IP: 0033:0x7faeae69fb19
[ 1821.993299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1821.994837] RSP: 002b:00007faeabc15188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1821.995466] RAX: ffffffffffffffda RBX: 00007faeae7b2f60 RCX: 00007faeae69fb19
[ 1821.996058] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1821.996643] RBP: 00007faeabc151d0 R08: 0000000000000000 R09: 0000000000000000
[ 1821.997236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1821.997833] R13: 00007ffe0416157f R14: 00007faeabc15300 R15: 0000000000022000
13:08:36 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x7, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:36 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 15)

13:08:36 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x0, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 1835.016442] FAULT_INJECTION: forcing a failure.
[ 1835.016442] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.017470] CPU: 1 PID: 10503 Comm: syz-executor.4 Not tainted 5.10.214 #1
13:08:36 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 46)

13:08:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x600, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:36 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 14)

13:08:36 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x3f00}}}, 0xe)

13:08:36 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1835.018025] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.018957] Call Trace:
[ 1835.019177]  dump_stack+0x107/0x167
[ 1835.019563]  should_fail.cold+0x5/0xa
[ 1835.019880]  ? nl80211_dump_wiphy+0x53b/0x760
[ 1835.020264]  should_failslab+0x5/0x20
[ 1835.020322] FAULT_INJECTION: forcing a failure.
[ 1835.020322] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.020571]  kmem_cache_alloc_trace+0x55/0x320
[ 1835.020591]  nl80211_dump_wiphy+0x53b/0x760
[ 1835.022958]  ? memset+0x20/0x50
[ 1835.023235]  netlink_dump+0x57c/0x1050
[ 1835.023567]  ? netlink_deliver_tap+0xcc0/0xcc0
[ 1835.023965]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.024373]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.024746]  ? genl_start+0x452/0x670
[ 1835.025080]  __netlink_dump_start+0x649/0x900
[ 1835.025456]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.025893]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.026285]  genl_family_rcv_msg_dumpit+0x1c9/0x310
[ 1835.026684]  ? genl_rcv+0x40/0x40
[ 1835.026972]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.027388]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.027756]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1835.028197]  ? __radix_tree_lookup+0x1f3/0x290
[ 1835.028582]  ? genl_get_cmd+0x3cf/0x480
[ 1835.028935]  genl_rcv_msg+0x44b/0x5a0
[ 1835.029247]  ? genl_get_cmd+0x480/0x480
[ 1835.029584]  ? nl80211_dump_wiphy+0x760/0x760
[ 1835.029981]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.030373]  ? nl80211_register_unexpected_frame+0x180/0x180
[ 1835.030868]  ? lock_release+0x680/0x680
[ 1835.031191]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1835.031571]  netlink_rcv_skb+0x14b/0x430
[ 1835.031905]  ? genl_get_cmd+0x480/0x480
[ 1835.032240]  ? netlink_ack+0xab0/0xab0
[ 1835.032552]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1835.032949]  ? is_vmalloc_addr+0x7b/0xb0
[ 1835.033271]  genl_rcv+0x24/0x40
[ 1835.033550]  netlink_unicast+0x549/0x7f0
[ 1835.033885]  ? netlink_attachskb+0x870/0x870
[ 1835.034263]  netlink_sendmsg+0x90f/0xdf0
[ 1835.034585]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.034962]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.035297]  __sock_sendmsg+0x154/0x190
[ 1835.035644]  ____sys_sendmsg+0x70d/0x870
[ 1835.035976]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.036330]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.036642]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.037095]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.037424]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.037876]  ? SOFTIRQ_verbose+0x10/0x10
[ 1835.038199]  ___sys_sendmsg+0xf3/0x170
[ 1835.038537]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.038908]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.039261]  ? find_held_lock+0x2c/0x110
[ 1835.039589]  ? __fget_files+0x296/0x4c0
[ 1835.039950]  ? __fget_light+0xea/0x290
[ 1835.040263]  __sys_sendmsg+0xe5/0x1b0
[ 1835.040591]  ? __sys_sendmsg_sock+0x40/0x40
[ 1835.040936]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.041338]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1835.041753]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.042190]  ? trace_hardirqs_on+0x5b/0x180
[ 1835.042533]  do_syscall_64+0x33/0x40
[ 1835.042856]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.043254] RIP: 0033:0x7faeae69fb19
[ 1835.043569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.044978] RSP: 002b:00007faeabc15188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1835.045609] RAX: ffffffffffffffda RBX: 00007faeae7b2f60 RCX: 00007faeae69fb19
[ 1835.046167] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1835.046761] RBP: 00007faeabc151d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.047317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.047916] R13: 00007ffe0416157f R14: 00007faeabc15300 R15: 0000000000022000
[ 1835.048492] CPU: 0 PID: 10496 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1835.049530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.050729] Call Trace:
[ 1835.051133]  dump_stack+0x107/0x167
[ 1835.051673]  should_fail.cold+0x5/0xa
[ 1835.052245]  should_failslab+0x5/0x20
[ 1835.052801]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1835.053538]  ? ip_tunnel_xmit+0xedf/0x2f40
[ 1835.054178]  pskb_expand_head+0x15a/0x1040
[ 1835.054804]  ? tnl_update_pmtu+0x381/0x1450
[ 1835.055442]  ip_tunnel_xmit+0xedf/0x2f40
[ 1835.056062]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1835.056751]  sit_tunnel_xmit+0xef0/0x2960
[ 1835.057376]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.057985]  ? ipip_rcv+0x4f0/0x4f0
[ 1835.058527]  ? skb_crc32c_csum_help+0x80/0x80
[ 1835.059173]  ? lock_acquire+0x197/0x470
[ 1835.059756]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1835.060398]  ? netif_skb_features+0x373/0xbe0
[ 1835.061060]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1835.061705]  __dev_queue_xmit+0x17ec/0x2710
[ 1835.062357]  ? find_held_lock+0x2c/0x110
[ 1835.062946]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1835.063622]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.064225]  ? lock_acquire+0x197/0x470
[ 1835.064813]  ? ip_finish_output2+0x220/0x21f0
[ 1835.065465]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1835.066248]  neigh_connected_output+0x382/0x4d0
[ 1835.066932]  ip_finish_output2+0x6f1/0x21f0
[ 1835.067570]  ? nf_hook_slow+0xfc/0x1e0
[ 1835.068130]  ? ip_frag_next+0x9e0/0x9e0
[ 1835.068717]  ? nf_hook+0x160/0x510
[ 1835.069233]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1835.069994]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1835.070699]  ? ip_fragment.constprop.0+0x240/0x240
[ 1835.071419]  ? nf_hook+0x510/0x510
[ 1835.071946]  ip_output+0x2f7/0x600
[ 1835.072474]  ip_send_skb+0xdd/0x260
[ 1835.073009]  udp_send_skb+0x6da/0x11d0
[ 1835.073594]  udp_sendmsg+0x197f/0x2170
[ 1835.074170]  ? ip_frag_init+0x350/0x350
[ 1835.074768]  ? udp_setsockopt+0xc0/0xc0
[ 1835.075341]  ? mark_lock+0xf5/0x2df0
[ 1835.075896]  ? lock_chain_count+0x20/0x20
[ 1835.076499]  ? mark_lock+0xf5/0x2df0
[ 1835.077051]  ? mark_lock+0xf5/0x2df0
[ 1835.077589]  ? lock_chain_count+0x20/0x20
[ 1835.078204]  ? lock_chain_count+0x20/0x20
[ 1835.078811]  ? prep_new_page+0x16d/0x1d0
[ 1835.079404]  ? lock_chain_count+0x20/0x20
[ 1835.080018]  ? __lock_acquire+0x1657/0x5b00
[ 1835.080655]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1835.081246]  ? __lock_acquire+0x1657/0x5b00
[ 1835.081898]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1835.082648]  ? lock_acquire+0x197/0x470
[ 1835.083228]  ? find_held_lock+0x2c/0x110
[ 1835.083825]  ? lock_acquire+0x197/0x470
[ 1835.084405]  ? find_held_lock+0x2c/0x110
[ 1835.084997]  ? __might_fault+0xd3/0x180
[ 1835.085580]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.086188]  ? sock_has_perm+0x1ea/0x280
[ 1835.086782]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1835.087546]  ? __import_iovec+0x458/0x590
[ 1835.088154]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1835.088900]  inet6_sendmsg+0x105/0x140
[ 1835.089476]  ? inet6_compat_ioctl+0x320/0x320
[ 1835.090127]  __sock_sendmsg+0xf2/0x190
[ 1835.090700]  ____sys_sendmsg+0x334/0x870
[ 1835.091288]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.091907]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.092472]  ? __lock_acquire+0x1657/0x5b00
[ 1835.093125]  ___sys_sendmsg+0xf3/0x170
[ 1835.093687]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.094358]  ? vmacache_find+0x55/0x2a0
[ 1835.094955]  ? lock_acquire+0x197/0x470
[ 1835.095541]  ? find_held_lock+0x2c/0x110
[ 1835.096134]  ? __might_fault+0xd3/0x180
[ 1835.096720]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.097317]  ? asm_exc_page_fault+0x1e/0x30
[ 1835.097983]  __sys_sendmmsg+0x195/0x470
[ 1835.098573]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1835.099210]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.099830]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.100546]  ? wait_for_completion_io+0x270/0x270
[ 1835.101249]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.101942]  ? vfs_write+0x354/0xa70
[ 1835.102482]  ? fput_many+0x2f/0x1a0
[ 1835.103019]  ? ksys_write+0x1a9/0x260
[ 1835.103567]  ? __ia32_sys_read+0xb0/0xb0
[ 1835.104172]  __x64_sys_sendmmsg+0x99/0x100
[ 1835.104781]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.105538]  do_syscall_64+0x33/0x40
[ 1835.106087]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.106840] RIP: 0033:0x7f4820600b19
[ 1835.107377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.110039] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1835.111126] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1835.112164] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1835.113185] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.114231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.115253] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 1835.134654] FAULT_INJECTION: forcing a failure.
[ 1835.134654] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.135752] CPU: 1 PID: 10518 Comm: syz-executor.2 Not tainted 5.10.214 #1
[ 1835.136333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.137010] Call Trace:
[ 1835.137235]  dump_stack+0x107/0x167
[ 1835.137537]  should_fail.cold+0x5/0xa
[ 1835.137868]  ? create_object.isra.0+0x3a/0xa20
[ 1835.138246]  should_failslab+0x5/0x20
[ 1835.138564]  kmem_cache_alloc+0x5b/0x310
[ 1835.138904]  create_object.isra.0+0x3a/0xa20
[ 1835.139272]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1835.139695]  kmem_cache_alloc_trace+0x151/0x320
[ 1835.140091]  nl80211_dump_wiphy+0x53b/0x760
[ 1835.140445]  ? memset+0x20/0x50
[ 1835.140726]  netlink_dump+0x57c/0x1050
[ 1835.141050]  ? netlink_deliver_tap+0xcc0/0xcc0
[ 1835.141429]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.141841]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.142225]  ? genl_start+0x452/0x670
[ 1835.142541]  __netlink_dump_start+0x649/0x900
[ 1835.142907]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.143316]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.143701]  genl_family_rcv_msg_dumpit+0x1c9/0x310
[ 1835.144110]  ? genl_rcv+0x40/0x40
[ 1835.144402]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.144806]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.145188]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1835.145612]  ? __radix_tree_lookup+0x1f3/0x290
[ 1835.146008]  ? genl_get_cmd+0x3cf/0x480
[ 1835.146335]  genl_rcv_msg+0x44b/0x5a0
[ 1835.146653]  ? genl_get_cmd+0x480/0x480
[ 1835.146986]  ? nl80211_dump_wiphy+0x760/0x760
[ 1835.147357]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.147741]  ? nl80211_register_unexpected_frame+0x180/0x180
13:08:36 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 15)

[ 1835.148227]  ? lock_release+0x680/0x680
[ 1835.148703]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1835.149120]  netlink_rcv_skb+0x14b/0x430
[ 1835.149453]  ? genl_get_cmd+0x480/0x480
[ 1835.149786]  ? netlink_ack+0xab0/0xab0
[ 1835.150110]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1835.150482]  ? is_vmalloc_addr+0x7b/0xb0
[ 1835.150824]  genl_rcv+0x24/0x40
[ 1835.151094]  netlink_unicast+0x549/0x7f0
[ 1835.151431]  ? netlink_attachskb+0x870/0x870
[ 1835.151799]  netlink_sendmsg+0x90f/0xdf0
[ 1835.152138]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.152494]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.152849]  __sock_sendmsg+0x154/0x190
[ 1835.153177]  ____sys_sendmsg+0x70d/0x870
[ 1835.153510]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.153858]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.154171]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.154593]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.154932]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.155354]  ? SOFTIRQ_verbose+0x10/0x10
[ 1835.155694]  ___sys_sendmsg+0xf3/0x170
[ 1835.156011]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.156389]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.156729]  ? find_held_lock+0x2c/0x110
[ 1835.157071]  ? __fget_files+0x296/0x4c0
[ 1835.157400]  ? __fget_light+0xea/0x290
[ 1835.157730]  __sys_sendmsg+0xe5/0x1b0
[ 1835.158038]  ? __sys_sendmsg_sock+0x40/0x40
[ 1835.158394]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.158777]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1835.159210]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.159625]  ? trace_hardirqs_on+0x5b/0x180
[ 1835.159974]  do_syscall_64+0x33/0x40
[ 1835.160270]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.160681] RIP: 0033:0x7fc8868dfb19
[ 1835.160981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.162467] RSP: 002b:00007fc883e34188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1835.163082] RAX: ffffffffffffffda RBX: 00007fc8869f3020 RCX: 00007fc8868dfb19
[ 1835.163655] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1835.164225] RBP: 00007fc883e341d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.164793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.165363] R13: 00007ffdd92bafdf R14: 00007fc883e34300 R15: 0000000000022000
[ 1835.166819] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:08:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x700, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:36 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xff01}}}, 0xe)

13:08:36 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x0, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 1835.238000] FAULT_INJECTION: forcing a failure.
[ 1835.238000] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.239753] CPU: 0 PID: 10517 Comm: syz-executor.4 Not tainted 5.10.214 #1
[ 1835.240780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.241939] Call Trace:
[ 1835.242345]  dump_stack+0x107/0x167
[ 1835.242880]  should_fail.cold+0x5/0xa
[ 1835.243450]  ? create_object.isra.0+0x3a/0xa20
[ 1835.244103]  should_failslab+0x5/0x20
[ 1835.244672]  kmem_cache_alloc+0x5b/0x310
[ 1835.245262]  create_object.isra.0+0x3a/0xa20
[ 1835.245929]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1835.246653]  kmem_cache_alloc_trace+0x151/0x320
[ 1835.247355]  nl80211_dump_wiphy+0x53b/0x760
[ 1835.247969]  ? memset+0x20/0x50
[ 1835.248473]  netlink_dump+0x57c/0x1050
[ 1835.249047]  ? netlink_deliver_tap+0xcc0/0xcc0
13:08:36 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x2, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1835.249724]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.250505]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.251190]  ? genl_start+0x452/0x670
[ 1835.251732]  __netlink_dump_start+0x649/0x900
[ 1835.252388]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.253102]  ? visit_groups_merge.constprop.0.isra.0+0xae0/0xae0
[ 1835.254016]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.254662]  genl_family_rcv_msg_dumpit+0x1c9/0x310
[ 1835.255394]  ? genl_rcv+0x40/0x40
[ 1835.255899]  ? mark_lock+0xf5/0x2df0
[ 1835.256446]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.257144]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.257833]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1835.258570]  ? __radix_tree_lookup+0x1f3/0x290
[ 1835.259241]  ? genl_get_cmd+0x3cf/0x480
[ 1835.259810]  genl_rcv_msg+0x44b/0x5a0
[ 1835.260375]  ? genl_get_cmd+0x480/0x480
[ 1835.260946]  ? nl80211_dump_wiphy+0x760/0x760
[ 1835.261608]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.262279]  ? nl80211_register_unexpected_frame+0x180/0x180
[ 1835.263133]  ? mark_held_locks+0x9e/0xe0
[ 1835.263715]  netlink_rcv_skb+0x14b/0x430
[ 1835.264315]  ? genl_get_cmd+0x480/0x480
[ 1835.264878]  ? netlink_ack+0xab0/0xab0
[ 1835.265459]  ? genl_get_cmd+0x480/0x480
[ 1835.266032]  ? netlink_rcv_skb+0x17/0x430
[ 1835.266654]  genl_rcv+0x24/0x40
[ 1835.267127]  netlink_unicast+0x549/0x7f0
[ 1835.267741]  ? netlink_attachskb+0x870/0x870
[ 1835.268366]  netlink_sendmsg+0x90f/0xdf0
[ 1835.268976]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.269588]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.270228]  __sock_sendmsg+0x154/0x190
[ 1835.270793]  ____sys_sendmsg+0x70d/0x870
[ 1835.271399]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.271999]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.272573]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.273309]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.273937]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.274675]  ? SOFTIRQ_verbose+0x10/0x10
[ 1835.275279]  ___sys_sendmsg+0xf3/0x170
[ 1835.275838]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.276512]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.277116]  ? find_held_lock+0x2c/0x110
[ 1835.277736]  ? __fget_files+0x296/0x4c0
[ 1835.278322]  ? __fget_light+0xea/0x290
[ 1835.278911]  __sys_sendmsg+0xe5/0x1b0
[ 1835.279451]  ? __sys_sendmsg_sock+0x40/0x40
[ 1835.280086]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.280760]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1835.281524]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.282269]  ? trace_hardirqs_on+0x5b/0x180
[ 1835.282909]  do_syscall_64+0x33/0x40
[ 1835.283433]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.284184] RIP: 0033:0x7faeae69fb19
[ 1835.284718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.287498] RSP: 002b:00007faeabc15188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1835.288579] RAX: ffffffffffffffda RBX: 00007faeae7b2f60 RCX: 00007faeae69fb19
[ 1835.289620] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1835.290638] RBP: 00007faeabc151d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.291681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.292689] R13: 00007ffe0416157f R14: 00007faeabc15300 R15: 0000000000022000
13:08:36 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 16)

13:08:36 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x8, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:36 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 16)

13:08:36 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x0, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:08:36 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 47)

13:08:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x900, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:36 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x3, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1835.419048] FAULT_INJECTION: forcing a failure.
[ 1835.419048] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.420780] CPU: 0 PID: 10533 Comm: syz-executor.2 Not tainted 5.10.214 #1
[ 1835.421834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.423066] Call Trace:
[ 1835.423453]  dump_stack+0x107/0x167
[ 1835.424005]  should_fail.cold+0x5/0xa
[ 1835.424561]  ? nl80211_dump_wiphy_parse.constprop.0+0x98/0x580
[ 1835.425447]  should_failslab+0x5/0x20
[ 1835.426034]  kmem_cache_alloc_trace+0x55/0x320
[ 1835.426711]  nl80211_dump_wiphy_parse.constprop.0+0x98/0x580
[ 1835.427534]  ? nl80211_start_p2p_device+0x650/0x650
[ 1835.428290]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.428936]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1835.429698]  nl80211_dump_wiphy+0x57d/0x760
[ 1835.430327]  ? memset+0x20/0x50
[ 1835.430833]  netlink_dump+0x57c/0x1050
[ 1835.431406]  ? netlink_deliver_tap+0xcc0/0xcc0
[ 1835.432083]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.432775]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.433458]  ? genl_start+0x452/0x670
[ 1835.434025]  __netlink_dump_start+0x649/0x900
[ 1835.434692]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.435409]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.436094]  genl_family_rcv_msg_dumpit+0x1c9/0x310
[ 1835.436801]  ? genl_rcv+0x40/0x40
[ 1835.437336]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.438052]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.438743]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1835.439483]  ? __radix_tree_lookup+0x1f3/0x290
[ 1835.440155]  ? genl_get_cmd+0x3cf/0x480
[ 1835.440729]  genl_rcv_msg+0x44b/0x5a0
[ 1835.441308]  ? genl_get_cmd+0x480/0x480
[ 1835.441887]  ? nl80211_dump_wiphy+0x760/0x760
[ 1835.442546]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.443212]  ? nl80211_register_unexpected_frame+0x180/0x180
[ 1835.444069]  ? lock_release+0x680/0x680
[ 1835.444634]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1835.445305]  netlink_rcv_skb+0x14b/0x430
[ 1835.445902]  ? genl_get_cmd+0x480/0x480
[ 1835.446496]  ? netlink_ack+0xab0/0xab0
[ 1835.447067]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1835.447741]  ? is_vmalloc_addr+0x7b/0xb0
[ 1835.448321]  genl_rcv+0x24/0x40
[ 1835.448809]  netlink_unicast+0x549/0x7f0
[ 1835.449390]  ? netlink_attachskb+0x870/0x870
[ 1835.450066]  netlink_sendmsg+0x90f/0xdf0
[ 1835.450650]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.451288]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.451889]  __sock_sendmsg+0x154/0x190
[ 1835.452480]  ____sys_sendmsg+0x70d/0x870
[ 1835.453057]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.453680]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.454247]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.454995]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.455579]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.456312]  ? SOFTIRQ_verbose+0x10/0x10
[ 1835.456888]  ___sys_sendmsg+0xf3/0x170
[ 1835.457445]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.458125]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.458741]  ? find_held_lock+0x2c/0x110
[ 1835.459345]  ? __fget_files+0x296/0x4c0
[ 1835.459924]  ? __fget_light+0xea/0x290
[ 1835.460496]  __sys_sendmsg+0xe5/0x1b0
[ 1835.461042]  ? __sys_sendmsg_sock+0x40/0x40
[ 1835.461656]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.462351]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1835.463088]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.463811]  ? trace_hardirqs_on+0x5b/0x180
[ 1835.464420]  do_syscall_64+0x33/0x40
[ 1835.464977]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.465713] RIP: 0033:0x7fc8868dfb19
[ 1835.466260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.468858] RSP: 002b:00007fc883e55188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1835.469944] RAX: ffffffffffffffda RBX: 00007fc8869f2f60 RCX: 00007fc8868dfb19
[ 1835.470948] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1835.471949] RBP: 00007fc883e551d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.472959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.473975] R13: 00007ffdd92bafdf R14: 00007fc883e55300 R15: 0000000000022000
[ 1835.481766] FAULT_INJECTION: forcing a failure.
[ 1835.481766] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.482762] CPU: 1 PID: 10538 Comm: syz-executor.4 Not tainted 5.10.214 #1
[ 1835.483319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.483978] Call Trace:
[ 1835.484195]  dump_stack+0x107/0x167
[ 1835.484490]  should_fail.cold+0x5/0xa
[ 1835.484805]  ? nl80211_dump_wiphy_parse.constprop.0+0x98/0x580
[ 1835.485286]  should_failslab+0x5/0x20
[ 1835.485596]  kmem_cache_alloc_trace+0x55/0x320
[ 1835.485984]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1835.486415]  nl80211_dump_wiphy_parse.constprop.0+0x98/0x580
[ 1835.486880]  ? nl80211_start_p2p_device+0x650/0x650
[ 1835.487292]  nl80211_dump_wiphy+0x57d/0x760
[ 1835.487640]  ? memset+0x20/0x50
[ 1835.487922]  netlink_dump+0x57c/0x1050
[ 1835.488245]  ? netlink_deliver_tap+0xcc0/0xcc0
[ 1835.488615]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.489012]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.489388]  ? genl_start+0x452/0x670
[ 1835.489699]  __netlink_dump_start+0x649/0x900
[ 1835.490065]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.490472]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.490845]  genl_family_rcv_msg_dumpit+0x1c9/0x310
[ 1835.491252]  ? genl_rcv+0x40/0x40
[ 1835.491536]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.491939]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.492312]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1835.492731]  ? __radix_tree_lookup+0x1f3/0x290
[ 1835.493101]  ? genl_get_cmd+0x3cf/0x480
[ 1835.493426]  genl_rcv_msg+0x44b/0x5a0
[ 1835.493741]  ? genl_get_cmd+0x480/0x480
[ 1835.494066]  ? nl80211_dump_wiphy+0x760/0x760
[ 1835.494425]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.494801]  ? nl80211_register_unexpected_frame+0x180/0x180
[ 1835.495265]  ? lock_release+0x680/0x680
[ 1835.495585]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1835.495950]  netlink_rcv_skb+0x14b/0x430
[ 1835.496279]  ? genl_get_cmd+0x480/0x480
[ 1835.496603]  ? netlink_ack+0xab0/0xab0
[ 1835.496923]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1835.497293]  ? is_vmalloc_addr+0x7b/0xb0
[ 1835.497623]  genl_rcv+0x24/0x40
[ 1835.497899]  netlink_unicast+0x549/0x7f0
[ 1835.498232]  ? netlink_attachskb+0x870/0x870
[ 1835.498596]  netlink_sendmsg+0x90f/0xdf0
[ 1835.498930]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.499276]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.499619]  __sock_sendmsg+0x154/0x190
[ 1835.499941]  ____sys_sendmsg+0x70d/0x870
[ 1835.500274]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.500612]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.500931]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.501357]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.501694]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.502122]  ? SOFTIRQ_verbose+0x10/0x10
[ 1835.502455]  ___sys_sendmsg+0xf3/0x170
[ 1835.502769]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.503141]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.503481]  ? find_held_lock+0x2c/0x110
[ 1835.503819]  ? __fget_files+0x296/0x4c0
[ 1835.504149]  ? __fget_light+0xea/0x290
[ 1835.504471]  __sys_sendmsg+0xe5/0x1b0
[ 1835.504778]  ? __sys_sendmsg_sock+0x40/0x40
[ 1835.505127]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.505514]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1835.505961]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.506372]  ? trace_hardirqs_on+0x5b/0x180
[ 1835.506725]  do_syscall_64+0x33/0x40
[ 1835.507025]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.507443] RIP: 0033:0x7faeae69fb19
[ 1835.507745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.509213] RSP: 002b:00007faeabc15188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1835.509839] RAX: ffffffffffffffda RBX: 00007faeae7b2f60 RCX: 00007faeae69fb19
[ 1835.510409] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1835.510984] RBP: 00007faeabc151d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.511564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.512141] R13: 00007ffe0416157f R14: 00007faeabc15300 R15: 0000000000022000
13:08:36 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x9, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:36 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x0, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 1835.545254] FAULT_INJECTION: forcing a failure.
[ 1835.545254] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.547116] CPU: 0 PID: 10548 Comm: syz-executor.0 Not tainted 5.10.214 #1
13:08:36 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 17)

[ 1835.548085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.549391] Call Trace:
[ 1835.549801]  dump_stack+0x107/0x167
[ 1835.550343]  should_fail.cold+0x5/0xa
[ 1835.550909]  ? __build_flow_key.constprop.0+0x1df/0x660
[ 1835.551688]  ? create_object.isra.0+0x3a/0xa20
[ 1835.552364]  should_failslab+0x5/0x20
[ 1835.552926]  kmem_cache_alloc+0x5b/0x310
[ 1835.553521]  ? ip_rt_update_pmtu+0x2e8/0xaa0
[ 1835.554179]  create_object.isra.0+0x3a/0xa20
[ 1835.554834]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1835.555585]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1835.556327]  ? ip_tunnel_xmit+0xedf/0x2f40
[ 1835.556956]  pskb_expand_head+0x15a/0x1040
[ 1835.557583]  ? tnl_update_pmtu+0x381/0x1450
[ 1835.558239]  ip_tunnel_xmit+0xedf/0x2f40
[ 1835.558859]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1835.559556]  sit_tunnel_xmit+0xef0/0x2960
[ 1835.560178]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.560782]  ? ipip_rcv+0x4f0/0x4f0
[ 1835.561321]  ? skb_crc32c_csum_help+0x80/0x80
[ 1835.561983]  ? lock_acquire+0x197/0x470
[ 1835.562568]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1835.563219]  ? netif_skb_features+0x373/0xbe0
[ 1835.563876]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1835.564532]  __dev_queue_xmit+0x17ec/0x2710
[ 1835.565170]  ? find_held_lock+0x2c/0x110
[ 1835.565779]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1835.566454]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.567070]  ? lock_acquire+0x197/0x470
[ 1835.567657]  ? ip_finish_output2+0x220/0x21f0
[ 1835.568323]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1835.569095]  neigh_connected_output+0x382/0x4d0
[ 1835.569804]  ip_finish_output2+0x6f1/0x21f0
[ 1835.570448]  ? nf_hook_slow+0xfc/0x1e0
[ 1835.571027]  ? ip_frag_next+0x9e0/0x9e0
[ 1835.571610]  ? nf_hook+0x160/0x510
[ 1835.572140]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1835.572889]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1835.573617]  ? ip_fragment.constprop.0+0x240/0x240
[ 1835.574340]  ? nf_hook+0x510/0x510
[ 1835.574880]  ip_output+0x2f7/0x600
[ 1835.575410]  ip_send_skb+0xdd/0x260
[ 1835.575953]  udp_send_skb+0x6da/0x11d0
[ 1835.576540]  udp_sendmsg+0x197f/0x2170
[ 1835.577122]  ? ip_frag_init+0x350/0x350
[ 1835.577714]  ? udp_setsockopt+0xc0/0xc0
[ 1835.578324]  ? mark_lock+0xf5/0x2df0
[ 1835.578878]  ? mark_lock+0xf5/0x2df0
[ 1835.579427]  ? lock_chain_count+0x20/0x20
[ 1835.580036]  ? lock_chain_count+0x20/0x20
[ 1835.580677]  ? __lock_acquire+0x1657/0x5b00
[ 1835.581310]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1835.581925]  ? __lock_acquire+0x1657/0x5b00
[ 1835.582572]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1835.583313]  ? lock_acquire+0x197/0x470
[ 1835.583897]  ? find_held_lock+0x2c/0x110
[ 1835.584474]  ? lock_acquire+0x197/0x470
[ 1835.585054]  ? find_held_lock+0x2c/0x110
[ 1835.585627]  ? __might_fault+0xd3/0x180
[ 1835.586218]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.586822]  ? sock_has_perm+0x1ea/0x280
[ 1835.587424]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1835.588184]  ? __import_iovec+0x458/0x590
[ 1835.588794]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1835.589528]  inet6_sendmsg+0x105/0x140
[ 1835.590107]  ? inet6_compat_ioctl+0x320/0x320
[ 1835.590758]  __sock_sendmsg+0xf2/0x190
[ 1835.591332]  ____sys_sendmsg+0x334/0x870
[ 1835.591914]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.592537]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.593093]  ? __lock_acquire+0x1657/0x5b00
[ 1835.593756]  ___sys_sendmsg+0xf3/0x170
[ 1835.594309]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.594971]  ? vmacache_find+0x55/0x2a0
[ 1835.595562]  ? lock_acquire+0x197/0x470
[ 1835.596144]  ? find_held_lock+0x2c/0x110
[ 1835.596736]  ? __might_fault+0xd3/0x180
[ 1835.597320]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.597920]  ? asm_exc_page_fault+0x1e/0x30
[ 1835.598578]  __sys_sendmmsg+0x195/0x470
[ 1835.599152]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1835.599783]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.600385]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.601094]  ? wait_for_completion_io+0x270/0x270
[ 1835.601786]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.602464]  ? vfs_write+0x354/0xa70
[ 1835.603001]  ? fput_many+0x2f/0x1a0
[ 1835.603536]  ? ksys_write+0x1a9/0x260
[ 1835.604073]  ? __ia32_sys_read+0xb0/0xb0
[ 1835.604677]  __x64_sys_sendmmsg+0x99/0x100
[ 1835.605279]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.606114]  do_syscall_64+0x33/0x40
[ 1835.606781]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.607656] RIP: 0033:0x7f4820600b19
[ 1835.608209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.610903] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1835.612051] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1835.613064] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1835.614136] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.615153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.616220] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 1835.624173] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1835.806382] FAULT_INJECTION: forcing a failure.
[ 1835.806382] name failslab, interval 1, probability 0, space 0, times 0
[ 1835.808284] CPU: 0 PID: 10562 Comm: syz-executor.2 Not tainted 5.10.214 #1
[ 1835.809275] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1835.810463] Call Trace:
[ 1835.810856]  dump_stack+0x107/0x167
[ 1835.811401]  should_fail.cold+0x5/0xa
[ 1835.811961]  ? create_object.isra.0+0x3a/0xa20
[ 1835.812612]  should_failslab+0x5/0x20
[ 1835.813148]  kmem_cache_alloc+0x5b/0x310
[ 1835.813731]  create_object.isra.0+0x3a/0xa20
[ 1835.814379]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1835.815110]  kmem_cache_alloc_trace+0x151/0x320
[ 1835.815782]  nl80211_dump_wiphy_parse.constprop.0+0x98/0x580
[ 1835.816583]  ? nl80211_start_p2p_device+0x650/0x650
[ 1835.817319]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.817984]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1835.818706]  nl80211_dump_wiphy+0x57d/0x760
[ 1835.819322]  ? memset+0x20/0x50
[ 1835.819804]  netlink_dump+0x57c/0x1050
[ 1835.820367]  ? netlink_deliver_tap+0xcc0/0xcc0
[ 1835.821020]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1835.821704]  ? kasan_unpoison_shadow+0x33/0x50
[ 1835.822376]  ? genl_start+0x452/0x670
[ 1835.822923]  __netlink_dump_start+0x649/0x900
[ 1835.823583]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.824298]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.824954]  genl_family_rcv_msg_dumpit+0x1c9/0x310
[ 1835.825660]  ? genl_rcv+0x40/0x40
[ 1835.826180]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1835.826887]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.827543]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1835.828272]  ? __radix_tree_lookup+0x1f3/0x290
[ 1835.828923]  ? genl_get_cmd+0x3cf/0x480
[ 1835.829488]  genl_rcv_msg+0x44b/0x5a0
[ 1835.830071]  ? genl_get_cmd+0x480/0x480
[ 1835.830636]  ? nl80211_dump_wiphy+0x760/0x760
[ 1835.831295]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1835.831954]  ? nl80211_register_unexpected_frame+0x180/0x180
[ 1835.832804]  ? lock_release+0x680/0x680
[ 1835.833370]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1835.834051]  netlink_rcv_skb+0x14b/0x430
[ 1835.834615]  ? genl_get_cmd+0x480/0x480
[ 1835.835201]  ? netlink_ack+0xab0/0xab0
[ 1835.835765]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1835.836435]  ? is_vmalloc_addr+0x7b/0xb0
[ 1835.837033]  genl_rcv+0x24/0x40
[ 1835.837515]  netlink_unicast+0x549/0x7f0
[ 1835.838138]  ? netlink_attachskb+0x870/0x870
[ 1835.838800]  netlink_sendmsg+0x90f/0xdf0
[ 1835.839406]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.840046]  ? netlink_unicast+0x7f0/0x7f0
[ 1835.840670]  __sock_sendmsg+0x154/0x190
[ 1835.841253]  ____sys_sendmsg+0x70d/0x870
[ 1835.841869]  ? sock_write_iter+0x3d0/0x3d0
[ 1835.842485]  ? do_recvmmsg+0x6d0/0x6d0
[ 1835.843066]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.843835]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.844446]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1835.845219]  ? SOFTIRQ_verbose+0x10/0x10
[ 1835.845829]  ___sys_sendmsg+0xf3/0x170
[ 1835.846403]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1835.847084]  ? lock_downgrade+0x6d0/0x6d0
[ 1835.847697]  ? find_held_lock+0x2c/0x110
[ 1835.848310]  ? __fget_files+0x296/0x4c0
[ 1835.848920]  ? __fget_light+0xea/0x290
[ 1835.849504]  __sys_sendmsg+0xe5/0x1b0
[ 1835.850077]  ? __sys_sendmsg_sock+0x40/0x40
[ 1835.850713]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1835.851419]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1835.852185]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1835.852933]  ? trace_hardirqs_on+0x5b/0x180
[ 1835.853571]  do_syscall_64+0x33/0x40
[ 1835.854127]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1835.854875] RIP: 0033:0x7fc8868dfb19
[ 1835.855425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1835.858093] RSP: 002b:00007fc883e55188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1835.859213] RAX: ffffffffffffffda RBX: 00007fc8869f2f60 RCX: 00007fc8868dfb19
[ 1835.860262] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1835.861307] RBP: 00007fc883e551d0 R08: 0000000000000000 R09: 0000000000000000
[ 1835.862386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1835.863442] R13: 00007ffdd92bafdf R14: 00007fc883e55300 R15: 0000000000022000
13:08:50 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 17)

13:08:50 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xec0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:50 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 18)

13:08:50 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x4, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:50 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:50 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xff0f}}}, 0xe)

13:08:50 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 48)

[ 1848.754920] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:08:50 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x0, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 1848.787081] FAULT_INJECTION: forcing a failure.
[ 1848.787081] name failslab, interval 1, probability 0, space 0, times 0
[ 1848.788938] CPU: 0 PID: 10581 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1848.789940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1848.791128] Call Trace:
[ 1848.791518]  dump_stack+0x107/0x167
[ 1848.792043]  should_fail.cold+0x5/0xa
[ 1848.792600]  ? create_object.isra.0+0x3a/0xa20
[ 1848.793265]  should_failslab+0x5/0x20
[ 1848.793814]  kmem_cache_alloc+0x5b/0x310
[ 1848.794405]  ? __is_insn_slot_addr+0x14c/0x290
[ 1848.795078]  create_object.isra.0+0x3a/0xa20
[ 1848.795711]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1848.796440]  kmem_cache_alloc+0x159/0x310
[ 1848.797046]  skb_clone+0x14f/0x3d0
[ 1848.797574]  __skb_tstamp_tx+0x422/0x8d0
[ 1848.798179]  __dev_queue_xmit+0x1770/0x2710
[ 1848.798806]  ? find_held_lock+0x2c/0x110
[ 1848.799403]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1848.800069]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.800673]  ? lock_acquire+0x197/0x470
[ 1848.801251]  ? find_held_lock+0x2c/0x110
[ 1848.801838]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1848.802604]  ip_finish_output2+0x1514/0x21f0
[ 1848.803241]  ? ip_frag_next+0x9e0/0x9e0
[ 1848.803827]  ? nf_hook+0x160/0x510
[ 1848.804341]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1848.805081]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1848.805779]  ? ip_fragment.constprop.0+0x240/0x240
[ 1848.806497]  ? nf_hook+0x510/0x510
[ 1848.807023]  ip_output+0x2f7/0x600
[ 1848.807549]  ip_local_out+0xb4/0x1a0
[ 1848.808094]  iptunnel_xmit+0x591/0x8b0
[ 1848.808688]  ip_tunnel_xmit+0x1248/0x2f40
[ 1848.809312]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1848.810012]  sit_tunnel_xmit+0xef0/0x2960
[ 1848.810611]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.811210]  ? ipip_rcv+0x4f0/0x4f0
[ 1848.811744]  ? skb_crc32c_csum_help+0x80/0x80
[ 1848.812400]  ? lock_acquire+0x197/0x470
[ 1848.812978]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1848.813626]  ? netif_skb_features+0x373/0xbe0
[ 1848.814278]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1848.814929]  __dev_queue_xmit+0x17ec/0x2710
[ 1848.815568]  ? find_held_lock+0x2c/0x110
[ 1848.816159]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1848.816824]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.817426]  ? lock_acquire+0x197/0x470
[ 1848.818000]  ? ip_finish_output2+0x220/0x21f0
[ 1848.818661]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1848.819412]  neigh_connected_output+0x382/0x4d0
[ 1848.820102]  ip_finish_output2+0x6f1/0x21f0
[ 1848.820721]  ? nf_hook_slow+0xfc/0x1e0
[ 1848.821288]  ? ip_frag_next+0x9e0/0x9e0
[ 1848.821858]  ? nf_hook+0x160/0x510
[ 1848.822386]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1848.823117]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1848.823839]  ? ip_fragment.constprop.0+0x240/0x240
[ 1848.824546]  ? nf_hook+0x510/0x510
[ 1848.825078]  ip_output+0x2f7/0x600
[ 1848.825590]  ip_send_skb+0xdd/0x260
[ 1848.826135]  udp_send_skb+0x6da/0x11d0
[ 1848.826704]  udp_sendmsg+0x197f/0x2170
[ 1848.827274]  ? ip_frag_init+0x350/0x350
[ 1848.827862]  ? __lock_acquire+0x1657/0x5b00
[ 1848.828489]  ? udp_setsockopt+0xc0/0xc0
[ 1848.829078]  ? mark_lock+0xf5/0x2df0
[ 1848.829633]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1848.830398]  ? SOFTIRQ_verbose+0x10/0x10
[ 1848.831003]  ? clockevents_program_event+0x14b/0x360
[ 1848.831727]  ? lock_acquire+0x197/0x470
[ 1848.832315]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1848.832911]  ? __lock_acquire+0x1657/0x5b00
[ 1848.833550]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1848.834314]  ? perf_event_task_disable+0x390/0x390
[ 1848.835022]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.835622]  ? hrtimer_start_range_ns+0x336/0xae0
[ 1848.836333]  ? lock_acquire+0x197/0x470
[ 1848.836897]  ? find_held_lock+0x2c/0x110
[ 1848.837504]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1848.838282]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1848.839064]  ? trace_hardirqs_on+0x5b/0x180
[ 1848.839694]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1848.840481]  ? sock_has_perm+0x1ea/0x280
[ 1848.841072]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1848.841834]  ? copy_user_generic_string+0x2c/0x40
[ 1848.842557]  ? __import_iovec+0x458/0x590
[ 1848.843168]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1848.843921]  inet6_sendmsg+0x105/0x140
[ 1848.844487]  ? inet6_compat_ioctl+0x320/0x320
[ 1848.845138]  __sock_sendmsg+0xf2/0x190
[ 1848.845708]  ____sys_sendmsg+0x334/0x870
[ 1848.846299]  ? sock_write_iter+0x3d0/0x3d0
[ 1848.846916]  ? do_recvmmsg+0x6d0/0x6d0
[ 1848.847486]  ? find_held_lock+0x2c/0x110
[ 1848.848081]  ___sys_sendmsg+0xf3/0x170
[ 1848.848648]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1848.849307]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1848.850079]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1848.850706]  ? trace_hardirqs_on+0x5b/0x180
[ 1848.851341]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1848.851999]  ? finish_task_switch+0x126/0x5d0
[ 1848.852648]  ? finish_task_switch+0xef/0x5d0
[ 1848.853289]  ? __switch_to+0x572/0xf70
[ 1848.853859]  ? __switch_to_asm+0x3a/0x60
[ 1848.854452]  ? __switch_to_asm+0x34/0x60
[ 1848.855051]  ? __schedule+0x82c/0x1ea0
[ 1848.855631]  ? io_schedule_timeout+0x140/0x140
[ 1848.856313]  __sys_sendmmsg+0x195/0x470
[ 1848.856913]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1848.857544]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.858174]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1848.858885]  ? wait_for_completion_io+0x270/0x270
[ 1848.859591]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1848.860275]  ? vfs_write+0x354/0xa70
[ 1848.860826]  ? fput_many+0x2f/0x1a0
[ 1848.861365]  ? ksys_write+0x1a9/0x260
[ 1848.861926]  ? __ia32_sys_read+0xb0/0xb0
[ 1848.862529]  __x64_sys_sendmmsg+0x99/0x100
[ 1848.863150]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1848.863907]  do_syscall_64+0x33/0x40
[ 1848.864451]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1848.865200] RIP: 0033:0x7f4820600b19
[ 1848.865744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1848.868391] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1848.869497] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1848.870549] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1848.871591] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1848.872626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1848.873665] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:08:50 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:50 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf00, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:50 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x11800}}}, 0xe)

