.090506]  legacy_get_tree+0x105/0x220
[ 2453.091209]  vfs_get_tree+0x8e/0x300
[ 2453.091854]  path_mount+0x1490/0x21e0
[ 2453.092520]  ? strncpy_from_user+0x9e/0x470
[ 2453.093260]  ? finish_automount+0xa90/0xa90
[ 2453.093985]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2453.094771]  ? _copy_from_user+0xfb/0x1b0
[ 2453.095480]  __x64_sys_mount+0x282/0x300
[ 2453.096174]  ? copy_mnt_ns+0xa00/0xa00
[ 2453.096831]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2453.097735]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2453.098621]  do_syscall_64+0x33/0x40
[ 2453.099262]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2453.100134] RIP: 0033:0x7f67f1462b19
[ 2453.100763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2453.103922] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2453.105228] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2453.106454] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2453.107669] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2453.108905] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2453.110126] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2453.111368] CPU: 1 PID: 37846 Comm: syz-executor.4 Not tainted 5.10.244 #1
[ 2453.112839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2453.114636] Call Trace:
[ 2453.115198]  dump_stack+0x107/0x167
[ 2453.115969]  sysfs_warn_dup.cold+0x1c/0x29
[ 2453.116850]  sysfs_do_create_link_sd+0x122/0x140
[ 2453.117660] 9p: Unknown uid 18446744073709551615
[ 2453.117843]  sysfs_create_link+0x5f/0xc0
[ 2453.119526]  device_add+0x703/0x1c50
[ 2453.120333]  ? devlink_add_symlinks+0x970/0x970
[ 2453.121342]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2453.122497]  wiphy_register+0x1da6/0x2850
[ 2453.123400]  ? wiphy_unregister+0xb90/0xb90
04:37:38 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffe4}, 0x58)

[ 2453.124352]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2453.125703]  ieee80211_register_hw+0x23c5/0x38b0
[ 2453.126725]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2453.127757]  ? net_generic+0xdb/0x2b0
[ 2453.128578]  ? lockdep_init_map_type+0x2c7/0x780
[ 2453.129611]  ? memset+0x20/0x50
[ 2453.130328]  ? __hrtimer_init+0x12c/0x270
[ 2453.131226]  mac80211_hwsim_new_radio+0x1d04/0x4290
[ 2453.132321]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2453.133320]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2453.134340]  ? memcpy+0x39/0x60
[ 2453.135057]  hwsim_new_radio_nl+0x991/0x1080
[ 2453.136005]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2453.137136]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2453.138560]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2453.139972]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2453.141017]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2453.142443]  ? cap_capable+0x1cd/0x230
[ 2453.143294]  ? ns_capable+0xe2/0x110
[ 2453.144097]  genl_rcv_msg+0x36a/0x5a0
[ 2453.144917]  ? genl_get_cmd+0x480/0x480
[ 2453.145779]  ? mac80211_hwsim_new_radio+0x4290/0x4290
[ 2453.146895]  ? lock_release+0x680/0x680
[ 2453.147750]  ? netlink_deliver_tap+0xf4/0xcc0
[ 2453.148717]  netlink_rcv_skb+0x14b/0x430
[ 2453.149606]  ? genl_get_cmd+0x480/0x480
[ 2453.150463]  ? netlink_ack+0xab0/0xab0
[ 2453.151313]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 2453.152293]  ? is_vmalloc_addr+0x7b/0xb0
[ 2453.153168]  genl_rcv+0x24/0x40
[ 2453.153882]  netlink_unicast+0x6ce/0xa00
[ 2453.154759]  ? netlink_attachskb+0xab0/0xab0
[ 2453.155713]  netlink_sendmsg+0x90f/0xe00
[ 2453.156589]  ? netlink_unicast+0xa00/0xa00
[ 2453.157515]  ? netlink_unicast+0xa00/0xa00
[ 2453.158421]  __sock_sendmsg+0x154/0x190
[ 2453.159275]  ____sys_sendmsg+0x70d/0x870
[ 2453.160149]  ? sock_write_iter+0x3d0/0x3d0
[ 2453.161059]  ? do_recvmmsg+0x6d0/0x6d0
[ 2453.161912]  ? lock_downgrade+0x6d0/0x6d0
[ 2453.162810]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2453.163947]  ___sys_sendmsg+0xf3/0x170
[ 2453.164785]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2453.165766]  ? __fget_files+0x2cf/0x520
[ 2453.166604]  ? lock_downgrade+0x6d0/0x6d0
[ 2453.167494]  ? find_held_lock+0x2c/0x110
[ 2453.168384]  ? __fget_files+0x2f8/0x520
[ 2453.169249]  ? __fget_light+0xea/0x290
[ 2453.170106]  __sys_sendmsg+0xe5/0x1b0
[ 2453.170924]  ? __sys_sendmsg_sock+0x40/0x40
[ 2453.171857]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2453.172876]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2453.174012]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2453.175118]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.176049]  do_syscall_64+0x33/0x40
[ 2453.176851]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2453.177970] RIP: 0033:0x7f7bcd366b19
[ 2453.178773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2453.182744] RSP: 002b:00007f7bca8dc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2453.184387] RAX: ffffffffffffffda RBX: 00007f7bcd479f60 RCX: 00007f7bcd366b19
[ 2453.185928] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2453.187467] RBP: 00007f7bca8dc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2453.189002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2453.190553] R13: 00007ffe711e07af R14: 00007f7bca8dc300 R15: 0000000000022000
04:37:38 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c00000000fffffff007b342c940"], 0x28}}, 0x0)