[ 1848.894346] FAULT_INJECTION: forcing a failure.
[ 1848.894346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1848.896312] CPU: 1 PID: 10579 Comm: syz-executor.2 Not tainted 5.10.214 #1
[ 1848.897333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1848.898532] Call Trace:
[ 1848.898927]  dump_stack+0x107/0x167
[ 1848.899464]  should_fail.cold+0x5/0xa
[ 1848.900044]  _copy_to_user+0x2e/0x180
[ 1848.900609]  simple_read_from_buffer+0xcc/0x160
[ 1848.901298]  proc_fail_nth_read+0x198/0x230
[ 1848.901943]  ? proc_sessionid_read+0x230/0x230
[ 1848.902609]  ? security_file_permission+0x24e/0x570
[ 1848.903337]  ? perf_trace_initcall_start+0x101/0x380
[ 1848.904088]  ? proc_sessionid_read+0x230/0x230
[ 1848.904758]  vfs_read+0x228/0x580
[ 1848.905278]  ksys_read+0x12d/0x260
[ 1848.905799]  ? vfs_write+0xa70/0xa70
[ 1848.906356]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1848.907124]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1848.907877]  do_syscall_64+0x33/0x40
[ 1848.908419]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1848.909160] RIP: 0033:0x7fc88689269c
[ 1848.909702] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1848.912338] RSP: 002b:00007fc883e55170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1848.913435] RAX: ffffffffffffffda RBX: 0000000000000024 RCX: 00007fc88689269c
[ 1848.914467] RDX: 000000000000000f RSI: 00007fc883e551e0 RDI: 0000000000000009
[ 1848.915508] RBP: 00007fc883e551d0 R08: 0000000000000000 R09: 0000000000000000
[ 1848.916535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1848.917562] R13: 00007ffdd92bafdf R14: 00007fc883e55300 R15: 0000000000022000
[ 1848.925224] FAULT_INJECTION: forcing a failure.
[ 1848.925224] name failslab, interval 1, probability 0, space 0, times 0
[ 1848.927074] CPU: 1 PID: 10582 Comm: syz-executor.4 Not tainted 5.10.214 #1
[ 1848.928098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1848.929309] Call Trace:
13:08:50 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x5, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1848.929711]  dump_stack+0x107/0x167
[ 1848.930391]  should_fail.cold+0x5/0xa
[ 1848.930964]  ? create_object.isra.0+0x3a/0xa20
[ 1848.931655]  should_failslab+0x5/0x20
[ 1848.932227]  kmem_cache_alloc+0x5b/0x310
[ 1848.932847]  create_object.isra.0+0x3a/0xa20
[ 1848.933506]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1848.934277]  kmem_cache_alloc_trace+0x151/0x320
[ 1848.934968]  nl80211_dump_wiphy_parse.constprop.0+0x98/0x580
[ 1848.935795]  ? nl80211_start_p2p_device+0x650/0x650
[ 1848.936519]  ? kasan_unpoison_shadow+0x33/0x50
[ 1848.937179]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1848.937925]  nl80211_dump_wiphy+0x57d/0x760
[ 1848.938555]  ? memset+0x20/0x50
[ 1848.939053]  netlink_dump+0x57c/0x1050
[ 1848.939622]  ? netlink_deliver_tap+0xcc0/0xcc0
[ 1848.940278]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1848.940978]  ? kasan_unpoison_shadow+0x33/0x50
[ 1848.941649]  ? genl_start+0x452/0x670
[ 1848.942215]  __netlink_dump_start+0x649/0x900
[ 1848.942860]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1848.943579]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1848.944245]  genl_family_rcv_msg_dumpit+0x1c9/0x310
[ 1848.944961]  ? genl_rcv+0x40/0x40
[ 1848.945471]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 1848.946192]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1848.946858]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1848.947605]  ? __radix_tree_lookup+0x1f3/0x290
[ 1848.948265]  ? genl_get_cmd+0x3cf/0x480
[ 1848.948845]  genl_rcv_msg+0x44b/0x5a0
[ 1848.949400]  ? genl_get_cmd+0x480/0x480
[ 1848.949989]  ? nl80211_dump_wiphy+0x760/0x760
[ 1848.950639]  ? nl80211_send_wiphy+0x9020/0x9020
[ 1848.951307]  ? nl80211_register_unexpected_frame+0x180/0x180
[ 1848.952137]  ? lock_release+0x680/0x680
[ 1848.952708]  ? netlink_deliver_tap+0xf4/0xcc0
[ 1848.953366]  netlink_rcv_skb+0x14b/0x430
[ 1848.953963]  ? genl_get_cmd+0x480/0x480
[ 1848.954543]  ? netlink_ack+0xab0/0xab0
[ 1848.955119]  ? netlink_deliver_tap+0x1c4/0xcc0
[ 1848.955782]  ? is_vmalloc_addr+0x7b/0xb0
[ 1848.956378]  genl_rcv+0x24/0x40
[ 1848.956862]  netlink_unicast+0x549/0x7f0
[ 1848.957453]  ? netlink_attachskb+0x870/0x870
[ 1848.958109]  netlink_sendmsg+0x90f/0xdf0
[ 1848.958705]  ? netlink_unicast+0x7f0/0x7f0
[ 1848.959334]  ? netlink_unicast+0x7f0/0x7f0
[ 1848.959944]  __sock_sendmsg+0x154/0x190
[ 1848.960521]  ____sys_sendmsg+0x70d/0x870
[ 1848.961118]  ? sock_write_iter+0x3d0/0x3d0
[ 1848.961729]  ? do_recvmmsg+0x6d0/0x6d0
[ 1848.962299]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1848.963057]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.963667]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1848.964418]  ? SOFTIRQ_verbose+0x10/0x10
[ 1848.965011]  ___sys_sendmsg+0xf3/0x170
[ 1848.965578]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1848.966251]  ? lock_downgrade+0x6d0/0x6d0
[ 1848.966856]  ? find_held_lock+0x2c/0x110
[ 1848.967451]  ? __fget_files+0x296/0x4c0
[ 1848.968044]  ? __fget_light+0xea/0x290
[ 1848.968616]  __sys_sendmsg+0xe5/0x1b0
[ 1848.969169]  ? __sys_sendmsg_sock+0x40/0x40
[ 1848.969789]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1848.970486]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1848.971237]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1848.971977]  ? trace_hardirqs_on+0x5b/0x180
[ 1848.972603]  do_syscall_64+0x33/0x40
[ 1848.973143]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1848.973874] RIP: 0033:0x7faeae69fb19
[ 1848.974416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1848.977009] RSP: 002b:00007faeabc15188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1848.978102] RAX: ffffffffffffffda RBX: 00007faeae7b2f60 RCX: 00007faeae69fb19
[ 1848.979123] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000006
[ 1848.980146] RBP: 00007faeabc151d0 R08: 0000000000000000 R09: 0000000000000000
[ 1848.981164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1848.982187] R13: 00007ffe0416157f R14: 00007faeabc15300 R15: 0000000000022000
13:08:50 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x0, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:08:50 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0) (fail_nth: 18)

13:08:50 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x6, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:08:50 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x80000}}}, 0xe)

13:08:50 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:08:50 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xc00e, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1849.236623] FAULT_INJECTION: forcing a failure.
[ 1849.236623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1849.238512] CPU: 0 PID: 10610 Comm: syz-executor.4 Not tainted 5.10.214 #1
[ 1849.239493] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1849.240643] Call Trace:
[ 1849.241033]  dump_stack+0x107/0x167
[ 1849.241567]  should_fail.cold+0x5/0xa
[ 1849.242131]  _copy_to_user+0x2e/0x180
[ 1849.242680]  simple_read_from_buffer+0xcc/0x160
[ 1849.243342]  proc_fail_nth_read+0x198/0x230
[ 1849.243955]  ? proc_sessionid_read+0x230/0x230
[ 1849.244598]  ? security_file_permission+0x24e/0x570
[ 1849.245311]  ? perf_trace_initcall_start+0x101/0x380
[ 1849.246049]  ? proc_sessionid_read+0x230/0x230
[ 1849.246690]  vfs_read+0x228/0x580
[ 1849.247204]  ksys_read+0x12d/0x260
[ 1849.247707]  ? vfs_write+0xa70/0xa70
[ 1849.248239]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1849.248987]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1849.249725]  do_syscall_64+0x33/0x40
[ 1849.250266]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1849.250983] RIP: 0033:0x7faeae65269c
[ 1849.251514] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1849.254074] RSP: 002b:00007faeabc15170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1849.255149] RAX: ffffffffffffffda RBX: 0000000000000024 RCX: 00007faeae65269c
[ 1849.256160] RDX: 000000000000000f RSI: 00007faeabc151e0 RDI: 0000000000000009
[ 1849.257205] RBP: 00007faeabc151d0 R08: 0000000000000000 R09: 0000000000000000
[ 1849.258266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1849.259310] R13: 00007ffe0416157f R14: 00007faeabc15300 R15: 0000000000022000
13:09:03 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x17b, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xcd01, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x7, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x0, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:09:03 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 49)

13:09:03 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x100000}}}, 0xe)

13:09:03 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 1862.335402] FAULT_INJECTION: forcing a failure.
[ 1862.335402] name failslab, interval 1, probability 0, space 0, times 0
[ 1862.337335] CPU: 1 PID: 10636 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1862.338361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1862.339573] Call Trace:
[ 1862.339967]  dump_stack+0x107/0x167
[ 1862.340508]  should_fail.cold+0x5/0xa
[ 1862.341078]  ? skb_clone+0x14f/0x3d0
[ 1862.341643]  should_failslab+0x5/0x20
[ 1862.342216]  kmem_cache_alloc+0x5b/0x310
[ 1862.342831]  skb_clone+0x14f/0x3d0
[ 1862.343366]  __skb_tstamp_tx+0x422/0x8d0
[ 1862.343968]  __dev_queue_xmit+0x1770/0x2710
[ 1862.344611]  ? find_held_lock+0x2c/0x110
[ 1862.345212]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1862.345889]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.346504]  ? lock_acquire+0x197/0x470
[ 1862.347085]  ? find_held_lock+0x2c/0x110
[ 1862.347691]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1862.348465]  ip_finish_output2+0x1514/0x21f0
[ 1862.349129]  ? ip_frag_next+0x9e0/0x9e0
[ 1862.349718]  ? nf_hook+0x160/0x510
[ 1862.350252]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1862.351002]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1862.351721]  ? ip_fragment.constprop.0+0x240/0x240
[ 1862.352439]  ? nf_hook+0x510/0x510
[ 1862.352977]  ip_output+0x2f7/0x600
[ 1862.353507]  ip_local_out+0xb4/0x1a0
[ 1862.354072]  iptunnel_xmit+0x591/0x8b0
[ 1862.354658]  ip_tunnel_xmit+0x1248/0x2f40
[ 1862.355298]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1862.356003]  sit_tunnel_xmit+0xef0/0x2960
[ 1862.356622]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.357229]  ? ipip_rcv+0x4f0/0x4f0
[ 1862.357760]  ? skb_crc32c_csum_help+0x80/0x80
[ 1862.358431]  ? lock_acquire+0x197/0x470
[ 1862.359011]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1862.359663]  ? netif_skb_features+0x373/0xbe0
[ 1862.360322]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1862.360988]  __dev_queue_xmit+0x17ec/0x2710
[ 1862.361627]  ? find_held_lock+0x2c/0x110
[ 1862.362235]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1862.362909]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.363513]  ? lock_acquire+0x197/0x470
[ 1862.364100]  ? ip_finish_output2+0x220/0x21f0
[ 1862.364770]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1862.365548]  neigh_connected_output+0x382/0x4d0
[ 1862.366264]  ip_finish_output2+0x6f1/0x21f0
[ 1862.366909]  ? nf_hook_slow+0xfc/0x1e0
[ 1862.367482]  ? ip_frag_next+0x9e0/0x9e0
[ 1862.368076]  ? nf_hook+0x160/0x510
[ 1862.368598]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1862.369355]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1862.370087]  ? ip_fragment.constprop.0+0x240/0x240
[ 1862.370801]  ? nf_hook+0x510/0x510
[ 1862.371341]  ip_output+0x2f7/0x600
[ 1862.371876]  ip_send_skb+0xdd/0x260
[ 1862.372417]  udp_send_skb+0x6da/0x11d0
[ 1862.373004]  udp_sendmsg+0x197f/0x2170
[ 1862.373581]  ? ip_frag_init+0x350/0x350
[ 1862.374183]  ? udp_setsockopt+0xc0/0xc0
[ 1862.374777]  ? mark_lock+0xf5/0x2df0
[ 1862.375334]  ? mark_lock+0xf5/0x2df0
[ 1862.375881]  ? lock_chain_count+0x20/0x20
[ 1862.376491]  ? lock_chain_count+0x20/0x20
[ 1862.377131]  ? __lock_acquire+0x1657/0x5b00
[ 1862.377780]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1862.378385]  ? __lock_acquire+0x1657/0x5b00
[ 1862.379038]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1862.379806]  ? lock_acquire+0x197/0x470
[ 1862.380385]  ? find_held_lock+0x2c/0x110
[ 1862.381002]  ? lock_acquire+0x197/0x470
[ 1862.381587]  ? find_held_lock+0x2c/0x110
[ 1862.382195]  ? __might_fault+0xd3/0x180
[ 1862.382778]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.383389]  ? sock_has_perm+0x1ea/0x280
[ 1862.383989]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1862.384778]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1862.385572]  ? trace_hardirqs_on+0x5b/0x180
[ 1862.386213]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1862.387010]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1862.387765]  inet6_sendmsg+0x105/0x140
[ 1862.388340]  ? inet6_compat_ioctl+0x320/0x320
[ 1862.389000]  __sock_sendmsg+0xf2/0x190
[ 1862.389574]  ____sys_sendmsg+0x334/0x870
[ 1862.390176]  ? sock_write_iter+0x3d0/0x3d0
[ 1862.390795]  ? do_recvmmsg+0x6d0/0x6d0
[ 1862.391370]  ? __lock_acquire+0x1657/0x5b00
[ 1862.392026]  ___sys_sendmsg+0xf3/0x170
[ 1862.392605]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1862.393278]  ? vmacache_find+0x55/0x2a0
[ 1862.393884]  ? lock_acquire+0x197/0x470
[ 1862.394468]  ? find_held_lock+0x2c/0x110
[ 1862.395072]  ? __might_fault+0xd3/0x180
[ 1862.395661]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.396273]  ? asm_exc_page_fault+0x1e/0x30
[ 1862.396928]  __sys_sendmmsg+0x195/0x470
[ 1862.397516]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1862.398159]  ? lock_downgrade+0x6d0/0x6d0
[ 1862.398783]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1862.399500]  ? wait_for_completion_io+0x270/0x270
[ 1862.400207]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1862.400898]  ? vfs_write+0x354/0xa70
[ 1862.401446]  ? fput_many+0x2f/0x1a0
[ 1862.401984]  ? ksys_write+0x1a9/0x260
[ 1862.402557]  ? __ia32_sys_read+0xb0/0xb0
[ 1862.403167]  __x64_sys_sendmmsg+0x99/0x100
[ 1862.403786]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1862.404534]  do_syscall_64+0x33/0x40
[ 1862.405082]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1862.405833] RIP: 0033:0x7f4820600b19
[ 1862.406388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1862.409050] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1862.410162] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1862.411198] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1862.412231] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1862.413260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1862.414298] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 1862.453306] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:09:03 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x300, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x8, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:03 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x0, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:09:17 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:09:17 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:17 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x180100}}}, 0xe)

13:09:17 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:17 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x500, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:17 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 50)

13:09:17 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x9, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:17 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x34000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1876.673981] FAULT_INJECTION: forcing a failure.
[ 1876.673981] name failslab, interval 1, probability 0, space 0, times 0
[ 1876.675892] CPU: 0 PID: 10683 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1876.676901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1876.678096] Call Trace:
[ 1876.678497]  dump_stack+0x107/0x167
[ 1876.679033]  should_fail.cold+0x5/0xa
[ 1876.679601]  should_failslab+0x5/0x20
[ 1876.680159]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1876.680880]  ? skb_ensure_writable+0x2cb/0x450
[ 1876.681552]  pskb_expand_head+0x15a/0x1040
[ 1876.682167]  ? skb_checksum+0x90/0xc0
[ 1876.682735]  ? __skb_checksum+0x9e0/0x9e0
[ 1876.683344]  skb_ensure_writable+0x2cb/0x450
[ 1876.683990]  skb_checksum_help+0x3af/0x5e0
[ 1876.684617]  validate_xmit_skb.constprop.0+0xa3a/0xda0
[ 1876.685377]  ? __skb_tstamp_tx+0x5db/0x8d0
[ 1876.685988]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1876.686689]  __dev_queue_xmit+0x87b/0x2710
[ 1876.687307]  ? find_held_lock+0x2c/0x110
[ 1876.687899]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1876.688563]  ? lock_downgrade+0x6d0/0x6d0
[ 1876.689166]  ? lock_acquire+0x197/0x470
[ 1876.689740]  ? find_held_lock+0x2c/0x110
[ 1876.690348]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1876.691117]  ip_finish_output2+0x1514/0x21f0
[ 1876.691768]  ? ip_frag_next+0x9e0/0x9e0
[ 1876.692347]  ? nf_hook+0x160/0x510
[ 1876.692872]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1876.693623]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1876.694359]  ? ip_fragment.constprop.0+0x240/0x240
[ 1876.695070]  ? nf_hook+0x510/0x510
[ 1876.695602]  ip_output+0x2f7/0x600
[ 1876.696134]  ip_local_out+0xb4/0x1a0
[ 1876.696687]  iptunnel_xmit+0x591/0x8b0
[ 1876.697271]  ip_tunnel_xmit+0x1248/0x2f40
[ 1876.697897]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1876.698593]  sit_tunnel_xmit+0xef0/0x2960
[ 1876.699209]  ? lock_downgrade+0x6d0/0x6d0
[ 1876.699816]  ? ipip_rcv+0x4f0/0x4f0
[ 1876.700348]  ? skb_crc32c_csum_help+0x80/0x80
[ 1876.700997]  ? lock_acquire+0x197/0x470
[ 1876.701573]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1876.702219]  ? netif_skb_features+0x373/0xbe0
[ 1876.702881]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1876.703533]  __dev_queue_xmit+0x17ec/0x2710
[ 1876.704168]  ? find_held_lock+0x2c/0x110
[ 1876.704761]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1876.705432]  ? lock_downgrade+0x6d0/0x6d0
[ 1876.706042]  ? lock_acquire+0x197/0x470
[ 1876.706628]  ? ip_finish_output2+0x220/0x21f0
[ 1876.707290]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1876.708061]  neigh_connected_output+0x382/0x4d0
[ 1876.708747]  ip_finish_output2+0x6f1/0x21f0
[ 1876.709389]  ? nf_hook_slow+0xfc/0x1e0
[ 1876.709953]  ? ip_frag_next+0x9e0/0x9e0
[ 1876.710542]  ? nf_hook+0x160/0x510
[ 1876.711060]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1876.711809]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1876.712530]  ? ip_fragment.constprop.0+0x240/0x240
[ 1876.713239]  ? nf_hook+0x510/0x510
[ 1876.713780]  ip_output+0x2f7/0x600
[ 1876.714307]  ip_send_skb+0xdd/0x260
[ 1876.714846]  udp_send_skb+0x6da/0x11d0
[ 1876.715430]  udp_sendmsg+0x197f/0x2170
[ 1876.716011]  ? ip_frag_init+0x350/0x350
[ 1876.716598]  ? __lock_acquire+0x1657/0x5b00
[ 1876.717222]  ? udp_setsockopt+0xc0/0xc0
[ 1876.717829]  ? mark_lock+0xf5/0x2df0
[ 1876.718393]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1876.719159]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.719941]  ? trace_hardirqs_on+0x5b/0x180
[ 1876.720566]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.721384]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1876.721980]  ? __lock_acquire+0x1657/0x5b00
[ 1876.722630]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1876.723388]  ? trace_hardirqs_on+0x5b/0x180
[ 1876.724014]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.724814]  ? lock_release+0x3b4/0x680
[ 1876.725404]  ? __might_fault+0xd3/0x180
[ 1876.725980]  ? lock_downgrade+0x6d0/0x6d0
[ 1876.726593]  ? sock_has_perm+0x1ea/0x280
[ 1876.727183]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1876.727961]  ? __import_iovec+0x458/0x590
[ 1876.728569]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1876.729322]  inet6_sendmsg+0x105/0x140
[ 1876.729893]  ? inet6_compat_ioctl+0x320/0x320
[ 1876.730549]  __sock_sendmsg+0xf2/0x190
[ 1876.731127]  ____sys_sendmsg+0x334/0x870
[ 1876.731723]  ? sock_write_iter+0x3d0/0x3d0
[ 1876.732335]  ? do_recvmmsg+0x6d0/0x6d0
[ 1876.732915]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1876.733677]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1876.734468]  ? trace_hardirqs_on+0x5b/0x180
[ 1876.735100]  ___sys_sendmsg+0xf3/0x170
[ 1876.735672]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1876.736336]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1876.736995]  ? _raw_spin_unlock_irq+0x27/0x30
[ 1876.737646]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1876.738303]  ? finish_task_switch+0x126/0x5d0
[ 1876.738956]  ? finish_task_switch+0xef/0x5d0
[ 1876.739593]  ? __switch_to+0x572/0xf70
[ 1876.740155]  ? __switch_to_asm+0x3a/0x60
[ 1876.740741]  ? __switch_to_asm+0x34/0x60
[ 1876.741335]  ? __schedule+0x82c/0x1ea0
[ 1876.741911]  ? io_schedule_timeout+0x140/0x140
[ 1876.742603]  __sys_sendmmsg+0x195/0x470
[ 1876.743197]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1876.743826]  ? lock_downgrade+0x6d0/0x6d0
[ 1876.744452]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1876.745162]  ? wait_for_completion_io+0x270/0x270
[ 1876.745873]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1876.746563]  ? vfs_write+0x354/0xa70
[ 1876.747117]  ? fput_many+0x2f/0x1a0
[ 1876.747653]  ? ksys_write+0x1a9/0x260
[ 1876.748210]  ? __ia32_sys_read+0xb0/0xb0
[ 1876.748817]  __x64_sys_sendmmsg+0x99/0x100
[ 1876.749429]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1876.750186]  do_syscall_64+0x33/0x40
[ 1876.750742]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1876.751484] RIP: 0033:0x7f4820600b19
[ 1876.752034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1876.754730] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1876.755833] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1876.756887] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1876.757913] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1876.758952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1876.759975] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 1876.806172] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:09:18 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:09:18 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x600, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:18 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x4, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:18 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:09:18 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x80000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:18 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:18 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:18 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x800000}}}, 0xe)

13:09:18 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 51)

[ 1877.150391] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1877.223573] FAULT_INJECTION: forcing a failure.
[ 1877.223573] name failslab, interval 1, probability 0, space 0, times 0
[ 1877.225431] CPU: 0 PID: 10724 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1877.226449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1877.227651] Call Trace:
[ 1877.228048]  dump_stack+0x107/0x167
[ 1877.228589]  should_fail.cold+0x5/0xa
[ 1877.229153]  ? skb_clone+0x14f/0x3d0
[ 1877.229711]  should_failslab+0x5/0x20
[ 1877.230280]  kmem_cache_alloc+0x5b/0x310
[ 1877.230883]  skb_clone+0x14f/0x3d0
[ 1877.231413]  __skb_tstamp_tx+0x422/0x8d0
[ 1877.232015]  loopback_xmit+0x299/0x5e0
[ 1877.232596]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1877.233256]  __dev_queue_xmit+0x17ec/0x2710
[ 1877.233903]  ? find_held_lock+0x2c/0x110
[ 1877.234511]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1877.235190]  ? lock_downgrade+0x6d0/0x6d0
[ 1877.235803]  ? lock_acquire+0x197/0x470
[ 1877.236390]  ? find_held_lock+0x2c/0x110
[ 1877.237001]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1877.237768]  ip_finish_output2+0x1514/0x21f0
[ 1877.238431]  ? ip_frag_next+0x9e0/0x9e0
[ 1877.239015]  ? nf_hook+0x160/0x510
[ 1877.239538]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1877.240287]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1877.241006]  ? ip_fragment.constprop.0+0x240/0x240
[ 1877.241714]  ? nf_hook+0x510/0x510
[ 1877.242250]  ip_output+0x2f7/0x600
[ 1877.242780]  ip_local_out+0xb4/0x1a0
[ 1877.243331]  iptunnel_xmit+0x591/0x8b0
[ 1877.243916]  ip_tunnel_xmit+0x1248/0x2f40
[ 1877.244544]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1877.245239]  sit_tunnel_xmit+0xef0/0x2960
[ 1877.245855]  ? lock_downgrade+0x6d0/0x6d0
[ 1877.246478]  ? ipip_rcv+0x4f0/0x4f0
[ 1877.247013]  ? skb_crc32c_csum_help+0x80/0x80
[ 1877.247676]  ? lock_acquire+0x197/0x470
[ 1877.248255]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1877.248911]  ? netif_skb_features+0x373/0xbe0
[ 1877.249569]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1877.250236]  __dev_queue_xmit+0x17ec/0x2710
[ 1877.250874]  ? find_held_lock+0x2c/0x110
[ 1877.251475]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1877.252148]  ? lock_downgrade+0x6d0/0x6d0
[ 1877.252760]  ? lock_acquire+0x197/0x470
[ 1877.253338]  ? ip_finish_output2+0x220/0x21f0
[ 1877.254009]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1877.254786]  neigh_connected_output+0x382/0x4d0
[ 1877.255485]  ip_finish_output2+0x6f1/0x21f0
[ 1877.256120]  ? nf_hook_slow+0xfc/0x1e0
[ 1877.256692]  ? ip_frag_next+0x9e0/0x9e0
[ 1877.257267]  ? nf_hook+0x160/0x510
[ 1877.257787]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1877.258539]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1877.259264]  ? ip_fragment.constprop.0+0x240/0x240
[ 1877.259970]  ? nf_hook+0x510/0x510
[ 1877.260499]  ip_output+0x2f7/0x600
[ 1877.261029]  ip_send_skb+0xdd/0x260
[ 1877.261568]  udp_send_skb+0x6da/0x11d0
[ 1877.262149]  udp_sendmsg+0x197f/0x2170
[ 1877.262720]  ? ip_frag_init+0x350/0x350
[ 1877.263314]  ? udp_setsockopt+0xc0/0xc0
[ 1877.263891]  ? mark_lock+0xf5/0x2df0
[ 1877.264443]  ? lock_chain_count+0x20/0x20
[ 1877.265052]  ? mark_lock+0xf5/0x2df0
[ 1877.265599]  ? mark_lock+0xf5/0x2df0
[ 1877.266140]  ? lock_chain_count+0x20/0x20
[ 1877.266747]  ? lock_chain_count+0x20/0x20
[ 1877.267354]  ? prep_new_page+0x16d/0x1d0
[ 1877.267943]  ? lock_chain_count+0x20/0x20
[ 1877.268559]  ? __lock_acquire+0x1657/0x5b00
[ 1877.269192]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1877.269785]  ? __lock_acquire+0x1657/0x5b00
[ 1877.270431]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1877.271184]  ? lock_acquire+0x197/0x470
[ 1877.271764]  ? find_held_lock+0x2c/0x110
[ 1877.272361]  ? lock_acquire+0x197/0x470
[ 1877.272933]  ? find_held_lock+0x2c/0x110
[ 1877.273525]  ? __might_fault+0xd3/0x180
[ 1877.274099]  ? lock_downgrade+0x6d0/0x6d0
[ 1877.274700]  ? sock_has_perm+0x1ea/0x280
[ 1877.275288]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1877.276061]  ? __import_iovec+0x458/0x590
[ 1877.276660]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1877.277406]  inet6_sendmsg+0x105/0x140
[ 1877.277968]  ? inet6_compat_ioctl+0x320/0x320
[ 1877.278618]  __sock_sendmsg+0xf2/0x190
[ 1877.279186]  ____sys_sendmsg+0x334/0x870
[ 1877.279777]  ? sock_write_iter+0x3d0/0x3d0
[ 1877.280383]  ? do_recvmmsg+0x6d0/0x6d0
[ 1877.280954]  ? __lock_acquire+0x1657/0x5b00
[ 1877.281594]  ___sys_sendmsg+0xf3/0x170
[ 1877.282160]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1877.282821]  ? vmacache_find+0x55/0x2a0
[ 1877.283411]  ? lock_acquire+0x197/0x470
[ 1877.283994]  ? find_held_lock+0x2c/0x110
[ 1877.284589]  ? __might_fault+0xd3/0x180
[ 1877.285170]  ? lock_downgrade+0x6d0/0x6d0
[ 1877.285767]  ? asm_exc_page_fault+0x1e/0x30
[ 1877.286415]  __sys_sendmmsg+0x195/0x470
[ 1877.287001]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1877.287625]  ? lock_downgrade+0x6d0/0x6d0
[ 1877.288247]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1877.288951]  ? wait_for_completion_io+0x270/0x270
[ 1877.289647]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1877.290320]  ? vfs_write+0x354/0xa70
[ 1877.290861]  ? fput_many+0x2f/0x1a0
[ 1877.291390]  ? ksys_write+0x1a9/0x260
[ 1877.291942]  ? __ia32_sys_read+0xb0/0xb0
[ 1877.292540]  __x64_sys_sendmmsg+0x99/0x100
[ 1877.293157]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1877.293901]  do_syscall_64+0x33/0x40
[ 1877.294445]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1877.295177] RIP: 0033:0x7f4820600b19
[ 1877.295725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1877.298382] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1877.299490] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1877.300520] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1877.301556] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1877.302588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1877.303624] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:09:32 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x700, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:32 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 52)

13:09:32 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:32 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:09:32 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:32 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x5, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:32 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x400300, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:32 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x1000000}}}, 0xe)

[ 1891.103216] FAULT_INJECTION: forcing a failure.
[ 1891.103216] name failslab, interval 1, probability 0, space 0, times 0
[ 1891.104930] CPU: 0 PID: 10735 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1891.105842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1891.106954] Call Trace:
[ 1891.107320]  dump_stack+0x107/0x167
[ 1891.107811]  should_fail.cold+0x5/0xa
[ 1891.108327]  ? skb_clone+0x14f/0x3d0
[ 1891.108835]  should_failslab+0x5/0x20
[ 1891.109343]  kmem_cache_alloc+0x5b/0x310
[ 1891.109895]  skb_clone+0x14f/0x3d0
[ 1891.110403]  __skb_tstamp_tx+0x422/0x8d0
[ 1891.110962]  loopback_xmit+0x299/0x5e0
[ 1891.111488]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1891.112085]  __dev_queue_xmit+0x17ec/0x2710
[ 1891.112686]  ? find_held_lock+0x2c/0x110
[ 1891.113245]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1891.113885]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.114458]  ? lock_acquire+0x197/0x470
[ 1891.115002]  ? find_held_lock+0x2c/0x110
[ 1891.115570]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1891.116270]  ip_finish_output2+0x1514/0x21f0
[ 1891.116877]  ? ip_frag_next+0x9e0/0x9e0
[ 1891.117403]  ? nf_hook+0x160/0x510
[ 1891.117875]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1891.118566]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1891.119260]  ? ip_fragment.constprop.0+0x240/0x240
[ 1891.119924]  ? nf_hook+0x510/0x510
[ 1891.120432]  ip_output+0x2f7/0x600
[ 1891.120933]  ip_local_out+0xb4/0x1a0
[ 1891.121438]  iptunnel_xmit+0x591/0x8b0
[ 1891.121999]  ip_tunnel_xmit+0x1248/0x2f40
[ 1891.122585]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1891.123256]  sit_tunnel_xmit+0xef0/0x2960
[ 1891.123845]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.124420]  ? ipip_rcv+0x4f0/0x4f0
[ 1891.124931]  ? skb_crc32c_csum_help+0x80/0x80
[ 1891.125543]  ? lock_acquire+0x197/0x470
[ 1891.126085]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1891.126703]  ? netif_skb_features+0x373/0xbe0
[ 1891.127323]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1891.127935]  __dev_queue_xmit+0x17ec/0x2710
[ 1891.128534]  ? find_held_lock+0x2c/0x110
[ 1891.129093]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1891.129714]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.130290]  ? lock_acquire+0x197/0x470
[ 1891.130852]  ? ip_finish_output2+0x220/0x21f0
[ 1891.131476]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1891.132203]  neigh_connected_output+0x382/0x4d0
[ 1891.132864]  ip_finish_output2+0x6f1/0x21f0
[ 1891.133464]  ? nf_hook_slow+0xfc/0x1e0
[ 1891.133998]  ? ip_frag_next+0x9e0/0x9e0
[ 1891.134560]  ? nf_hook+0x160/0x510
[ 1891.135065]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1891.135775]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1891.136461]  ? ip_fragment.constprop.0+0x240/0x240
[ 1891.137138]  ? nf_hook+0x510/0x510
[ 1891.137643]  ip_output+0x2f7/0x600
[ 1891.138152]  ip_send_skb+0xdd/0x260
[ 1891.138677]  udp_send_skb+0x6da/0x11d0
[ 1891.139237]  udp_sendmsg+0x197f/0x2170
[ 1891.139766]  ? ip_frag_init+0x350/0x350
[ 1891.140308]  ? udp_setsockopt+0xc0/0xc0
[ 1891.140855]  ? mark_lock+0xf5/0x2df0
[ 1891.141374]  ? mark_lock+0xf5/0x2df0
[ 1891.141879]  ? lock_chain_count+0x20/0x20
[ 1891.142458]  ? lock_chain_count+0x20/0x20
[ 1891.143068]  ? __lock_acquire+0x1657/0x5b00
[ 1891.143676]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1891.144242]  ? __lock_acquire+0x1657/0x5b00
[ 1891.144843]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1891.145542]  ? lock_acquire+0x197/0x470
[ 1891.146094]  ? find_held_lock+0x2c/0x110
[ 1891.146669]  ? lock_acquire+0x197/0x470
[ 1891.147224]  ? find_held_lock+0x2c/0x110
[ 1891.147786]  ? __might_fault+0xd3/0x180
[ 1891.148334]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.148908]  ? sock_has_perm+0x1ea/0x280
[ 1891.149462]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1891.150202]  ? __import_iovec+0x458/0x590
[ 1891.150768]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1891.151473]  inet6_sendmsg+0x105/0x140
[ 1891.151993]  ? inet6_compat_ioctl+0x320/0x320
[ 1891.152606]  __sock_sendmsg+0xf2/0x190
[ 1891.153126]  ____sys_sendmsg+0x334/0x870
[ 1891.153685]  ? sock_write_iter+0x3d0/0x3d0
[ 1891.154247]  ? do_recvmmsg+0x6d0/0x6d0
[ 1891.154794]  ? __lock_acquire+0x1657/0x5b00
[ 1891.155391]  ___sys_sendmsg+0xf3/0x170
[ 1891.155926]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1891.156549]  ? vmacache_find+0x55/0x2a0
[ 1891.157109]  ? lock_acquire+0x197/0x470
[ 1891.157655]  ? find_held_lock+0x2c/0x110
[ 1891.158216]  ? __might_fault+0xd3/0x180
[ 1891.158774]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.159338]  ? asm_exc_page_fault+0x1e/0x30
[ 1891.159952]  __sys_sendmmsg+0x195/0x470
[ 1891.160483]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1891.161073]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.161641]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1891.162284]  ? wait_for_completion_io+0x270/0x270
[ 1891.162946]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1891.163584]  ? vfs_write+0x354/0xa70
[ 1891.164082]  ? fput_many+0x2f/0x1a0
[ 1891.164591]  ? ksys_write+0x1a9/0x260
[ 1891.165113]  ? __ia32_sys_read+0xb0/0xb0
[ 1891.165656]  __x64_sys_sendmmsg+0x99/0x100
[ 1891.166233]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1891.166927]  do_syscall_64+0x33/0x40
[ 1891.167433]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1891.168121] RIP: 0033:0x7f4820600b19
[ 1891.168619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1891.171083] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1891.172112] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1891.173066] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1891.174022] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1891.174997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1891.175962] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:09:32 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x900, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:32 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 1891.217279] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:09:45 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x1100000}}}, 0xe)

13:09:45 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xec0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:45 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:09:45 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 53)

13:09:45 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x4, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf0ffff, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:45 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x6, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:45 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x18b, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1904.639003] FAULT_INJECTION: forcing a failure.
[ 1904.639003] name failslab, interval 1, probability 0, space 0, times 0
[ 1904.640065] CPU: 1 PID: 10776 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1904.640685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1904.641415] Call Trace:
[ 1904.641655]  dump_stack+0x107/0x167
[ 1904.641982]  should_fail.cold+0x5/0xa
[ 1904.642326]  ? create_object.isra.0+0x3a/0xa20
[ 1904.642758]  should_failslab+0x5/0x20
[ 1904.643102]  kmem_cache_alloc+0x5b/0x310
[ 1904.643472]  ? skb_release_data+0x11d/0x820
[ 1904.643869]  create_object.isra.0+0x3a/0xa20
[ 1904.644256]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1904.644714]  kmem_cache_alloc+0x159/0x310
[ 1904.645088]  skb_clone+0x14f/0x3d0
[ 1904.645404]  __skb_tstamp_tx+0x422/0x8d0
[ 1904.645772]  loopback_xmit+0x299/0x5e0
[ 1904.646130]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1904.646523]  __dev_queue_xmit+0x17ec/0x2710
[ 1904.646930]  ? find_held_lock+0x2c/0x110
[ 1904.647290]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1904.647698]  ? lock_downgrade+0x6d0/0x6d0
[ 1904.648070]  ? lock_acquire+0x197/0x470
[ 1904.648428]  ? find_held_lock+0x2c/0x110
[ 1904.648796]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1904.649267]  ip_finish_output2+0x1514/0x21f0
[ 1904.649659]  ? ip_frag_next+0x9e0/0x9e0
[ 1904.650016]  ? nf_hook+0x160/0x510
[ 1904.650338]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1904.650821]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1904.651260]  ? ip_fragment.constprop.0+0x240/0x240
[ 1904.651692]  ? nf_hook+0x510/0x510
[ 1904.652015]  ip_output+0x2f7/0x600
[ 1904.652334]  ip_local_out+0xb4/0x1a0
[ 1904.652671]  iptunnel_xmit+0x591/0x8b0
[ 1904.653027]  ip_tunnel_xmit+0x1248/0x2f40
[ 1904.653408]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1904.653829]  sit_tunnel_xmit+0xef0/0x2960
[ 1904.654201]  ? lock_downgrade+0x6d0/0x6d0
[ 1904.654573]  ? ipip_rcv+0x4f0/0x4f0
[ 1904.654899]  ? skb_crc32c_csum_help+0x80/0x80
[ 1904.655286]  ? lock_acquire+0x197/0x470
[ 1904.655634]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1904.656028]  ? netif_skb_features+0x373/0xbe0
[ 1904.656425]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1904.656823]  __dev_queue_xmit+0x17ec/0x2710
[ 1904.657206]  ? find_held_lock+0x2c/0x110
[ 1904.657560]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1904.657968]  ? lock_downgrade+0x6d0/0x6d0
[ 1904.658334]  ? lock_acquire+0x197/0x470
[ 1904.658692]  ? ip_finish_output2+0x220/0x21f0
[ 1904.659093]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1904.659564]  neigh_connected_output+0x382/0x4d0
[ 1904.659986]  ip_finish_output2+0x6f1/0x21f0
[ 1904.660370]  ? nf_hook_slow+0xfc/0x1e0
[ 1904.660715]  ? ip_frag_next+0x9e0/0x9e0
[ 1904.661068]  ? nf_hook+0x160/0x510
[ 1904.661385]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1904.661831]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1904.662260]  ? ip_fragment.constprop.0+0x240/0x240
[ 1904.662697]  ? nf_hook+0x510/0x510
[ 1904.663026]  ip_output+0x2f7/0x600
[ 1904.663343]  ip_send_skb+0xdd/0x260
[ 1904.663665]  udp_send_skb+0x6da/0x11d0
[ 1904.664019]  udp_sendmsg+0x197f/0x2170
[ 1904.664367]  ? ip_frag_init+0x350/0x350
[ 1904.664727]  ? udp_setsockopt+0xc0/0xc0
[ 1904.665079]  ? mark_lock+0xf5/0x2df0
[ 1904.665411]  ? lock_chain_count+0x20/0x20
[ 1904.665775]  ? mark_lock+0xf5/0x2df0
[ 1904.666113]  ? mark_lock+0xf5/0x2df0
[ 1904.666446]  ? lock_chain_count+0x20/0x20
[ 1904.666814]  ? lock_chain_count+0x20/0x20
[ 1904.667182]  ? prep_new_page+0x16d/0x1d0
[ 1904.667548]  ? lock_chain_count+0x20/0x20
[ 1904.667927]  ? __lock_acquire+0x1657/0x5b00
[ 1904.668310]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1904.668676]  ? __lock_acquire+0x1657/0x5b00
[ 1904.669068]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1904.669537]  ? lock_acquire+0x197/0x470
[ 1904.669892]  ? find_held_lock+0x2c/0x110
[ 1904.670254]  ? lock_acquire+0x197/0x470
[ 1904.670610]  ? find_held_lock+0x2c/0x110
[ 1904.670970]  ? __might_fault+0xd3/0x180
[ 1904.671317]  ? lock_downgrade+0x6d0/0x6d0
[ 1904.671680]  ? sock_has_perm+0x1ea/0x280
[ 1904.672030]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1904.672492]  ? __import_iovec+0x458/0x590
[ 1904.672856]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1904.673304]  inet6_sendmsg+0x105/0x140
[ 1904.673644]  ? inet6_compat_ioctl+0x320/0x320
[ 1904.674034]  __sock_sendmsg+0xf2/0x190
[ 1904.674374]  ____sys_sendmsg+0x334/0x870
[ 1904.674734]  ? sock_write_iter+0x3d0/0x3d0
[ 1904.675098]  ? do_recvmmsg+0x6d0/0x6d0
[ 1904.675435]  ? __lock_acquire+0x1657/0x5b00
[ 1904.675825]  ___sys_sendmsg+0xf3/0x170
[ 1904.676168]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1904.676557]  ? vmacache_find+0x55/0x2a0
[ 1904.676915]  ? lock_acquire+0x197/0x470
[ 1904.677258]  ? find_held_lock+0x2c/0x110
[ 1904.677619]  ? __might_fault+0xd3/0x180
[ 1904.677979]  ? lock_downgrade+0x6d0/0x6d0
[ 1904.678339]  ? asm_exc_page_fault+0x1e/0x30
[ 1904.678729]  __sys_sendmmsg+0x195/0x470
[ 1904.679081]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1904.679457]  ? lock_downgrade+0x6d0/0x6d0
[ 1904.679836]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1904.680255]  ? wait_for_completion_io+0x270/0x270
[ 1904.680679]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1904.681091]  ? vfs_write+0x354/0xa70
[ 1904.681414]  ? fput_many+0x2f/0x1a0
[ 1904.681731]  ? ksys_write+0x1a9/0x260
[ 1904.682060]  ? __ia32_sys_read+0xb0/0xb0
[ 1904.682428]  __x64_sys_sendmmsg+0x99/0x100
[ 1904.682803]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1904.683257]  do_syscall_64+0x33/0x40
[ 1904.683578]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1904.684029] RIP: 0033:0x7f4820600b19
[ 1904.684356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1904.685942] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1904.686608] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1904.687228] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1904.687850] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1904.688466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1904.689085] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:09:46 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x300, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x7, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x1000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf00, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 1904.809174] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:09:46 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x5, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x7b01, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x2000000}}}, 0xe)