04:37:38 executing program 1:
syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX, @ANYBLOB="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"]) (fail_nth: 62)

04:37:38 executing program 2:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f00000010c0), &(0x7f0000001100)=<r2=>0x0, &(0x7f0000001140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$9p_fd(0x67e9, &(0x7f0000000400)='./file1\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',loose,access=', @ANYRESDEC=r3, @ANYBLOB=',debug=0x0000000000000fff,nodevmap,cache=loose,dfltgid=', @ANYRESHEX=r2, @ANYBLOB="2c616669643d3078303030303030243030303030303334352c002d7256e4577ae496d1ccba65c64be2a9cecdf5fbd2ca5df5707629e5f5ac00000060bd8ff1cf5cc521637a45a684e6bbf9b96a25dc40fccbe86c83da8dbd9beaadf8a3eebfa9d071c8fcf96baf0ed5aca8b2ebb757186ef82857fd6e1ed559dfc0ff9689be8c24908993f5a05e80d02e88d8797a08ca7de6a3a77df2371bf5d2b6d3935d4b4736cd776bab88b632eff82022253aa12ebf68fd67f0d9356de92ed9f888b76e19730ec53b0134028f2fbbc8c3f2230523737c27c9606614b896ae6e0759796947ca6b6383f7b3ef58f775f7a9866437bf7a0000010000000000acd8185b6de54329d1b534b17f145b2357a37acc7f0f04ee8b34e990e54872eacd789d375131fa0200064c03777de8da255c3eacc9898a1e9dc4afdd62d7"])

04:37:38 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001c00210c000000000000004807b342c940"], 0x28}}, 0x0)

[ 2453.307602] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2453.312642] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2453.316928] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
04:37:38 executing program 7:
unshare(0x8000000)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58)