13:09:46 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x2000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x500, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:09:46 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 1904.964282] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:09:46 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 54)

13:09:46 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x6, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 1905.047904] FAULT_INJECTION: forcing a failure.
[ 1905.047904] name failslab, interval 1, probability 0, space 0, times 0
[ 1905.048902] CPU: 1 PID: 10838 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1905.049460] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1905.050128] Call Trace:
[ 1905.050347]  dump_stack+0x107/0x167
[ 1905.050652]  should_fail.cold+0x5/0xa
[ 1905.050966]  ? skb_clone+0x14f/0x3d0
[ 1905.051277]  should_failslab+0x5/0x20
[ 1905.051601]  kmem_cache_alloc+0x5b/0x310
[ 1905.051944]  skb_clone+0x14f/0x3d0
[ 1905.052240]  __skb_tstamp_tx+0x422/0x8d0
[ 1905.052579]  loopback_xmit+0x299/0x5e0
[ 1905.052904]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1905.053270]  __dev_queue_xmit+0x17ec/0x2710
[ 1905.053626]  ? find_held_lock+0x2c/0x110
[ 1905.053958]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1905.054332]  ? lock_downgrade+0x6d0/0x6d0
[ 1905.054688]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1905.055117]  ip_finish_output2+0x1514/0x21f0
[ 1905.055479]  ? ip_frag_next+0x9e0/0x9e0
[ 1905.055801]  ? nf_hook+0x160/0x510
[ 1905.056092]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1905.056508]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1905.056908]  ? ip_fragment.constprop.0+0x240/0x240
[ 1905.057304]  ? nf_hook+0x510/0x510
[ 1905.057597]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1905.058024]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1905.058463]  ? trace_hardirqs_on+0x5b/0x180
[ 1905.058831]  ip_output+0x2f7/0x600
[ 1905.059128]  ip_local_out+0xb4/0x1a0
[ 1905.059436]  iptunnel_xmit+0x591/0x8b0
[ 1905.059761]  ip_tunnel_xmit+0x1248/0x2f40
[ 1905.060111]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1905.060499]  sit_tunnel_xmit+0xef0/0x2960
[ 1905.060843]  ? lock_downgrade+0x6d0/0x6d0
[ 1905.061178]  ? ipip_rcv+0x4f0/0x4f0
[ 1905.061474]  ? skb_crc32c_csum_help+0x80/0x80
[ 1905.061835]  ? lock_acquire+0x197/0x470
[ 1905.062157]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1905.062521]  ? netif_skb_features+0x373/0xbe0
[ 1905.062889]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1905.063255]  __dev_queue_xmit+0x17ec/0x2710
[ 1905.063617]  ? find_held_lock+0x2c/0x110
[ 1905.063947]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1905.064323]  ? lock_downgrade+0x6d0/0x6d0
[ 1905.064662]  ? lock_acquire+0x197/0x470
[ 1905.064984]  ? ip_finish_output2+0x220/0x21f0
[ 1905.065351]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1905.065780]  neigh_connected_output+0x382/0x4d0
[ 1905.066165]  ip_finish_output2+0x6f1/0x21f0
[ 1905.066518]  ? nf_hook_slow+0xfc/0x1e0
[ 1905.066841]  ? ip_frag_next+0x9e0/0x9e0
[ 1905.067170]  ? nf_hook+0x160/0x510
[ 1905.067463]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1905.067882]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1905.068283]  ? ip_fragment.constprop.0+0x240/0x240
[ 1905.068678]  ? nf_hook+0x510/0x510
[ 1905.068977]  ip_output+0x2f7/0x600
[ 1905.069271]  ip_send_skb+0xdd/0x260
[ 1905.069573]  udp_send_skb+0x6da/0x11d0
[ 1905.069897]  udp_sendmsg+0x197f/0x2170
[ 1905.070215]  ? ip_frag_init+0x350/0x350
[ 1905.070545]  ? udp_setsockopt+0xc0/0xc0
[ 1905.070871]  ? mark_lock+0xf5/0x2df0
[ 1905.071177]  ? lock_chain_count+0x20/0x20
[ 1905.071516]  ? mark_lock+0xf5/0x2df0
[ 1905.071823]  ? mark_lock+0xf5/0x2df0
[ 1905.072128]  ? lock_chain_count+0x20/0x20
[ 1905.072465]  ? lock_chain_count+0x20/0x20
[ 1905.072808]  ? prep_new_page+0x16d/0x1d0
[ 1905.073141]  ? lock_chain_count+0x20/0x20
[ 1905.073487]  ? __lock_acquire+0x1657/0x5b00
[ 1905.073841]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1905.074177]  ? __lock_acquire+0x1657/0x5b00
[ 1905.074538]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1905.074966]  ? lock_acquire+0x197/0x470
[ 1905.075288]  ? find_held_lock+0x2c/0x110
[ 1905.075622]  ? lock_acquire+0x197/0x470
[ 1905.075942]  ? find_held_lock+0x2c/0x110
[ 1905.076275]  ? __might_fault+0xd3/0x180
[ 1905.076596]  ? lock_downgrade+0x6d0/0x6d0
[ 1905.076938]  ? sock_has_perm+0x1ea/0x280
[ 1905.077265]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1905.077699]  ? __import_iovec+0x458/0x590
[ 1905.078038]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1905.078458]  inet6_sendmsg+0x105/0x140
[ 1905.078782]  ? inet6_compat_ioctl+0x320/0x320
[ 1905.079144]  __sock_sendmsg+0xf2/0x190
[ 1905.079460]  ____sys_sendmsg+0x334/0x870
[ 1905.079792]  ? sock_write_iter+0x3d0/0x3d0
[ 1905.080135]  ? do_recvmmsg+0x6d0/0x6d0
[ 1905.080455]  ? __lock_acquire+0x1657/0x5b00
[ 1905.080817]  ___sys_sendmsg+0xf3/0x170
[ 1905.081133]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1905.081502]  ? vmacache_find+0x55/0x2a0
[ 1905.081834]  ? lock_acquire+0x197/0x470
[ 1905.082161]  ? find_held_lock+0x2c/0x110
[ 1905.082497]  ? __might_fault+0xd3/0x180
[ 1905.082825]  ? lock_downgrade+0x6d0/0x6d0
[ 1905.083157]  ? asm_exc_page_fault+0x1e/0x30
[ 1905.083516]  __sys_sendmmsg+0x195/0x470
[ 1905.083843]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1905.084192]  ? lock_downgrade+0x6d0/0x6d0
[ 1905.084542]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1905.084938]  ? wait_for_completion_io+0x270/0x270
[ 1905.085334]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1905.085712]  ? vfs_write+0x354/0xa70
[ 1905.086016]  ? fput_many+0x2f/0x1a0
[ 1905.086313]  ? ksys_write+0x1a9/0x260
[ 1905.086629]  ? __ia32_sys_read+0xb0/0xb0
[ 1905.086966]  __x64_sys_sendmmsg+0x99/0x100
[ 1905.087307]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1905.087724]  do_syscall_64+0x33/0x40
[ 1905.088029]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1905.088438] RIP: 0033:0x7f4820600b19
[ 1905.088737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1905.090204] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1905.090835] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1905.091403] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1905.091978] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1905.092546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1905.093119] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:10:00 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 55)

13:10:00 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xc00e, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x7, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x3000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x8, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x600, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x3000000}}}, 0xe)

[ 1919.122057] FAULT_INJECTION: forcing a failure.
[ 1919.122057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1919.124100] CPU: 1 PID: 10846 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1919.125066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1919.126221] Call Trace:
[ 1919.126608]  dump_stack+0x107/0x167
[ 1919.127148]  should_fail.cold+0x5/0xa
[ 1919.127690]  _copy_from_user+0x2e/0x1b0
[ 1919.128246]  __copy_msghdr_from_user+0x91/0x4b0
[ 1919.128900]  ? __ia32_sys_shutdown+0x80/0x80
[ 1919.129537]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1919.130292]  sendmsg_copy_msghdr+0xa1/0x160
[ 1919.130911]  ? do_recvmmsg+0x6d0/0x6d0
[ 1919.131464]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1919.132204]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1919.132993]  ? trace_hardirqs_on+0x5b/0x180
[ 1919.133618]  ___sys_sendmsg+0xc6/0x170
[ 1919.134177]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1919.134822]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1919.135457]  ? _raw_spin_unlock_irq+0x27/0x30
[ 1919.136105]  ? finish_task_switch+0x1a4/0x5d0
[ 1919.136722]  ? __switch_to+0x572/0xf70
[ 1919.137271]  ? __switch_to_asm+0x3a/0x60
[ 1919.137847]  ? __switch_to_asm+0x34/0x60
[ 1919.138422]  ? __schedule+0x82c/0x1ea0
[ 1919.139018]  ? io_schedule_timeout+0x140/0x140
[ 1919.139667]  __sys_sendmmsg+0x195/0x470
[ 1919.140240]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1919.140846]  ? lock_downgrade+0x6d0/0x6d0
[ 1919.141448]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1919.142114]  ? wait_for_completion_io+0x270/0x270
[ 1919.142834]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1919.143497]  ? vfs_write+0x354/0xa70
[ 1919.144029]  ? fput_many+0x2f/0x1a0
[ 1919.144538]  ? ksys_write+0x1a9/0x260
[ 1919.145082]  ? __ia32_sys_read+0xb0/0xb0
[ 1919.145657]  __x64_sys_sendmmsg+0x99/0x100
[ 1919.146243]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1919.147029]  do_syscall_64+0x33/0x40
[ 1919.147541]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1919.148257] RIP: 0033:0x7f4820600b19
[ 1919.148778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1919.151336] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1919.152380] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1919.153359] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1919.154355] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1919.155341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1919.156332] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:10:00 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x700, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 56)

13:10:00 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1919.241911] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1919.264139] FAULT_INJECTION: forcing a failure.
[ 1919.264139] name failslab, interval 1, probability 0, space 0, times 0
[ 1919.265861] CPU: 1 PID: 10869 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1919.266820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1919.267955] Call Trace:
[ 1919.268346]  dump_stack+0x107/0x167
[ 1919.268860]  should_fail.cold+0x5/0xa
[ 1919.269400]  should_failslab+0x5/0x20
[ 1919.269933]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1919.270629]  ? alloc_skb_with_frags+0x92/0x570
[ 1919.271287]  __alloc_skb+0xb1/0x5b0
[ 1919.271798]  alloc_skb_with_frags+0x92/0x570
[ 1919.272420]  sock_alloc_send_pskb+0x7af/0x930
[ 1919.273058]  ? sk_alloc+0x350/0x350
[ 1919.273581]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1919.274306]  ? SOFTIRQ_verbose+0x10/0x10
[ 1919.274888]  __ip_append_data+0x1628/0x3310
[ 1919.275497]  ? fib_select_path+0x95d/0x1e90
[ 1919.276101]  ? ip_frag_init+0x350/0x350
[ 1919.276670]  ? ip_finish_output+0x330/0x330
[ 1919.277280]  ? ip_route_output_key_hash+0x1a4/0x340
[ 1919.277966]  ? __sock_tx_timestamp+0xa3/0xc0
[ 1919.278582]  ip_make_skb+0x22a/0x2a0
[ 1919.279138]  ? ip_frag_init+0x350/0x350
[ 1919.279699]  ? ip_flush_pending_frames+0x20/0x20
[ 1919.280365]  ? lock_downgrade+0x6d0/0x6d0
[ 1919.280962]  ? xfrm_lookup_route+0x65/0x210
[ 1919.281568]  udp_sendmsg+0x193f/0x2170
[ 1919.282118]  ? ip_frag_init+0x350/0x350
[ 1919.282699]  ? udp_setsockopt+0xc0/0xc0
[ 1919.283306]  ? mark_lock+0xf5/0x2df0
[ 1919.283827]  ? mark_lock+0xf5/0x2df0
[ 1919.284346]  ? lock_chain_count+0x20/0x20
[ 1919.284955]  ? lock_chain_count+0x20/0x20
[ 1919.285556]  ? __lock_acquire+0x1657/0x5b00
[ 1919.286158]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1919.286725]  ? __lock_acquire+0x1657/0x5b00
[ 1919.287379]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1919.288113]  ? lock_acquire+0x197/0x470
[ 1919.288669]  ? find_held_lock+0x2c/0x110
[ 1919.289244]  ? lock_acquire+0x197/0x470
[ 1919.289803]  ? find_held_lock+0x2c/0x110
[ 1919.290380]  ? __might_fault+0xd3/0x180
[ 1919.290958]  ? lock_downgrade+0x6d0/0x6d0
[ 1919.291535]  ? sock_has_perm+0x1ea/0x280
[ 1919.292109]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1919.292849]  ? __import_iovec+0x458/0x590
[ 1919.293431]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1919.294148]  inet6_sendmsg+0x105/0x140
[ 1919.294692]  ? inet6_compat_ioctl+0x320/0x320
[ 1919.295352]  __sock_sendmsg+0xf2/0x190
[ 1919.295895]  ____sys_sendmsg+0x334/0x870
[ 1919.296458]  ? sock_write_iter+0x3d0/0x3d0
[ 1919.297040]  ? do_recvmmsg+0x6d0/0x6d0
[ 1919.297579]  ? __lock_acquire+0x1657/0x5b00
[ 1919.298190]  ___sys_sendmsg+0xf3/0x170
[ 1919.298741]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1919.299407]  ? vmacache_find+0x55/0x2a0
[ 1919.299976]  ? lock_acquire+0x197/0x470
[ 1919.300538]  ? find_held_lock+0x2c/0x110
[ 1919.301126]  ? __might_fault+0xd3/0x180
[ 1919.301687]  ? lock_downgrade+0x6d0/0x6d0
[ 1919.302266]  ? asm_exc_page_fault+0x1e/0x30
[ 1919.302895]  __sys_sendmmsg+0x195/0x470
[ 1919.303451]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1919.304054]  ? lock_downgrade+0x6d0/0x6d0
[ 1919.304646]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1919.305332]  ? wait_for_completion_io+0x270/0x270
[ 1919.306009]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1919.306672]  ? vfs_write+0x354/0xa70
[ 1919.307230]  ? fput_many+0x2f/0x1a0
[ 1919.307742]  ? ksys_write+0x1a9/0x260
[ 1919.308274]  ? __ia32_sys_read+0xb0/0xb0
[ 1919.308848]  __x64_sys_sendmmsg+0x99/0x100
[ 1919.309448]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1919.310162]  do_syscall_64+0x33/0x40
[ 1919.310675]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1919.311429] RIP: 0033:0x7f4820600b19
[ 1919.311955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1919.314613] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1919.315674] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1919.316715] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1919.317754] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1919.318807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1919.319845] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:10:00 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x4000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x3010000}}}, 0xe)

13:10:00 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x8, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x9, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x34000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x900, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x5000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1919.489889] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:10:00 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:00 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x4000000}}}, 0xe)

13:10:00 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x80000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:00 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x9, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 57)

13:10:13 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x6000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xa, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:13 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xa, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x5000000}}}, 0xe)

13:10:13 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x400300, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xec0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1932.515364] FAULT_INJECTION: forcing a failure.
[ 1932.515364] name failslab, interval 1, probability 0, space 0, times 0
[ 1932.517640] CPU: 1 PID: 10927 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1932.518714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1932.519981] Call Trace:
[ 1932.520398]  dump_stack+0x107/0x167
[ 1932.520968]  should_fail.cold+0x5/0xa
[ 1932.521568]  ? create_object.isra.0+0x3a/0xa20
[ 1932.522273]  should_failslab+0x5/0x20
[ 1932.522859]  kmem_cache_alloc+0x5b/0x310
[ 1932.523500]  create_object.isra.0+0x3a/0xa20
[ 1932.524185]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1932.524968]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1932.525750]  ? alloc_skb_with_frags+0x92/0x570
[ 1932.526450]  __alloc_skb+0xb1/0x5b0
[ 1932.527029]  alloc_skb_with_frags+0x92/0x570
[ 1932.527722]  sock_alloc_send_pskb+0x7af/0x930
[ 1932.528440]  ? sk_alloc+0x350/0x350
[ 1932.529012]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1932.529821]  ? SOFTIRQ_verbose+0x10/0x10
[ 1932.530455]  __ip_append_data+0x1628/0x3310
[ 1932.531142]  ? fib_select_path+0x95d/0x1e90
[ 1932.531810]  ? ip_frag_init+0x350/0x350
[ 1932.532441]  ? ip_finish_output+0x330/0x330
[ 1932.533102]  ? ip_route_output_key_hash+0x1a4/0x340
[ 1932.533873]  ? __sock_tx_timestamp+0xa3/0xc0
[ 1932.534558]  ip_make_skb+0x22a/0x2a0
[ 1932.535150]  ? ip_frag_init+0x350/0x350
[ 1932.535775]  ? ip_flush_pending_frames+0x20/0x20
[ 1932.536506]  ? lock_downgrade+0x6d0/0x6d0
[ 1932.537155]  ? xfrm_lookup_route+0x65/0x210
[ 1932.537829]  udp_sendmsg+0x193f/0x2170
[ 1932.538444]  ? ip_frag_init+0x350/0x350
[ 1932.539069]  ? __lock_acquire+0x1657/0x5b00
[ 1932.539735]  ? udp_setsockopt+0xc0/0xc0
[ 1932.540361]  ? mark_lock+0xf5/0x2df0
[ 1932.540947]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1932.541744]  ? SOFTIRQ_verbose+0x10/0x10
[ 1932.542372]  ? clockevents_program_event+0x14b/0x360
[ 1932.543157]  ? lock_acquire+0x197/0x470
[ 1932.543770]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1932.544395]  ? __lock_acquire+0x1657/0x5b00
[ 1932.545068]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1932.545853]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1932.546659]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1932.547512]  ? lock_acquire+0x197/0x470
[ 1932.548123]  ? find_held_lock+0x2c/0x110
[ 1932.548749]  ? __might_fault+0xd3/0x180
[ 1932.549367]  ? lock_downgrade+0x6d0/0x6d0
[ 1932.550005]  ? sock_has_perm+0x1ea/0x280
[ 1932.550633]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1932.551449]  ? __import_iovec+0x458/0x590
[ 1932.552088]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1932.552880]  inet6_sendmsg+0x105/0x140
[ 1932.553481]  ? inet6_compat_ioctl+0x320/0x320
[ 1932.554157]  __sock_sendmsg+0xf2/0x190
[ 1932.554759]  ____sys_sendmsg+0x334/0x870
[ 1932.555392]  ? sock_write_iter+0x3d0/0x3d0
[ 1932.556186]  ? do_recvmmsg+0x6d0/0x6d0
[ 1932.556786]  ? find_held_lock+0x2c/0x110
[ 1932.557419]  ___sys_sendmsg+0xf3/0x170
[ 1932.558042]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1932.558803]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1932.559673]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1932.560404]  ? trace_hardirqs_on+0x5b/0x180
[ 1932.561099]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1932.561811]  ? finish_task_switch+0x126/0x5d0
[ 1932.562517]  ? finish_task_switch+0xef/0x5d0
[ 1932.563244]  ? __switch_to+0x572/0xf70
[ 1932.563876]  ? __switch_to_asm+0x3a/0x60
[ 1932.564530]  ? __switch_to_asm+0x34/0x60
[ 1932.565188]  ? __schedule+0x82c/0x1ea0
[ 1932.565825]  ? io_schedule_timeout+0x140/0x140
[ 1932.566572]  __sys_sendmmsg+0x195/0x470
[ 1932.567239]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1932.567944]  ? lock_downgrade+0x6d0/0x6d0
[ 1932.568625]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1932.569408]  ? wait_for_completion_io+0x270/0x270
[ 1932.570181]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1932.570947]  ? vfs_write+0x354/0xa70
[ 1932.571558]  ? fput_many+0x2f/0x1a0
[ 1932.572153]  ? ksys_write+0x1a9/0x260
[ 1932.572774]  ? __ia32_sys_read+0xb0/0xb0
[ 1932.573435]  __x64_sys_sendmmsg+0x99/0x100
[ 1932.574127]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1932.574979]  do_syscall_64+0x33/0x40
[ 1932.575580]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1932.576408] RIP: 0033:0x7f4820600b19
[ 1932.577015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1932.579920] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1932.581122] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1932.582244] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1932.583374] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1932.584491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1932.585602] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:10:13 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf0ffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf00, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x7000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xb, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:13 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x9000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1932.654238] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:10:13 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:31 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xb, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:31 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:31 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 58)

13:10:31 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x6000000}}}, 0xe)

13:10:31 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x1000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:31 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x8b01, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:31 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf000000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:31 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 1950.434359] FAULT_INJECTION: forcing a failure.
[ 1950.434359] name failslab, interval 1, probability 0, space 0, times 0
[ 1950.436269] CPU: 0 PID: 10977 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1950.437281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1950.438499] Call Trace:
[ 1950.438898]  dump_stack+0x107/0x167
[ 1950.439453]  should_fail.cold+0x5/0xa
[ 1950.440028]  should_failslab+0x5/0x20
[ 1950.440590]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1950.441323]  ? alloc_skb_with_frags+0x92/0x570
[ 1950.442005]  __alloc_skb+0xb1/0x5b0
[ 1950.442550]  alloc_skb_with_frags+0x92/0x570
[ 1950.443223]  sock_alloc_send_pskb+0x7af/0x930
[ 1950.443899]  ? sk_alloc+0x350/0x350
[ 1950.444451]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1950.445236]  ? SOFTIRQ_verbose+0x10/0x10
[ 1950.445853]  __ip_append_data+0x1628/0x3310
[ 1950.446506]  ? fib_select_path+0x95d/0x1e90
[ 1950.447164]  ? ip_frag_init+0x350/0x350
[ 1950.447770]  ? ip_finish_output+0x330/0x330
[ 1950.448419]  ? ip_route_output_key_hash+0x1a4/0x340
[ 1950.449167]  ? __sock_tx_timestamp+0xa3/0xc0
[ 1950.449832]  ip_make_skb+0x22a/0x2a0
[ 1950.450392]  ? ip_frag_init+0x350/0x350
[ 1950.450992]  ? ip_flush_pending_frames+0x20/0x20
[ 1950.451706]  ? lock_downgrade+0x6d0/0x6d0
[ 1950.452325]  ? xfrm_lookup_route+0x65/0x210
[ 1950.452978]  udp_sendmsg+0x193f/0x2170
[ 1950.453562]  ? ip_frag_init+0x350/0x350
[ 1950.454157]  ? __lock_acquire+0x1657/0x5b00
[ 1950.454799]  ? udp_setsockopt+0xc0/0xc0
[ 1950.455417]  ? mark_lock+0xf5/0x2df0
[ 1950.455990]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1950.456770]  ? SOFTIRQ_verbose+0x10/0x10
[ 1950.457388]  ? clockevents_program_event+0x14b/0x360
[ 1950.458145]  ? lock_acquire+0x197/0x470
[ 1950.458738]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1950.459350]  ? __lock_acquire+0x1657/0x5b00
[ 1950.459997]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1950.460768]  ? perf_event_task_disable+0x390/0x390
[ 1950.461485]  ? lock_downgrade+0x6d0/0x6d0
[ 1950.462106]  ? hrtimer_start_range_ns+0x336/0xae0
[ 1950.462826]  ? lock_acquire+0x197/0x470
[ 1950.463442]  ? find_held_lock+0x2c/0x110
[ 1950.464050]  ? __might_fault+0xd3/0x180
[ 1950.464637]  ? lock_downgrade+0x6d0/0x6d0
[ 1950.465246]  ? sock_has_perm+0x1ea/0x280
[ 1950.465848]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1950.466625]  ? __import_iovec+0x458/0x590
[ 1950.467243]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1950.468016]  inet6_sendmsg+0x105/0x140
[ 1950.468596]  ? inet6_compat_ioctl+0x320/0x320
[ 1950.469255]  __sock_sendmsg+0xf2/0x190
[ 1950.469828]  ____sys_sendmsg+0x334/0x870
[ 1950.470430]  ? sock_write_iter+0x3d0/0x3d0
[ 1950.471058]  ? do_recvmmsg+0x6d0/0x6d0
[ 1950.471646]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1950.472420]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1950.473210]  ? trace_hardirqs_on+0x5b/0x180
[ 1950.473848]  ___sys_sendmsg+0xf3/0x170
[ 1950.474429]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1950.475112]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1950.475781]  ? _raw_spin_unlock_irq+0x27/0x30
[ 1950.476442]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1950.477105]  ? finish_task_switch+0x126/0x5d0
[ 1950.477761]  ? finish_task_switch+0xef/0x5d0
[ 1950.478405]  ? __switch_to+0x572/0xf70
[ 1950.478974]  ? __switch_to_asm+0x3a/0x60
[ 1950.479581]  ? __switch_to_asm+0x34/0x60
[ 1950.480191]  ? __schedule+0x82c/0x1ea0
[ 1950.480771]  ? io_schedule_timeout+0x140/0x140
[ 1950.481458]  __sys_sendmmsg+0x195/0x470
[ 1950.482054]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1950.482686]  ? lock_downgrade+0x6d0/0x6d0
[ 1950.483325]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1950.484044]  ? wait_for_completion_io+0x270/0x270
[ 1950.484757]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1950.485439]  ? vfs_write+0x354/0xa70
[ 1950.485991]  ? fput_many+0x2f/0x1a0
[ 1950.486530]  ? ksys_write+0x1a9/0x260
[ 1950.487093]  ? __ia32_sys_read+0xb0/0xb0
[ 1950.487707]  __x64_sys_sendmmsg+0x99/0x100
[ 1950.488336]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1950.489100]  do_syscall_64+0x33/0x40
[ 1950.489652]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1950.490405] RIP: 0033:0x7f4820600b19
[ 1950.490958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1950.493641] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1950.494755] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1950.495806] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1950.496846] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1950.497894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1950.498935] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:10:31 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:31 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xc00e, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:31 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xd, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 1950.565396] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:10:44 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:44 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x2000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:44 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xe, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:44 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xc000000}}}, 0xe)

13:10:44 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 59)

13:10:44 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x9effffff, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:44 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:44 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1963.673045] FAULT_INJECTION: forcing a failure.
[ 1963.673045] name failslab, interval 1, probability 0, space 0, times 0
[ 1963.674144] CPU: 1 PID: 11014 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1963.674758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1963.675501] Call Trace:
[ 1963.675749]  dump_stack+0x107/0x167
[ 1963.676077]  should_fail.cold+0x5/0xa
[ 1963.676423]  ? ___slab_alloc+0x155/0x700
[ 1963.676788]  ? create_object.isra.0+0x3a/0xa20
[ 1963.677192]  should_failslab+0x5/0x20
[ 1963.677529]  kmem_cache_alloc+0x5b/0x310
[ 1963.677884]  ? mark_lock+0xf5/0x2df0
[ 1963.678219]  create_object.isra.0+0x3a/0xa20
[ 1963.678609]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1963.679060]  kmem_cache_alloc+0x159/0x310
[ 1963.679441]  skb_clone+0x14f/0x3d0
[ 1963.679759]  __skb_tstamp_tx+0x422/0x8d0
[ 1963.680126]  __dev_queue_xmit+0x1770/0x2710
[ 1963.680514]  ? find_held_lock+0x2c/0x110
[ 1963.680875]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1963.681285]  ? lock_downgrade+0x6d0/0x6d0
[ 1963.681655]  ? lock_acquire+0x197/0x470
[ 1963.682012]  ? ip_finish_output2+0x220/0x21f0
[ 1963.682416]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1963.682891]  neigh_connected_output+0x382/0x4d0
[ 1963.683316]  ip_finish_output2+0x6f1/0x21f0
[ 1963.683702]  ? nf_hook_slow+0xfc/0x1e0
[ 1963.684045]  ? ip_frag_next+0x9e0/0x9e0
[ 1963.684393]  ? nf_hook+0x160/0x510
[ 1963.684709]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1963.685157]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1963.685586]  ? ip_fragment.constprop.0+0x240/0x240
[ 1963.686011]  ? nf_hook+0x510/0x510
[ 1963.686331]  ip_output+0x2f7/0x600
[ 1963.686647]  ip_send_skb+0xdd/0x260
[ 1963.686974]  udp_send_skb+0x6da/0x11d0
[ 1963.687327]  udp_sendmsg+0x197f/0x2170
[ 1963.687672]  ? ip_frag_init+0x350/0x350
[ 1963.688031]  ? __lock_acquire+0x1657/0x5b00
[ 1963.688405]  ? udp_setsockopt+0xc0/0xc0
[ 1963.688770]  ? mark_lock+0xf5/0x2df0
[ 1963.689108]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1963.689568]  ? SOFTIRQ_verbose+0x10/0x10
[ 1963.689940]  ? clockevents_program_event+0x14b/0x360
[ 1963.690386]  ? lock_acquire+0x197/0x470
[ 1963.690748]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1963.691119]  ? __lock_acquire+0x1657/0x5b00
[ 1963.691519]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1963.691994]  ? perf_event_task_disable+0x390/0x390
[ 1963.692420]  ? lock_downgrade+0x6d0/0x6d0
[ 1963.692795]  ? hrtimer_start_range_ns+0x336/0xae0
[ 1963.693227]  ? lock_acquire+0x197/0x470
[ 1963.693575]  ? find_held_lock+0x2c/0x110
[ 1963.693952]  ? __might_fault+0xd3/0x180
[ 1963.694309]  ? lock_downgrade+0x6d0/0x6d0
[ 1963.694670]  ? sock_has_perm+0x1ea/0x280
[ 1963.695038]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1963.695506]  ? __import_iovec+0x458/0x590
[ 1963.695867]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1963.696322]  inet6_sendmsg+0x105/0x140
[ 1963.696677]  ? inet6_compat_ioctl+0x320/0x320
[ 1963.697081]  __sock_sendmsg+0xf2/0x190
[ 1963.697427]  ____sys_sendmsg+0x334/0x870
[ 1963.697808]  ? sock_write_iter+0x3d0/0x3d0
[ 1963.698175]  ? do_recvmmsg+0x6d0/0x6d0
[ 1963.698525]  ? __lock_acquire+0x1657/0x5b00
[ 1963.698918]  ___sys_sendmsg+0xf3/0x170
[ 1963.699276]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1963.699696]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1963.700168]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1963.700574]  ? trace_hardirqs_on+0x5b/0x180
[ 1963.700974]  ? lock_acquire+0x197/0x470
[ 1963.701330]  ? find_held_lock+0x2c/0x110
[ 1963.701691]  ? __might_fault+0xd3/0x180
[ 1963.702051]  ? lock_downgrade+0x6d0/0x6d0
[ 1963.702414]  ? io_schedule_timeout+0x140/0x140
[ 1963.702829]  __sys_sendmmsg+0x195/0x470
[ 1963.703186]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1963.703578]  ? lock_downgrade+0x6d0/0x6d0
[ 1963.703962]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1963.704389]  ? wait_for_completion_io+0x270/0x270
[ 1963.704818]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1963.705242]  ? vfs_write+0x354/0xa70
[ 1963.705567]  ? fput_many+0x2f/0x1a0
[ 1963.705902]  ? ksys_write+0x1a9/0x260
[ 1963.706238]  ? __ia32_sys_read+0xb0/0xb0
[ 1963.706613]  __x64_sys_sendmmsg+0x99/0x100
[ 1963.706999]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1963.707464]  do_syscall_64+0x33/0x40
[ 1963.707794]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1963.708254] RIP: 0033:0x7f4820600b19
[ 1963.708580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1963.710180] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1963.710849] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1963.711472] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1963.712102] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1963.712727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1963.713370] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:10:45 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x34000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1963.804430] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:10:45 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x3000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xc00e0000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:45 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:45 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xd, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:45 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x80000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:45 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:45 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x10000000}}}, 0xe)

13:10:58 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x12000000}}}, 0xe)

13:10:58 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:58 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x4000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x400300, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xcd010000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x28, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xe, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 60)

[ 1977.342217] FAULT_INJECTION: forcing a failure.
[ 1977.342217] name failslab, interval 1, probability 0, space 0, times 0
[ 1977.343395] CPU: 1 PID: 11080 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1977.344041] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1977.344797] Call Trace:
[ 1977.345044]  dump_stack+0x107/0x167
[ 1977.345390]  should_fail.cold+0x5/0xa
[ 1977.345742]  ? dst_alloc+0x9e/0x5d0
[ 1977.346073]  should_failslab+0x5/0x20
[ 1977.346436]  kmem_cache_alloc+0x5b/0x310
[ 1977.346811]  dst_alloc+0x9e/0x5d0
[ 1977.347126]  rt_dst_alloc+0x73/0x440
[ 1977.347485]  ip_route_output_key_hash_rcu+0x93d/0x2a90
[ 1977.347972]  ip_route_output_key_hash+0x18d/0x340
[ 1977.348418]  ? ip_route_output_key_hash_rcu+0x2a90/0x2a90
[ 1977.348925]  ? mark_lock+0xf5/0x2df0
[ 1977.349278]  ip_route_output_flow+0x23/0x150
[ 1977.349682]  ip_tunnel_xmit+0x70e/0x2f40
[ 1977.350060]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1977.350511]  sit_tunnel_xmit+0xef0/0x2960
[ 1977.350895]  ? lock_downgrade+0x6d0/0x6d0
[ 1977.351286]  ? ipip_rcv+0x4f0/0x4f0
[ 1977.351638]  ? skb_crc32c_csum_help+0x80/0x80
[ 1977.352041]  ? lock_acquire+0x197/0x470
[ 1977.352396]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1977.352798]  ? netif_skb_features+0x373/0xbe0
[ 1977.353206]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1977.353607]  __dev_queue_xmit+0x17ec/0x2710
[ 1977.354000]  ? find_held_lock+0x2c/0x110
[ 1977.354366]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1977.354774]  ? lock_downgrade+0x6d0/0x6d0
[ 1977.355145]  ? lock_acquire+0x197/0x470
[ 1977.355508]  ? ip_finish_output2+0x220/0x21f0
[ 1977.355911]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1977.356383]  neigh_connected_output+0x382/0x4d0
[ 1977.356808]  ip_finish_output2+0x6f1/0x21f0
[ 1977.357198]  ? nf_hook_slow+0xfc/0x1e0
[ 1977.357544]  ? ip_frag_next+0x9e0/0x9e0
[ 1977.357897]  ? nf_hook+0x160/0x510
[ 1977.358215]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1977.358673]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1977.359110]  ? ip_fragment.constprop.0+0x240/0x240
[ 1977.359552]  ? nf_hook+0x510/0x510
[ 1977.359890]  ip_output+0x2f7/0x600
[ 1977.360210]  ip_send_skb+0xdd/0x260
[ 1977.360540]  udp_send_skb+0x6da/0x11d0
[ 1977.360896]  udp_sendmsg+0x197f/0x2170
[ 1977.361247]  ? ip_frag_init+0x350/0x350
[ 1977.361607]  ? udp_setsockopt+0xc0/0xc0
[ 1977.361977]  ? mark_lock+0xf5/0x2df0
[ 1977.362310]  ? lock_chain_count+0x20/0x20
[ 1977.362687]  ? lock_chain_count+0x20/0x20
[ 1977.363068]  ? __lock_acquire+0x1657/0x5b00
[ 1977.363476]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1977.363850]  ? __lock_acquire+0x1657/0x5b00
[ 1977.364249]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1977.364723]  ? lock_acquire+0x1b9/0x470
[ 1977.365079]  ? find_held_lock+0x2c/0x110
[ 1977.365449]  ? lock_acquire+0x197/0x470
[ 1977.365811]  ? find_held_lock+0x2c/0x110
[ 1977.366184]  ? __might_fault+0xd3/0x180
[ 1977.366542]  ? lock_downgrade+0x6d0/0x6d0
[ 1977.366930]  ? sock_has_perm+0x1ea/0x280
[ 1977.367294]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1977.367787]  ? __import_iovec+0x458/0x590
[ 1977.368167]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1977.368633]  inet6_sendmsg+0x105/0x140
[ 1977.368989]  ? inet6_compat_ioctl+0x320/0x320
[ 1977.369401]  __sock_sendmsg+0xf2/0x190
[ 1977.369750]  ____sys_sendmsg+0x334/0x870
[ 1977.370121]  ? sock_write_iter+0x3d0/0x3d0
[ 1977.370505]  ? do_recvmmsg+0x6d0/0x6d0
[ 1977.370863]  ? __lock_acquire+0x1657/0x5b00
[ 1977.371258]  ___sys_sendmsg+0xf3/0x170
[ 1977.371623]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1977.372033]  ? vmacache_find+0x55/0x2a0
[ 1977.372399]  ? lock_acquire+0x197/0x470
[ 1977.372766]  ? find_held_lock+0x2c/0x110
[ 1977.373136]  ? __might_fault+0xd3/0x180
[ 1977.373493]  ? lock_downgrade+0x6d0/0x6d0
[ 1977.373873]  ? asm_exc_page_fault+0x1e/0x30
[ 1977.374281]  __sys_sendmmsg+0x195/0x470
[ 1977.374637]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1977.375031]  ? lock_downgrade+0x6d0/0x6d0
[ 1977.375422]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1977.375873]  ? wait_for_completion_io+0x270/0x270
[ 1977.376302]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1977.376729]  ? vfs_write+0x354/0xa70
[ 1977.377067]  ? fput_many+0x2f/0x1a0
[ 1977.377392]  ? ksys_write+0x1a9/0x260
[ 1977.377741]  ? __ia32_sys_read+0xb0/0xb0
[ 1977.378109]  __x64_sys_sendmmsg+0x99/0x100
[ 1977.378486]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1977.378955]  do_syscall_64+0x33/0x40
[ 1977.379297]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1977.379767] RIP: 0033:0x7f4820600b19
[ 1977.380104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1977.381740] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1977.382420] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1977.383066] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1977.383703] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1977.384347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1977.384982] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:10:58 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x5000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1977.401639] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:10:58 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf0ffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:10:58 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf0ffffff, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:10:58 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x20000000}}}, 0xe)

13:10:58 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x6000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x7000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x1000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 61)

13:11:13 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x28, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x21030000}}}, 0xe)

13:11:13 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:11:13 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x24f, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xfffff000, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x9000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1991.814587] FAULT_INJECTION: forcing a failure.
[ 1991.814587] name failslab, interval 1, probability 0, space 0, times 0
[ 1991.816372] CPU: 1 PID: 11141 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1991.817384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1991.818587] Call Trace:
[ 1991.818986]  dump_stack+0x107/0x167
[ 1991.819528]  should_fail.cold+0x5/0xa
[ 1991.820098]  ? create_object.isra.0+0x3a/0xa20
[ 1991.820768]  should_failslab+0x5/0x20
[ 1991.821330]  kmem_cache_alloc+0x5b/0x310
[ 1991.821933]  create_object.isra.0+0x3a/0xa20
[ 1991.822577]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1991.823338]  kmem_cache_alloc+0x159/0x310
[ 1991.823977]  dst_alloc+0x9e/0x5d0
[ 1991.824500]  rt_dst_alloc+0x73/0x440
[ 1991.825054]  ip_route_output_key_hash_rcu+0x93d/0x2a90
[ 1991.825829]  ip_route_output_key_hash+0x18d/0x340
[ 1991.826534]  ? ip_route_output_key_hash_rcu+0x2a90/0x2a90
[ 1991.827350]  ? mark_lock+0xf5/0x2df0
[ 1991.827914]  ip_route_output_flow+0x23/0x150
[ 1991.828563]  ip_tunnel_xmit+0x70e/0x2f40
[ 1991.829186]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1991.829880]  sit_tunnel_xmit+0xef0/0x2960
[ 1991.830494]  ? lock_downgrade+0x6d0/0x6d0
[ 1991.831110]  ? ipip_rcv+0x4f0/0x4f0
[ 1991.831650]  ? skb_crc32c_csum_help+0x80/0x80
[ 1991.832487]  ? lock_acquire+0x197/0x470
[ 1991.833077]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1991.833732]  ? netif_skb_features+0x373/0xbe0
[ 1991.834388]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1991.835035]  __dev_queue_xmit+0x17ec/0x2710
[ 1991.835681]  ? find_held_lock+0x2c/0x110
[ 1991.836273]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1991.836942]  ? lock_downgrade+0x6d0/0x6d0
[ 1991.837547]  ? lock_acquire+0x197/0x470
[ 1991.838135]  ? ip_finish_output2+0x220/0x21f0
[ 1991.838803]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1991.839571]  neigh_connected_output+0x382/0x4d0
[ 1991.840274]  ip_finish_output2+0x6f1/0x21f0
[ 1991.840907]  ? nf_hook_slow+0xfc/0x1e0
[ 1991.841485]  ? ip_frag_next+0x9e0/0x9e0
[ 1991.842064]  ? nf_hook+0x160/0x510
[ 1991.842586]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1991.843331]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1991.844066]  ? ip_fragment.constprop.0+0x240/0x240
[ 1991.844778]  ? nf_hook+0x510/0x510
[ 1991.845306]  ip_output+0x2f7/0x600
[ 1991.845833]  ip_send_skb+0xdd/0x260
[ 1991.846370]  udp_send_skb+0x6da/0x11d0
[ 1991.846951]  udp_sendmsg+0x197f/0x2170
[ 1991.847521]  ? ip_frag_init+0x350/0x350
[ 1991.848123]  ? udp_setsockopt+0xc0/0xc0
[ 1991.848704]  ? mark_lock+0xf5/0x2df0
[ 1991.849317]  ? lock_chain_count+0x20/0x20
[ 1991.849919]  ? mark_lock+0xf5/0x2df0
[ 1991.850467]  ? mark_lock+0xf5/0x2df0
[ 1991.851010]  ? lock_chain_count+0x20/0x20
[ 1991.851619]  ? lock_chain_count+0x20/0x20
[ 1991.852239]  ? prep_new_page+0x16d/0x1d0
[ 1991.852837]  ? lock_chain_count+0x20/0x20
[ 1991.853456]  ? __lock_acquire+0x1657/0x5b00
[ 1991.854092]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1991.854686]  ? __lock_acquire+0x1657/0x5b00
[ 1991.855329]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1991.856095]  ? lock_acquire+0x197/0x470
[ 1991.856673]  ? find_held_lock+0x2c/0x110
[ 1991.857274]  ? lock_acquire+0x197/0x470
[ 1991.857851]  ? find_held_lock+0x2c/0x110
[ 1991.858450]  ? __might_fault+0xd3/0x180
[ 1991.859029]  ? lock_downgrade+0x6d0/0x6d0
[ 1991.859642]  ? sock_has_perm+0x1ea/0x280
[ 1991.860233]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1991.861005]  ? __import_iovec+0x458/0x590
[ 1991.861609]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1991.862364]  inet6_sendmsg+0x105/0x140
[ 1991.862935]  ? inet6_compat_ioctl+0x320/0x320
[ 1991.863582]  __sock_sendmsg+0xf2/0x190
[ 1991.864161]  ____sys_sendmsg+0x334/0x870
[ 1991.864763]  ? sock_write_iter+0x3d0/0x3d0
[ 1991.865377]  ? do_recvmmsg+0x6d0/0x6d0
[ 1991.865945]  ? __lock_acquire+0x1657/0x5b00
[ 1991.866596]  ___sys_sendmsg+0xf3/0x170
[ 1991.867170]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1991.867841]  ? vmacache_find+0x55/0x2a0
[ 1991.868439]  ? lock_acquire+0x197/0x470
[ 1991.869016]  ? find_held_lock+0x2c/0x110
[ 1991.869611]  ? __might_fault+0xd3/0x180
13:11:13 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xffffff7f, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1991.870191]  ? lock_downgrade+0x6d0/0x6d0
[ 1991.870943]  ? asm_exc_page_fault+0x1e/0x30
[ 1991.871606]  __sys_sendmmsg+0x195/0x470
[ 1991.872200]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1991.872826]  ? lock_downgrade+0x6d0/0x6d0
[ 1991.873456]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1991.874164]  ? wait_for_completion_io+0x270/0x270
[ 1991.874868]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1991.875540]  ? vfs_write+0x354/0xa70
[ 1991.876090]  ? fput_many+0x2f/0x1a0
[ 1991.876625]  ? ksys_write+0x1a9/0x260
[ 1991.877186]  ? __ia32_sys_read+0xb0/0xb0
[ 1991.877788]  __x64_sys_sendmmsg+0x99/0x100
[ 1991.878405]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1991.879152]  do_syscall_64+0x33/0x40
[ 1991.879703]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1991.880445] RIP: 0033:0x7f4820600b19
[ 1991.880989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1991.883625] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1991.884733] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1991.885761] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1991.886788] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1991.887822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1991.888851] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:11:13 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x300, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x2000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 1991.925057] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:11:13 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:11:13 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0x3f000000}}}, 0xe)

13:11:13 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:13 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 62)

[ 1992.147182] FAULT_INJECTION: forcing a failure.
[ 1992.147182] name failslab, interval 1, probability 0, space 0, times 0
[ 1992.148168] CPU: 0 PID: 11178 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 1992.148728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1992.149398] Call Trace:
[ 1992.149622]  dump_stack+0x107/0x167
[ 1992.149925]  should_fail.cold+0x5/0xa
[ 1992.150245]  should_failslab+0x5/0x20
[ 1992.150562]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1992.150974]  ? ip_tunnel_xmit+0xedf/0x2f40
[ 1992.151332]  pskb_expand_head+0x15a/0x1040
[ 1992.151688]  ? tnl_update_pmtu+0x381/0x1450
[ 1992.152052]  ip_tunnel_xmit+0xedf/0x2f40
[ 1992.152391]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 1992.152783]  sit_tunnel_xmit+0xef0/0x2960
[ 1992.153134]  ? lock_downgrade+0x6d0/0x6d0
[ 1992.153473]  ? ipip_rcv+0x4f0/0x4f0
[ 1992.153774]  ? skb_crc32c_csum_help+0x80/0x80
[ 1992.154137]  ? lock_acquire+0x197/0x470
[ 1992.154463]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1992.154830]  ? netif_skb_features+0x373/0xbe0
[ 1992.155198]  dev_hard_start_xmit+0x1cb/0x6f0
[ 1992.155564]  __dev_queue_xmit+0x17ec/0x2710
[ 1992.155931]  ? find_held_lock+0x2c/0x110
[ 1992.156262]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1992.156644]  ? lock_downgrade+0x6d0/0x6d0
[ 1992.156984]  ? lock_acquire+0x197/0x470
[ 1992.157316]  ? ip_finish_output2+0x220/0x21f0
[ 1992.157696]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1992.158126]  neigh_connected_output+0x382/0x4d0
[ 1992.158512]  ip_finish_output2+0x6f1/0x21f0
[ 1992.158870]  ? nf_hook_slow+0xfc/0x1e0
[ 1992.159191]  ? ip_frag_next+0x9e0/0x9e0
[ 1992.159516]  ? nf_hook+0x160/0x510
[ 1992.159813]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 1992.160238]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1992.160647]  ? ip_fragment.constprop.0+0x240/0x240
[ 1992.161045]  ? nf_hook+0x510/0x510
[ 1992.161346]  ip_output+0x2f7/0x600
[ 1992.161645]  ip_send_skb+0xdd/0x260
[ 1992.161948]  udp_send_skb+0x6da/0x11d0
[ 1992.162279]  udp_sendmsg+0x197f/0x2170
[ 1992.162599]  ? ip_frag_init+0x350/0x350
[ 1992.162936]  ? udp_setsockopt+0xc0/0xc0
[ 1992.163268]  ? mark_lock+0xf5/0x2df0
[ 1992.163580]  ? mark_lock+0xf5/0x2df0
[ 1992.163898]  ? lock_chain_count+0x20/0x20
[ 1992.164242]  ? lock_chain_count+0x20/0x20
[ 1992.164587]  ? mark_lock+0xf5/0x2df0
[ 1992.164902]  ? __lock_acquire+0x1657/0x5b00
[ 1992.165260]  udpv6_sendmsg+0x1b4e/0x2af0
[ 1992.165593]  ? __lock_acquire+0x1657/0x5b00
[ 1992.165956]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1992.166380]  ? lock_acquire+0x197/0x470
[ 1992.166705]  ? find_held_lock+0x2c/0x110
[ 1992.167050]  ? lock_acquire+0x197/0x470
[ 1992.167375]  ? find_held_lock+0x2c/0x110
[ 1992.167729]  ? __might_fault+0xd3/0x180
[ 1992.168057]  ? lock_downgrade+0x6d0/0x6d0
[ 1992.168402]  ? sock_has_perm+0x1ea/0x280
[ 1992.168738]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1992.169171]  ? __import_iovec+0x458/0x590
[ 1992.169512]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1992.169941]  inet6_sendmsg+0x105/0x140
[ 1992.170260]  ? inet6_compat_ioctl+0x320/0x320
[ 1992.170625]  __sock_sendmsg+0xf2/0x190
[ 1992.170950]  ____sys_sendmsg+0x334/0x870
[ 1992.171290]  ? sock_write_iter+0x3d0/0x3d0
[ 1992.171643]  ? do_recvmmsg+0x6d0/0x6d0
[ 1992.171968]  ? __lock_acquire+0x1657/0x5b00
[ 1992.172332]  ___sys_sendmsg+0xf3/0x170
[ 1992.172652]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1992.173023]  ? vmacache_find+0x55/0x2a0
[ 1992.173361]  ? lock_acquire+0x197/0x470
[ 1992.173686]  ? find_held_lock+0x2c/0x110
[ 1992.174018]  ? __might_fault+0xd3/0x180
[ 1992.174346]  ? lock_downgrade+0x6d0/0x6d0
[ 1992.174687]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1992.175137]  __sys_sendmmsg+0x195/0x470
[ 1992.175467]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1992.175822]  ? lock_downgrade+0x6d0/0x6d0
[ 1992.176177]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1992.176575]  ? wait_for_completion_io+0x270/0x270
[ 1992.176977]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1992.177355]  ? vfs_write+0x354/0xa70
[ 1992.177664]  ? fput_many+0x2f/0x1a0
[ 1992.177964]  ? ksys_write+0x1a9/0x260
[ 1992.178279]  ? __ia32_sys_read+0xb0/0xb0
[ 1992.178619]  __x64_sys_sendmmsg+0x99/0x100
[ 1992.178967]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1992.179394]  do_syscall_64+0x33/0x40
[ 1992.179708]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 1992.180129] RIP: 0033:0x7f4820600b19
[ 1992.180434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1992.181927] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1992.182550] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 1992.183133] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 1992.183717] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 1992.184301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1992.184880] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 1992.198764] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:11:27 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xffffff9e, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:27 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 63)

13:11:27 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:11:27 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x3000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:27 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x7b010000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:27 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x500, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:27 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x22e, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:27 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xf4ffffff}}}, 0xe)

[ 2006.089372] FAULT_INJECTION: forcing a failure.
[ 2006.089372] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2006.091104] CPU: 1 PID: 11191 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2006.092120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2006.093329] Call Trace:
[ 2006.093722]  dump_stack+0x107/0x167
[ 2006.094262]  should_fail.cold+0x5/0xa
[ 2006.094825]  __alloc_pages_nodemask+0x182/0x600
[ 2006.095506]  ? lock_chain_count+0x20/0x20
[ 2006.096126]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2006.097023]  ? kmem_cache_alloc+0x301/0x310
[ 2006.097662]  alloc_pages_current+0x187/0x280
[ 2006.098309]  allocate_slab+0x26f/0x380
[ 2006.098884]  ___slab_alloc+0x470/0x700
[ 2006.099457]  ? dst_alloc+0x9e/0x5d0
[ 2006.100017]  ? find_held_lock+0x2c/0x110
[ 2006.100619]  ? dst_alloc+0x9e/0x5d0
[ 2006.101156]  ? kmem_cache_alloc+0x301/0x310
[ 2006.101780]  ? dst_alloc+0x9e/0x5d0
[ 2006.102312]  kmem_cache_alloc+0x301/0x310
[ 2006.102935]  dst_alloc+0x9e/0x5d0
[ 2006.103447]  rt_dst_alloc+0x73/0x440
[ 2006.104018]  ip_route_output_key_hash_rcu+0x93d/0x2a90
[ 2006.104790]  ip_route_output_key_hash+0x18d/0x340
[ 2006.105505]  ? ip_route_output_key_hash_rcu+0x2a90/0x2a90
[ 2006.106314]  ? mark_lock+0xf5/0x2df0
[ 2006.106874]  ip_route_output_flow+0x23/0x150
[ 2006.107539]  ip_tunnel_xmit+0x70e/0x2f40
[ 2006.108165]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2006.108865]  sit_tunnel_xmit+0xef0/0x2960
[ 2006.109486]  ? lock_downgrade+0x6d0/0x6d0
[ 2006.110105]  ? ipip_rcv+0x4f0/0x4f0
[ 2006.110654]  ? skb_crc32c_csum_help+0x80/0x80
[ 2006.111319]  ? lock_acquire+0x197/0x470
[ 2006.111919]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2006.112571]  ? netif_skb_features+0x373/0xbe0
[ 2006.113229]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2006.113892]  __dev_queue_xmit+0x17ec/0x2710
[ 2006.114533]  ? find_held_lock+0x2c/0x110
[ 2006.115143]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2006.115824]  ? lock_downgrade+0x6d0/0x6d0
[ 2006.116427]  ? lock_acquire+0x197/0x470
[ 2006.117005]  ? ip_finish_output2+0x220/0x21f0
[ 2006.117667]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2006.118440]  neigh_connected_output+0x382/0x4d0
[ 2006.119143]  ip_finish_output2+0x6f1/0x21f0
[ 2006.119788]  ? nf_hook_slow+0xfc/0x1e0
[ 2006.120372]  ? ip_frag_next+0x9e0/0x9e0
[ 2006.120955]  ? nf_hook+0x160/0x510
[ 2006.121476]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2006.122228]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2006.122956]  ? ip_fragment.constprop.0+0x240/0x240
[ 2006.123665]  ? nf_hook+0x510/0x510
[ 2006.124203]  ip_output+0x2f7/0x600
[ 2006.124729]  ip_send_skb+0xdd/0x260
[ 2006.125266]  udp_send_skb+0x6da/0x11d0
[ 2006.125857]  udp_sendmsg+0x197f/0x2170
[ 2006.126445]  ? ip_frag_init+0x350/0x350
[ 2006.127036]  ? __lock_acquire+0x1657/0x5b00
[ 2006.127670]  ? udp_setsockopt+0xc0/0xc0
[ 2006.128285]  ? mark_lock+0xf5/0x2df0
[ 2006.128846]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2006.129608]  ? SOFTIRQ_verbose+0x10/0x10
13:11:27 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x9effffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2006.130206]  ? lock_chain_count+0x20/0x20
[ 2006.131007]  ? clockevents_program_event+0x14b/0x360
[ 2006.131749]  ? lock_acquire+0x197/0x470
[ 2006.132358]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2006.132953]  ? __lock_acquire+0x1657/0x5b00
[ 2006.133590]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2006.134337]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2006.135115]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2006.135916]  ? trace_hardirqs_on+0x5b/0x180
[ 2006.136567]  ? lock_acquire+0x1b9/0x470
[ 2006.137147]  ? find_held_lock+0x2c/0x110
[ 2006.137741]  ? __might_fault+0xd3/0x180
[ 2006.138325]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2006.139100]  ? sock_has_perm+0x1ea/0x280
[ 2006.139690]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2006.140448]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2006.141246]  ? write_comp_data+0x2f/0x80
[ 2006.141841]  ? __import_iovec+0x458/0x590
[ 2006.142454]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2006.143214]  inet6_sendmsg+0x105/0x140
[ 2006.143793]  ? inet6_compat_ioctl+0x320/0x320
[ 2006.144446]  __sock_sendmsg+0xf2/0x190
[ 2006.145019]  ____sys_sendmsg+0x334/0x870
[ 2006.145613]  ? sock_write_iter+0x3d0/0x3d0
[ 2006.146240]  ? do_recvmmsg+0x6d0/0x6d0
[ 2006.146824]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2006.147583]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2006.148363]  ? trace_hardirqs_on+0x5b/0x180
[ 2006.148996]  ___sys_sendmsg+0xf3/0x170
[ 2006.149565]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2006.150231]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2006.150883]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2006.151537]  ? finish_task_switch+0x1a4/0x5d0
[ 2006.152201]  ? __switch_to+0x572/0xf70
[ 2006.152769]  ? __switch_to_asm+0x3a/0x60
[ 2006.153361]  ? __switch_to_asm+0x34/0x60
[ 2006.153962]  ? __schedule+0x82c/0x1ea0
[ 2006.154538]  ? io_schedule_timeout+0x140/0x140
[ 2006.155217]  __sys_sendmmsg+0x195/0x470
[ 2006.155807]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2006.156442]  ? lock_downgrade+0x6d0/0x6d0
[ 2006.157080]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2006.157782]  ? wait_for_completion_io+0x270/0x270
[ 2006.158481]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2006.159152]  ? vfs_write+0x354/0xa70
[ 2006.159693]  ? fput_many+0x2f/0x1a0
[ 2006.160252]  ? ksys_write+0x1a9/0x260
[ 2006.160806]  ? __ia32_sys_read+0xb0/0xb0
[ 2006.161403]  __x64_sys_sendmmsg+0x99/0x100
[ 2006.162019]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2006.162771]  do_syscall_64+0x33/0x40
[ 2006.163323]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2006.164072] RIP: 0033:0x7f4820600b19
13:11:27 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x600, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2006.164614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2006.167439] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2006.168543] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2006.169575] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2006.170610] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2006.171636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2006.172669] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:11:27 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x4000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2006.259732] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:11:27 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x300, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 64)

13:11:41 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xc00e0000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x500, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x5000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2020.094136] FAULT_INJECTION: forcing a failure.
[ 2020.094136] name failslab, interval 1, probability 0, space 0, times 0
[ 2020.095691] CPU: 0 PID: 11235 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2020.096523] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2020.097491] Call Trace:
[ 2020.097815]  dump_stack+0x107/0x167
[ 2020.098253]  should_fail.cold+0x5/0xa
[ 2020.098713]  ? create_object.isra.0+0x3a/0xa20
[ 2020.099379]  should_failslab+0x5/0x20
[ 2020.099836]  kmem_cache_alloc+0x5b/0x310
[ 2020.100327]  create_object.isra.0+0x3a/0xa20
[ 2020.100850]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2020.101456]  kmem_cache_alloc+0x159/0x310
[ 2020.101957]  dst_alloc+0x9e/0x5d0
[ 2020.102370]  rt_dst_alloc+0x73/0x440
[ 2020.102817]  ip_route_output_key_hash_rcu+0x93d/0x2a90
[ 2020.103439]  ip_route_output_key_hash+0x18d/0x340
[ 2020.104010]  ? ip_route_output_key_hash_rcu+0x2a90/0x2a90
[ 2020.104659]  ? mark_lock+0xf5/0x2df0
[ 2020.105105]  ip_route_output_flow+0x23/0x150
[ 2020.105621]  ip_tunnel_xmit+0x70e/0x2f40
[ 2020.106124]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2020.106700]  sit_tunnel_xmit+0xef0/0x2960
[ 2020.107209]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.107705]  ? ipip_rcv+0x4f0/0x4f0
[ 2020.108149]  ? skb_crc32c_csum_help+0x80/0x80
[ 2020.108679]  ? lock_acquire+0x197/0x470
[ 2020.109146]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2020.109667]  ? netif_skb_features+0x373/0xbe0
[ 2020.110194]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2020.110723]  __dev_queue_xmit+0x17ec/0x2710
[ 2020.111233]  ? find_held_lock+0x2c/0x110
[ 2020.111715]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2020.112266]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.112767]  ? lock_acquire+0x197/0x470
[ 2020.113233]  ? ip_finish_output2+0x220/0x21f0
[ 2020.113787]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2020.114424]  neigh_connected_output+0x382/0x4d0
[ 2020.115001]  ip_finish_output2+0x6f1/0x21f0
[ 2020.115536]  ? nf_hook_slow+0xfc/0x1e0
[ 2020.116018]  ? ip_frag_next+0x9e0/0x9e0
[ 2020.116522]  ? nf_hook+0x160/0x510
[ 2020.116965]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2020.117587]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2020.118196]  ? ip_fragment.constprop.0+0x240/0x240
[ 2020.118791]  ? nf_hook+0x510/0x510
[ 2020.119235]  ip_output+0x2f7/0x600
[ 2020.119683]  ip_send_skb+0xdd/0x260
[ 2020.120156]  udp_send_skb+0x6da/0x11d0
[ 2020.120642]  udp_sendmsg+0x197f/0x2170
[ 2020.121131]  ? ip_frag_init+0x350/0x350
[ 2020.121645]  ? udp_setsockopt+0xc0/0xc0
[ 2020.122153]  ? mark_lock+0xf5/0x2df0
[ 2020.122619]  ? mark_lock+0xf5/0x2df0
[ 2020.123088]  ? lock_chain_count+0x20/0x20
[ 2020.123593]  ? lock_chain_count+0x20/0x20
[ 2020.124142]  ? __lock_acquire+0x1657/0x5b00
[ 2020.124668]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2020.125176]  ? __lock_acquire+0x1657/0x5b00
[ 2020.125717]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2020.126356]  ? lock_acquire+0x197/0x470
[ 2020.126838]  ? find_held_lock+0x2c/0x110
[ 2020.127343]  ? lock_acquire+0x197/0x470
[ 2020.127823]  ? find_held_lock+0x2c/0x110
[ 2020.128330]  ? __might_fault+0xd3/0x180
[ 2020.128816]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.129325]  ? sock_has_perm+0x1ea/0x280
[ 2020.129815]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2020.130457]  ? __import_iovec+0x458/0x590
[ 2020.130961]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2020.131590]  inet6_sendmsg+0x105/0x140
[ 2020.132070]  ? inet6_compat_ioctl+0x320/0x320
[ 2020.132612]  __sock_sendmsg+0xf2/0x190
[ 2020.133088]  ____sys_sendmsg+0x334/0x870
[ 2020.133586]  ? sock_write_iter+0x3d0/0x3d0
[ 2020.134098]  ? do_recvmmsg+0x6d0/0x6d0
[ 2020.134574]  ? __lock_acquire+0x1657/0x5b00
[ 2020.135113]  ___sys_sendmsg+0xf3/0x170
[ 2020.135588]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2020.136160]  ? vmacache_find+0x55/0x2a0
[ 2020.136673]  ? lock_acquire+0x197/0x470
[ 2020.137165]  ? find_held_lock+0x2c/0x110
[ 2020.137678]  ? __might_fault+0xd3/0x180
[ 2020.138174]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.138688]  ? asm_exc_page_fault+0x1e/0x30
[ 2020.139230]  __sys_sendmmsg+0x195/0x470
[ 2020.139722]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2020.140254]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.140796]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2020.141407]  ? wait_for_completion_io+0x270/0x270
[ 2020.142021]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2020.142609]  ? vfs_write+0x354/0xa70
[ 2020.143077]  ? fput_many+0x2f/0x1a0
[ 2020.143535]  ? ksys_write+0x1a9/0x260
[ 2020.144019]  ? __ia32_sys_read+0xb0/0xb0
[ 2020.144544]  __x64_sys_sendmmsg+0x99/0x100
[ 2020.145080]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2020.145737]  do_syscall_64+0x33/0x40
[ 2020.146208]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2020.146853] RIP: 0033:0x7f4820600b19
[ 2020.147325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2020.149629] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2020.150589] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2020.151488] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2020.152387] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2020.153288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2020.154188] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:11:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xfffffff0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x700, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:11:41 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xf5ffffff}}}, 0xe)

[ 2020.209107] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:11:41 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf0ffffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 65)

13:11:41 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x600, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x6000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xfbffffff}}}, 0xe)

13:11:41 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x900, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xffffffff, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2020.385100] FAULT_INJECTION: forcing a failure.
[ 2020.385100] name failslab, interval 1, probability 0, space 0, times 0
[ 2020.386408] CPU: 0 PID: 11266 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2020.387156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2020.388059] Call Trace:
[ 2020.388350]  dump_stack+0x107/0x167
[ 2020.388742]  should_fail.cold+0x5/0xa
[ 2020.389153]  ? __build_flow_key.constprop.0+0x1df/0x660
[ 2020.389723]  ? create_object.isra.0+0x3a/0xa20
[ 2020.390219]  should_failslab+0x5/0x20
[ 2020.390632]  kmem_cache_alloc+0x5b/0x310
[ 2020.391066]  ? ip_rt_update_pmtu+0x2e8/0xaa0
[ 2020.391557]  create_object.isra.0+0x3a/0xa20
[ 2020.392042]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2020.392596]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2020.393137]  ? ip_tunnel_xmit+0xedf/0x2f40
[ 2020.393602]  pskb_expand_head+0x15a/0x1040
[ 2020.394056]  ? tnl_update_pmtu+0x381/0x1450
[ 2020.394531]  ip_tunnel_xmit+0xedf/0x2f40
[ 2020.394984]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2020.395492]  sit_tunnel_xmit+0xef0/0x2960
[ 2020.395954]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.396403]  ? ipip_rcv+0x4f0/0x4f0
[ 2020.396807]  ? skb_crc32c_csum_help+0x80/0x80
[ 2020.397294]  ? lock_acquire+0x197/0x470
[ 2020.397723]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2020.398212]  ? netif_skb_features+0x373/0xbe0
[ 2020.398701]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2020.399184]  __dev_queue_xmit+0x17ec/0x2710
[ 2020.399655]  ? find_held_lock+0x2c/0x110
[ 2020.400111]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2020.400610]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.401066]  ? lock_acquire+0x197/0x470
[ 2020.401497]  ? ip_finish_output2+0x220/0x21f0
[ 2020.401981]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2020.402556]  neigh_connected_output+0x382/0x4d0
[ 2020.403065]  ip_finish_output2+0x6f1/0x21f0
[ 2020.403533]  ? nf_hook_slow+0xfc/0x1e0
[ 2020.403960]  ? ip_frag_next+0x9e0/0x9e0
[ 2020.404389]  ? nf_hook+0x160/0x510
[ 2020.404780]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2020.405333]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2020.405855]  ? ip_fragment.constprop.0+0x240/0x240
[ 2020.406374]  ? nf_hook+0x510/0x510
[ 2020.406759]  ip_output+0x2f7/0x600
[ 2020.407147]  ip_send_skb+0xdd/0x260
[ 2020.407539]  udp_send_skb+0x6da/0x11d0
[ 2020.407968]  udp_sendmsg+0x197f/0x2170
[ 2020.408396]  ? ip_frag_init+0x350/0x350
[ 2020.408830]  ? __lock_acquire+0x1657/0x5b00
[ 2020.409296]  ? udp_setsockopt+0xc0/0xc0
[ 2020.409738]  ? mark_lock+0xf5/0x2df0
[ 2020.410141]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2020.410701]  ? SOFTIRQ_verbose+0x10/0x10
[ 2020.411143]  ? clockevents_program_event+0x14b/0x360
[ 2020.411688]  ? lock_acquire+0x197/0x470
[ 2020.412123]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2020.412559]  ? __lock_acquire+0x1657/0x5b00
[ 2020.413031]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2020.413583]  ? perf_event_task_disable+0x390/0x390
[ 2020.414097]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.414539]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2020.415059]  ? lock_acquire+0x197/0x470
[ 2020.415479]  ? find_held_lock+0x2c/0x110
[ 2020.415917]  ? __might_fault+0xd3/0x180
[ 2020.416344]  ? lock_downgrade+0x6d0/0x6d0
13:11:41 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xfffff000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2020.416790]  ? sock_has_perm+0x1ea/0x280
[ 2020.417364]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2020.417920]  ? __import_iovec+0x458/0x590
[ 2020.418364]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2020.418911]  inet6_sendmsg+0x105/0x140
[ 2020.419325]  ? inet6_compat_ioctl+0x320/0x320
[ 2020.419797]  __sock_sendmsg+0xf2/0x190
[ 2020.420229]  ____sys_sendmsg+0x334/0x870
[ 2020.420658]  ? sock_write_iter+0x3d0/0x3d0
[ 2020.421109]  ? do_recvmmsg+0x6d0/0x6d0
[ 2020.421531]  ? __lock_acquire+0x1657/0x5b00
[ 2020.421996]  ___sys_sendmsg+0xf3/0x170
[ 2020.422406]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2020.422883]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2020.423347]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2020.423825]  ? lock_acquire+0x197/0x470
[ 2020.424249]  ? find_held_lock+0x2c/0x110
[ 2020.424677]  ? __might_fault+0xd3/0x180
[ 2020.425093]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.425523]  ? io_schedule_timeout+0x140/0x140
[ 2020.426010]  __sys_sendmmsg+0x195/0x470
[ 2020.426430]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2020.426880]  ? lock_downgrade+0x6d0/0x6d0
[ 2020.427334]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2020.427844]  ? wait_for_completion_io+0x270/0x270
[ 2020.428387]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2020.428886]  ? vfs_write+0x354/0xa70
[ 2020.429292]  ? fput_many+0x2f/0x1a0
[ 2020.429693]  ? ksys_write+0x1a9/0x260
[ 2020.430099]  ? __ia32_sys_read+0xb0/0xb0
[ 2020.430533]  __x64_sys_sendmmsg+0x99/0x100
[ 2020.430969]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2020.431513]  do_syscall_64+0x33/0x40
[ 2020.431903]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2020.432447] RIP: 0033:0x7f4820600b19
[ 2020.432839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2020.434753] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2020.435546] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2020.436297] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2020.437040] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2020.437784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2020.438526] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:11:56 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xa00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xfeffffff}}}, 0xe)

13:11:56 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 66)

[ 2035.020369] FAULT_INJECTION: forcing a failure.
[ 2035.020369] name failslab, interval 1, probability 0, space 0, times 0
[ 2035.022263] CPU: 1 PID: 11290 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2035.023286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2035.024504] Call Trace:
[ 2035.024904]  dump_stack+0x107/0x167
[ 2035.025449]  should_fail.cold+0x5/0xa
[ 2035.026017]  ? skb_clone+0x14f/0x3d0
[ 2035.026576]  should_failslab+0x5/0x20
[ 2035.027145]  kmem_cache_alloc+0x5b/0x310
[ 2035.027757]  skb_clone+0x14f/0x3d0
[ 2035.028291]  __skb_tstamp_tx+0x422/0x8d0
[ 2035.028905]  __dev_queue_xmit+0x1770/0x2710
[ 2035.029552]  ? find_held_lock+0x2c/0x110
[ 2035.030156]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2035.030843]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.031460]  ? lock_acquire+0x197/0x470
[ 2035.032048]  ? find_held_lock+0x2c/0x110
[ 2035.032665]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2035.033452]  ip_finish_output2+0x1514/0x21f0
[ 2035.034107]  ? ip_frag_next+0x9e0/0x9e0
[ 2035.034698]  ? nf_hook+0x160/0x510
[ 2035.035223]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2035.035981]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2035.036716]  ? ip_fragment.constprop.0+0x240/0x240
[ 2035.037435]  ? nf_hook+0x510/0x510
[ 2035.037971]  ip_output+0x2f7/0x600
[ 2035.038509]  ip_local_out+0xb4/0x1a0
[ 2035.039066]  iptunnel_xmit+0x591/0x8b0
[ 2035.039663]  ip_tunnel_xmit+0x1248/0x2f40
[ 2035.040317]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2035.041030]  sit_tunnel_xmit+0xef0/0x2960
[ 2035.041667]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.042295]  ? ipip_rcv+0x4f0/0x4f0
[ 2035.042838]  ? skb_crc32c_csum_help+0x80/0x80
13:11:56 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xffffff7f, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x7000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x700, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2035.043711]  ? lock_acquire+0x197/0x470
[ 2035.044451]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2035.045123]  ? netif_skb_features+0x373/0xbe0
[ 2035.045802]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2035.046477]  __dev_queue_xmit+0x17ec/0x2710
[ 2035.047136]  ? find_held_lock+0x2c/0x110
[ 2035.047748]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2035.048446]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.049061]  ? lock_acquire+0x197/0x470
[ 2035.049647]  ? ip_finish_output2+0x220/0x21f0
[ 2035.050324]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2035.051117]  neigh_connected_output+0x382/0x4d0
[ 2035.051835]  ip_finish_output2+0x6f1/0x21f0
[ 2035.052503]  ? nf_hook_slow+0xfc/0x1e0
[ 2035.053089]  ? ip_frag_next+0x9e0/0x9e0
[ 2035.053677]  ? nf_hook+0x160/0x510
[ 2035.054208]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2035.054962]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2035.055698]  ? ip_fragment.constprop.0+0x240/0x240
[ 2035.056425]  ? nf_hook+0x510/0x510
[ 2035.056968]  ip_output+0x2f7/0x600
[ 2035.057503]  ip_send_skb+0xdd/0x260
[ 2035.058053]  udp_send_skb+0x6da/0x11d0
[ 2035.058652]  udp_sendmsg+0x197f/0x2170
[ 2035.059233]  ? ip_frag_init+0x350/0x350
[ 2035.059835]  ? __lock_acquire+0x1657/0x5b00
[ 2035.060483]  ? udp_setsockopt+0xc0/0xc0
[ 2035.061095]  ? mark_lock+0xf5/0x2df0
[ 2035.061654]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2035.062422]  ? SOFTIRQ_verbose+0x10/0x10
[ 2035.063023]  ? lock_chain_count+0x20/0x20
[ 2035.063645]  ? clockevents_program_event+0x14b/0x360
[ 2035.064408]  ? lock_acquire+0x197/0x470
[ 2035.065006]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2035.065616]  ? __lock_acquire+0x1657/0x5b00
[ 2035.066268]  ? udp_v6_push_pending_frames+0x360/0x360
13:11:56 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x9000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2035.067051]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2035.068004]  ? lock_acquire+0x197/0x470
[ 2035.068628]  ? find_held_lock+0x2c/0x110
[ 2035.069251]  ? __might_fault+0xd3/0x180
[ 2035.069861]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.070501]  ? sock_has_perm+0x1ea/0x280
[ 2035.071125]  ? selinux_socket_post_create+0x7f0/0x7f0
13:11:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x2, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2035.071939]  ? __import_iovec+0x458/0x590
[ 2035.072683]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2035.073474]  inet6_sendmsg+0x105/0x140
[ 2035.074070]  ? inet6_compat_ioctl+0x320/0x320
[ 2035.074755]  __sock_sendmsg+0xf2/0x190
[ 2035.075351]  ____sys_sendmsg+0x334/0x870
[ 2035.075985]  ? sock_write_iter+0x3d0/0x3d0
[ 2035.076651]  ? do_recvmmsg+0x6d0/0x6d0
[ 2035.077251]  ? __lock_acquire+0x1657/0x5b00
[ 2035.077930]  ___sys_sendmsg+0xf3/0x170
[ 2035.078519]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2035.079192]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2035.079864]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2035.080544]  ? lock_acquire+0x197/0x470
[ 2035.081134]  ? find_held_lock+0x2c/0x110
[ 2035.081748]  ? __might_fault+0xd3/0x180
[ 2035.082335]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.082953]  ? io_schedule_timeout+0x140/0x140
[ 2035.083653]  __sys_sendmmsg+0x195/0x470
[ 2035.084258]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2035.084887]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.085524]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2035.086243]  ? wait_for_completion_io+0x270/0x270
[ 2035.086954]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2035.087643]  ? vfs_write+0x354/0xa70
[ 2035.088203]  ? fput_many+0x2f/0x1a0
[ 2035.088744]  ? ksys_write+0x1a9/0x260
[ 2035.089309]  ? __ia32_sys_read+0xb0/0xb0
[ 2035.089919]  __x64_sys_sendmmsg+0x99/0x100
[ 2035.090550]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2035.091309]  do_syscall_64+0x33/0x40
[ 2035.091863]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2035.092603] RIP: 0033:0x7f4820600b19
[ 2035.093154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2035.095768] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2035.096894] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2035.097918] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2035.098963] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2035.100003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2035.101052] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:11:56 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:11:56 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xffffff9e, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2035.202873] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:11:56 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x900, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xb00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xff010000}}}, 0xe)

13:11:56 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xfffffff0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x3, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 67)

13:11:56 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:11:56 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x8b010000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xffffffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2035.439499] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:11:56 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:11:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x4, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2035.506591] FAULT_INJECTION: forcing a failure.
[ 2035.506591] name failslab, interval 1, probability 0, space 0, times 0
[ 2035.508482] CPU: 1 PID: 11352 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2035.509478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2035.510663] Call Trace:
[ 2035.511055]  dump_stack+0x107/0x167
[ 2035.511588]  should_fail.cold+0x5/0xa
[ 2035.512162]  ? create_object.isra.0+0x3a/0xa20
[ 2035.512841]  should_failslab+0x5/0x20
[ 2035.513404]  kmem_cache_alloc+0x5b/0x310
[ 2035.514008]  create_object.isra.0+0x3a/0xa20
[ 2035.514651]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2035.515400]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2035.516148]  ? skb_ensure_writable+0x2cb/0x450
[ 2035.516827]  pskb_expand_head+0x15a/0x1040
[ 2035.517453]  ? skb_checksum+0x90/0xc0
[ 2035.518014]  ? __skb_checksum+0x9e0/0x9e0
[ 2035.518625]  skb_ensure_writable+0x2cb/0x450
[ 2035.519279]  skb_checksum_help+0x3af/0x5e0
[ 2035.519915]  validate_xmit_skb.constprop.0+0xa3a/0xda0
[ 2035.520688]  ? __skb_tstamp_tx+0x5db/0x8d0
[ 2035.521312]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 2035.521981]  __dev_queue_xmit+0x87b/0x2710
[ 2035.522608]  ? find_held_lock+0x2c/0x110
[ 2035.523203]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2035.523876]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.524488]  ? lock_acquire+0x197/0x470
[ 2035.525070]  ? find_held_lock+0x2c/0x110
[ 2035.525675]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2035.526451]  ip_finish_output2+0x1514/0x21f0
[ 2035.527105]  ? ip_frag_next+0x9e0/0x9e0
[ 2035.527690]  ? nf_hook+0x160/0x510
[ 2035.528224]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2035.528971]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2035.529696]  ? ip_fragment.constprop.0+0x240/0x240
[ 2035.530411]  ? nf_hook+0x510/0x510
[ 2035.530951]  ip_output+0x2f7/0x600
[ 2035.531482]  ip_local_out+0xb4/0x1a0
[ 2035.532037]  iptunnel_xmit+0x591/0x8b0
[ 2035.532635]  ip_tunnel_xmit+0x1248/0x2f40
[ 2035.533263]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2035.533973]  sit_tunnel_xmit+0xef0/0x2960
[ 2035.534595]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.535215]  ? ipip_rcv+0x4f0/0x4f0
[ 2035.535751]  ? skb_crc32c_csum_help+0x80/0x80
[ 2035.536431]  ? lock_acquire+0x197/0x470
[ 2035.537012]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2035.537678]  ? netif_skb_features+0x373/0xbe0
[ 2035.538343]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2035.539011]  __dev_queue_xmit+0x17ec/0x2710
[ 2035.539654]  ? find_held_lock+0x2c/0x110
[ 2035.540270]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2035.540953]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.541572]  ? lock_acquire+0x197/0x470
[ 2035.542158]  ? ip_finish_output2+0x220/0x21f0
[ 2035.542832]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2035.543610]  neigh_connected_output+0x382/0x4d0
[ 2035.544328]  ip_finish_output2+0x6f1/0x21f0
[ 2035.544970]  ? nf_hook_slow+0xfc/0x1e0
[ 2035.545556]  ? ip_frag_next+0x9e0/0x9e0
[ 2035.546144]  ? nf_hook+0x160/0x510
[ 2035.546682]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2035.547435]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2035.548177]  ? ip_fragment.constprop.0+0x240/0x240
[ 2035.548893]  ? nf_hook+0x510/0x510
[ 2035.549448]  ip_output+0x2f7/0x600
[ 2035.549982]  ip_send_skb+0xdd/0x260
[ 2035.550530]  udp_send_skb+0x6da/0x11d0
[ 2035.551121]  udp_sendmsg+0x197f/0x2170
[ 2035.551714]  ? ip_frag_init+0x350/0x350
[ 2035.552314]  ? __lock_acquire+0x1657/0x5b00
[ 2035.552961]  ? udp_setsockopt+0xc0/0xc0
[ 2035.553576]  ? mark_lock+0xf5/0x2df0
[ 2035.554143]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2035.554907]  ? SOFTIRQ_verbose+0x10/0x10
[ 2035.555514]  ? lock_chain_count+0x20/0x20
[ 2035.556143]  ? clockevents_program_event+0x14b/0x360
[ 2035.556907]  ? lock_acquire+0x197/0x470
[ 2035.557504]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2035.558114]  ? __lock_acquire+0x1657/0x5b00
[ 2035.558764]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2035.559528]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2035.560306]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2035.561103]  ? trace_hardirqs_on+0x5b/0x180
[ 2035.561761]  ? lock_acquire+0x1b9/0x470
[ 2035.562356]  ? find_held_lock+0x2c/0x110
[ 2035.562966]  ? __might_fault+0xd3/0x180
[ 2035.563567]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2035.564342]  ? sock_has_perm+0x1ea/0x280
[ 2035.564957]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2035.565727]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2035.566523]  ? trace_hardirqs_on+0x5b/0x180
[ 2035.567163]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2035.567982]  ? inet6_sendmsg+0x14/0x140
[ 2035.568578]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2035.569347]  inet6_sendmsg+0x105/0x140
[ 2035.569924]  ? inet6_compat_ioctl+0x320/0x320
[ 2035.570590]  __sock_sendmsg+0xf2/0x190
[ 2035.571167]  ____sys_sendmsg+0x334/0x870
[ 2035.571776]  ? sock_write_iter+0x3d0/0x3d0
[ 2035.572406]  ? do_recvmmsg+0x6d0/0x6d0
[ 2035.573001]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2035.573768]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2035.574565]  ? trace_hardirqs_on+0x5b/0x180
[ 2035.575205]  ___sys_sendmsg+0xf3/0x170
[ 2035.575788]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2035.576469]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2035.577140]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2035.577803]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2035.578469]  ? finish_task_switch+0x126/0x5d0
[ 2035.579122]  ? finish_task_switch+0xef/0x5d0
[ 2035.579775]  ? __switch_to+0x572/0xf70
[ 2035.580358]  ? __switch_to_asm+0x3a/0x60
[ 2035.580958]  ? __switch_to_asm+0x34/0x60
[ 2035.581565]  ? __schedule+0x82c/0x1ea0
[ 2035.582161]  ? io_schedule_timeout+0x140/0x140
[ 2035.582850]  __sys_sendmmsg+0x195/0x470
[ 2035.583448]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2035.584082]  ? lock_downgrade+0x6d0/0x6d0
[ 2035.584731]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2035.585449]  ? wait_for_completion_io+0x270/0x270
[ 2035.586169]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2035.586852]  ? vfs_write+0x354/0xa70
[ 2035.587409]  ? fput_many+0x2f/0x1a0
[ 2035.587947]  ? ksys_write+0x1a9/0x260
[ 2035.588521]  ? __ia32_sys_read+0xb0/0xb0
[ 2035.589132]  __x64_sys_sendmmsg+0x99/0x100
[ 2035.589765]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2035.590524]  do_syscall_64+0x33/0x40
[ 2035.591083]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2035.591831] RIP: 0033:0x7f4820600b19
[ 2035.592399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2035.595058] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2035.596191] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2035.597231] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2035.598289] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2035.599327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2035.600395] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:12:10 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xa00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x8}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x9effffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 68)