[ 2453.329979] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2453.344035] FAULT_INJECTION: forcing a failure.
[ 2453.344035] name failslab, interval 1, probability 0, space 0, times 0
[ 2453.346088] CPU: 0 PID: 38189 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2453.347272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2453.348682] Call Trace:
[ 2453.349135]  dump_stack+0x107/0x167
[ 2453.349771]  should_fail.cold+0x5/0xa
[ 2453.350417]  ? __kernfs_new_node+0xd4/0x860
[ 2453.351150]  should_failslab+0x5/0x20
[ 2453.351802]  kmem_cache_alloc+0x5b/0x310
[ 2453.352496]  __kernfs_new_node+0xd4/0x860
[ 2453.353203]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2453.354026]  ? lock_acquire+0x197/0x470
[ 2453.354701]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2453.355590]  ? lock_release+0x680/0x680
[ 2453.356267]  ? find_held_lock+0x2c/0x110
[ 2453.356963]  kernfs_new_node+0x18d/0x250
[ 2453.357660]  kernfs_create_dir_ns+0x49/0x160
[ 2453.358411]  sysfs_create_dir_ns+0x127/0x290
[ 2453.359158]  ? sysfs_create_mount_point+0xb0/0xb0
[ 2453.359975]  ? rwlock_bug.part.0+0x90/0x90
[ 2453.360708]  ? do_raw_spin_unlock+0x4f/0x220
[ 2453.361476]  kobject_add_internal+0x25e/0xa30
[ 2453.362250]  kobject_init_and_add+0x101/0x160
[ 2453.363021]  ? kobject_create_and_add+0xb0/0xb0
[ 2453.363809]  ? wait_for_completion_io+0x270/0x270
[ 2453.364631]  ? kernfs_name_hash+0xe7/0x110
[ 2453.365359]  ? kernfs_find_ns+0x256/0x380
[ 2453.366072]  sysfs_slab_add+0x172/0x200
[ 2453.366752]  __kmem_cache_create+0x3db/0x520
[ 2453.367511]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2453.368366]  p9_client_create+0xc6a/0x1230
[ 2453.369097]  ? p9_client_flush+0x430/0x430
[ 2453.369827]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.370571]  ? lockdep_init_map_type+0x2c7/0x780
[ 2453.371388]  ? __raw_spin_lock_init+0x36/0x110
[ 2453.372180]  v9fs_session_init+0x1dd/0x1680
[ 2453.372907]  ? lock_release+0x680/0x680
[ 2453.373594]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2453.374405]  ? v9fs_show_options+0x690/0x690
[ 2453.375162]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.375890]  ? kasan_unpoison_shadow+0x33/0x50
[ 2453.376665]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2453.377531]  v9fs_mount+0x79/0x8f0
[ 2453.378141]  ? v9fs_write_inode+0x60/0x60
[ 2453.378845]  legacy_get_tree+0x105/0x220
[ 2453.379538]  vfs_get_tree+0x8e/0x300
[ 2453.380169]  path_mount+0x1490/0x21e0
[ 2453.380822]  ? strncpy_from_user+0x9e/0x470
[ 2453.381561]  ? finish_automount+0xa90/0xa90
[ 2453.382294]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2453.383086]  ? _copy_from_user+0xfb/0x1b0
[ 2453.383809]  __x64_sys_mount+0x282/0x300
[ 2453.384496]  ? copy_mnt_ns+0xa00/0xa00
[ 2453.385164]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2453.386061]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2453.386942]  do_syscall_64+0x33/0x40
[ 2453.387579]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2453.388452] RIP: 0033:0x7f67f1462b19
[ 2453.389080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2453.392216] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2453.393526] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2453.394753] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2453.395976] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2453.397201] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2453.398420] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2453.399756] kobject_add_internal failed for 9p-fcall-cache-425 (error: -12 parent: slab)
[ 2453.401214] kmem_cache_create(9p-fcall-cache-425) failed with error -12
[ 2453.402406] CPU: 0 PID: 38189 Comm: syz-executor.1 Not tainted 5.10.244 #1
[ 2453.403590] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2453.405005] Call Trace:
[ 2453.405466]  dump_stack+0x107/0x167
[ 2453.406091]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2453.406985]  p9_client_create+0xc6a/0x1230
[ 2453.407726]  ? p9_client_flush+0x430/0x430
[ 2453.408445]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.409179]  ? lockdep_init_map_type+0x2c7/0x780
[ 2453.409988]  ? __raw_spin_lock_init+0x36/0x110
[ 2453.410769]  v9fs_session_init+0x1dd/0x1680
[ 2453.411503]  ? lock_release+0x680/0x680
[ 2453.412191]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2453.413008]  ? v9fs_show_options+0x690/0x690
[ 2453.413769]  ? trace_hardirqs_on+0x5b/0x180
[ 2453.414494]  ? kasan_unpoison_shadow+0x33/0x50
[ 2453.415274]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2453.416141]  v9fs_mount+0x79/0x8f0
[ 2453.416744]  ? v9fs_write_inode+0x60/0x60
[ 2453.417451]  legacy_get_tree+0x105/0x220
[ 2453.418109]  vfs_get_tree+0x8e/0x300
[ 2453.418743]  path_mount+0x1490/0x21e0
[ 2453.419401]  ? strncpy_from_user+0x9e/0x470
[ 2453.420131]  ? finish_automount+0xa90/0xa90
[ 2453.420877]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2453.421691]  ? _copy_from_user+0xfb/0x1b0
[ 2453.422395]  __x64_sys_mount+0x282/0x300
[ 2453.423085]  ? copy_mnt_ns+0xa00/0xa00
[ 2453.423780]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2453.424684]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2453.425566]  do_syscall_64+0x33/0x40
[ 2453.426197]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2453.427069] RIP: 0033:0x7f67f1462b19
[ 2453.427698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2453.430842] RSP: 002b:00007f67ee9d8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2453.432129] RAX: ffffffffffffffda RBX: 00007f67f1575f60 RCX: 00007f67f1462b19
[ 2453.433336] RDX: 00000000200000c0 RSI: 0000000020000400 RDI: 0000000000000000
[ 2453.434568] RBP: 00007f67ee9d81d0 R08: 0000000020000640 R09: 0000000000000000
[ 2453.435787] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000002
[ 2453.436998] R13: 00007fffbde7477f R14: 00007f67ee9d8300 R15: 0000000000022000
[ 2453.511312] 9p: Unknown uid 18446744073709551615
[ 2467.624048] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
BUG: memory leak
unreferenced object 0xffff88804ae890c0 (size 32):
  comm "syz-executor.1", pid 37852, jiffies 4297119955 (age 22.693s)
  hex dump (first 32 bytes):
    39 70 2d 66 63 61 6c 6c 2d 63 61 63 68 65 2d 34  9p-fcall-cache-4
    32 34 00 4a 80 88 ff ff 10 00 00 00 00 00 00 00  24.J............
  backtrace:
    [<000000000fc340f6>] kstrdup+0x36/0x70
    [<0000000080dd9938>] kstrdup_const+0x53/0x80
    [<000000008a23732f>] kvasprintf_const+0x10c/0x1a0
    [<00000000e0bddf6e>] kobject_set_name_vargs+0x56/0x150
    [<0000000095ad548e>] kobject_init_and_add+0xc9/0x160
    [<0000000079038fda>] sysfs_slab_add+0x172/0x200
    [<00000000f9a4bb22>] __kmem_cache_create+0x3db/0x520
    [<0000000053eaf220>] kmem_cache_create_usercopy+0x1db/0x2f0
    [<00000000b94bc3c0>] p9_client_create+0xc6a/0x1230
    [<00000000f4fa7529>] v9fs_session_init+0x1dd/0x1680
    [<000000003ca8942c>] v9fs_mount+0x79/0x8f0
    [<000000006763553c>] legacy_get_tree+0x105/0x220
    [<00000000035b1e1e>] vfs_get_tree+0x8e/0x300
    [<000000007b3bf2e9>] path_mount+0x1490/0x21e0
    [<0000000016c72b24>] __x64_sys_mount+0x282/0x300
    [<000000001ec5963c>] do_syscall_64+0x33/0x40