13:12:10 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xff0f0000}}}, 0xe)

13:12:10 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x5, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xd00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2048.957397] FAULT_INJECTION: forcing a failure.
[ 2048.957397] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2048.958423] CPU: 1 PID: 11372 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2048.959114] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2048.959790] Call Trace:
[ 2048.960015]  dump_stack+0x107/0x167
[ 2048.960331]  should_fail.cold+0x5/0xa
[ 2048.960649]  __alloc_pages_nodemask+0x182/0x600
[ 2048.961037]  ? lock_chain_count+0x20/0x20
[ 2048.961383]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2048.961891]  ? __kmalloc_node_track_caller+0x393/0x3b0
[ 2048.962329]  alloc_pages_current+0x187/0x280
[ 2048.962696]  allocate_slab+0x26f/0x380
[ 2048.963035]  ___slab_alloc+0x470/0x700
[ 2048.963366]  ? skb_ensure_writable+0x2cb/0x450
[ 2048.963760]  ? do_csum+0x32b/0x400
[ 2048.964065]  ? __kmalloc_node_track_caller+0x393/0x3b0
[ 2048.964513]  __kmalloc_node_track_caller+0x393/0x3b0
[ 2048.964933]  ? skb_ensure_writable+0x2cb/0x450
[ 2048.965311]  pskb_expand_head+0x15a/0x1040
[ 2048.965663]  ? skb_checksum+0x90/0xc0
[ 2048.965979]  ? __skb_checksum+0x9e0/0x9e0
[ 2048.966324]  skb_ensure_writable+0x2cb/0x450
[ 2048.966692]  skb_checksum_help+0x3af/0x5e0
[ 2048.967047]  validate_xmit_skb.constprop.0+0xa3a/0xda0
[ 2048.967476]  ? __skb_tstamp_tx+0x5db/0x8d0
[ 2048.967824]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 2048.968201]  __dev_queue_xmit+0x87b/0x2710
[ 2048.968563]  ? find_held_lock+0x2c/0x110
[ 2048.968891]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2048.969267]  ? lock_downgrade+0x6d0/0x6d0
[ 2048.969607]  ? lock_acquire+0x197/0x470
[ 2048.969933]  ? find_held_lock+0x2c/0x110
[ 2048.970276]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2048.970707]  ip_finish_output2+0x1514/0x21f0
[ 2048.971070]  ? ip_frag_next+0x9e0/0x9e0
[ 2048.971403]  ? nf_hook+0x160/0x510
[ 2048.971699]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2048.972111]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2048.972523]  ? ip_fragment.constprop.0+0x240/0x240
[ 2048.972927]  ? nf_hook+0x510/0x510
[ 2048.973232]  ip_output+0x2f7/0x600
[ 2048.973525]  ip_local_out+0xb4/0x1a0
[ 2048.973838]  iptunnel_xmit+0x591/0x8b0
[ 2048.974162]  ip_tunnel_xmit+0x1248/0x2f40
[ 2048.974511]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2048.974907]  sit_tunnel_xmit+0xef0/0x2960
[ 2048.975255]  ? lock_downgrade+0x6d0/0x6d0
[ 2048.975595]  ? ipip_rcv+0x4f0/0x4f0
[ 2048.975897]  ? skb_crc32c_csum_help+0x80/0x80
[ 2048.976265]  ? lock_acquire+0x197/0x470
[ 2048.976597]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2048.976961]  ? netif_skb_features+0x373/0xbe0
[ 2048.977341]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2048.977707]  __dev_queue_xmit+0x17ec/0x2710
[ 2048.978081]  ? find_held_lock+0x2c/0x110
[ 2048.978413]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2048.978792]  ? lock_downgrade+0x6d0/0x6d0
[ 2048.979131]  ? lock_acquire+0x197/0x470
[ 2048.979456]  ? ip_finish_output2+0x220/0x21f0
[ 2048.979833]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2048.980277]  neigh_connected_output+0x382/0x4d0
[ 2048.980677]  ip_finish_output2+0x6f1/0x21f0
[ 2048.981039]  ? nf_hook_slow+0xfc/0x1e0
[ 2048.981357]  ? ip_frag_next+0x9e0/0x9e0
[ 2048.981680]  ? nf_hook+0x160/0x510
[ 2048.981974]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2048.982395]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2048.982799]  ? ip_fragment.constprop.0+0x240/0x240
[ 2048.983196]  ? nf_hook+0x510/0x510
[ 2048.983498]  ip_output+0x2f7/0x600
[ 2048.983796]  ip_send_skb+0xdd/0x260
[ 2048.984100]  udp_send_skb+0x6da/0x11d0
[ 2048.984430]  udp_sendmsg+0x197f/0x2170
[ 2048.984753]  ? ip_frag_init+0x350/0x350
[ 2048.985088]  ? udp_setsockopt+0xc0/0xc0
[ 2048.985414]  ? mark_lock+0xf5/0x2df0
[ 2048.985728]  ? lock_chain_count+0x20/0x20
[ 2048.986068]  ? mark_lock+0xf5/0x2df0
[ 2048.986377]  ? mark_lock+0xf5/0x2df0
[ 2048.986688]  ? lock_chain_count+0x20/0x20
[ 2048.987022]  ? lock_chain_count+0x20/0x20
[ 2048.987370]  ? prep_new_page+0x16d/0x1d0
[ 2048.987709]  ? lock_chain_count+0x20/0x20
[ 2048.988055]  ? __lock_acquire+0x1657/0x5b00
[ 2048.988429]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2048.988764]  ? __lock_acquire+0x1657/0x5b00
[ 2048.989128]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2048.989557]  ? lock_acquire+0x197/0x470
[ 2048.989885]  ? find_held_lock+0x2c/0x110
[ 2048.990229]  ? lock_acquire+0x197/0x470
[ 2048.990554]  ? find_held_lock+0x2c/0x110
[ 2048.990895]  ? __might_fault+0xd3/0x180
[ 2048.991216]  ? lock_downgrade+0x6d0/0x6d0
[ 2048.991560]  ? sock_has_perm+0x1ea/0x280
[ 2048.991898]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2048.992343]  ? __import_iovec+0x458/0x590
[ 2048.992677]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2048.993098]  inet6_sendmsg+0x105/0x140
[ 2048.993417]  ? inet6_compat_ioctl+0x320/0x320
[ 2048.993784]  __sock_sendmsg+0xf2/0x190
[ 2048.994102]  ____sys_sendmsg+0x334/0x870
[ 2048.994436]  ? sock_write_iter+0x3d0/0x3d0
[ 2048.994782]  ? do_recvmmsg+0x6d0/0x6d0
[ 2048.995102]  ? __lock_acquire+0x1657/0x5b00
[ 2048.995462]  ___sys_sendmsg+0xf3/0x170
[ 2048.995785]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2048.996159]  ? vmacache_find+0x55/0x2a0
[ 2048.996495]  ? lock_acquire+0x197/0x470
[ 2048.996820]  ? find_held_lock+0x2c/0x110
[ 2048.997160]  ? __might_fault+0xd3/0x180
[ 2048.997490]  ? lock_downgrade+0x6d0/0x6d0
[ 2048.997834]  ? asm_exc_page_fault+0x1e/0x30
[ 2048.998191]  __sys_sendmmsg+0x195/0x470
[ 2048.998522]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2048.998867]  ? lock_downgrade+0x6d0/0x6d0
[ 2048.999217]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2048.999609]  ? wait_for_completion_io+0x270/0x270
[ 2049.000007]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2049.000387]  ? vfs_write+0x354/0xa70
[ 2049.000693]  ? fput_many+0x2f/0x1a0
[ 2049.000990]  ? ksys_write+0x1a9/0x260
[ 2049.001295]  ? __ia32_sys_read+0xb0/0xb0
[ 2049.001635]  __x64_sys_sendmmsg+0x99/0x100
[ 2049.001978]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2049.002396]  do_syscall_64+0x33/0x40
[ 2049.002695]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2049.003108] RIP: 0033:0x7f4820600b19
[ 2049.003418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2049.004889] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2049.005500] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2049.006073] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2049.006650] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2049.007229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2049.007801] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2049.039799] syz-executor.0 (11372) used greatest stack depth: 22648 bytes left
13:12:10 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xc00e0000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 69)

[ 2049.078236] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:12:10 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:12:10 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xb00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x6, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:10 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xe00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2049.126876] FAULT_INJECTION: forcing a failure.
[ 2049.126876] name failslab, interval 1, probability 0, space 0, times 0
[ 2049.127885] CPU: 0 PID: 11405 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2049.128461] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2049.129113] Call Trace:
[ 2049.129336]  dump_stack+0x107/0x167
[ 2049.129648]  should_fail.cold+0x5/0xa
[ 2049.129960]  ? create_object.isra.0+0x3a/0xa20
[ 2049.130347]  should_failslab+0x5/0x20
[ 2049.130654]  kmem_cache_alloc+0x5b/0x310
[ 2049.130987]  ? skb_release_data+0x11d/0x820
[ 2049.131348]  create_object.isra.0+0x3a/0xa20
[ 2049.131702]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2049.132129]  kmem_cache_alloc+0x159/0x310
[ 2049.132472]  skb_clone+0x14f/0x3d0
[ 2049.132764]  __skb_tstamp_tx+0x422/0x8d0
[ 2049.133107]  loopback_xmit+0x299/0x5e0
[ 2049.133423]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2049.133790]  __dev_queue_xmit+0x17ec/0x2710
[ 2049.134139]  ? find_held_lock+0x2c/0x110
[ 2049.134479]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2049.134858]  ? lock_downgrade+0x6d0/0x6d0
[ 2049.135184]  ? lock_acquire+0x197/0x470
[ 2049.135506]  ? find_held_lock+0x2c/0x110
[ 2049.135839]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2049.136310]  ip_finish_output2+0x1514/0x21f0
[ 2049.136661]  ? ip_frag_next+0x9e0/0x9e0
[ 2049.136989]  ? nf_hook+0x160/0x510
[ 2049.137284]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2049.137708]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2049.138108]  ? ip_fragment.constprop.0+0x240/0x240
[ 2049.138521]  ? nf_hook+0x510/0x510
[ 2049.138823]  ip_output+0x2f7/0x600
[ 2049.139136]  ip_local_out+0xb4/0x1a0
[ 2049.139455]  iptunnel_xmit+0x591/0x8b0
[ 2049.139780]  ip_tunnel_xmit+0x1248/0x2f40
[ 2049.140126]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2049.140520]  sit_tunnel_xmit+0xef0/0x2960
[ 2049.140862]  ? lock_downgrade+0x6d0/0x6d0
[ 2049.141210]  ? ipip_rcv+0x4f0/0x4f0
[ 2049.141506]  ? skb_crc32c_csum_help+0x80/0x80
[ 2049.141875]  ? lock_acquire+0x197/0x470
[ 2049.142197]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2049.142573]  ? netif_skb_features+0x373/0xbe0
[ 2049.142935]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2049.143305]  __dev_queue_xmit+0x17ec/0x2710
[ 2049.143661]  ? find_held_lock+0x2c/0x110
[ 2049.144001]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2049.144432]  ? lock_downgrade+0x6d0/0x6d0
[ 2049.144773]  ? lock_acquire+0x197/0x470
[ 2049.145099]  ? ip_finish_output2+0x220/0x21f0
[ 2049.145478]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2049.146020]  neigh_connected_output+0x382/0x4d0
[ 2049.146421]  ip_finish_output2+0x6f1/0x21f0
[ 2049.146779]  ? nf_hook_slow+0xfc/0x1e0
[ 2049.147108]  ? ip_frag_next+0x9e0/0x9e0
[ 2049.147431]  ? nf_hook+0x160/0x510
[ 2049.147721]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2049.148136]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2049.148562]  ? ip_fragment.constprop.0+0x240/0x240
[ 2049.148969]  ? nf_hook+0x510/0x510
[ 2049.149278]  ip_output+0x2f7/0x600
[ 2049.149573]  ip_send_skb+0xdd/0x260
[ 2049.149887]  udp_send_skb+0x6da/0x11d0
[ 2049.150212]  udp_sendmsg+0x197f/0x2170
[ 2049.150539]  ? ip_frag_init+0x350/0x350
[ 2049.150873]  ? udp_setsockopt+0xc0/0xc0
[ 2049.151211]  ? mark_lock+0xf5/0x2df0
[ 2049.151519]  ? lock_chain_count+0x20/0x20
[ 2049.151864]  ? mark_lock+0xf5/0x2df0
[ 2049.152171]  ? mark_lock+0xf5/0x2df0
[ 2049.152488]  ? lock_chain_count+0x20/0x20
[ 2049.152827]  ? lock_chain_count+0x20/0x20
[ 2049.153183]  ? prep_new_page+0x16d/0x1d0
[ 2049.153515]  ? lock_chain_count+0x20/0x20
[ 2049.153868]  ? __lock_acquire+0x1657/0x5b00
[ 2049.154227]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2049.154573]  ? __lock_acquire+0x1657/0x5b00
[ 2049.154946]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2049.155384]  ? lock_acquire+0x197/0x470
[ 2049.155709]  ? find_held_lock+0x2c/0x110
[ 2049.156053]  ? lock_acquire+0x197/0x470
[ 2049.156388]  ? find_held_lock+0x2c/0x110
[ 2049.156722]  ? __might_fault+0xd3/0x180
[ 2049.157045]  ? lock_downgrade+0x6d0/0x6d0
[ 2049.157393]  ? sock_has_perm+0x1ea/0x280
[ 2049.157722]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2049.158165]  ? __import_iovec+0x458/0x590
[ 2049.158505]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2049.158938]  inet6_sendmsg+0x105/0x140
[ 2049.159306]  ? inet6_compat_ioctl+0x320/0x320
[ 2049.159711]  __sock_sendmsg+0xf2/0x190
[ 2049.160027]  ____sys_sendmsg+0x334/0x870
[ 2049.160406]  ? sock_write_iter+0x3d0/0x3d0
[ 2049.160773]  ? do_recvmmsg+0x6d0/0x6d0
[ 2049.161094]  ? __lock_acquire+0x1657/0x5b00
[ 2049.161491]  ___sys_sendmsg+0xf3/0x170
[ 2049.161815]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2049.162183]  ? vmacache_find+0x55/0x2a0
[ 2049.162527]  ? lock_acquire+0x197/0x470
[ 2049.162852]  ? find_held_lock+0x2c/0x110
[ 2049.163229]  ? __might_fault+0xd3/0x180
[ 2049.163553]  ? lock_downgrade+0x6d0/0x6d0
[ 2049.163902]  ? asm_exc_page_fault+0x1e/0x30
[ 2049.164278]  __sys_sendmmsg+0x195/0x470
[ 2049.164658]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2049.165006]  ? lock_downgrade+0x6d0/0x6d0
[ 2049.165358]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2049.165755]  ? wait_for_completion_io+0x270/0x270
[ 2049.166157]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2049.166537]  ? vfs_write+0x354/0xa70
[ 2049.166840]  ? fput_many+0x2f/0x1a0
[ 2049.167138]  ? ksys_write+0x1a9/0x260
[ 2049.167452]  ? __ia32_sys_read+0xb0/0xb0
[ 2049.167784]  __x64_sys_sendmmsg+0x99/0x100
[ 2049.168130]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2049.168559]  do_syscall_64+0x33/0x40
[ 2049.168866]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2049.169295] RIP: 0033:0x7f4820600b19
[ 2049.169606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2049.171090] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2049.171712] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2049.172299] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2049.172883] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2049.173514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2049.174113] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:12:23 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 70)

13:12:23 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:23 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xfffffff4}}}, 0xe)

13:12:23 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x7, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:23 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xf0ffffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:23 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x2}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:23 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xec0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:23 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2062.248244] FAULT_INJECTION: forcing a failure.
[ 2062.248244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2062.250633] CPU: 0 PID: 11422 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2062.251899] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2062.253365] Call Trace:
[ 2062.253832]  dump_stack+0x107/0x167
[ 2062.254480]  should_fail.cold+0x5/0xa
[ 2062.255230]  _copy_from_user+0x2e/0x1b0
[ 2062.255946]  __copy_msghdr_from_user+0x91/0x4b0
[ 2062.256783]  ? __ia32_sys_shutdown+0x80/0x80
[ 2062.257437]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2062.258197]  ? inet6_sendmsg+0xbd/0x140
[ 2062.258782]  ? inet6_compat_ioctl+0x320/0x320
[ 2062.259475]  ? __sock_sendmsg+0x55/0x190
[ 2062.260076]  sendmsg_copy_msghdr+0xa1/0x160
[ 2062.260721]  ? do_recvmmsg+0x6d0/0x6d0
[ 2062.261298]  ? __lock_acquire+0x1657/0x5b00
[ 2062.261946]  ___sys_sendmsg+0xc6/0x170
[ 2062.262523]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2062.263244]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2062.263903]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2062.264576]  ? lock_acquire+0x197/0x470
[ 2062.265166]  ? find_held_lock+0x2c/0x110
[ 2062.265777]  ? __might_fault+0xd3/0x180
[ 2062.266369]  ? lock_downgrade+0x6d0/0x6d0
[ 2062.267038]  ? io_schedule_timeout+0x140/0x140
[ 2062.267737]  __sys_sendmmsg+0x195/0x470
[ 2062.268334]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2062.268985]  ? lock_downgrade+0x6d0/0x6d0
[ 2062.269612]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2062.270321]  ? wait_for_completion_io+0x270/0x270
[ 2062.271082]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2062.271764]  ? vfs_write+0x354/0xa70
[ 2062.272352]  ? fput_many+0x2f/0x1a0
[ 2062.272908]  ? ksys_write+0x1a9/0x260
[ 2062.273467]  ? __ia32_sys_read+0xb0/0xb0
[ 2062.274072]  __x64_sys_sendmmsg+0x99/0x100
[ 2062.274688]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2062.275446]  do_syscall_64+0x33/0x40
[ 2062.276053]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2062.276857] RIP: 0033:0x7f4820600b19
[ 2062.277421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2062.280168] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2062.281334] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2062.282371] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2062.283468] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2062.284555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2062.285602] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:12:23 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xfffff000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2062.353028] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:12:37 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x3}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 71)

13:12:37 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xffffff7f, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:12:37 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x8, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xd00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xfffffff5}}}, 0xe)

13:12:37 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2075.966069] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2075.989938] FAULT_INJECTION: forcing a failure.
[ 2075.989938] name failslab, interval 1, probability 0, space 0, times 0
[ 2075.991862] CPU: 1 PID: 11473 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2075.992874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2075.994068] Call Trace:
[ 2075.994458]  dump_stack+0x107/0x167
[ 2075.995000]  should_fail.cold+0x5/0xa
[ 2075.995565]  ? __alloc_skb+0x6d/0x5b0
[ 2075.996130]  should_failslab+0x5/0x20
[ 2075.996700]  kmem_cache_alloc_node+0x55/0x330
[ 2075.997362]  __alloc_skb+0x6d/0x5b0
[ 2075.997905]  alloc_skb_with_frags+0x92/0x570
[ 2075.998564]  sock_alloc_send_pskb+0x7af/0x930
[ 2075.999225]  ? sk_alloc+0x350/0x350
[ 2075.999765]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2076.000516]  ? SOFTIRQ_verbose+0x10/0x10
[ 2076.001118]  __ip_append_data+0x1628/0x3310
[ 2076.001754]  ? fib_select_path+0x95d/0x1e90
[ 2076.002379]  ? ip_frag_init+0x350/0x350
[ 2076.002966]  ? ip_finish_output+0x330/0x330
[ 2076.003592]  ? ip_route_output_key_hash+0x1a4/0x340
[ 2076.004306]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2076.004967]  ip_make_skb+0x22a/0x2a0
[ 2076.005510]  ? ip_frag_init+0x350/0x350
[ 2076.006090]  ? ip_flush_pending_frames+0x20/0x20
[ 2076.006781]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.007383]  ? xfrm_lookup_route+0x65/0x210
[ 2076.008008]  udp_sendmsg+0x193f/0x2170
[ 2076.008578]  ? ip_frag_init+0x350/0x350
[ 2076.009160]  ? __lock_acquire+0x1657/0x5b00
13:12:37 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2076.009783]  ? udp_setsockopt+0xc0/0xc0
[ 2076.010506]  ? mark_lock+0xf5/0x2df0
[ 2076.011101]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2076.011860]  ? SOFTIRQ_verbose+0x10/0x10
[ 2076.012458]  ? clockevents_program_event+0x14b/0x360
[ 2076.013211]  ? lock_acquire+0x197/0x470
[ 2076.013803]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2076.014395]  ? __lock_acquire+0x1657/0x5b00
[ 2076.015030]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2076.015775]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2076.016554]  ? lock_acquire+0x197/0x470
[ 2076.017137]  ? find_held_lock+0x2c/0x110
[ 2076.017733]  ? __might_fault+0xd3/0x180
[ 2076.018311]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.018911]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2076.019691]  ? sock_has_perm+0x1ea/0x280
[ 2076.020278]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2076.021050]  ? __import_iovec+0x458/0x590
[ 2076.021652]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2076.022401]  inet6_sendmsg+0x105/0x140
[ 2076.022970]  ? inet6_compat_ioctl+0x320/0x320
[ 2076.023615]  __sock_sendmsg+0xf2/0x190
[ 2076.024196]  ____sys_sendmsg+0x334/0x870
[ 2076.024807]  ? sock_write_iter+0x3d0/0x3d0
[ 2076.025428]  ? do_recvmmsg+0x6d0/0x6d0
[ 2076.026002]  ? __lock_acquire+0x1657/0x5b00
[ 2076.026644]  ___sys_sendmsg+0xf3/0x170
[ 2076.027218]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2076.027901]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2076.028554]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2076.029229]  ? lock_acquire+0x197/0x470
[ 2076.029809]  ? find_held_lock+0x2c/0x110
[ 2076.030405]  ? __might_fault+0xd3/0x180
[ 2076.030993]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.031604]  ? io_schedule_timeout+0x140/0x140
[ 2076.032292]  __sys_sendmmsg+0x195/0x470
[ 2076.032887]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2076.033517]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.034148]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2076.034864]  ? wait_for_completion_io+0x270/0x270
[ 2076.035576]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2076.036253]  ? vfs_write+0x354/0xa70
[ 2076.036804]  ? fput_many+0x2f/0x1a0
[ 2076.037340]  ? ksys_write+0x1a9/0x260
[ 2076.037894]  ? __ia32_sys_read+0xb0/0xb0
[ 2076.038495]  __x64_sys_sendmmsg+0x99/0x100
[ 2076.039112]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2076.039862]  do_syscall_64+0x33/0x40
[ 2076.040407]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2076.041147] RIP: 0033:0x7f4820600b19
[ 2076.041694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2076.044331] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2076.045438] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2076.046465] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2076.047493] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
13:12:37 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2076.048519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2076.049671] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:12:37 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x4}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xfffffffb}}}, 0xe)

13:12:37 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x9, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xe00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xffffff9e, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2800, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 72)

13:12:37 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x5}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xf, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2076.253830] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2076.330870] FAULT_INJECTION: forcing a failure.
[ 2076.330870] name failslab, interval 1, probability 0, space 0, times 0
[ 2076.332995] CPU: 1 PID: 11511 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2076.333997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2076.335179] Call Trace:
[ 2076.335568]  dump_stack+0x107/0x167
[ 2076.336097]  should_fail.cold+0x5/0xa
[ 2076.336664]  ? create_object.isra.0+0x3a/0xa20
[ 2076.337328]  should_failslab+0x5/0x20
[ 2076.337885]  kmem_cache_alloc+0x5b/0x310
[ 2076.338476]  create_object.isra.0+0x3a/0xa20
[ 2076.339110]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2076.339845]  kmem_cache_alloc_node+0x169/0x330
[ 2076.340524]  __alloc_skb+0x6d/0x5b0
[ 2076.341067]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2076.341853]  alloc_skb_with_frags+0x92/0x570
[ 2076.342492]  ? sock_alloc_send_pskb+0x12c/0x930
[ 2076.343168]  sock_alloc_send_pskb+0x7af/0x930
[ 2076.343827]  ? sk_alloc+0x350/0x350
[ 2076.344371]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2076.345146]  ? SOFTIRQ_verbose+0x10/0x10
[ 2076.345743]  __ip_append_data+0x1628/0x3310
[ 2076.346381]  ? fib_select_path+0x95d/0x1e90
[ 2076.347007]  ? ip_frag_init+0x350/0x350
[ 2076.347599]  ? ip_finish_output+0x330/0x330
[ 2076.348225]  ? ip_route_output_key_hash+0x1a4/0x340
[ 2076.348955]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2076.349598]  ip_make_skb+0x22a/0x2a0
[ 2076.350148]  ? ip_frag_init+0x350/0x350
[ 2076.350729]  ? ip_flush_pending_frames+0x20/0x20
[ 2076.351420]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.352026]  ? xfrm_lookup_route+0x65/0x210
[ 2076.352676]  udp_sendmsg+0x193f/0x2170
[ 2076.353262]  ? ip_frag_init+0x350/0x350
[ 2076.353841]  ? __lock_acquire+0x1657/0x5b00
[ 2076.354465]  ? udp_setsockopt+0xc0/0xc0
[ 2076.355062]  ? mark_lock+0xf5/0x2df0
[ 2076.355613]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2076.356365]  ? SOFTIRQ_verbose+0x10/0x10
[ 2076.356971]  ? clockevents_program_event+0x14b/0x360
[ 2076.357709]  ? lock_acquire+0x197/0x470
[ 2076.358289]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2076.358889]  ? __lock_acquire+0x1657/0x5b00
[ 2076.359521]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2076.360269]  ? perf_event_task_disable+0x390/0x390
[ 2076.360987]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.361588]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2076.362285]  ? lock_acquire+0x197/0x470
[ 2076.362863]  ? find_held_lock+0x2c/0x110
[ 2076.363456]  ? __might_fault+0xd3/0x180
[ 2076.364032]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.364643]  ? sock_has_perm+0x1ea/0x280
[ 2076.365238]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2076.366003]  ? __import_iovec+0x458/0x590
[ 2076.366605]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2076.367349]  inet6_sendmsg+0x105/0x140
[ 2076.367912]  ? inet6_compat_ioctl+0x320/0x320
[ 2076.368555]  __sock_sendmsg+0xf2/0x190
[ 2076.369135]  ____sys_sendmsg+0x334/0x870
[ 2076.369723]  ? sock_write_iter+0x3d0/0x3d0
[ 2076.370340]  ? do_recvmmsg+0x6d0/0x6d0
[ 2076.370909]  ? __lock_acquire+0x1657/0x5b00
[ 2076.371553]  ___sys_sendmsg+0xf3/0x170
[ 2076.372116]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2076.372799]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2076.373563]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2076.374215]  ? trace_hardirqs_on+0x5b/0x180
[ 2076.374849]  ? lock_acquire+0x197/0x470
[ 2076.375424]  ? find_held_lock+0x2c/0x110
[ 2076.376023]  ? __might_fault+0xd3/0x180
13:12:37 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xfffffff0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2076.376599]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.377415]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2076.378205]  __sys_sendmmsg+0x195/0x470
[ 2076.378785]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2076.379400]  ? lock_downgrade+0x6d0/0x6d0
[ 2076.380011]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2076.380714]  ? wait_for_completion_io+0x270/0x270
[ 2076.381407]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2076.382072]  ? vfs_write+0x354/0xa70
[ 2076.382614]  ? fput_many+0x2f/0x1a0
[ 2076.383137]  ? ksys_write+0x1a9/0x260
[ 2076.383698]  ? __ia32_sys_read+0xb0/0xb0
[ 2076.384288]  __x64_sys_sendmmsg+0x99/0x100
[ 2076.384911]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2076.385654]  do_syscall_64+0x33/0x40
[ 2076.386185]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2076.386919] RIP: 0033:0x7f4820600b19
[ 2076.387460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2076.390058] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2076.391149] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2076.392164] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2076.393182] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2076.394204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2076.395226] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:12:37 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x6}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:37 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:12:37 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xec0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 73)

13:12:50 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xffffffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xf0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x4f02, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x7}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:12:50 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xfffffffe}}}, 0xe)

[ 2089.263105] FAULT_INJECTION: forcing a failure.
[ 2089.263105] name failslab, interval 1, probability 0, space 0, times 0
[ 2089.264222] CPU: 0 PID: 11547 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2089.264879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2089.265650] Call Trace:
[ 2089.265903]  dump_stack+0x107/0x167
[ 2089.266238]  should_fail.cold+0x5/0xa
[ 2089.266592]  should_failslab+0x5/0x20
[ 2089.266951]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2089.267409]  ? alloc_skb_with_frags+0x92/0x570
[ 2089.267838]  __alloc_skb+0xb1/0x5b0
[ 2089.268178]  alloc_skb_with_frags+0x92/0x570
[ 2089.268592]  sock_alloc_send_pskb+0x7af/0x930
[ 2089.269017]  ? sk_alloc+0x350/0x350
[ 2089.269353]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2089.269834]  ? SOFTIRQ_verbose+0x10/0x10
[ 2089.270219]  __ip_append_data+0x1628/0x3310
[ 2089.270623]  ? fib_select_path+0x95d/0x1e90
[ 2089.271030]  ? ip_frag_init+0x350/0x350
[ 2089.271411]  ? ip_finish_output+0x330/0x330
[ 2089.271812]  ? ip_route_output_key_hash+0x1a4/0x340
[ 2089.272272]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2089.272681]  ip_make_skb+0x22a/0x2a0
[ 2089.273030]  ? ip_frag_init+0x350/0x350
[ 2089.273399]  ? ip_flush_pending_frames+0x20/0x20
[ 2089.273830]  ? lock_downgrade+0x6d0/0x6d0
[ 2089.274209]  ? xfrm_lookup_route+0x65/0x210
[ 2089.274598]  udp_sendmsg+0x193f/0x2170
[ 2089.274964]  ? ip_frag_init+0x350/0x350
[ 2089.275327]  ? __lock_acquire+0x1657/0x5b00
[ 2089.275731]  ? udp_setsockopt+0xc0/0xc0
[ 2089.276107]  ? mark_lock+0xf5/0x2df0
[ 2089.276447]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2089.276925]  ? SOFTIRQ_verbose+0x10/0x10
[ 2089.277312]  ? clockevents_program_event+0x14b/0x360
[ 2089.277788]  ? lock_acquire+0x197/0x470
[ 2089.278156]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2089.278522]  ? __lock_acquire+0x1657/0x5b00
[ 2089.278926]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2089.279393]  ? perf_event_task_disable+0x390/0x390
[ 2089.279838]  ? lock_downgrade+0x6d0/0x6d0
[ 2089.280212]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2089.280668]  ? lock_acquire+0x197/0x470
[ 2089.281039]  ? find_held_lock+0x2c/0x110
[ 2089.281413]  ? __might_fault+0xd3/0x180
[ 2089.281786]  ? lock_downgrade+0x6d0/0x6d0
[ 2089.282174]  ? sock_has_perm+0x1ea/0x280
[ 2089.282552]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2089.283042]  ? __import_iovec+0x458/0x590
[ 2089.283426]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2089.283913]  inet6_sendmsg+0x105/0x140
[ 2089.284276]  ? inet6_compat_ioctl+0x320/0x320
[ 2089.284689]  __sock_sendmsg+0xf2/0x190
[ 2089.285062]  ____sys_sendmsg+0x334/0x870
[ 2089.285442]  ? sock_write_iter+0x3d0/0x3d0
[ 2089.285834]  ? do_recvmmsg+0x6d0/0x6d0
[ 2089.286206]  ? __lock_acquire+0x1657/0x5b00
[ 2089.286612]  ___sys_sendmsg+0xf3/0x170
[ 2089.286975]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2089.287399]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2089.287890]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2089.288305]  ? trace_hardirqs_on+0x5b/0x180
[ 2089.288711]  ? lock_acquire+0x197/0x470
[ 2089.289085]  ? find_held_lock+0x2c/0x110
[ 2089.289469]  ? __might_fault+0xd3/0x180
[ 2089.289848]  ? lock_downgrade+0x6d0/0x6d0
[ 2089.290236]  ? io_schedule_timeout+0x140/0x140
[ 2089.290668]  __sys_sendmmsg+0x195/0x470
[ 2089.291041]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2089.291441]  ? lock_downgrade+0x6d0/0x6d0
[ 2089.291840]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2089.292289]  ? wait_for_completion_io+0x270/0x270
[ 2089.292739]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2089.293175]  ? vfs_write+0x354/0xa70
[ 2089.293521]  ? fput_many+0x2f/0x1a0
[ 2089.293861]  ? ksys_write+0x1a9/0x260
[ 2089.294217]  ? __ia32_sys_read+0xb0/0xb0
[ 2089.294599]  __x64_sys_sendmmsg+0x99/0x100
[ 2089.294997]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2089.295469]  do_syscall_64+0x33/0x40
[ 2089.295811]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2089.296281] RIP: 0033:0x7f4820600b19
[ 2089.296624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2089.298305] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2089.299008] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2089.299656] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2089.300309] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2089.300968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2089.301616] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2089.349202] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:12:50 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:12:50 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 74)

13:12:50 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x8}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2089.427957] FAULT_INJECTION: forcing a failure.
[ 2089.427957] name failslab, interval 1, probability 0, space 0, times 0
[ 2089.429173] CPU: 0 PID: 11568 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2089.429762] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2089.430461] Call Trace:
[ 2089.430698]  dump_stack+0x107/0x167
[ 2089.431011]  should_fail.cold+0x5/0xa
[ 2089.431340]  ? create_object.isra.0+0x3a/0xa20
[ 2089.431733]  should_failslab+0x5/0x20
[ 2089.432066]  kmem_cache_alloc+0x5b/0x310
[ 2089.432425]  create_object.isra.0+0x3a/0xa20
[ 2089.432809]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2089.433255]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2089.433690]  ? alloc_skb_with_frags+0x92/0x570
[ 2089.434083]  __alloc_skb+0xb1/0x5b0
[ 2089.434398]  alloc_skb_with_frags+0x92/0x570
[ 2089.434793]  sock_alloc_send_pskb+0x7af/0x930
[ 2089.435187]  ? sk_alloc+0x350/0x350
[ 2089.435500]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2089.435964]  ? ip_frag_init+0x350/0x350
[ 2089.436306]  ? __ip_append_data+0x3c6/0x3310
[ 2089.436687]  __ip_append_data+0x1628/0x3310
[ 2089.437067]  ? fib_select_path+0x95d/0x1e90
[ 2089.437437]  ? ip_frag_init+0x350/0x350
[ 2089.437782]  ? ip_finish_output+0x330/0x330
[ 2089.438152]  ? ip_route_output_key_hash+0x1a4/0x340
[ 2089.438572]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2089.438955]  ip_make_skb+0x22a/0x2a0
[ 2089.439277]  ? ip_frag_init+0x350/0x350
[ 2089.439621]  ? ip_flush_pending_frames+0x20/0x20
[ 2089.440038]  ? xfrm_lookup_route+0x65/0x210
[ 2089.440412]  udp_sendmsg+0x193f/0x2170
[ 2089.440748]  ? ip_frag_init+0x350/0x350
[ 2089.441099]  ? __lock_acquire+0x1657/0x5b00
[ 2089.441465]  ? udp_setsockopt+0xc0/0xc0
[ 2089.441816]  ? mark_lock+0xf5/0x2df0
[ 2089.442142]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2089.442588]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2089.443048]  ? trace_hardirqs_on+0x5b/0x180
[ 2089.443415]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2089.443896]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2089.444245]  ? __lock_acquire+0x1657/0x5b00
[ 2089.444617]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2089.445066]  ? perf_event_task_disable+0x390/0x390
[ 2089.445482]  ? lock_downgrade+0x6d0/0x6d0
13:12:50 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x9}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2089.445842]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2089.446364]  ? lock_acquire+0x197/0x470
[ 2089.446705]  ? find_held_lock+0x2c/0x110
[ 2089.447053]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2089.447499]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2089.447954]  ? trace_hardirqs_on+0x5b/0x180
[ 2089.448328]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2089.448792]  ? sock_has_perm+0x1ea/0x280
[ 2089.449135]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2089.449571]  ? _copy_from_user+0x3a/0x1b0
[ 2089.449917]  ? _copy_from_user+0x48/0x1b0
[ 2089.450274]  ? __sanitizer_cov_trace_pc+0x4/0x60
[ 2089.450676]  ? __import_iovec+0x458/0x590
[ 2089.451036]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2089.451473]  inet6_sendmsg+0x105/0x140
[ 2089.451802]  ? inet6_compat_ioctl+0x320/0x320
[ 2089.452172]  __sock_sendmsg+0xf2/0x190
[ 2089.452500]  ____sys_sendmsg+0x334/0x870
[ 2089.452848]  ? sock_write_iter+0x3d0/0x3d0
[ 2089.453206]  ? do_recvmmsg+0x6d0/0x6d0
[ 2089.453536]  ? find_held_lock+0x2c/0x110
[ 2089.453886]  ___sys_sendmsg+0xf3/0x170
[ 2089.454217]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2089.454606]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2089.455047]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2089.455420]  ? trace_hardirqs_on+0x5b/0x180
[ 2089.455781]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2089.456161]  ? finish_task_switch+0x126/0x5d0
[ 2089.456532]  ? finish_task_switch+0xef/0x5d0
[ 2089.456913]  ? __switch_to+0x572/0xf70
[ 2089.457239]  ? __switch_to_asm+0x3a/0x60
[ 2089.457578]  ? __switch_to_asm+0x34/0x60
[ 2089.457927]  ? __schedule+0x82c/0x1ea0
[ 2089.458264]  ? io_schedule_timeout+0x140/0x140
[ 2089.458661]  __sys_sendmmsg+0x195/0x470
[ 2089.459003]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2089.459368]  ? lock_downgrade+0x6d0/0x6d0
[ 2089.459733]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2089.460145]  ? wait_for_completion_io+0x270/0x270
[ 2089.460549]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2089.460954]  ? vfs_write+0x354/0xa70
[ 2089.461267]  ? fput_many+0x2f/0x1a0
[ 2089.461575]  ? ksys_write+0x1a9/0x260
[ 2089.461892]  ? __ia32_sys_read+0xb0/0xb0
[ 2089.462236]  __x64_sys_sendmmsg+0x99/0x100
[ 2089.462590]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2089.463017]  do_syscall_64+0x33/0x40
[ 2089.463325]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2089.463758] RIP: 0033:0x7f4820600b19
[ 2089.464069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2089.465610] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2089.466251] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2089.466848] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2089.467444] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2089.468048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2089.468641] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:12:50 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2800, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:12:50 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x1cd, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc00e, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2e02, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x300, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 75)

13:13:07 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xc)

13:13:07 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0xf}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x2f, 0x0)

[ 2106.058842] FAULT_INJECTION: forcing a failure.
[ 2106.058842] name failslab, interval 1, probability 0, space 0, times 0
[ 2106.060106] CPU: 1 PID: 11604 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2106.060832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2106.061704] Call Trace:
[ 2106.061992]  dump_stack+0x107/0x167
[ 2106.062388]  should_fail.cold+0x5/0xa
[ 2106.062797]  ? skb_clone+0x14f/0x3d0
[ 2106.063197]  should_failslab+0x5/0x20
[ 2106.063607]  kmem_cache_alloc+0x5b/0x310
[ 2106.064048]  skb_clone+0x14f/0x3d0
[ 2106.064430]  __skb_tstamp_tx+0x422/0x8d0
[ 2106.064868]  __dev_queue_xmit+0x1770/0x2710
[ 2106.065349]  ? find_held_lock+0x2c/0x110
[ 2106.065784]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2106.066275]  ? lock_downgrade+0x6d0/0x6d0
[ 2106.066718]  ? lock_acquire+0x197/0x470
[ 2106.067142]  ? ip_finish_output2+0x220/0x21f0
[ 2106.067623]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2106.068182]  neigh_connected_output+0x382/0x4d0
[ 2106.068685]  ip_finish_output2+0x6f1/0x21f0
[ 2106.069152]  ? nf_hook_slow+0xfc/0x1e0
[ 2106.069565]  ? ip_frag_next+0x9e0/0x9e0
[ 2106.069993]  ? nf_hook+0x160/0x510
[ 2106.070371]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2106.070919]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2106.071442]  ? ip_fragment.constprop.0+0x240/0x240
[ 2106.071959]  ? nf_hook+0x510/0x510
[ 2106.072345]  ip_output+0x2f7/0x600
[ 2106.072730]  ip_send_skb+0xdd/0x260
[ 2106.073135]  udp_send_skb+0x6da/0x11d0
[ 2106.073556]  udp_sendmsg+0x197f/0x2170
[ 2106.073971]  ? ip_frag_init+0x350/0x350
[ 2106.074396]  ? __lock_acquire+0x1657/0x5b00
[ 2106.074851]  ? udp_setsockopt+0xc0/0xc0
[ 2106.075286]  ? mark_lock+0xf5/0x2df0
[ 2106.075695]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2106.076242]  ? SOFTIRQ_verbose+0x10/0x10
[ 2106.076682]  ? clockevents_program_event+0x14b/0x360
[ 2106.077239]  ? lock_acquire+0x197/0x470
[ 2106.077672]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2106.078106]  ? __lock_acquire+0x1657/0x5b00
[ 2106.078571]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2106.079121]  ? perf_event_task_disable+0x390/0x390
[ 2106.079638]  ? lock_downgrade+0x6d0/0x6d0
[ 2106.080084]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2106.080597]  ? lock_acquire+0x197/0x470
[ 2106.081034]  ? find_held_lock+0x2c/0x110
[ 2106.081474]  ? __might_fault+0xd3/0x180
[ 2106.081895]  ? lock_downgrade+0x6d0/0x6d0
[ 2106.082341]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2106.082893]  ? sock_has_perm+0x1ea/0x280
[ 2106.083320]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2106.083878]  ? __import_iovec+0x458/0x590
[ 2106.084324]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2106.084869]  inet6_sendmsg+0x105/0x140
[ 2106.085295]  ? inet6_compat_ioctl+0x320/0x320
[ 2106.085769]  __sock_sendmsg+0xf2/0x190
[ 2106.086181]  ____sys_sendmsg+0x334/0x870
[ 2106.086614]  ? sock_write_iter+0x3d0/0x3d0
[ 2106.087064]  ? do_recvmmsg+0x6d0/0x6d0
[ 2106.087478]  ? __lock_acquire+0x1657/0x5b00
[ 2106.087948]  ___sys_sendmsg+0xf3/0x170
[ 2106.088361]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2106.088848]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2106.089440]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2106.089914]  ? trace_hardirqs_on+0x5b/0x180
[ 2106.090376]  ? lock_acquire+0x197/0x470
[ 2106.090807]  ? find_held_lock+0x2c/0x110
[ 2106.091240]  ? __might_fault+0xd3/0x180
[ 2106.091668]  ? lock_downgrade+0x6d0/0x6d0
[ 2106.092107]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2106.092688]  __sys_sendmmsg+0x195/0x470
[ 2106.093128]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2106.093583]  ? lock_downgrade+0x6d0/0x6d0
[ 2106.094042]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2106.094551]  ? wait_for_completion_io+0x270/0x270
[ 2106.095060]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2106.095542]  ? vfs_write+0x354/0xa70
[ 2106.095932]  ? fput_many+0x2f/0x1a0
[ 2106.096317]  ? ksys_write+0x1a9/0x260
[ 2106.096722]  ? __ia32_sys_read+0xb0/0xb0
[ 2106.097160]  __x64_sys_sendmmsg+0x99/0x100
[ 2106.097612]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2106.098152]  do_syscall_64+0x33/0x40
[ 2106.098543]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2106.099076] RIP: 0033:0x7f4820600b19
[ 2106.099465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2106.101368] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2106.102166] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2106.102905] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2106.103647] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2106.104385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2106.105130] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2106.133467] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:13:07 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x2}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x500, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:07 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x2f, 0x0)

13:13:07 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc00e, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xf)

13:13:20 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x34000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x600, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x3}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x2f, 0x0)

13:13:20 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x2}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 76)

[ 2118.768856] FAULT_INJECTION: forcing a failure.
[ 2118.768856] name failslab, interval 1, probability 0, space 0, times 0
[ 2118.770013] CPU: 0 PID: 11651 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2118.770660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2118.771407] Call Trace:
[ 2118.771649]  dump_stack+0x107/0x167
[ 2118.771980]  should_fail.cold+0x5/0xa
[ 2118.772334]  should_failslab+0x5/0x20
[ 2118.772680]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2118.773145]  ? alloc_skb_with_frags+0x92/0x570
[ 2118.773558]  __alloc_skb+0xb1/0x5b0
[ 2118.773898]  alloc_skb_with_frags+0x92/0x570
[ 2118.774304]  sock_alloc_send_pskb+0x7af/0x930
[ 2118.774718]  ? sk_alloc+0x350/0x350
[ 2118.775052]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2118.775528]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2118.776015]  ? trace_hardirqs_on+0x5b/0x180
[ 2118.776410]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2118.776901]  __ip_append_data+0x1628/0x3310
[ 2118.777308]  ? ip_frag_init+0x350/0x350
[ 2118.777672]  ? ipv4_mtu+0x20b/0x2c0
[ 2118.778007]  ? ip_finish_output+0x330/0x330
[ 2118.778394]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2118.778803]  ip_make_skb+0x22a/0x2a0
[ 2118.779137]  ? ip_frag_init+0x350/0x350
[ 2118.779504]  ? ip_flush_pending_frames+0x20/0x20
[ 2118.779931]  ? lock_downgrade+0x6d0/0x6d0
[ 2118.780314]  ? xfrm_lookup_route+0x65/0x210
[ 2118.780703]  udp_sendmsg+0x193f/0x2170
[ 2118.781058]  ? ip_frag_init+0x350/0x350
[ 2118.781423]  ? __lock_acquire+0x1657/0x5b00
[ 2118.781812]  ? udp_setsockopt+0xc0/0xc0
[ 2118.782177]  ? mark_lock+0xf5/0x2df0
[ 2118.782520]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2118.782981]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2118.783461]  ? trace_hardirqs_on+0x5b/0x180
[ 2118.783845]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2118.784340]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2118.784705]  ? __lock_acquire+0x1657/0x5b00
[ 2118.785100]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2118.785564]  ? perf_event_task_disable+0x390/0x390
[ 2118.786005]  ? lock_downgrade+0x6d0/0x6d0
[ 2118.786380]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2118.786821]  ? lock_acquire+0x197/0x470
[ 2118.787180]  ? find_held_lock+0x2c/0x110
[ 2118.787553]  ? __might_fault+0xd3/0x180
[ 2118.787911]  ? lock_downgrade+0x6d0/0x6d0
[ 2118.788284]  ? sock_has_perm+0x1ea/0x280
[ 2118.788654]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2118.789142]  ? __import_iovec+0x458/0x590
[ 2118.789526]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2118.789988]  inet6_sendmsg+0x105/0x140
[ 2118.790347]  ? inet6_compat_ioctl+0x320/0x320
[ 2118.790744]  __sock_sendmsg+0xf2/0x190
[ 2118.791091]  ____sys_sendmsg+0x334/0x870
[ 2118.791452]  ? sock_write_iter+0x3d0/0x3d0
[ 2118.791823]  ? do_recvmmsg+0x6d0/0x6d0
[ 2118.792176]  ? find_held_lock+0x2c/0x110
[ 2118.792538]  ___sys_sendmsg+0xf3/0x170
[ 2118.792888]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2118.793304]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2118.793782]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2118.794178]  ? trace_hardirqs_on+0x5b/0x180
[ 2118.794565]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2118.794969]  ? finish_task_switch+0x126/0x5d0
[ 2118.795367]  ? finish_task_switch+0xef/0x5d0
[ 2118.795761]  ? __switch_to+0x572/0xf70
[ 2118.796110]  ? __switch_to_asm+0x3a/0x60
[ 2118.796472]  ? __switch_to_asm+0x34/0x60
[ 2118.796844]  ? __schedule+0x82c/0x1ea0
[ 2118.797212]  ? io_schedule_timeout+0x140/0x140
[ 2118.797627]  __sys_sendmmsg+0x195/0x470
[ 2118.797986]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2118.798370]  ? lock_downgrade+0x6d0/0x6d0
[ 2118.798755]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2118.799187]  ? wait_for_completion_io+0x270/0x270
[ 2118.799619]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2118.800030]  ? vfs_write+0x354/0xa70
[ 2118.800359]  ? fput_many+0x2f/0x1a0
[ 2118.800688]  ? ksys_write+0x1a9/0x260
[ 2118.801023]  ? __ia32_sys_read+0xb0/0xb0
[ 2118.801394]  __x64_sys_sendmmsg+0x99/0x100
[ 2118.801771]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2118.802236]  do_syscall_64+0x33/0x40
[ 2118.802568]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2118.803021] RIP: 0033:0x7f4820600b19
[ 2118.803346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2118.804992] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2118.805674] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2118.806300] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2118.806933] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2118.807568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2118.808204] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2118.818449] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:13:20 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, 0x0, 0x0, 0x0)

13:13:20 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x3}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x700, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x4}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x80000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0x10)

13:13:20 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x4}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, 0x0, 0x0, 0x0)

13:13:20 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x34000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2119.007346] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:13:20 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x5}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:20 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x900, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:34 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 77)

13:13:34 executing program 1:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x4, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7fff, 0x6e}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, 0x0, 0x0, 0x0)

13:13:34 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xec0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:34 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x80000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:34 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x5}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:34 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0x1000003)

13:13:34 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x6}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:34 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x400300, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2132.793275] FAULT_INJECTION: forcing a failure.
[ 2132.793275] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2132.795260] CPU: 1 PID: 11721 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2132.796400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2132.797807] Call Trace:
[ 2132.798272]  dump_stack+0x107/0x167
[ 2132.798891]  should_fail.cold+0x5/0xa
[ 2132.799559]  __alloc_pages_nodemask+0x182/0x600
[ 2132.800371]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2132.801270]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2132.802283]  ? kmem_cache_alloc+0x301/0x310
[ 2132.803035]  alloc_pages_current+0x187/0x280
[ 2132.803815]  allocate_slab+0x26f/0x380
[ 2132.804503]  ___slab_alloc+0x470/0x700
[ 2132.805206]  ? skb_clone+0x14f/0x3d0
[ 2132.805863]  ? mark_lock+0xf5/0x2df0
[ 2132.806515]  ? mark_lock+0xf5/0x2df0
[ 2132.807145]  ? skb_clone+0x14f/0x3d0
[ 2132.807796]  ? kmem_cache_alloc+0x301/0x310
[ 2132.808502]  kmem_cache_alloc+0x301/0x310
[ 2132.809227]  skb_clone+0x14f/0x3d0
[ 2132.809829]  __skb_tstamp_tx+0x422/0x8d0
[ 2132.810516]  __dev_queue_xmit+0x1770/0x2710
[ 2132.811231]  ? find_held_lock+0x2c/0x110
[ 2132.811900]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2132.812703]  ? lock_downgrade+0x6d0/0x6d0
[ 2132.813393]  ? lock_acquire+0x197/0x470
[ 2132.814096]  ? ip_finish_output2+0x220/0x21f0
[ 2132.814893]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2132.815821]  neigh_connected_output+0x382/0x4d0
[ 2132.816641]  ip_finish_output2+0x6f1/0x21f0
[ 2132.817420]  ? nf_hook_slow+0xfc/0x1e0
[ 2132.818092]  ? ip_frag_next+0x9e0/0x9e0
[ 2132.818781]  ? nf_hook+0x160/0x510
[ 2132.819412]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2132.820286]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2132.821141]  ? ip_fragment.constprop.0+0x240/0x240
[ 2132.822009]  ? nf_hook+0x510/0x510
[ 2132.822651]  ip_output+0x2f7/0x600
[ 2132.823278]  ip_send_skb+0xdd/0x260
[ 2132.823928]  udp_send_skb+0x6da/0x11d0
[ 2132.824629]  udp_sendmsg+0x197f/0x2170
[ 2132.825330]  ? ip_frag_init+0x350/0x350
[ 2132.826002]  ? __lock_acquire+0x1657/0x5b00
[ 2132.826762]  ? udp_setsockopt+0xc0/0xc0
[ 2132.827479]  ? mark_lock+0xf5/0x2df0
[ 2132.828152]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2132.829052]  ? SOFTIRQ_verbose+0x10/0x10
[ 2132.829788]  ? clockevents_program_event+0x14b/0x360
[ 2132.830662]  ? lock_acquire+0x197/0x470
[ 2132.831375]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2132.832044]  ? __lock_acquire+0x1657/0x5b00
[ 2132.832796]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2132.833645]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2132.834580]  ? lock_acquire+0x197/0x470
[ 2132.835268]  ? find_held_lock+0x2c/0x110
[ 2132.836070]  ? __might_fault+0xd3/0x180
[ 2132.836917]  ? lock_downgrade+0x6d0/0x6d0
[ 2132.837659]  ? sock_has_perm+0x1ea/0x280
[ 2132.838361]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2132.839280]  ? __import_iovec+0x458/0x590
[ 2132.840126]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2132.841009]  inet6_sendmsg+0x105/0x140
[ 2132.841681]  ? inet6_compat_ioctl+0x320/0x320
[ 2132.842438]  __sock_sendmsg+0xf2/0x190
[ 2132.843101]  ____sys_sendmsg+0x334/0x870
[ 2132.843793]  ? sock_write_iter+0x3d0/0x3d0
[ 2132.844508]  ? do_recvmmsg+0x6d0/0x6d0
[ 2132.845173]  ? __lock_acquire+0x1657/0x5b00
[ 2132.845933]  ___sys_sendmsg+0xf3/0x170
[ 2132.846598]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2132.847380]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2132.848144]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2132.848912]  ? lock_acquire+0x197/0x470
[ 2132.849606]  ? find_held_lock+0x2c/0x110
[ 2132.850302]  ? __might_fault+0xd3/0x180
[ 2132.850976]  ? lock_downgrade+0x6d0/0x6d0
[ 2132.851688]  ? io_schedule_timeout+0x140/0x140
[ 2132.852545]  __sys_sendmmsg+0x195/0x470
[ 2132.853226]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2132.853964]  ? lock_downgrade+0x6d0/0x6d0
[ 2132.854687]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2132.855505]  ? wait_for_completion_io+0x270/0x270
[ 2132.856314]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2132.857100]  ? vfs_write+0x354/0xa70
[ 2132.857778]  ? fput_many+0x2f/0x1a0
[ 2132.858396]  ? ksys_write+0x1a9/0x260
[ 2132.859064]  ? __ia32_sys_read+0xb0/0xb0
[ 2132.859780]  __x64_sys_sendmmsg+0x99/0x100
[ 2132.860488]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2132.861391]  do_syscall_64+0x33/0x40
[ 2132.862055]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2132.862933] RIP: 0033:0x7f4820600b19
[ 2132.863584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2132.866735] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2132.868021] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2132.869234] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2132.870610] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2132.871891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2132.873053] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2132.911837] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:13:52 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xf00, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x6}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 78)

13:13:52 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0x2000058e)

13:13:52 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0ffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x7}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x400300, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x34000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2150.896166] FAULT_INJECTION: forcing a failure.
[ 2150.896166] name failslab, interval 1, probability 0, space 0, times 0
[ 2150.897116] CPU: 0 PID: 11740 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2150.897629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2150.898281] Call Trace:
[ 2150.898489]  dump_stack+0x107/0x167
[ 2150.898785]  should_fail.cold+0x5/0xa
[ 2150.899087]  ? create_object.isra.0+0x3a/0xa20
[ 2150.899444]  should_failslab+0x5/0x20
[ 2150.899729]  kmem_cache_alloc+0x5b/0x310
[ 2150.900050]  ? mark_lock+0xf5/0x2df0
[ 2150.900336]  create_object.isra.0+0x3a/0xa20
[ 2150.900687]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2150.901096]  kmem_cache_alloc+0x159/0x310
[ 2150.901411]  skb_clone+0x14f/0x3d0
[ 2150.901701]  __skb_tstamp_tx+0x422/0x8d0
[ 2150.902006]  __dev_queue_xmit+0x1770/0x2710
[ 2150.902350]  ? find_held_lock+0x2c/0x110
[ 2150.902650]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2150.903011]  ? lock_downgrade+0x6d0/0x6d0
[ 2150.903318]  ? lock_acquire+0x197/0x470
[ 2150.903634]  ? ip_finish_output2+0x220/0x21f0
[ 2150.903991]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2150.904406]  neigh_connected_output+0x382/0x4d0
[ 2150.904758]  ip_finish_output2+0x6f1/0x21f0
[ 2150.905104]  ? nf_hook_slow+0xfc/0x1e0
[ 2150.905414]  ? ip_frag_next+0x9e0/0x9e0
[ 2150.905712]  ? nf_hook+0x160/0x510
[ 2150.905994]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2150.906372]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2150.906766]  ? ip_fragment.constprop.0+0x240/0x240
[ 2150.907151]  ? nf_hook+0x510/0x510
[ 2150.907435]  ip_output+0x2f7/0x600
[ 2150.907702]  ip_send_skb+0xdd/0x260
[ 2150.907979]  udp_send_skb+0x6da/0x11d0
[ 2150.908290]  udp_sendmsg+0x197f/0x2170
[ 2150.908593]  ? ip_frag_init+0x350/0x350
[ 2150.908892]  ? __lock_acquire+0x1657/0x5b00
[ 2150.909229]  ? udp_setsockopt+0xc0/0xc0
[ 2150.909556]  ? mark_lock+0xf5/0x2df0
[ 2150.909841]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2150.910264]  ? trace_hardirqs_on+0x5b/0x180
[ 2150.910602]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2150.911036]  ? udpv6_sendmsg+0x711/0x2af0
[ 2150.911345]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2150.911668]  ? __lock_acquire+0x1657/0x5b00
[ 2150.911999]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2150.912408]  ? perf_event_task_disable+0x390/0x390
[ 2150.912767]  ? lock_downgrade+0x6d0/0x6d0
[ 2150.913081]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2150.913438]  ? lock_acquire+0x197/0x470
[ 2150.913754]  ? find_held_lock+0x2c/0x110
[ 2150.914059]  ? __might_fault+0xd3/0x180
[ 2150.914374]  ? lock_downgrade+0x6d0/0x6d0
[ 2150.914705]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2150.915088]  ? sock_has_perm+0x1ea/0x280
[ 2150.915408]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2150.915826]  ? __import_iovec+0x458/0x590
[ 2150.916132]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2150.916535]  inet6_sendmsg+0x105/0x140
[ 2150.916841]  ? inet6_compat_ioctl+0x320/0x320
[ 2150.917171]  __sock_sendmsg+0xf2/0x190
[ 2150.917476]  ____sys_sendmsg+0x334/0x870
[ 2150.917804]  ? sock_write_iter+0x3d0/0x3d0
[ 2150.918115]  ? do_recvmmsg+0x6d0/0x6d0
[ 2150.918405]  ? __lock_acquire+0x1657/0x5b00
[ 2150.918755]  ___sys_sendmsg+0xf3/0x170
[ 2150.919045]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2150.919409]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2150.919825]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2150.920174]  ? trace_hardirqs_on+0x5b/0x180
[ 2150.920510]  ? lock_acquire+0x197/0x470
[ 2150.920803]  ? find_held_lock+0x2c/0x110
[ 2150.921124]  ? __might_fault+0xd3/0x180
[ 2150.921417]  ? lock_downgrade+0x6d0/0x6d0
[ 2150.921749]  ? io_schedule_timeout+0x140/0x140
[ 2150.922094]  __sys_sendmmsg+0x195/0x470
[ 2150.922390]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2150.922729]  ? lock_downgrade+0x6d0/0x6d0
[ 2150.923062]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2150.923419]  ? wait_for_completion_io+0x270/0x270
[ 2150.923798]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2150.924161]  ? vfs_write+0x354/0xa70
[ 2150.924455]  ? fput_many+0x2f/0x1a0
[ 2150.924739]  ? ksys_write+0x1a9/0x260
[ 2150.925020]  ? __ia32_sys_read+0xb0/0xb0
[ 2150.925339]  __x64_sys_sendmmsg+0x99/0x100
[ 2150.925661]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2150.926067]  do_syscall_64+0x33/0x40
[ 2150.926363]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2150.926739] RIP: 0033:0x7f4820600b19
[ 2150.927036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2150.928372] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2150.928978] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2150.929543] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2150.930062] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2150.930592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2150.931111] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2150.963272] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:13:52 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x7}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x9}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xc00e, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0x10)

13:13:52 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x1000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0xf}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0ffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x8}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0x10)

13:13:52 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x9}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:13:52 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 79)

[ 2151.283309] FAULT_INJECTION: forcing a failure.
[ 2151.283309] name failslab, interval 1, probability 0, space 0, times 0
[ 2151.285156] CPU: 1 PID: 11792 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2151.286199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2151.287433] Call Trace:
[ 2151.287842]  dump_stack+0x107/0x167
[ 2151.288397]  should_fail.cold+0x5/0xa
[ 2151.288975]  ? dst_alloc+0x9e/0x5d0
[ 2151.289541]  should_failslab+0x5/0x20
[ 2151.290117]  kmem_cache_alloc+0x5b/0x310
[ 2151.290737]  dst_alloc+0x9e/0x5d0
[ 2151.291300]  rt_dst_alloc+0x73/0x440
[ 2151.291867]  ip_route_output_key_hash_rcu+0x93d/0x2a90
[ 2151.292702]  ip_route_output_key_hash+0x18d/0x340
[ 2151.293425]  ? ip_route_output_key_hash_rcu+0x2a90/0x2a90
[ 2151.294300]  ? mark_lock+0xf5/0x2df0
[ 2151.294877]  ip_route_output_flow+0x23/0x150
[ 2151.295570]  ip_tunnel_xmit+0x70e/0x2f40
[ 2151.296200]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2151.296954]  sit_tunnel_xmit+0xef0/0x2960
[ 2151.297598]  ? lock_downgrade+0x6d0/0x6d0
[ 2151.298249]  ? ipip_rcv+0x4f0/0x4f0
[ 2151.298800]  ? skb_crc32c_csum_help+0x80/0x80
[ 2151.299502]  ? lock_acquire+0x197/0x470
[ 2151.300102]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2151.300801]  ? netif_skb_features+0x373/0xbe0
[ 2151.301480]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2151.302192]  __dev_queue_xmit+0x17ec/0x2710
[ 2151.302855]  ? find_held_lock+0x2c/0x110
[ 2151.303494]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2151.304190]  ? lock_downgrade+0x6d0/0x6d0
[ 2151.304847]  ? lock_acquire+0x197/0x470
[ 2151.305451]  ? ip_finish_output2+0x220/0x21f0
[ 2151.306170]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2151.306964]  neigh_connected_output+0x382/0x4d0
[ 2151.307677]  ip_finish_output2+0x6f1/0x21f0
[ 2151.308330]  ? nf_hook_slow+0xfc/0x1e0
[ 2151.308920]  ? ip_frag_next+0x9e0/0x9e0
[ 2151.309524]  ? nf_hook+0x160/0x510
[ 2151.310069]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2151.310838]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2151.311613]  ? ip_fragment.constprop.0+0x240/0x240
[ 2151.312346]  ? nf_hook+0x510/0x510
[ 2151.312923]  ip_output+0x2f7/0x600
[ 2151.313467]  ip_send_skb+0xdd/0x260
[ 2151.314057]  udp_send_skb+0x6da/0x11d0
[ 2151.314658]  udp_sendmsg+0x197f/0x2170
[ 2151.315278]  ? ip_frag_init+0x350/0x350
[ 2151.315885]  ? __lock_acquire+0x1657/0x5b00
[ 2151.316561]  ? udp_setsockopt+0xc0/0xc0
[ 2151.317184]  ? mark_lock+0xf5/0x2df0
[ 2151.317796]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2151.318577]  ? SOFTIRQ_verbose+0x10/0x10
[ 2151.319216]  ? lock_chain_count+0x20/0x20
[ 2151.319853]  ? clockevents_program_event+0x14b/0x360
[ 2151.320651]  ? lock_acquire+0x197/0x470
[ 2151.321262]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2151.321914]  ? __lock_acquire+0x1657/0x5b00
[ 2151.322579]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2151.323386]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2151.324171]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2151.325018]  ? trace_hardirqs_on+0x5b/0x180
[ 2151.325697]  ? lock_acquire+0x1b9/0x470
[ 2151.326320]  ? find_held_lock+0x2c/0x110
[ 2151.326944]  ? __might_fault+0xd3/0x180
[ 2151.327573]  ? lock_downgrade+0x6d0/0x6d0
[ 2151.328201]  ? sock_has_perm+0x1ea/0x280
[ 2151.328840]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2151.329647]  ? __import_iovec+0x458/0x590
[ 2151.330272]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2151.331052]  inet6_sendmsg+0x105/0x140
[ 2151.331638]  ? inet6_compat_ioctl+0x320/0x320
[ 2151.332342]  __sock_sendmsg+0xf2/0x190
[ 2151.332931]  ____sys_sendmsg+0x334/0x870
[ 2151.333585]  ? sock_write_iter+0x3d0/0x3d0
[ 2151.334220]  ? do_recvmmsg+0x6d0/0x6d0
[ 2151.334849]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2151.335632]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2151.336479]  ? trace_hardirqs_on+0x5b/0x180
[ 2151.337163]  ___sys_sendmsg+0xf3/0x170
[ 2151.337765]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2151.338456]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2151.339134]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2151.339809]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2151.340480]  ? finish_task_switch+0x126/0x5d0
[ 2151.341151]  ? finish_task_switch+0xef/0x5d0
[ 2151.341817]  ? __switch_to+0x572/0xf70
[ 2151.342399]  ? __switch_to_asm+0x3a/0x60
[ 2151.343007]  ? __switch_to_asm+0x34/0x60
[ 2151.343654]  ? __schedule+0x82c/0x1ea0
[ 2151.344254]  ? io_schedule_timeout+0x140/0x140
[ 2151.344957]  __sys_sendmmsg+0x195/0x470
[ 2151.345566]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2151.346216]  ? lock_downgrade+0x6d0/0x6d0
[ 2151.346862]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2151.347591]  ? wait_for_completion_io+0x270/0x270
[ 2151.348321]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2151.349050]  ? vfs_write+0x354/0xa70
[ 2151.349627]  ? fput_many+0x2f/0x1a0
[ 2151.350205]  ? ksys_write+0x1a9/0x260
[ 2151.350790]  ? __ia32_sys_read+0xb0/0xb0
[ 2151.351445]  __x64_sys_sendmmsg+0x99/0x100
[ 2151.352082]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2151.352896]  do_syscall_64+0x33/0x40
[ 2151.353457]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2151.354261] RIP: 0033:0x7f4820600b19
[ 2151.354847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2151.357690] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2151.358882] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2151.360001] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2151.361112] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2151.362236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2151.363347] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:14:06 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 80)

13:14:06 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xcd01, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r1 = socket(0x1, 0x5, 0x1)
write(r1, &(0x7f0000000000)="37e0853d3473badf99e8cec571104dc0dad6aca8b4f978b725222c21523d9024ab039369972c9894e0d6e9", 0x2b)

13:14:06 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x1000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0x10)

[ 2165.305155] FAULT_INJECTION: forcing a failure.
[ 2165.305155] name failslab, interval 1, probability 0, space 0, times 0
[ 2165.306176] CPU: 1 PID: 11799 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2165.306684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2165.307295] Call Trace:
[ 2165.307498]  dump_stack+0x107/0x167
[ 2165.307802]  should_fail.cold+0x5/0xa
[ 2165.308149]  should_failslab+0x5/0x20
[ 2165.308514]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2165.308887]  ? ip_tunnel_xmit+0xedf/0x2f40
[ 2165.309247]  pskb_expand_head+0x15a/0x1040
[ 2165.309563]  ? tnl_update_pmtu+0x381/0x1450
[ 2165.309946]  ip_tunnel_xmit+0xedf/0x2f40
[ 2165.310258]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2165.310651]  sit_tunnel_xmit+0xef0/0x2960
[ 2165.310967]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.311315]  ? ipip_rcv+0x4f0/0x4f0
[ 2165.311587]  ? skb_crc32c_csum_help+0x80/0x80
[ 2165.311957]  ? lock_acquire+0x197/0x470
[ 2165.312251]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2165.312625]  ? netif_skb_features+0x373/0xbe0
[ 2165.312968]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2165.313336]  __dev_queue_xmit+0x17ec/0x2710
[ 2165.313670]  ? find_held_lock+0x2c/0x110
[ 2165.314019]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2165.314360]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.314697]  ? lock_acquire+0x197/0x470
[ 2165.314994]  ? ip_finish_output2+0x220/0x21f0
[ 2165.315373]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2165.315765]  neigh_connected_output+0x382/0x4d0
[ 2165.316158]  ip_finish_output2+0x6f1/0x21f0
[ 2165.316482]  ? nf_hook_slow+0xfc/0x1e0
[ 2165.316804]  ? ip_frag_next+0x9e0/0x9e0
[ 2165.317096]  ? nf_hook+0x160/0x510
[ 2165.317392]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2165.317777]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2165.318183]  ? ip_fragment.constprop.0+0x240/0x240
[ 2165.318543]  ? nf_hook+0x510/0x510
[ 2165.318844]  ip_output+0x2f7/0x600
[ 2165.319113]  ip_send_skb+0xdd/0x260
[ 2165.319416]  udp_send_skb+0x6da/0x11d0
[ 2165.319718]  udp_sendmsg+0x197f/0x2170
[ 2165.320040]  ? ip_frag_init+0x350/0x350
[ 2165.320339]  ? __lock_acquire+0x1657/0x5b00
[ 2165.320697]  ? udp_setsockopt+0xc0/0xc0
[ 2165.321005]  ? mark_lock+0xf5/0x2df0
[ 2165.321322]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2165.321717]  ? SOFTIRQ_verbose+0x10/0x10
[ 2165.322051]  ? clockevents_program_event+0x14b/0x360
[ 2165.322443]  ? lock_acquire+0x197/0x470
[ 2165.322788]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2165.323091]  ? __lock_acquire+0x1657/0x5b00
[ 2165.323451]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2165.323854]  ? perf_event_task_disable+0x390/0x390
[ 2165.324257]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.324565]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2165.324966]  ? lock_acquire+0x197/0x470
[ 2165.325260]  ? find_held_lock+0x2c/0x110
[ 2165.325594]  ? __might_fault+0xd3/0x180
[ 2165.325909]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.326255]  ? sock_has_perm+0x1ea/0x280
[ 2165.326567]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2165.327006]  ? __import_iovec+0x458/0x590
[ 2165.327312]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2165.327744]  inet6_sendmsg+0x105/0x140
[ 2165.328039]  ? inet6_compat_ioctl+0x320/0x320
[ 2165.328418]  __sock_sendmsg+0xf2/0x190
[ 2165.328713]  ____sys_sendmsg+0x334/0x870
[ 2165.329058]  ? sock_write_iter+0x3d0/0x3d0
[ 2165.329382]  ? do_recvmmsg+0x6d0/0x6d0
[ 2165.329720]  ? find_held_lock+0x2c/0x110
[ 2165.330033]  ___sys_sendmsg+0xf3/0x170
[ 2165.330356]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2165.330696]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2165.331132]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2165.331464]  ? trace_hardirqs_on+0x5b/0x180
[ 2165.331823]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2165.332167]  ? finish_task_switch+0x126/0x5d0
[ 2165.332540]  ? finish_task_switch+0xef/0x5d0
[ 2165.332876]  ? __switch_to+0x572/0xf70
[ 2165.333195]  ? __switch_to_asm+0x3a/0x60
[ 2165.333497]  ? __switch_to_asm+0x34/0x60
[ 2165.333838]  ? __schedule+0x82c/0x1ea0
[ 2165.334132]  ? io_schedule_timeout+0x140/0x140
[ 2165.334509]  __sys_sendmmsg+0x195/0x470
[ 2165.334847]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2165.335203]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.335573]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2165.335980]  ? wait_for_completion_io+0x270/0x270
[ 2165.336394]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2165.336764]  ? vfs_write+0x354/0xa70
[ 2165.337069]  ? fput_many+0x2f/0x1a0
[ 2165.337371]  ? ksys_write+0x1a9/0x260
[ 2165.337705]  ? __ia32_sys_read+0xb0/0xb0
[ 2165.338051]  __x64_sys_sendmmsg+0x99/0x100
[ 2165.338408]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2165.338846]  do_syscall_64+0x33/0x40
[ 2165.339147]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2165.339565] RIP: 0033:0x7f4820600b19
[ 2165.339866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2165.341381] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2165.342006] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2165.342598] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2165.343171] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2165.343765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2165.344337] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:14:06 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x2}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 81)

[ 2165.424889] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:14:06 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0ffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2165.478036] FAULT_INJECTION: forcing a failure.
[ 2165.478036] name failslab, interval 1, probability 0, space 0, times 0
[ 2165.479022] CPU: 1 PID: 11824 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2165.479582] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2165.480248] Call Trace:
[ 2165.480472]  dump_stack+0x107/0x167
[ 2165.480776]  should_fail.cold+0x5/0xa
[ 2165.481095]  ? skb_clone+0x14f/0x3d0
[ 2165.481404]  should_failslab+0x5/0x20
[ 2165.481729]  kmem_cache_alloc+0x5b/0x310
[ 2165.482068]  skb_clone+0x14f/0x3d0
[ 2165.482366]  __skb_tstamp_tx+0x422/0x8d0
[ 2165.482705]  __dev_queue_xmit+0x1770/0x2710
[ 2165.483065]  ? find_held_lock+0x2c/0x110
[ 2165.483400]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2165.483783]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.484118]  ? lock_acquire+0x197/0x470
[ 2165.484445]  ? find_held_lock+0x2c/0x110
[ 2165.484779]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2165.485209]  ip_finish_output2+0x1514/0x21f0
[ 2165.485574]  ? ip_frag_next+0x9e0/0x9e0
[ 2165.485909]  ? nf_hook+0x160/0x510
[ 2165.486200]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2165.486613]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2165.487012]  ? ip_fragment.constprop.0+0x240/0x240
[ 2165.487411]  ? nf_hook+0x510/0x510
[ 2165.487711]  ip_output+0x2f7/0x600
[ 2165.488008]  ip_local_out+0xb4/0x1a0
[ 2165.488317]  iptunnel_xmit+0x591/0x8b0
[ 2165.488645]  ip_tunnel_xmit+0x1248/0x2f40
[ 2165.489003]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2165.489391]  sit_tunnel_xmit+0xef0/0x2960
[ 2165.489740]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.490079]  ? ipip_rcv+0x4f0/0x4f0
[ 2165.490382]  ? skb_crc32c_csum_help+0x80/0x80
[ 2165.490747]  ? lock_acquire+0x197/0x470
[ 2165.491070]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2165.491434]  ? netif_skb_features+0x373/0xbe0
[ 2165.491807]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2165.492172]  __dev_queue_xmit+0x17ec/0x2710
[ 2165.492535]  ? find_held_lock+0x2c/0x110
[ 2165.492873]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2165.493253]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.493589]  ? lock_acquire+0x197/0x470
[ 2165.493925]  ? ip_finish_output2+0x220/0x21f0
[ 2165.494296]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2165.494728]  neigh_connected_output+0x382/0x4d0
[ 2165.495110]  ip_finish_output2+0x6f1/0x21f0
[ 2165.495470]  ? nf_hook_slow+0xfc/0x1e0
[ 2165.495786]  ? ip_frag_next+0x9e0/0x9e0
[ 2165.496114]  ? nf_hook+0x160/0x510
[ 2165.496412]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2165.496835]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2165.497230]  ? ip_fragment.constprop.0+0x240/0x240
[ 2165.497631]  ? nf_hook+0x510/0x510
[ 2165.497941]  ip_output+0x2f7/0x600
[ 2165.498238]  ip_send_skb+0xdd/0x260
[ 2165.498540]  udp_send_skb+0x6da/0x11d0
[ 2165.498867]  udp_sendmsg+0x197f/0x2170
[ 2165.499192]  ? ip_frag_init+0x350/0x350
[ 2165.499529]  ? udp_setsockopt+0xc0/0xc0
[ 2165.499850]  ? mark_lock+0xf5/0x2df0
[ 2165.500161]  ? lock_chain_count+0x20/0x20
[ 2165.500496]  ? mark_lock+0xf5/0x2df0
[ 2165.500808]  ? mark_lock+0xf5/0x2df0
[ 2165.501110]  ? lock_chain_count+0x20/0x20
[ 2165.501446]  ? lock_chain_count+0x20/0x20
[ 2165.501795]  ? prep_new_page+0x16d/0x1d0
[ 2165.502132]  ? lock_chain_count+0x20/0x20
[ 2165.502488]  ? __lock_acquire+0x1657/0x5b00
[ 2165.502851]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2165.503185]  ? __lock_acquire+0x1657/0x5b00
[ 2165.503545]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2165.503969]  ? lock_acquire+0x197/0x470
[ 2165.504296]  ? find_held_lock+0x2c/0x110
[ 2165.504632]  ? lock_acquire+0x197/0x470
[ 2165.504957]  ? find_held_lock+0x2c/0x110
[ 2165.505292]  ? __might_fault+0xd3/0x180
[ 2165.505621]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.505968]  ? sock_has_perm+0x1ea/0x280
[ 2165.506306]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2165.506743]  ? __import_iovec+0x458/0x590
[ 2165.507085]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2165.507511]  inet6_sendmsg+0x105/0x140
[ 2165.507834]  ? inet6_compat_ioctl+0x320/0x320
[ 2165.508198]  __sock_sendmsg+0xf2/0x190
[ 2165.508518]  ____sys_sendmsg+0x334/0x870
[ 2165.508857]  ? sock_write_iter+0x3d0/0x3d0
[ 2165.509204]  ? do_recvmmsg+0x6d0/0x6d0
[ 2165.509526]  ? __lock_acquire+0x1657/0x5b00
[ 2165.509897]  ___sys_sendmsg+0xf3/0x170
[ 2165.510215]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2165.510593]  ? vmacache_find+0x55/0x2a0
[ 2165.510928]  ? lock_acquire+0x197/0x470
[ 2165.511255]  ? find_held_lock+0x2c/0x110
[ 2165.511588]  ? __might_fault+0xd3/0x180
[ 2165.511917]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.512256]  ? asm_exc_page_fault+0x1e/0x30
[ 2165.512622]  __sys_sendmmsg+0x195/0x470
[ 2165.512951]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2165.513307]  ? lock_downgrade+0x6d0/0x6d0
[ 2165.513657]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2165.514075]  ? wait_for_completion_io+0x270/0x270
[ 2165.514471]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2165.514858]  ? vfs_write+0x354/0xa70
[ 2165.515161]  ? fput_many+0x2f/0x1a0
[ 2165.515466]  ? ksys_write+0x1a9/0x260
[ 2165.515779]  ? __ia32_sys_read+0xb0/0xb0
[ 2165.516114]  __x64_sys_sendmmsg+0x99/0x100
[ 2165.516460]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2165.516890]  do_syscall_64+0x33/0x40
[ 2165.517192]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2165.517616] RIP: 0033:0x7f4820600b19
[ 2165.517935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2165.519430] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2165.520049] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2165.520628] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2165.521204] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2165.521791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2165.522372] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:14:06 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x3}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
umount2(&(0x7f0000000000)='./file0\x00', 0x3)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0xe)
clock_gettime(0x0, &(0x7f0000000140)={<r2=>0x0, <r3=>0x0})
utimensat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={{}, {r2, r3/1000+10000}}, 0x0)

13:14:06 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x3000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xf000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x4}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:06 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0ffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:07 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x5}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2165.711282] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2165.781418] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:14:21 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 82)

13:14:21 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x34000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6a3, 0x48)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:14:21 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xa00, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x6}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x3000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x4000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x17b}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2180.172452] FAULT_INJECTION: forcing a failure.
[ 2180.172452] name failslab, interval 1, probability 0, space 0, times 0
[ 2180.174564] CPU: 1 PID: 11876 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2180.175716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2180.177090] Call Trace:
[ 2180.177535]  dump_stack+0x107/0x167
[ 2180.178171]  should_fail.cold+0x5/0xa
[ 2180.178798]  ? create_object.isra.0+0x3a/0xa20
[ 2180.179528]  should_failslab+0x5/0x20
[ 2180.180151]  kmem_cache_alloc+0x5b/0x310
[ 2180.180808]  ? __is_insn_slot_addr+0x14c/0x290
[ 2180.181542]  create_object.isra.0+0x3a/0xa20
[ 2180.182268]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2180.183105]  kmem_cache_alloc+0x159/0x310
[ 2180.183784]  skb_clone+0x14f/0x3d0
[ 2180.184360]  __skb_tstamp_tx+0x422/0x8d0
[ 2180.185028]  __dev_queue_xmit+0x1770/0x2710
[ 2180.185702]  ? find_held_lock+0x2c/0x110
[ 2180.186378]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2180.187126]  ? lock_downgrade+0x6d0/0x6d0
[ 2180.187794]  ? lock_acquire+0x197/0x470
[ 2180.188441]  ? find_held_lock+0x2c/0x110
[ 2180.189108]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2180.189965]  ip_finish_output2+0x1514/0x21f0
[ 2180.190672]  ? ip_frag_next+0x9e0/0x9e0
[ 2180.191317]  ? nf_hook+0x160/0x510
[ 2180.191913]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2180.192719]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2180.193512]  ? ip_fragment.constprop.0+0x240/0x240
[ 2180.194309]  ? nf_hook+0x510/0x510
[ 2180.194892]  ip_output+0x2f7/0x600
[ 2180.195461]  ip_local_out+0xb4/0x1a0
[ 2180.196067]  iptunnel_xmit+0x591/0x8b0
[ 2180.196697]  ip_tunnel_xmit+0x1248/0x2f40
[ 2180.197402]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2180.198187]  sit_tunnel_xmit+0xef0/0x2960
[ 2180.198869]  ? lock_downgrade+0x6d0/0x6d0
[ 2180.199713]  ? ipip_rcv+0x4f0/0x4f0
[ 2180.200472]  ? skb_crc32c_csum_help+0x80/0x80
[ 2180.201406]  ? lock_acquire+0x197/0x470
[ 2180.202170]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2180.202923]  ? netif_skb_features+0x373/0xbe0
[ 2180.203696]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2180.204422]  __dev_queue_xmit+0x17ec/0x2710
[ 2180.205196]  ? find_held_lock+0x2c/0x110
[ 2180.205859]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2180.206602]  ? lock_downgrade+0x6d0/0x6d0
[ 2180.207271]  ? lock_acquire+0x197/0x470
[ 2180.207935]  ? ip_finish_output2+0x220/0x21f0
[ 2180.208646]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2180.209501]  neigh_connected_output+0x382/0x4d0
[ 2180.210257]  ip_finish_output2+0x6f1/0x21f0
[ 2180.210960]  ? nf_hook_slow+0xfc/0x1e0
[ 2180.211577]  ? ip_frag_next+0x9e0/0x9e0
[ 2180.212215]  ? nf_hook+0x160/0x510
[ 2180.212793]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2180.213615]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2180.214423]  ? ip_fragment.constprop.0+0x240/0x240
[ 2180.215211]  ? nf_hook+0x510/0x510
[ 2180.215805]  ip_output+0x2f7/0x600
[ 2180.216380]  ip_send_skb+0xdd/0x260
[ 2180.216987]  udp_send_skb+0x6da/0x11d0
[ 2180.217616]  udp_sendmsg+0x197f/0x2170
[ 2180.218251]  ? ip_frag_init+0x350/0x350
[ 2180.218909]  ? udp_setsockopt+0xc0/0xc0
[ 2180.219520]  ? perf_output_begin+0x5bf/0xc60
[ 2180.220262]  ? mark_lock+0xf5/0x2df0
[ 2180.220867]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2180.221693]  ? SOFTIRQ_verbose+0x10/0x10
[ 2180.222374]  ? SOFTIRQ_verbose+0x10/0x10
[ 2180.223055]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2180.223913]  ? SOFTIRQ_verbose+0x10/0x10
[ 2180.224539]  ? lock_chain_count+0x20/0x20
[ 2180.225216]  ? lock_acquire+0x197/0x470
[ 2180.225879]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2180.226531]  ? __lock_acquire+0x1657/0x5b00
[ 2180.227255]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2180.228094]  ? perf_event_task_disable+0x390/0x390
[ 2180.228863]  ? lock_downgrade+0x6d0/0x6d0
[ 2180.229522]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2180.230315]  ? lock_acquire+0x197/0x470
[ 2180.230975]  ? find_held_lock+0x2c/0x110
[ 2180.231628]  ? __might_fault+0xd3/0x180
[ 2180.232277]  ? lock_downgrade+0x6d0/0x6d0
[ 2180.232950]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2180.233785]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2180.234661]  ? sock_has_perm+0x1ea/0x280
[ 2180.235332]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2180.236183]  ? __import_iovec+0x458/0x590
[ 2180.236839]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2180.237659]  inet6_sendmsg+0x105/0x140
[ 2180.238302]  ? inet6_compat_ioctl+0x320/0x320
[ 2180.239036]  __sock_sendmsg+0xf2/0x190
[ 2180.239654]  ____sys_sendmsg+0x334/0x870
[ 2180.240313]  ? sock_write_iter+0x3d0/0x3d0
[ 2180.240990]  ? do_recvmmsg+0x6d0/0x6d0
[ 2180.241605]  ? __lock_acquire+0x1657/0x5b00
[ 2180.242329]  ___sys_sendmsg+0xf3/0x170
[ 2180.242963]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2180.243689]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2180.244424]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2180.245142]  ? lock_acquire+0x197/0x470
[ 2180.245772]  ? find_held_lock+0x2c/0x110
[ 2180.246448]  ? __might_fault+0xd3/0x180
[ 2180.247102]  ? lock_downgrade+0x6d0/0x6d0
[ 2180.247807]  __sys_sendmmsg+0x195/0x470
[ 2180.248456]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2180.249167]  ? lock_downgrade+0x6d0/0x6d0
[ 2180.249864]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2180.250642]  ? wait_for_completion_io+0x270/0x270
[ 2180.251398]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2180.252154]  ? vfs_write+0x354/0xa70
[ 2180.252753]  ? fput_many+0x2f/0x1a0
[ 2180.253364]  ? ksys_write+0x1a9/0x260
[ 2180.253999]  ? __ia32_sys_read+0xb0/0xb0
[ 2180.254655]  __x64_sys_sendmmsg+0x99/0x100
[ 2180.255343]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2180.256166]  do_syscall_64+0x33/0x40
[ 2180.256766]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2180.257586] RIP: 0033:0x7f4820600b19
[ 2180.258227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2180.261139] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2180.262364] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2180.263520] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2180.264660] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2180.265810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2180.266980] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:14:21 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x7}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x300}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x28, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2180.335333] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:14:21 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x5000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x80000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:21 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x500}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:36 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x4000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:36 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x600}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:36 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x6000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:36 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xd, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:36 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2500, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000))
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000340)=0x4c)
fallocate(r2, 0x3, 0x0, 0x30000000000)
write$bt_hci(r2, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
write$P9_RREADLINK(r2, &(0x7f0000000300)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r3, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x100}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4060}, 0x4)