BUG: memory leak
unreferenced object 0xffff888047e9dc80 (size 32):
  comm "syz-executor.1", pid 38189, jiffies 4297120284 (age 22.364s)
  hex dump (first 32 bytes):
    39 70 2d 66 63 61 6c 6c 2d 63 61 63 68 65 2d 34  9p-fcall-cache-4
    32 35 00 47 80 88 ff ff 00 00 00 00 00 00 00 00  25.G............
  backtrace:
    [<000000000fc340f6>] kstrdup+0x36/0x70
    [<0000000080dd9938>] kstrdup_const+0x53/0x80
    [<000000008a23732f>] kvasprintf_const+0x10c/0x1a0
    [<00000000e0bddf6e>] kobject_set_name_vargs+0x56/0x150
    [<0000000095ad548e>] kobject_init_and_add+0xc9/0x160
    [<0000000079038fda>] sysfs_slab_add+0x172/0x200
    [<00000000f9a4bb22>] __kmem_cache_create+0x3db/0x520
    [<0000000053eaf220>] kmem_cache_create_usercopy+0x1db/0x2f0
    [<00000000b94bc3c0>] p9_client_create+0xc6a/0x1230
    [<00000000f4fa7529>] v9fs_session_init+0x1dd/0x1680
    [<000000003ca8942c>] v9fs_mount+0x79/0x8f0
    [<000000006763553c>] legacy_get_tree+0x105/0x220
    [<00000000035b1e1e>] vfs_get_tree+0x8e/0x300
    [<000000007b3bf2e9>] path_mount+0x1490/0x21e0
    [<0000000016c72b24>] __x64_sys_mount+0x282/0x300
    [<000000001ec5963c>] do_syscall_64+0x33/0x40

BUG: leak checking failed

VM DIAGNOSIS:
04:38:01  Registers:
info registers vcpu 0
RAX=ffffffff83e979f0 RBX=0000000000000000 RCX=ffffffff83e7f65c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e981b8 RBP=0000000000000000 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85679e08 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e979fe RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5253c78020 CR3=0000000017598000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000dd060a
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000004190cbc140000000 XMM03=0000ff00000000000000000000000000
XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962
XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff83e979f0 RBX=0000000000000001 RCX=ffffffff83e7f65c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e981b8 RBP=0000000000000001 RSP=ffff888008987e70
R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001
R12=0000000000000001 R13=ffffffff85679e08 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e979fe RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fffbe00ef88 CR3=000000000e6ce000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=656a626f206465636e6572656665726e
XMM02=3a29323320657a697328203063303938 XMM03=373320646970202c22312e726f747563
XMM04=6c6c6163662d70392020343320643220 XMM05=32206336206336203136203336203636
XMM06=73657479622032332074737269662820 XMM07=2e323220656761282035353939313137
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000