13:14:36 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x8}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:36 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 83)

13:14:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x400300, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2195.671864] FAULT_INJECTION: forcing a failure.
[ 2195.671864] name failslab, interval 1, probability 0, space 0, times 0
[ 2195.672841] CPU: 0 PID: 11930 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2195.673403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2195.674099] Call Trace:
[ 2195.674330]  dump_stack+0x107/0x167
[ 2195.674630]  should_fail.cold+0x5/0xa
[ 2195.674947]  ? skb_clone+0x14f/0x3d0
[ 2195.675255]  should_failslab+0x5/0x20
[ 2195.675567]  kmem_cache_alloc+0x5b/0x310
[ 2195.675898]  skb_clone+0x14f/0x3d0
[ 2195.676190]  __skb_tstamp_tx+0x422/0x8d0
[ 2195.676527]  __dev_queue_xmit+0x1770/0x2710
[ 2195.676877]  ? find_held_lock+0x2c/0x110
[ 2195.677204]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2195.677584]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.677925]  ? lock_acquire+0x197/0x470
[ 2195.678263]  ? find_held_lock+0x2c/0x110
[ 2195.678598]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2195.679031]  ip_finish_output2+0x1514/0x21f0
[ 2195.679387]  ? ip_frag_next+0x9e0/0x9e0
[ 2195.679714]  ? nf_hook+0x160/0x510
[ 2195.680001]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2195.680421]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2195.680819]  ? ip_fragment.constprop.0+0x240/0x240
[ 2195.681211]  ? nf_hook+0x510/0x510
[ 2195.681510]  ip_output+0x2f7/0x600
[ 2195.681805]  ip_local_out+0xb4/0x1a0
[ 2195.682125]  iptunnel_xmit+0x591/0x8b0
[ 2195.682452]  ip_tunnel_xmit+0x1248/0x2f40
[ 2195.682803]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2195.683190]  sit_tunnel_xmit+0xef0/0x2960
[ 2195.683541]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.683876]  ? ipip_rcv+0x4f0/0x4f0
[ 2195.684173]  ? skb_crc32c_csum_help+0x80/0x80
[ 2195.684540]  ? lock_acquire+0x197/0x470
[ 2195.684862]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2195.685219]  ? netif_skb_features+0x373/0xbe0
[ 2195.685588]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2195.685947]  __dev_queue_xmit+0x17ec/0x2710
[ 2195.686313]  ? find_held_lock+0x2c/0x110
[ 2195.686643]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2195.687012]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.687343]  ? lock_acquire+0x197/0x470
[ 2195.687661]  ? ip_finish_output2+0x220/0x21f0
[ 2195.688024]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2195.688449]  neigh_connected_output+0x382/0x4d0
[ 2195.688828]  ip_finish_output2+0x6f1/0x21f0
[ 2195.689186]  ? nf_hook_slow+0xfc/0x1e0
[ 2195.689501]  ? ip_frag_next+0x9e0/0x9e0
[ 2195.689828]  ? nf_hook+0x160/0x510
[ 2195.690136]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2195.690553]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2195.690949]  ? ip_fragment.constprop.0+0x240/0x240
[ 2195.691339]  ? nf_hook+0x510/0x510
[ 2195.691631]  ip_output+0x2f7/0x600
[ 2195.691922]  ip_send_skb+0xdd/0x260
[ 2195.692216]  udp_send_skb+0x6da/0x11d0
[ 2195.692543]  udp_sendmsg+0x197f/0x2170
[ 2195.692855]  ? ip_frag_init+0x350/0x350
[ 2195.693187]  ? udp_setsockopt+0xc0/0xc0
[ 2195.693512]  ? mark_lock+0xf5/0x2df0
[ 2195.693814]  ? mark_lock+0xf5/0x2df0
[ 2195.694130]  ? mark_held_locks+0x9e/0xe0
[ 2195.694458]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2195.694880]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2195.695317]  ? trace_hardirqs_on+0x5b/0x180
[ 2195.695672]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2195.696130]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2195.696459]  ? __lock_acquire+0x1657/0x5b00
[ 2195.696815]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2195.697236]  ? lock_acquire+0x197/0x470
[ 2195.697557]  ? find_held_lock+0x2c/0x110
[ 2195.697892]  ? lock_acquire+0x197/0x470
[ 2195.698223]  ? find_held_lock+0x2c/0x110
[ 2195.698560]  ? __might_fault+0xd3/0x180
[ 2195.698888]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.699230]  ? sock_has_perm+0x1ea/0x280
[ 2195.699562]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2195.699993]  ? __import_iovec+0x458/0x590
[ 2195.700329]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2195.700750]  inet6_sendmsg+0x105/0x140
[ 2195.701061]  ? inet6_compat_ioctl+0x320/0x320
[ 2195.701429]  __sock_sendmsg+0xf2/0x190
[ 2195.701743]  ____sys_sendmsg+0x334/0x870
[ 2195.702090]  ? sock_write_iter+0x3d0/0x3d0
[ 2195.702439]  ? do_recvmmsg+0x6d0/0x6d0
[ 2195.702764]  ___sys_sendmsg+0xf3/0x170
[ 2195.703080]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2195.703456]  ? do_user_addr_fault+0x39f/0xc60
[ 2195.703821]  ? lock_acquire+0x197/0x470
[ 2195.704141]  ? find_held_lock+0x2c/0x110
[ 2195.704473]  ? __might_fault+0xd3/0x180
[ 2195.704794]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.705124]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2195.705570]  __sys_sendmmsg+0x195/0x470
[ 2195.705893]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2195.706256]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.706602]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2195.706989]  ? wait_for_completion_io+0x270/0x270
[ 2195.707379]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2195.707756]  ? vfs_write+0x354/0xa70
[ 2195.708056]  ? fput_many+0x2f/0x1a0
[ 2195.708351]  ? ksys_write+0x1a9/0x260
[ 2195.708660]  ? __ia32_sys_read+0xb0/0xb0
[ 2195.708998]  __x64_sys_sendmmsg+0x99/0x100
[ 2195.709342]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2195.709762]  do_syscall_64+0x33/0x40
[ 2195.710078]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2195.710493] RIP: 0033:0x7f4820600b19
[ 2195.710800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2195.712248] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2195.712864] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2195.713424] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2195.713999] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2195.714588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2195.715166] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:14:37 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x9}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:37 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x700}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2195.737411] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:14:49 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x5000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:49 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 84)

13:14:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x900}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:49 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:49 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x803}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x642e2, 0x0)
ftruncate(r0, 0x1000003)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x111000, 0x5)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:14:49 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x3000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:49 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x7000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xf0ffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:49 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x8000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xec0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2208.644261] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 not in group (block 50331648)!
[ 2208.645201] EXT4-fs (loop5): group descriptors corrupted!
13:14:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf00}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:14:50 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
fstatfs(r0, &(0x7f0000000140)=""/106)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

[ 2208.685194] FAULT_INJECTION: forcing a failure.
[ 2208.685194] name failslab, interval 1, probability 0, space 0, times 0
[ 2208.687125] CPU: 0 PID: 11970 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2208.688180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2208.689430] Call Trace:
[ 2208.689847]  dump_stack+0x107/0x167
[ 2208.690422]  should_fail.cold+0x5/0xa
[ 2208.691048]  ? create_object.isra.0+0x3a/0xa20
[ 2208.691762]  should_failslab+0x5/0x20
[ 2208.692350]  kmem_cache_alloc+0x5b/0x310
[ 2208.692992]  create_object.isra.0+0x3a/0xa20
[ 2208.693665]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2208.694454]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2208.695220]  ? skb_ensure_writable+0x2cb/0x450
[ 2208.695929]  pskb_expand_head+0x15a/0x1040
[ 2208.696583]  ? skb_checksum+0x90/0xc0
[ 2208.697154]  ? __skb_checksum+0x9e0/0x9e0
[ 2208.697753]  skb_ensure_writable+0x2cb/0x450
[ 2208.698519]  skb_checksum_help+0x3af/0x5e0
[ 2208.699266]  validate_xmit_skb.constprop.0+0xa3a/0xda0
[ 2208.700164]  ? __skb_tstamp_tx+0x5db/0x8d0
[ 2208.700855]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 2208.701676]  __dev_queue_xmit+0x87b/0x2710
[ 2208.702405]  ? find_held_lock+0x2c/0x110
[ 2208.703137]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2208.703933]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.704635]  ? lock_acquire+0x197/0x470
[ 2208.705294]  ? find_held_lock+0x2c/0x110
[ 2208.705980]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2208.706861]  ip_finish_output2+0x1514/0x21f0
[ 2208.707595]  ? ip_frag_next+0x9e0/0x9e0
[ 2208.708257]  ? nf_hook+0x160/0x510
[ 2208.708882]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2208.709621]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2208.710343]  ? ip_fragment.constprop.0+0x240/0x240
[ 2208.711078]  ? nf_hook+0x510/0x510
[ 2208.711628]  ip_output+0x2f7/0x600
[ 2208.712179]  ip_local_out+0xb4/0x1a0
[ 2208.712745]  iptunnel_xmit+0x591/0x8b0
[ 2208.713350]  ip_tunnel_xmit+0x1248/0x2f40
[ 2208.714013]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2208.714737]  sit_tunnel_xmit+0xef0/0x2960
[ 2208.715370]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.715990]  ? ipip_rcv+0x4f0/0x4f0
[ 2208.716538]  ? skb_crc32c_csum_help+0x80/0x80
[ 2208.717176]  ? lock_acquire+0x197/0x470
[ 2208.717758]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2208.718420]  ? netif_skb_features+0x373/0xbe0
13:14:50 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2208.719097]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2208.719910]  __dev_queue_xmit+0x17ec/0x2710
[ 2208.720559]  ? find_held_lock+0x2c/0x110
[ 2208.721167]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2208.721842]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.722478]  ? lock_acquire+0x197/0x470
[ 2208.723071]  ? ip_finish_output2+0x220/0x21f0
[ 2208.723741]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2208.724555]  neigh_connected_output+0x382/0x4d0
[ 2208.725270]  ip_finish_output2+0x6f1/0x21f0
[ 2208.725914]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2208.726731]  ? ip_frag_next+0x9e0/0x9e0
[ 2208.727327]  ? __ip_finish_output.part.0+0xdc/0xb50
[ 2208.728068]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2208.728791]  ? ip_fragment.constprop.0+0x240/0x240
[ 2208.729506]  ? nf_hook+0x510/0x510
[ 2208.730057]  ip_output+0x2f7/0x600
[ 2208.730604]  ip_send_skb+0xdd/0x260
[ 2208.731157]  udp_send_skb+0x6da/0x11d0
[ 2208.731754]  udp_sendmsg+0x197f/0x2170
[ 2208.732336]  ? ip_frag_init+0x350/0x350
[ 2208.732935]  ? __lock_acquire+0x1657/0x5b00
[ 2208.733578]  ? udp_setsockopt+0xc0/0xc0
[ 2208.734195]  ? mark_lock+0xf5/0x2df0
[ 2208.734793]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2208.735575]  ? SOFTIRQ_verbose+0x10/0x10
[ 2208.736196]  ? clockevents_program_event+0x14b/0x360
[ 2208.736952]  ? lock_acquire+0x197/0x470
[ 2208.737557]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2208.738168]  ? __lock_acquire+0x1657/0x5b00
[ 2208.738827]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2208.739601]  ? perf_event_task_disable+0x390/0x390
[ 2208.740327]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.740944]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2208.741667]  ? lock_acquire+0x197/0x470
[ 2208.742274]  ? find_held_lock+0x2c/0x110
[ 2208.742893]  ? __might_fault+0xd3/0x180
[ 2208.743490]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.744107]  ? sock_has_perm+0x1ea/0x280
[ 2208.744709]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2208.745493]  ? __import_iovec+0x458/0x590
[ 2208.746119]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2208.746904]  inet6_sendmsg+0x105/0x140
[ 2208.747491]  ? inet6_compat_ioctl+0x320/0x320
[ 2208.748165]  __sock_sendmsg+0xf2/0x190
[ 2208.748741]  ____sys_sendmsg+0x334/0x870
[ 2208.749357]  ? sock_write_iter+0x3d0/0x3d0
[ 2208.750000]  ? do_recvmmsg+0x6d0/0x6d0
[ 2208.750617]  ? __lock_acquire+0x1657/0x5b00
[ 2208.751305]  ___sys_sendmsg+0xf3/0x170
[ 2208.751905]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2208.752609]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2208.753290]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2208.753982]  ? lock_acquire+0x197/0x470
[ 2208.754587]  ? find_held_lock+0x2c/0x110
[ 2208.755214]  ? __might_fault+0xd3/0x180
[ 2208.755814]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.756453]  ? io_schedule_timeout+0x140/0x140
[ 2208.757184]  __sys_sendmmsg+0x195/0x470
[ 2208.757785]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2208.758440]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.759087]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2208.759813]  ? wait_for_completion_io+0x270/0x270
[ 2208.760538]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2208.761238]  ? vfs_write+0x354/0xa70
[ 2208.761807]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 2208.762623]  ? ksys_write+0x1a9/0x260
[ 2208.763204]  ? __ia32_sys_read+0xb0/0xb0
[ 2208.763829]  __x64_sys_sendmmsg+0x99/0x100
[ 2208.764466]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2208.765254]  do_syscall_64+0x33/0x40
[ 2208.765815]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2208.766588] RIP: 0033:0x7f4820600b19
[ 2208.767155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2208.769854] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2208.771012] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2208.772091] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2208.773160] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2208.774263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2208.775327] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:14:50 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x40000, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x7fffffff, 0x7, &(0x7f00000015c0)=[{&(0x7f0000000140)="55fa1e136044c27428b847e2472e2ab878b2ae5208b43cf4f0a2d8feb44214c3f40349207a8a0074de9d052d58f42314e91142744ec050680def9670028baca5582f8bf2a1c3a26c41f2bf2a2aedeb65c68b14c8353334198b6498e392c337dfaf15b449ceac8c695dd94eddbaab56577b2a4400d48322786069f7a6d6266c1408d2ac0127ed947fd0567da6eaeab129a44276f4a57b67635fbfaf60", 0x9c, 0xd95}, {&(0x7f00000002c0)="5689eec2952beadc9263e7444306f5b89985c5a607d28bff4be81a4fa6cbf1204720c3b5960539a9e974a4b5667888c0cc61324a9471110a93a61e7609daaf376b0fe39a8d8fb55225ed41f05662b1dafbed0502c97c33a830b54f6eaab5b6594247377b6c102671e5840da6a43b8c9a257315ed8cd666341fb5d00881cead09b3ac081a6347ff3e6ed6f799837865646e7d4f63592b63c1da76603d6525af2d0a199ec160cd9461c1eacd985fecec316fba6c8ca50795f19a17164a6aecfe75", 0xc0, 0x20}, {&(0x7f0000000380)="b5d0efc3f96217cc04587b07a4be799e7783e7ea08af63f9abdf9a846524b9ce57368634c979f93141385a32dc57a6c25708da454a608a2a17c020239283575215fe1077c326d939f161e30878775ee82279886c5f14bdc51b832578353cee9b95b9300bc6a624e35f0002773ae3a92a2f68dfddbf01e221a7721cae2355e3751e22ba461a92a5d2b2683e9f826fea3f6300ec078adf3f9b747f4378f0613a9d26973b06b8e95e00cf67fdcdda140205989e9487066dcab1d6520cfb56bf8bdcafbf71b88ae09d7140e393a56e6c460aeaffc26f4de3cb518b00b63358b56255f17564f855975a274e59a1ebd6f0f2fe17e5ebacc0", 0xf5, 0xffffffff}, {&(0x7f0000000480)="bfaa13cac49c72a13a695a5c1ea63641c9f0e9b819103e84638caba25ea86098e18e8888c55b38c900cb079b760a86f1d15f2787c278", 0x36, 0x7fff}, {&(0x7f00000004c0)="c9420b89e21da37a7d94a3b67b5804b555bb37012bb359466fb24396cab0c0c224ceb5634dbd8941e3373626857acb4e5ba903a467653132b33ba3b3b67ea8622595d3ce71dfd3823b69458066227d5230114d5331296cf8dae92ec175", 0x5d, 0x3}, {&(0x7f0000000540)="a843f3fd4379c5601b871503f0ac22b7753e06f8d9307fc384fd030683fd77aa4d050d0fc63a", 0x26, 0x9791}, {&(0x7f00000005c0)="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", 0x1000, 0x9}], 0x180009, &(0x7f0000001680)={[{'$\\:'}, {'\xff\xff\xff\xff\xff\xff'}, {']+.'}, {'\xff\xff\xff\xff\xff\xff'}], [{@obj_user={'obj_user', 0x3d, 'ext4\x00'}}, {@obj_type={'obj_type', 0x3d, '\xff\xff\xff\xff\xff\xff'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:14:50 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x9000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:50 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x6000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:14:50 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x1000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xa000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x82000, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:15:05 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0xc00e, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x18b}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x7b01}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 85)

13:15:05 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x7000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x2000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2223.931244] FAULT_INJECTION: forcing a failure.
[ 2223.931244] name failslab, interval 1, probability 0, space 0, times 0
[ 2223.933126] CPU: 0 PID: 12035 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2223.933339] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2223.934132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2223.934140] Call Trace:
[ 2223.934163]  dump_stack+0x107/0x167
[ 2223.934184]  should_fail.cold+0x5/0xa
[ 2223.934205]  ? create_object.isra.0+0x3a/0xa20
[ 2223.934240]  should_failslab+0x5/0x20
[ 2223.939604]  kmem_cache_alloc+0x5b/0x310
[ 2223.940205]  create_object.isra.0+0x3a/0xa20
[ 2223.940852]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2223.941598]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2223.942336]  ? skb_ensure_writable+0x2cb/0x450
[ 2223.943014]  pskb_expand_head+0x15a/0x1040
[ 2223.943637]  ? skb_checksum+0x90/0xc0
[ 2223.944192]  ? __skb_checksum+0x9e0/0x9e0
[ 2223.944802]  skb_ensure_writable+0x2cb/0x450
[ 2223.945453]  skb_checksum_help+0x3af/0x5e0
[ 2223.946083]  validate_xmit_skb.constprop.0+0xa3a/0xda0
[ 2223.946854]  ? __skb_tstamp_tx+0x5db/0x8d0
[ 2223.947468]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 2223.948134]  __dev_queue_xmit+0x87b/0x2710
[ 2223.948755]  ? find_held_lock+0x2c/0x110
[ 2223.949345]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2223.950016]  ? lock_downgrade+0x6d0/0x6d0
[ 2223.950623]  ? lock_acquire+0x197/0x470
[ 2223.951205]  ? find_held_lock+0x2c/0x110
[ 2223.951802]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2223.952572]  ip_finish_output2+0x1514/0x21f0
[ 2223.953219]  ? ip_frag_next+0x9e0/0x9e0
[ 2223.953799]  ? nf_hook+0x160/0x510
[ 2223.954320]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2223.955069]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2223.955788]  ? ip_fragment.constprop.0+0x240/0x240
[ 2223.956500]  ? nf_hook+0x510/0x510
[ 2223.957032]  ip_output+0x2f7/0x600
[ 2223.957561]  ip_local_out+0xb4/0x1a0
[ 2223.958114]  iptunnel_xmit+0x591/0x8b0
[ 2223.958702]  ip_tunnel_xmit+0x1248/0x2f40
[ 2223.959337]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2223.960032]  sit_tunnel_xmit+0xef0/0x2960
[ 2223.960643]  ? lock_downgrade+0x6d0/0x6d0
[ 2223.961243]  ? ipip_rcv+0x4f0/0x4f0
[ 2223.961779]  ? skb_crc32c_csum_help+0x80/0x80
[ 2223.962436]  ? lock_acquire+0x197/0x470
[ 2223.963012]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2223.963664]  ? netif_skb_features+0x373/0xbe0
[ 2223.964318]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2223.964972]  __dev_queue_xmit+0x17ec/0x2710
[ 2223.965607]  ? find_held_lock+0x2c/0x110
[ 2223.966200]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2223.966873]  ? lock_downgrade+0x6d0/0x6d0
[ 2223.967475]  ? lock_acquire+0x197/0x470
[ 2223.968059]  ? ip_finish_output2+0x220/0x21f0
[ 2223.968714]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2223.969484]  neigh_connected_output+0x382/0x4d0
[ 2223.970179]  ip_finish_output2+0x6f1/0x21f0
[ 2223.970821]  ? nf_hook_slow+0xfc/0x1e0
[ 2223.971391]  ? ip_frag_next+0x9e0/0x9e0
[ 2223.971965]  ? nf_hook+0x160/0x510
[ 2223.972489]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2223.973232]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2223.973951]  ? ip_fragment.constprop.0+0x240/0x240
[ 2223.974684]  ? nf_hook+0x510/0x510
[ 2223.975215]  ip_output+0x2f7/0x600
[ 2223.975745]  ip_send_skb+0xdd/0x260
[ 2223.976287]  udp_send_skb+0x6da/0x11d0
[ 2223.976869]  udp_sendmsg+0x197f/0x2170
[ 2223.977444]  ? ip_frag_init+0x350/0x350
[ 2223.978034]  ? udp_setsockopt+0xc0/0xc0
[ 2223.978643]  ? mark_lock+0xf5/0x2df0
[ 2223.979196]  ? mark_lock+0xf5/0x2df0
[ 2223.979744]  ? lock_chain_count+0x20/0x20
[ 2223.980349]  ? lock_chain_count+0x20/0x20
[ 2223.980994]  ? __lock_acquire+0x1657/0x5b00
[ 2223.981644]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2223.982243]  ? __lock_acquire+0x1657/0x5b00
[ 2223.982901]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2223.983663]  ? lock_acquire+0x197/0x470
[ 2223.984251]  ? find_held_lock+0x2c/0x110
[ 2223.984869]  ? lock_acquire+0x197/0x470
[ 2223.985453]  ? find_held_lock+0x2c/0x110
[ 2223.986061]  ? __might_fault+0xd3/0x180
[ 2223.986652]  ? lock_downgrade+0x6d0/0x6d0
[ 2223.987259]  ? sock_has_perm+0x1ea/0x280
[ 2223.987850]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2223.988635]  ? __import_iovec+0x458/0x590
[ 2223.989256]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2223.990022]  inet6_sendmsg+0x105/0x140
[ 2223.990622]  ? inet6_compat_ioctl+0x320/0x320
[ 2223.991273]  __sock_sendmsg+0xf2/0x190
[ 2223.991855]  ____sys_sendmsg+0x334/0x870
[ 2223.992457]  ? sock_write_iter+0x3d0/0x3d0
[ 2223.993082]  ? do_recvmmsg+0x6d0/0x6d0
[ 2223.993657]  ? __lock_acquire+0x1657/0x5b00
[ 2223.994309]  ___sys_sendmsg+0xf3/0x170
[ 2223.994892]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2223.995555]  ? vmacache_find+0x55/0x2a0
[ 2223.996154]  ? lock_acquire+0x197/0x470
[ 2223.996737]  ? find_held_lock+0x2c/0x110
[ 2223.997333]  ? __might_fault+0xd3/0x180
[ 2223.997914]  ? lock_downgrade+0x6d0/0x6d0
[ 2223.998526]  ? asm_exc_page_fault+0x1e/0x30
[ 2223.999175]  __sys_sendmmsg+0x195/0x470
[ 2223.999769]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2224.000395]  ? lock_downgrade+0x6d0/0x6d0
[ 2224.001030]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2224.001742]  ? wait_for_completion_io+0x270/0x270
[ 2224.002454]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2224.003133]  ? vfs_write+0x354/0xa70
[ 2224.003682]  ? fput_many+0x2f/0x1a0
[ 2224.004219]  ? ksys_write+0x1a9/0x260
[ 2224.004780]  ? __ia32_sys_read+0xb0/0xb0
[ 2224.005386]  __x64_sys_sendmmsg+0x99/0x100
[ 2224.006008]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2224.006775]  do_syscall_64+0x33/0x40
[ 2224.007320]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2224.008066] RIP: 0033:0x7f4820600b19
[ 2224.008614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2224.011264] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2224.012364] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2224.013399] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2224.014433] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2224.015468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2224.016500] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:15:05 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x300}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
newfstatat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340), 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
sendmsg$sock(r0, &(0x7f00000000c0)={&(0x7f0000000140)=@isdn={0x22, 0x3, 0x20, 0x9, 0x9}, 0x80, &(0x7f0000000000)=[{&(0x7f00000002c0)="b6efc73248482d3103217f5b0c0960b2892aee1450a26e0db0bc8746bdb86beefff7b21bc2885918b71b4d0a433c634590cb1712e81d2c411b882c8811bc12a1c4a04cdb182c7d340dd1c1e88e72169cead2f22332b1c155a99a33ff7dfe0c643916fd2aff6c485a61e63952893238117b76783f", 0x74}], 0x1}, 0x44008010)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:15:05 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xc00e}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x3000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x8000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 86)

13:15:05 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xb000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:05 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x500}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2224.245530] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:15:05 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf000}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2224.321422] FAULT_INJECTION: forcing a failure.
[ 2224.321422] name failslab, interval 1, probability 0, space 0, times 0
[ 2224.323351] CPU: 1 PID: 12070 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2224.324363] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2224.325569] Call Trace:
[ 2224.325963]  dump_stack+0x107/0x167
[ 2224.326509]  should_fail.cold+0x5/0xa
[ 2224.327073]  ? create_object.isra.0+0x3a/0xa20
[ 2224.327752]  should_failslab+0x5/0x20
[ 2224.328319]  kmem_cache_alloc+0x5b/0x310
[ 2224.328924]  ? skb_release_data+0x11d/0x820
[ 2224.329560]  create_object.isra.0+0x3a/0xa20
[ 2224.330218]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2224.330989]  kmem_cache_alloc+0x159/0x310
[ 2224.331613]  skb_clone+0x14f/0x3d0
[ 2224.332141]  __skb_tstamp_tx+0x422/0x8d0
[ 2224.332761]  loopback_xmit+0x299/0x5e0
[ 2224.333347]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2224.334038]  __dev_queue_xmit+0x17ec/0x2710
[ 2224.334836]  ? find_held_lock+0x2c/0x110
[ 2224.335414]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2224.336069]  ? lock_downgrade+0x6d0/0x6d0
[ 2224.336672]  ? lock_acquire+0x197/0x470
[ 2224.337241]  ? find_held_lock+0x2c/0x110
[ 2224.337853]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2224.338649]  ip_finish_output2+0x1514/0x21f0
[ 2224.339302]  ? ip_frag_next+0x9e0/0x9e0
[ 2224.339886]  ? nf_hook+0x160/0x510
[ 2224.340420]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2224.341173]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2224.341892]  ? ip_fragment.constprop.0+0x240/0x240
[ 2224.342615]  ? nf_hook+0x510/0x510
[ 2224.343150]  ip_output+0x2f7/0x600
[ 2224.343681]  ip_local_out+0xb4/0x1a0
[ 2224.344225]  iptunnel_xmit+0x591/0x8b0
[ 2224.344810]  ip_tunnel_xmit+0x1248/0x2f40
[ 2224.345439]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2224.346154]  sit_tunnel_xmit+0xef0/0x2960
[ 2224.346780]  ? lock_downgrade+0x6d0/0x6d0
[ 2224.347386]  ? ipip_rcv+0x4f0/0x4f0
[ 2224.347920]  ? skb_crc32c_csum_help+0x80/0x80
[ 2224.348573]  ? lock_acquire+0x197/0x470
[ 2224.349157]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2224.349807]  ? netif_skb_features+0x373/0xbe0
[ 2224.350474]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2224.351129]  __dev_queue_xmit+0x17ec/0x2710
[ 2224.351770]  ? find_held_lock+0x2c/0x110
[ 2224.352372]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2224.353045]  ? lock_downgrade+0x6d0/0x6d0
[ 2224.353651]  ? lock_acquire+0x197/0x470
[ 2224.354232]  ? ip_finish_output2+0x220/0x21f0
[ 2224.354898]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2224.355665]  neigh_connected_output+0x382/0x4d0
[ 2224.356355]  ip_finish_output2+0x6f1/0x21f0
[ 2224.356990]  ? nf_hook_slow+0xfc/0x1e0
[ 2224.357567]  ? ip_frag_next+0x9e0/0x9e0
[ 2224.358147]  ? nf_hook+0x160/0x510
[ 2224.358682]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2224.359421]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2224.360144]  ? ip_fragment.constprop.0+0x240/0x240
[ 2224.360852]  ? nf_hook+0x510/0x510
[ 2224.361394]  ip_output+0x2f7/0x600
[ 2224.361922]  ip_send_skb+0xdd/0x260
[ 2224.362476]  udp_send_skb+0x6da/0x11d0
[ 2224.363074]  udp_sendmsg+0x197f/0x2170
[ 2224.363659]  ? ip_frag_init+0x350/0x350
[ 2224.364256]  ? __lock_acquire+0x1657/0x5b00
[ 2224.364895]  ? udp_setsockopt+0xc0/0xc0
[ 2224.365504]  ? mark_lock+0xf5/0x2df0
13:15:05 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x2000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2224.366061]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2224.367022]  ? SOFTIRQ_verbose+0x10/0x10
[ 2224.367617]  ? lock_chain_count+0x20/0x20
[ 2224.368234]  ? clockevents_program_event+0x14b/0x360
[ 2224.368977]  ? lock_acquire+0x197/0x470
[ 2224.369563]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2224.370163]  ? __lock_acquire+0x1657/0x5b00
[ 2224.370825]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2224.371587]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2224.372360]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2224.373143]  ? trace_hardirqs_on+0x5b/0x180
[ 2224.373795]  ? lock_acquire+0x1b9/0x470
[ 2224.374377]  ? find_held_lock+0x2c/0x110
[ 2224.374975]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2224.375736]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2224.376518]  ? trace_hardirqs_on+0x5b/0x180
[ 2224.377149]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2224.377938]  ? sock_has_perm+0x1ea/0x280
[ 2224.378537]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2224.379291]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2224.380073]  ? trace_hardirqs_on+0x5b/0x180
[ 2224.380712]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2224.381515]  ? security_socket_sendmsg+0x62/0xb0
[ 2224.382207]  ? security_socket_sendmsg+0x6c/0xb0
[ 2224.382905]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2224.383663]  inet6_sendmsg+0x105/0x140
[ 2224.384236]  ? inet6_compat_ioctl+0x320/0x320
[ 2224.384888]  __sock_sendmsg+0xf2/0x190
[ 2224.385456]  ____sys_sendmsg+0x334/0x870
[ 2224.386050]  ? sock_write_iter+0x3d0/0x3d0
[ 2224.386679]  ? do_recvmmsg+0x6d0/0x6d0
[ 2224.387258]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2224.388012]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2224.388792]  ? trace_hardirqs_on+0x5b/0x180
[ 2224.389436]  ___sys_sendmsg+0xf3/0x170
[ 2224.390013]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2224.390687]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2224.391343]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2224.392003]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2224.392662]  ? finish_task_switch+0x126/0x5d0
[ 2224.393314]  ? finish_task_switch+0xef/0x5d0
[ 2224.393962]  ? __switch_to+0x572/0xf70
[ 2224.394537]  ? __switch_to_asm+0x3a/0x60
[ 2224.395126]  ? __switch_to_asm+0x34/0x60
[ 2224.395726]  ? __schedule+0x82c/0x1ea0
[ 2224.396304]  ? io_schedule_timeout+0x140/0x140
[ 2224.396997]  __sys_sendmmsg+0x195/0x470
[ 2224.397584]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2224.398219]  ? lock_downgrade+0x6d0/0x6d0
[ 2224.398862]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2224.399568]  ? wait_for_completion_io+0x270/0x270
[ 2224.400276]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2224.400950]  ? vfs_write+0x354/0xa70
[ 2224.401506]  ? fput_many+0x2f/0x1a0
[ 2224.402042]  ? ksys_write+0x1a9/0x260
[ 2224.402608]  ? __ia32_sys_read+0xb0/0xb0
[ 2224.403211]  __x64_sys_sendmmsg+0x99/0x100
[ 2224.403831]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2224.404593]  do_syscall_64+0x33/0x40
[ 2224.405134]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2224.405884] RIP: 0033:0x7f4820600b19
[ 2224.406441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2224.409108] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2224.410217] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2224.411254] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2224.412294] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2224.413334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2224.414370] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:15:05 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x40004, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef0100ff07000000000000000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x801}, {&(0x7f0000000a00)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0x1}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1601}], 0x0, &(0x7f0000000000)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

[ 2237.363324] FAULT_INJECTION: forcing a failure.
[ 2237.363324] name failslab, interval 1, probability 0, space 0, times 0
[ 2237.364413] CPU: 0 PID: 12091 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2237.365026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2237.365752] Call Trace:
[ 2237.365995]  dump_stack+0x107/0x167
[ 2237.366323]  should_fail.cold+0x5/0xa
[ 2237.366679]  ? ___slab_alloc+0x470/0x700
[ 2237.367036]  ? create_object.isra.0+0x3a/0xa20
[ 2237.367438]  should_failslab+0x5/0x20
[ 2237.367772]  kmem_cache_alloc+0x5b/0x310
[ 2237.368140]  create_object.isra.0+0x3a/0xa20
[ 2237.368533]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2237.368991]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2237.369443]  ? skb_ensure_writable+0x2cb/0x450
[ 2237.369851]  pskb_expand_head+0x15a/0x1040
[ 2237.370224]  ? skb_checksum+0x90/0xc0
[ 2237.370579]  ? __skb_checksum+0x9e0/0x9e0
[ 2237.370956]  skb_ensure_writable+0x2cb/0x450
[ 2237.371353]  skb_checksum_help+0x3af/0x5e0
[ 2237.371730]  validate_xmit_skb.constprop.0+0xa3a/0xda0
[ 2237.372194]  ? __skb_tstamp_tx+0x5db/0x8d0
[ 2237.372558]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 2237.372959]  __dev_queue_xmit+0x87b/0x2710
[ 2237.373334]  ? find_held_lock+0x2c/0x110
[ 2237.373686]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2237.374082]  ? lock_downgrade+0x6d0/0x6d0
[ 2237.374441]  ? lock_acquire+0x197/0x470
[ 2237.374791]  ? find_held_lock+0x2c/0x110
[ 2237.375153]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2237.375617]  ip_finish_output2+0x1514/0x21f0
[ 2237.376010]  ? ip_frag_next+0x9e0/0x9e0
[ 2237.376352]  ? nf_hook+0x160/0x510
[ 2237.376860]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2237.377370]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2237.377795]  ? ip_fragment.constprop.0+0x240/0x240
[ 2237.378213]  ? nf_hook+0x510/0x510
[ 2237.378532]  ip_output+0x2f7/0x600
[ 2237.378859]  ip_local_out+0xb4/0x1a0
[ 2237.379180]  iptunnel_xmit+0x591/0x8b0
[ 2237.379528]  ip_tunnel_xmit+0x1248/0x2f40
[ 2237.379898]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2237.380312]  sit_tunnel_xmit+0xef0/0x2960
[ 2237.380683]  ? lock_downgrade+0x6d0/0x6d0
[ 2237.381056]  ? ipip_rcv+0x4f0/0x4f0
[ 2237.381377]  ? skb_crc32c_csum_help+0x80/0x80
[ 2237.381781]  ? lock_acquire+0x197/0x470
[ 2237.382122]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2237.382502]  ? netif_skb_features+0x373/0xbe0
[ 2237.382913]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2237.383309]  __dev_queue_xmit+0x17ec/0x2710
[ 2237.383698]  ? find_held_lock+0x2c/0x110
[ 2237.384058]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2237.384459]  ? lock_downgrade+0x6d0/0x6d0
[ 2237.384825]  ? lock_acquire+0x197/0x470
[ 2237.385170]  ? ip_finish_output2+0x220/0x21f0
[ 2237.385559]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2237.386021]  neigh_connected_output+0x382/0x4d0
[ 2237.386429]  ip_finish_output2+0x6f1/0x21f0
[ 2237.386819]  ? nf_hook_slow+0xfc/0x1e0
[ 2237.387159]  ? ip_frag_next+0x9e0/0x9e0
[ 2237.387502]  ? nf_hook+0x160/0x510
[ 2237.387813]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2237.388256]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2237.388683]  ? ip_fragment.constprop.0+0x240/0x240
[ 2237.389116]  ? nf_hook+0x510/0x510
[ 2237.389442]  ip_output+0x2f7/0x600
[ 2237.389760]  ip_send_skb+0xdd/0x260
[ 2237.390080]  udp_send_skb+0x6da/0x11d0
[ 2237.390426]  udp_sendmsg+0x197f/0x2170
[ 2237.390776]  ? ip_frag_init+0x350/0x350
[ 2237.391135]  ? udp_setsockopt+0xc0/0xc0
[ 2237.391483]  ? mark_lock+0xf5/0x2df0
[ 2237.391818]  ? lock_chain_count+0x20/0x20
[ 2237.392187]  ? mark_lock+0xf5/0x2df0
[ 2237.392515]  ? mark_lock+0xf5/0x2df0
[ 2237.392834]  ? mark_lock+0xf5/0x2df0
[ 2237.393183]  ? lock_chain_count+0x20/0x20
[ 2237.393553]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2237.394012]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2237.394487]  ? trace_hardirqs_on+0x5b/0x180
[ 2237.394915]  ? __lock_acquire+0x1657/0x5b00
[ 2237.395300]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2237.395655]  ? __lock_acquire+0x1657/0x5b00
[ 2237.396039]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2237.396490]  ? lock_release+0x98/0x680
[ 2237.396826]  ? lock_acquire+0x197/0x470
[ 2237.397164]  ? find_held_lock+0x2c/0x110
[ 2237.397521]  ? __might_fault+0xd3/0x180
[ 2237.397866]  ? lock_downgrade+0x6d0/0x6d0
[ 2237.398232]  ? sock_has_perm+0x1ea/0x280
[ 2237.398591]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2237.399060]  ? __import_iovec+0x458/0x590
[ 2237.399425]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2237.399889]  inet6_sendmsg+0x105/0x140
[ 2237.400228]  ? inet6_compat_ioctl+0x320/0x320
[ 2237.400620]  __sock_sendmsg+0xf2/0x190
[ 2237.400976]  ____sys_sendmsg+0x334/0x870
[ 2237.401331]  ? sock_write_iter+0x3d0/0x3d0
[ 2237.401698]  ? do_recvmmsg+0x6d0/0x6d0
[ 2237.402044]  ? __lock_acquire+0x1657/0x5b00
[ 2237.402433]  ___sys_sendmsg+0xf3/0x170
[ 2237.402790]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2237.403188]  ? vmacache_find+0x55/0x2a0
[ 2237.403549]  ? lock_acquire+0x197/0x470
[ 2237.403898]  ? find_held_lock+0x2c/0x110
[ 2237.404255]  ? __might_fault+0xd3/0x180
[ 2237.404603]  ? lock_downgrade+0x6d0/0x6d0
[ 2237.404955]  ? asm_exc_page_fault+0x1e/0x30
[ 2237.405339]  __sys_sendmmsg+0x195/0x470
[ 2237.405686]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2237.406054]  ? lock_downgrade+0x6d0/0x6d0
[ 2237.406422]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2237.406847]  ? wait_for_completion_io+0x270/0x270
[ 2237.407262]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2237.407657]  ? vfs_write+0x354/0xa70
[ 2237.407985]  ? fput_many+0x2f/0x1a0
[ 2237.408299]  ? ksys_write+0x1a9/0x260
[ 2237.408627]  ? __ia32_sys_read+0xb0/0xb0
[ 2237.408992]  __x64_sys_sendmmsg+0x99/0x100
[ 2237.409357]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2237.409808]  do_syscall_64+0x33/0x40
[ 2237.410134]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2237.410569] RIP: 0033:0x7f4820600b19
[ 2237.410893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2237.412471] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2237.413132] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2237.413733] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2237.414331] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2237.414934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2237.415531] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:15:18 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x600}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x4000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
lsetxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)='system_u:object_r:pam_var_run_t:s0\x00', 0x23, 0x2)
ftruncate(r0, 0x1000003)
open$dir(&(0x7f0000000180)='./file0\x00', 0x101000, 0x180)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:15:18 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x8000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x9000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xffff}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 87)

13:15:18 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x5000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x3}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2237.502018] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:15:18 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x700}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xa000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:18 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
stat(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000140))
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r1, 0x4b4a, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r1, 0x4040942c, &(0x7f00000000c0)={0x0, 0x81, [0x6, 0x100000001, 0x24, 0x1000, 0xffffffff, 0xb48]})

13:15:18 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xd000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2237.575237] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2237.592832] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
13:15:18 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x9000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2237.681617] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:15:32 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xff0f}}}, 0xe)

13:15:32 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xb000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x6000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 5:
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
fallocate(r1, 0x3, 0x0, 0x30000000000)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r2, 0x4b4a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {0x8}}, './file0\x00'})

13:15:32 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x900}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xe000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 88)

[ 2250.744380] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2250.752856] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
13:15:32 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xec0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2250.808335] FAULT_INJECTION: forcing a failure.
[ 2250.808335] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2250.810219] CPU: 1 PID: 12160 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2250.811345] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2250.812687] Call Trace:
[ 2250.813124]  dump_stack+0x107/0x167
[ 2250.813722]  should_fail.cold+0x5/0xa
[ 2250.814353]  __alloc_pages_nodemask+0x182/0x600
[ 2250.815127]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
13:15:32 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2250.816222]  ? kmem_cache_alloc+0x301/0x310
[ 2250.816915]  alloc_pages_current+0x187/0x280
[ 2250.817629]  allocate_slab+0x26f/0x380
[ 2250.818261]  ___slab_alloc+0x470/0x700
[ 2250.818910]  ? skb_clone+0x14f/0x3d0
[ 2250.819517]  ? skb_release_data+0x11d/0x820
[ 2250.820219]  ? skb_clone+0x14f/0x3d0
[ 2250.820822]  ? kmem_cache_alloc+0x301/0x310
[ 2250.821514]  ? skb_clone+0x14f/0x3d0
[ 2250.822116]  kmem_cache_alloc+0x301/0x310
[ 2250.822803]  skb_clone+0x14f/0x3d0
[ 2250.823385]  __skb_tstamp_tx+0x422/0x8d0
[ 2250.824049]  loopback_xmit+0x299/0x5e0
[ 2250.824680]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2250.825398]  __dev_queue_xmit+0x17ec/0x2710
[ 2250.826104]  ? find_held_lock+0x2c/0x110
[ 2250.826769]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2250.827508]  ? lock_downgrade+0x6d0/0x6d0
[ 2250.828176]  ? lock_acquire+0x197/0x470
[ 2250.828813]  ? find_held_lock+0x2c/0x110
[ 2250.829475]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2250.830324]  ip_finish_output2+0x1514/0x21f0
[ 2250.831055]  ? ip_frag_next+0x9e0/0x9e0
[ 2250.831695]  ? nf_hook+0x160/0x510
[ 2250.832269]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2250.833090]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2250.833882]  ? ip_fragment.constprop.0+0x240/0x240
[ 2250.834649]  ? nf_hook+0x510/0x510
[ 2250.835223]  ip_output+0x2f7/0x600
[ 2250.835781]  ip_local_out+0xb4/0x1a0
[ 2250.836359]  iptunnel_xmit+0x591/0x8b0
[ 2250.836971]  ip_tunnel_xmit+0x1248/0x2f40
[ 2250.837622]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2250.838353]  sit_tunnel_xmit+0xef0/0x2960
[ 2250.839002]  ? lock_downgrade+0x6d0/0x6d0
[ 2250.839635]  ? ipip_rcv+0x4f0/0x4f0
[ 2250.840188]  ? skb_crc32c_csum_help+0x80/0x80
[ 2250.840875]  ? lock_acquire+0x197/0x470
[ 2250.841477]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2250.842159]  ? netif_skb_features+0x373/0xbe0
[ 2250.842852]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2250.843537]  __dev_queue_xmit+0x17ec/0x2710
[ 2250.844200]  ? find_held_lock+0x2c/0x110
[ 2250.844824]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2250.845522]  ? lock_downgrade+0x6d0/0x6d0
[ 2250.846166]  ? lock_acquire+0x197/0x470
[ 2250.846784]  ? ip_finish_output2+0x220/0x21f0
[ 2250.847479]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2250.848280]  neigh_connected_output+0x382/0x4d0
[ 2250.849009]  ip_finish_output2+0x6f1/0x21f0
[ 2250.849673]  ? nf_hook_slow+0xfc/0x1e0
[ 2250.850272]  ? ip_frag_next+0x9e0/0x9e0
[ 2250.850888]  ? nf_hook+0x160/0x510
[ 2250.851436]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2250.852209]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2250.852964]  ? ip_fragment.constprop.0+0x240/0x240
[ 2250.853703]  ? nf_hook+0x510/0x510
[ 2250.854263]  ip_output+0x2f7/0x600
[ 2250.854821]  ip_send_skb+0xdd/0x260
[ 2250.855390]  udp_send_skb+0x6da/0x11d0
[ 2250.855999]  udp_sendmsg+0x197f/0x2170
[ 2250.856605]  ? ip_frag_init+0x350/0x350
[ 2250.857214]  ? udp_setsockopt+0xc0/0xc0
[ 2250.857834]  ? mark_lock+0xf5/0x2df0
[ 2250.858404]  ? mark_lock+0xf5/0x2df0
[ 2250.858978]  ? lock_chain_count+0x20/0x20
[ 2250.859602]  ? lock_chain_count+0x20/0x20
13:15:32 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf00}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2250.860263]  ? __lock_acquire+0x1657/0x5b00
[ 2250.861055]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2250.861677]  ? __lock_acquire+0x1657/0x5b00
[ 2250.862533]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2250.862567]  ? lock_acquire+0x197/0x470
[ 2250.863698]  ? find_held_lock+0x2c/0x110
[ 2250.864326]  ? lock_acquire+0x197/0x470
[ 2250.864346]  ? find_held_lock+0x2c/0x110
[ 2250.865308]  ? __might_fault+0xd3/0x180
[ 2250.865912]  ? lock_downgrade+0x6d0/0x6d0
[ 2250.866542]  ? sock_has_perm+0x1ea/0x280
[ 2250.867167]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2250.867958]  ? __import_iovec+0x458/0x590
[ 2250.868552]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2250.869308]  inet6_sendmsg+0x105/0x140
[ 2250.869947]  ? inet6_compat_ioctl+0x320/0x320
[ 2250.870778]  __sock_sendmsg+0xf2/0x190
[ 2250.871451]  ____sys_sendmsg+0x334/0x870
[ 2250.872108]  ? sock_write_iter+0x3d0/0x3d0
[ 2250.872778]  ? do_recvmmsg+0x6d0/0x6d0
[ 2250.873405]  ? __lock_acquire+0x1657/0x5b00
[ 2250.874109]  ___sys_sendmsg+0xf3/0x170
[ 2250.874809]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2250.875639]  ? do_user_addr_fault+0x713/0xc60
[ 2250.876448]  ? lock_acquire+0x197/0x470
[ 2250.877153]  ? find_held_lock+0x2c/0x110
[ 2250.877834]  ? __might_fault+0xd3/0x180
[ 2250.878486]  ? lock_downgrade+0x6d0/0x6d0
[ 2250.879183]  ? asm_exc_page_fault+0x1e/0x30
[ 2250.879907]  __sys_sendmmsg+0x195/0x470
[ 2250.880570]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2250.881304]  ? lock_downgrade+0x6d0/0x6d0
[ 2250.881953]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2250.882679]  ? wait_for_completion_io+0x270/0x270
[ 2250.882704]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2250.882733]  ? vfs_write+0x354/0xa70
[ 2250.882754]  ? fput_many+0x2f/0x1a0
[ 2250.882775]  ? ksys_write+0x1a9/0x260
[ 2250.882796]  ? __ia32_sys_read+0xb0/0xb0
[ 2250.882826]  __x64_sys_sendmmsg+0x99/0x100
[ 2250.882846]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2250.882867]  do_syscall_64+0x33/0x40
[ 2250.882886]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2250.882899] RIP: 0033:0x7f4820600b19
[ 2250.882920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2250.882932] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2250.882954] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2250.882966] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
13:15:32 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xff0f}}}, 0xe)

[ 2250.882978] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2250.882989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2250.883001] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2250.934520] netlink: 'syz-executor.3': attribute type 8 has an invalid length.
[ 2250.940055] netlink: 'syz-executor.3': attribute type 8 has an invalid length.
13:15:32 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xd000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
fallocate(r0, 0x3, 0x0, 0x30000000000)
r1 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x4ac81, 0x4)
sendfile(r1, 0xffffffffffffffff, &(0x7f0000000140)=0x9, 0x80)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x2200, 0x8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000003)
write$bt_hci(r2, &(0x7f0000000580)=ANY=[@ANYBLOB="010408020000"], 0x6)

13:15:32 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x7000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:32 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x8b01}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2251.025434] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:15:32 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x117}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 89)

13:15:46 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x129}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x28000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xc00e}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none, 0xff0f}}}, 0xe)

13:15:46 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d60029", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000000380)=ANY=[@ANYRES64=0x0])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
socketpair(0x11, 0x6, 0x6, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2000)
sendmsg$nl_generic(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000003080)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="4d56f93d97c42b39d2e64fb6c9c1d9e6213e210def802d63eb96c580bc0bb6981d1b6153fcabd3b89af27ac3fb8b533700737391ceb6bf0800"], 0x16ec}, 0x1, 0x0, 0x0, 0x88}, 0x800)
r3 = geteuid()
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffb, 0x2, &(0x7f0000000340)=[{&(0x7f0000000140)="d5613a1b678657104c3231ce4286f17a21487a03ecda0626f2da3f29fe153790da063105334a48aa800e679508062f204158e5e6aa814436e4247d6cc31f776c185da5429e83e10879676160c31e68036bd3884be3cfccc6b122f824f5ee4ba164315647175f627f9b39868860a475f25f3a66cf3a9bacf536e4586eec3f8cc4544cc0b8d479b55d5568c3f73d13332ec697ccc7e3168c2e8c73fe2e5ba6fc9dcf821ade536c4af4c73199f344e8c1d8fbea73f40f49f5089a21dae25bc085", 0xbf, 0x7fffffff}, {&(0x7f00000002c0)="c16e5d59d37fb6d83c8236162260c8266d4244a1fc8548913423aecff95dcfdd7d3305d0819d73a152712ae3b097cbe549f8a4aa0be74ce3c419874a1f1c3f0d775a7f51eddfddf6467a2838a1f50d6336823f645e817d7de2a508", 0x5b, 0x4}], 0x12c002, &(0x7f00000005c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1}}, {@data_err_abort}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@bh}, {@data_journal}, {@noquota}, {@mblk_io_submit}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@grpjquota_path={'grpjquota', 0x3d, './file1'}}], [{@euid_lt={'euid<', 0xee01}}, {@smackfsfloor={'smackfsfloor', 0x3d, '))]'}}, {@smackfsdef={'smackfsdef', 0x3d, 'ext4\x00'}}, {@uid_eq={'uid', 0x3d, r2}}, {@smackfsfloor}, {@smackfsfloor={'smackfsfloor', 0x3d, 'ext4\x00'}}, {@fowner_lt={'fowner<', r3}}, {@dont_measure}, {@smackfsdef={'smackfsdef', 0x3d, '\x98\'+(-\x0e\x9c'}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}]})

13:15:46 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xe000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x9000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2265.368824] FAULT_INJECTION: forcing a failure.
[ 2265.368824] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2265.370884] CPU: 1 PID: 12210 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2265.371915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2265.373109] Call Trace:
[ 2265.373505]  dump_stack+0x107/0x167
[ 2265.374042]  should_fail.cold+0x5/0xa
[ 2265.374618]  _copy_from_user+0x2e/0x1b0
[ 2265.375220]  __copy_msghdr_from_user+0x91/0x4b0
[ 2265.375911]  ? __ia32_sys_shutdown+0x80/0x80
[ 2265.376553]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2265.377330]  ? inet6_sendmsg+0xbd/0x140
[ 2265.377927]  ? inet6_compat_ioctl+0x320/0x320
[ 2265.378580]  ? __sock_sendmsg+0x55/0x190
[ 2265.379188]  sendmsg_copy_msghdr+0xa1/0x160
[ 2265.379815]  ? do_recvmmsg+0x6d0/0x6d0
[ 2265.380399]  ? __lock_acquire+0x1657/0x5b00
[ 2265.381039]  ___sys_sendmsg+0xc6/0x170
[ 2265.381621]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2265.382284]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2265.383069]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2265.383716]  ? trace_hardirqs_on+0x5b/0x180
[ 2265.384353]  ? lock_acquire+0x197/0x470
[ 2265.384924]  ? find_held_lock+0x2c/0x110
[ 2265.385530]  ? __might_fault+0xd3/0x180
[ 2265.386103]  ? lock_downgrade+0x6d0/0x6d0
[ 2265.386721]  ? io_schedule_timeout+0x140/0x140
[ 2265.387397]  __sys_sendmmsg+0x195/0x470
[ 2265.387986]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2265.388597]  ? lock_downgrade+0x6d0/0x6d0
[ 2265.389217]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2265.389907]  ? wait_for_completion_io+0x270/0x270
[ 2265.390613]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2265.391283]  ? vfs_write+0x354/0xa70
[ 2265.391829]  ? fput_many+0x2f/0x1a0
[ 2265.392350]  ? ksys_write+0x1a9/0x260
[ 2265.392912]  ? __ia32_sys_read+0xb0/0xb0
[ 2265.393497]  __x64_sys_sendmmsg+0x99/0x100
[ 2265.394119]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2265.394854]  do_syscall_64+0x33/0x40
[ 2265.395404]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2265.396128] RIP: 0033:0x7f4820600b19
[ 2265.396683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2265.399275] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2265.400370] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2265.401404] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2265.402445] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2265.403642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2265.404866] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:15:46 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 90)

[ 2265.482331] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:15:46 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf000}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xf000000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:15:46 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x4f020000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2265.625897] FAULT_INJECTION: forcing a failure.
[ 2265.625897] name failslab, interval 1, probability 0, space 0, times 0
[ 2265.627843] CPU: 0 PID: 12241 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2265.628872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2265.630076] Call Trace:
[ 2265.630474]  dump_stack+0x107/0x167
[ 2265.631027]  should_fail.cold+0x5/0xa
[ 2265.631596]  ? create_object.isra.0+0x3a/0xa20
[ 2265.632267]  should_failslab+0x5/0x20
[ 2265.632831]  kmem_cache_alloc+0x5b/0x310
[ 2265.633443]  create_object.isra.0+0x3a/0xa20
[ 2265.634092]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2265.634839]  kmem_cache_alloc_node+0x169/0x330
[ 2265.635526]  __alloc_skb+0x6d/0x5b0
[ 2265.636070]  alloc_skb_with_frags+0x92/0x570
[ 2265.636733]  sock_alloc_send_pskb+0x7af/0x930
[ 2265.637404]  ? sk_alloc+0x350/0x350
[ 2265.637954]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2265.638719]  ? SOFTIRQ_verbose+0x10/0x10
[ 2265.639332]  __ip_append_data+0x1628/0x3310
[ 2265.639980]  ? fib_select_path+0x95d/0x1e90
[ 2265.640618]  ? ip_frag_init+0x350/0x350
[ 2265.641219]  ? ip_finish_output+0x330/0x330
[ 2265.641848]  ? ip_route_output_key_hash+0x1a4/0x340
[ 2265.642584]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2265.643247]  ip_make_skb+0x22a/0x2a0
[ 2265.643796]  ? ip_frag_init+0x350/0x350
[ 2265.644390]  ? ip_flush_pending_frames+0x20/0x20
[ 2265.645101]  ? lock_downgrade+0x6d0/0x6d0
[ 2265.645721]  ? xfrm_lookup_route+0x65/0x210
[ 2265.646363]  udp_sendmsg+0x193f/0x2170
[ 2265.646954]  ? ip_frag_init+0x350/0x350
[ 2265.647553]  ? __lock_acquire+0x1657/0x5b00
[ 2265.648178]  ? udp_setsockopt+0xc0/0xc0
[ 2265.648782]  ? mark_lock+0xf5/0x2df0
[ 2265.649343]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2265.650115]  ? SOFTIRQ_verbose+0x10/0x10
[ 2265.650718]  ? clockevents_program_event+0x14b/0x360
[ 2265.651477]  ? lock_acquire+0x197/0x470
[ 2265.652071]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2265.652675]  ? __lock_acquire+0x1657/0x5b00
[ 2265.653322]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2265.654085]  ? perf_event_task_disable+0x390/0x390
[ 2265.654815]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2265.655592]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2265.656369]  ? trace_hardirqs_on+0x5b/0x180
[ 2265.657001]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2265.657812]  ? sock_has_perm+0x7f/0x280
[ 2265.658398]  ? __sanitizer_cov_trace_pc+0x4/0x60
[ 2265.659090]  ? sock_has_perm+0x1ea/0x280
[ 2265.659679]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2265.660454]  ? __import_iovec+0x458/0x590
[ 2265.661062]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2265.661816]  inet6_sendmsg+0x105/0x140
[ 2265.662384]  ? inet6_compat_ioctl+0x320/0x320
[ 2265.663045]  __sock_sendmsg+0xf2/0x190
[ 2265.663617]  ____sys_sendmsg+0x334/0x870
[ 2265.664211]  ? sock_write_iter+0x3d0/0x3d0
[ 2265.664829]  ? do_recvmmsg+0x6d0/0x6d0
[ 2265.665401]  ? find_held_lock+0x2c/0x110
[ 2265.666007]  ___sys_sendmsg+0xf3/0x170
[ 2265.666572]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2265.667255]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2265.668018]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2265.668668]  ? trace_hardirqs_on+0x5b/0x180
[ 2265.669295]  ? finish_task_switch+0x1a4/0x5d0
[ 2265.669948]  ? __switch_to+0x572/0xf70
[ 2265.670509]  ? __switch_to_asm+0x3a/0x60
[ 2265.671104]  ? __switch_to_asm+0x34/0x60
[ 2265.671701]  ? __schedule+0x82c/0x1ea0
[ 2265.672283]  ? io_schedule_timeout+0x140/0x140
[ 2265.672959]  __sys_sendmmsg+0x195/0x470
[ 2265.673550]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2265.674177]  ? lock_downgrade+0x6d0/0x6d0
[ 2265.674802]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2265.675519]  ? wait_for_completion_io+0x270/0x270
[ 2265.676225]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2265.676903]  ? vfs_write+0x354/0xa70
[ 2265.677448]  ? fput_many+0x2f/0x1a0
[ 2265.677981]  ? ksys_write+0x1a9/0x260
[ 2265.678539]  ? __ia32_sys_read+0xb0/0xb0
[ 2265.679148]  __x64_sys_sendmmsg+0x99/0x100
[ 2265.679766]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2265.680525]  do_syscall_64+0x33/0x40
[ 2265.681069]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2265.681815] RIP: 0033:0x7f4820600b19
[ 2265.682359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2265.685031] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2265.686134] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2265.687173] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2265.688205] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2265.689242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2265.690273] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:16:00 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 91)

13:16:00 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:00 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x2}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:00 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xc00e}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x9effffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:00 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xffff}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:00 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(r0, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x80)
ftruncate(r1, 0x1000003)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000003080)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="4d56f93d97c42b39d2e64fb6c9c1d9e6213e210def802d63eb96c580bc0bb6981d1b6153fcabd3b89af27ac3fb8b533700737391ceb6bf0800"], 0x16ec}, 0x1, 0x0, 0x0, 0x88}, 0x800)
mount$9p_tcp(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000002c0)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@access_any}], [{@euid_eq={'euid', 0x3d, r2}}]}})
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
openat(r1, &(0x7f0000000000)='./file0\x00', 0x200240, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r3, 0x40086602, &(0x7f0000000000))
fallocate(r3, 0x3, 0x0, 0x30000000000)
write$bt_hci(r3, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
fallocate(r4, 0x3, 0x0, 0x30000000000)
write$bt_hci(r4, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
renameat2(r3, &(0x7f0000000340)='./file0\x00', r4, &(0x7f0000000380)='./file0\x00', 0x7)

13:16:00 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x9effffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2279.249321] FAULT_INJECTION: forcing a failure.
[ 2279.249321] name failslab, interval 1, probability 0, space 0, times 0
[ 2279.251350] CPU: 1 PID: 12267 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2279.252372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2279.253587] Call Trace:
[ 2279.253986]  dump_stack+0x107/0x167
[ 2279.254532]  should_fail.cold+0x5/0xa
[ 2279.255108]  ? __alloc_skb+0x6d/0x5b0
[ 2279.255681]  should_failslab+0x5/0x20
[ 2279.256245]  kmem_cache_alloc_node+0x55/0x330
[ 2279.256911]  __alloc_skb+0x6d/0x5b0
[ 2279.257458]  alloc_skb_with_frags+0x92/0x570
[ 2279.258125]  sock_alloc_send_pskb+0x7af/0x930
[ 2279.258796]  ? sk_alloc+0x350/0x350
[ 2279.259346]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2279.260110]  ? SOFTIRQ_verbose+0x10/0x10
[ 2279.260717]  __ip_append_data+0x1628/0x3310
[ 2279.261357]  ? fib_select_path+0x95d/0x1e90
[ 2279.261979]  ? ip_frag_init+0x350/0x350
[ 2279.262576]  ? ip_finish_output+0x330/0x330
[ 2279.263216]  ? ip_route_output_key_hash+0x1a4/0x340
[ 2279.263943]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2279.264598]  ip_make_skb+0x22a/0x2a0
[ 2279.265150]  ? ip_frag_init+0x350/0x350
[ 2279.265743]  ? ip_flush_pending_frames+0x20/0x20
[ 2279.266446]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.267057]  ? xfrm_lookup_route+0x65/0x210
[ 2279.267707]  udp_sendmsg+0x193f/0x2170
[ 2279.268280]  ? ip_frag_init+0x350/0x350
[ 2279.268868]  ? __lock_acquire+0x1657/0x5b00
[ 2279.269494]  ? udp_setsockopt+0xc0/0xc0
[ 2279.270097]  ? mark_lock+0xf5/0x2df0
13:16:00 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2279.270647]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2279.271572]  ? SOFTIRQ_verbose+0x10/0x10
[ 2279.272161]  ? lock_chain_count+0x20/0x20
[ 2279.272767]  ? clockevents_program_event+0x14b/0x360
[ 2279.273505]  ? lock_acquire+0x197/0x470
[ 2279.274087]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2279.274679]  ? __lock_acquire+0x1657/0x5b00
[ 2279.275326]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2279.276072]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2279.276847]  ? lock_acquire+0x197/0x470
[ 2279.277424]  ? find_held_lock+0x2c/0x110
[ 2279.278022]  ? __might_fault+0xd3/0x180
[ 2279.278598]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.279204]  ? sock_has_perm+0x1ea/0x280
[ 2279.279793]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2279.280552]  ? __import_iovec+0x458/0x590
[ 2279.281153]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2279.281902]  inet6_sendmsg+0x105/0x140
[ 2279.282469]  ? inet6_compat_ioctl+0x320/0x320
[ 2279.283120]  __sock_sendmsg+0xf2/0x190
[ 2279.283684]  ____sys_sendmsg+0x334/0x870
[ 2279.284272]  ? sock_write_iter+0x3d0/0x3d0
[ 2279.284883]  ? do_recvmmsg+0x6d0/0x6d0
[ 2279.285449]  ? __lock_acquire+0x1657/0x5b00
[ 2279.286087]  ___sys_sendmsg+0xf3/0x170
[ 2279.286654]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2279.287327]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2279.287976]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2279.288631]  ? lock_acquire+0x197/0x470
[ 2279.289204]  ? find_held_lock+0x2c/0x110
[ 2279.289799]  ? __might_fault+0xd3/0x180
[ 2279.290378]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.290984]  ? io_schedule_timeout+0x140/0x140
[ 2279.291669]  __sys_sendmmsg+0x195/0x470
[ 2279.292257]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2279.292881]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.293498]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2279.294203]  ? wait_for_completion_io+0x270/0x270
[ 2279.294901]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2279.295577]  ? vfs_write+0x354/0xa70
[ 2279.296118]  ? fput_many+0x2f/0x1a0
[ 2279.296651]  ? ksys_write+0x1a9/0x260
[ 2279.297202]  ? __ia32_sys_read+0xb0/0xb0
[ 2279.297795]  __x64_sys_sendmmsg+0x99/0x100
[ 2279.298404]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2279.299155]  do_syscall_64+0x33/0x40
[ 2279.299694]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2279.300430] RIP: 0033:0x7f4820600b19
[ 2279.300971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2279.303589] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2279.304685] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2279.305710] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2279.306736] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2279.307766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2279.308799] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2279.374632] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:16:00 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xc00e0000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:00 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x3}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2279.448908] 9pnet: p9_fd_create_tcp (12289): problem connecting socket to 127.0.0.1
13:16:00 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 92)

13:16:00 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc00e0000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2279.520960] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2279.549961] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2279.603355] FAULT_INJECTION: forcing a failure.
[ 2279.603355] name failslab, interval 1, probability 0, space 0, times 0
[ 2279.605321] CPU: 1 PID: 12306 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2279.606323] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2279.607523] Call Trace:
[ 2279.607912]  dump_stack+0x107/0x167
[ 2279.608445]  should_fail.cold+0x5/0xa
[ 2279.609003]  ? create_object.isra.0+0x3a/0xa20
[ 2279.609668]  should_failslab+0x5/0x20
[ 2279.610221]  kmem_cache_alloc+0x5b/0x310
[ 2279.610820]  create_object.isra.0+0x3a/0xa20
[ 2279.611466]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2279.612211]  kmem_cache_alloc_node+0x169/0x330
[ 2279.612883]  __alloc_skb+0x6d/0x5b0
[ 2279.613424]  alloc_skb_with_frags+0x92/0x570
[ 2279.614078]  sock_alloc_send_pskb+0x7af/0x930
[ 2279.614743]  ? sk_alloc+0x350/0x350
[ 2279.615289]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2279.616049]  ? SOFTIRQ_verbose+0x10/0x10
[ 2279.616646]  __ip_append_data+0x1628/0x3310
[ 2279.617281]  ? fib_select_path+0x95d/0x1e90
[ 2279.617914]  ? ip_frag_init+0x350/0x350
[ 2279.618501]  ? ip_finish_output+0x330/0x330
[ 2279.619140]  ? ip_route_output_key_hash+0x1a4/0x340
[ 2279.619858]  ? __sock_tx_timestamp+0xa3/0xc0
[ 2279.620501]  ip_make_skb+0x22a/0x2a0
[ 2279.621050]  ? ip_frag_init+0x350/0x350
[ 2279.621630]  ? ip_flush_pending_frames+0x20/0x20
[ 2279.622328]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.622940]  ? xfrm_lookup_route+0x65/0x210
[ 2279.623571]  udp_sendmsg+0x193f/0x2170
[ 2279.624171]  ? ip_frag_init+0x350/0x350
[ 2279.624747]  ? __lock_acquire+0x1657/0x5b00
[ 2279.625374]  ? udp_setsockopt+0xc0/0xc0
[ 2279.625971]  ? mark_lock+0xf5/0x2df0
[ 2279.626524]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2279.627289]  ? SOFTIRQ_verbose+0x10/0x10
[ 2279.627888]  ? clockevents_program_event+0x14b/0x360
[ 2279.628631]  ? lock_acquire+0x197/0x470
[ 2279.629215]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2279.629805]  ? __lock_acquire+0x1657/0x5b00
[ 2279.630442]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2279.631206]  ? trace_hardirqs_on+0x5b/0x180
[ 2279.631836]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2279.632627]  ? lock_acquire+0x197/0x470
[ 2279.633202]  ? find_held_lock+0x2c/0x110
[ 2279.633795]  ? __might_fault+0xd3/0x180
[ 2279.634370]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.634973]  ? sock_has_perm+0x1ea/0x280
[ 2279.635617]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2279.636385]  ? __import_iovec+0x458/0x590
[ 2279.636987]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2279.637739]  inet6_sendmsg+0x105/0x140
[ 2279.638304]  ? inet6_compat_ioctl+0x320/0x320
[ 2279.638952]  __sock_sendmsg+0xf2/0x190
[ 2279.639524]  ____sys_sendmsg+0x334/0x870
[ 2279.640115]  ? sock_write_iter+0x3d0/0x3d0
[ 2279.640723]  ? do_recvmmsg+0x6d0/0x6d0
[ 2279.641291]  ? __lock_acquire+0x1657/0x5b00
[ 2279.641931]  ___sys_sendmsg+0xf3/0x170
[ 2279.642500]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2279.643174]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2279.643824]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2279.644481]  ? lock_acquire+0x197/0x470
[ 2279.645058]  ? find_held_lock+0x2c/0x110
[ 2279.645656]  ? __might_fault+0xd3/0x180
[ 2279.646232]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.646834]  ? io_schedule_timeout+0x140/0x140
[ 2279.647517]  __sys_sendmmsg+0x195/0x470
[ 2279.648102]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2279.648728]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.649346]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2279.650049]  ? wait_for_completion_io+0x270/0x270
[ 2279.650749]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2279.651425]  ? vfs_write+0x354/0xa70
[ 2279.651968]  ? fput_many+0x2f/0x1a0
[ 2279.652496]  ? ksys_write+0x1a9/0x260
[ 2279.653049]  ? __ia32_sys_read+0xb0/0xb0
[ 2279.653645]  __x64_sys_sendmmsg+0x99/0x100
[ 2279.654256]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2279.655003]  do_syscall_64+0x33/0x40
[ 2279.655545]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2279.656283] RIP: 0033:0x7f4820600b19
[ 2279.656824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2279.659458] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2279.660553] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2279.661583] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2279.662606] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2279.663635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2279.664655] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:16:15 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x4}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:15 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 93)

13:16:15 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0ffffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:15 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xcd010000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:15 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x28000000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:15 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x14, 0x4, 0x8, 0x20, 0x0, 0x40, 0xc1049, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x6, 0x40}, 0x20, 0x8, 0x8, 0x4, 0x40, 0x6, 0x26, 0x0, 0x1}, 0x0, 0xb, r0, 0x1)

13:16:15 executing program 1:
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
fallocate(r1, 0x3, 0x0, 0x30000000000)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r2, 0x4b4a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {0x8}}, './file0\x00'})

13:16:15 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2293.760951] netlink: 'syz-executor.6': attribute type 1 has an invalid length.
[ 2293.766873] FAULT_INJECTION: forcing a failure.
[ 2293.766873] name failslab, interval 1, probability 0, space 0, times 0
[ 2293.768722] CPU: 0 PID: 12315 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2293.769738] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2293.770946] Call Trace:
[ 2293.771355]  dump_stack+0x107/0x167
[ 2293.771900]  should_fail.cold+0x5/0xa
[ 2293.772478]  ? create_object.isra.0+0x3a/0xa20
[ 2293.773169]  should_failslab+0x5/0x20
[ 2293.773745]  kmem_cache_alloc+0x5b/0x310
[ 2293.774350]  ? mark_lock+0xf5/0x2df0
[ 2293.774919]  create_object.isra.0+0x3a/0xa20
[ 2293.775584]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2293.776334]  kmem_cache_alloc+0x159/0x310
[ 2293.776958]  skb_clone+0x14f/0x3d0
[ 2293.777494]  __skb_tstamp_tx+0x422/0x8d0
[ 2293.778104]  __dev_queue_xmit+0x1770/0x2710
[ 2293.778751]  ? find_held_lock+0x2c/0x110
[ 2293.779361]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2293.780041]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.780658]  ? lock_acquire+0x197/0x470
[ 2293.781248]  ? ip_finish_output2+0x220/0x21f0
[ 2293.781924]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2293.782704]  neigh_connected_output+0x382/0x4d0
[ 2293.783417]  ip_finish_output2+0x6f1/0x21f0
[ 2293.784064]  ? nf_hook_slow+0xfc/0x1e0
[ 2293.784657]  ? ip_frag_next+0x9e0/0x9e0
[ 2293.785245]  ? nf_hook+0x160/0x510
[ 2293.785778]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2293.786533]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2293.787275]  ? ip_fragment.constprop.0+0x240/0x240
[ 2293.787999]  ? nf_hook+0x510/0x510
[ 2293.788543]  ip_output+0x2f7/0x600
[ 2293.789081]  ip_send_skb+0xdd/0x260
[ 2293.789630]  udp_send_skb+0x6da/0x11d0
[ 2293.790235]  udp_sendmsg+0x197f/0x2170
[ 2293.790819]  ? ip_frag_init+0x350/0x350
[ 2293.791425]  ? __lock_acquire+0x1657/0x5b00
[ 2293.792071]  ? udp_setsockopt+0xc0/0xc0
[ 2293.792685]  ? mark_lock+0xf5/0x2df0
[ 2293.793254]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2293.794025]  ? SOFTIRQ_verbose+0x10/0x10
[ 2293.794629]  ? lock_chain_count+0x20/0x20
[ 2293.795261]  ? clockevents_program_event+0x14b/0x360
[ 2293.796019]  ? lock_acquire+0x197/0x470
[ 2293.796624]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2293.797227]  ? __lock_acquire+0x1657/0x5b00
[ 2293.797884]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2293.798648]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.799430]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2293.800231]  ? trace_hardirqs_on+0x5b/0x180
[ 2293.800894]  ? lock_acquire+0x1b9/0x470
[ 2293.801493]  ? find_held_lock+0x2c/0x110
[ 2293.802102]  ? __might_fault+0xd3/0x180
[ 2293.802703]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.803476]  ? sock_has_perm+0x1ea/0x280
[ 2293.804084]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2293.804852]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2293.805671]  ? __import_iovec+0x365/0x590
[ 2293.806289]  ? __import_iovec+0x458/0x590
[ 2293.806908]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2293.807683]  inet6_sendmsg+0x105/0x140
[ 2293.808264]  ? inet6_compat_ioctl+0x320/0x320
[ 2293.808930]  __sock_sendmsg+0xf2/0x190
[ 2293.809513]  ____sys_sendmsg+0x334/0x870
[ 2293.810121]  ? sock_write_iter+0x3d0/0x3d0
[ 2293.810748]  ? do_recvmmsg+0x6d0/0x6d0
[ 2293.811341]  ? find_held_lock+0x2c/0x110
[ 2293.811958]  ___sys_sendmsg+0xf3/0x170
[ 2293.812541]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2293.813222]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.813991]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2293.814652]  ? trace_hardirqs_on+0x5b/0x180
[ 2293.815315]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2293.816114]  ? finish_task_switch+0x126/0x5d0
[ 2293.816782]  ? finish_task_switch+0xef/0x5d0
[ 2293.817479]  ? __switch_to+0x572/0xf70
[ 2293.818059]  ? __switch_to_asm+0x3a/0x60
[ 2293.818661]  ? __switch_to_asm+0x34/0x60
[ 2293.819280]  ? __schedule+0x82c/0x1ea0
[ 2293.819995]  ? io_schedule_timeout+0x140/0x140
[ 2293.820691]  __sys_sendmmsg+0x195/0x470
[ 2293.821288]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2293.821925]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.822560]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2293.823291]  ? wait_for_completion_io+0x270/0x270
[ 2293.824162]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2293.824851]  ? vfs_write+0x354/0xa70
[ 2293.825404]  ? fput_many+0x2f/0x1a0
[ 2293.825953]  ? ksys_write+0x1a9/0x260
[ 2293.826521]  ? __ia32_sys_read+0xb0/0xb0
[ 2293.827143]  __x64_sys_sendmmsg+0x99/0x100
[ 2293.827774]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2293.828535]  do_syscall_64+0x33/0x40
[ 2293.829088]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2293.829838] RIP: 0033:0x7f4820600b19
[ 2293.830391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2293.833059] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2293.834185] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2293.835232] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2293.836282] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2293.837326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2293.838370] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
[ 2293.845657] netlink: 'syz-executor.6': attribute type 1 has an invalid length.
13:16:15 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2293.889694] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:16:15 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x5}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2293.958287] netlink: 'syz-executor.6': attribute type 8 has an invalid length.
13:16:15 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2293.989435] netlink: 'syz-executor.6': attribute type 8 has an invalid length.
13:16:15 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xf0ffffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2294.027046] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
13:16:15 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x2e020000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:15 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xfffff000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:15 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
openat(r0, &(0x7f0000000000)='./file0\x00', 0x20802, 0x36)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:16:15 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 94)

13:16:15 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x117}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2294.184215] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2294.207919] FAULT_INJECTION: forcing a failure.
[ 2294.207919] name failslab, interval 1, probability 0, space 0, times 0
[ 2294.209874] CPU: 0 PID: 12366 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2294.211083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2294.212581] Call Trace:
[ 2294.213077]  dump_stack+0x107/0x167
[ 2294.213765]  should_fail.cold+0x5/0xa
[ 2294.214468]  ? dst_alloc+0x9e/0x5d0
[ 2294.215145]  should_failslab+0x5/0x20
[ 2294.215846]  kmem_cache_alloc+0x5b/0x310
[ 2294.216592]  dst_alloc+0x9e/0x5d0
[ 2294.217229]  rt_dst_alloc+0x73/0x440
[ 2294.217791]  ip_route_output_key_hash_rcu+0x93d/0x2a90
[ 2294.218773]  ip_route_output_key_hash+0x18d/0x340
[ 2294.219634]  ? ip_route_output_key_hash_rcu+0x2a90/0x2a90
[ 2294.220636]  ? mark_lock+0xf5/0x2df0
[ 2294.221342]  ip_route_output_flow+0x23/0x150
[ 2294.222133]  ip_tunnel_xmit+0x70e/0x2f40
[ 2294.222902]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2294.223778]  sit_tunnel_xmit+0xef0/0x2960
[ 2294.224547]  ? lock_downgrade+0x6d0/0x6d0
[ 2294.225282]  ? ipip_rcv+0x4f0/0x4f0
[ 2294.225878]  ? skb_crc32c_csum_help+0x80/0x80
[ 2294.226685]  ? lock_acquire+0x197/0x470
[ 2294.227340]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2294.228144]  ? netif_skb_features+0x373/0xbe0
[ 2294.228883]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2294.229544]  __dev_queue_xmit+0x17ec/0x2710
[ 2294.230191]  ? find_held_lock+0x2c/0x110
[ 2294.230793]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2294.231481]  ? lock_downgrade+0x6d0/0x6d0
[ 2294.232096]  ? lock_acquire+0x197/0x470
[ 2294.232688]  ? ip_finish_output2+0x220/0x21f0
[ 2294.233362]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2294.234144]  neigh_connected_output+0x382/0x4d0
[ 2294.234847]  ip_finish_output2+0x6f1/0x21f0
[ 2294.235500]  ? nf_hook_slow+0xfc/0x1e0
[ 2294.236079]  ? ip_frag_next+0x9e0/0x9e0
[ 2294.236667]  ? nf_hook+0x160/0x510
[ 2294.237199]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2294.237954]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2294.238683]  ? ip_fragment.constprop.0+0x240/0x240
[ 2294.239417]  ? nf_hook+0x510/0x510
[ 2294.239963]  ip_output+0x2f7/0x600
[ 2294.240504]  ip_send_skb+0xdd/0x260
[ 2294.241053]  udp_send_skb+0x6da/0x11d0
[ 2294.241645]  udp_sendmsg+0x197f/0x2170
[ 2294.242233]  ? ip_frag_init+0x350/0x350
[ 2294.242831]  ? __lock_acquire+0x1657/0x5b00
[ 2294.243487]  ? udp_setsockopt+0xc0/0xc0
[ 2294.244103]  ? mark_lock+0xf5/0x2df0
[ 2294.244668]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2294.245443]  ? SOFTIRQ_verbose+0x10/0x10
[ 2294.246059]  ? clockevents_program_event+0x14b/0x360
[ 2294.246814]  ? lock_acquire+0x197/0x470
[ 2294.247429]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2294.248033]  ? __lock_acquire+0x1657/0x5b00
[ 2294.248683]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2294.249452]  ? perf_event_task_disable+0x390/0x390
[ 2294.250170]  ? lock_downgrade+0x6d0/0x6d0
[ 2294.250787]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2294.251508]  ? lock_acquire+0x197/0x470
[ 2294.252092]  ? find_held_lock+0x2c/0x110
[ 2294.252697]  ? __might_fault+0xd3/0x180
[ 2294.253285]  ? lock_downgrade+0x6d0/0x6d0
[ 2294.253903]  ? sock_has_perm+0x1ea/0x280
[ 2294.254503]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2294.255303]  ? __import_iovec+0x458/0x590
[ 2294.255923]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2294.256693]  inet6_sendmsg+0x105/0x140
[ 2294.257269]  ? inet6_compat_ioctl+0x320/0x320
[ 2294.257931]  __sock_sendmsg+0xf2/0x190
[ 2294.258509]  ____sys_sendmsg+0x334/0x870
[ 2294.259117]  ? sock_write_iter+0x3d0/0x3d0
[ 2294.259758]  ? do_recvmmsg+0x6d0/0x6d0
[ 2294.260351]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2294.261117]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2294.261915]  ? trace_hardirqs_on+0x5b/0x180
[ 2294.262562]  ___sys_sendmsg+0xf3/0x170
[ 2294.263142]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2294.263829]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2294.264490]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2294.265155]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2294.265819]  ? finish_task_switch+0x126/0x5d0
[ 2294.266471]  ? finish_task_switch+0xef/0x5d0
[ 2294.267115]  ? __switch_to+0x572/0xf70
[ 2294.267705]  ? __switch_to_asm+0x3a/0x60
[ 2294.268297]  ? __switch_to_asm+0x34/0x60
[ 2294.268903]  ? __schedule+0x82c/0x1ea0
[ 2294.269491]  ? io_schedule_timeout+0x140/0x140
[ 2294.270183]  __sys_sendmmsg+0x195/0x470
[ 2294.270780]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2294.271425]  ? lock_downgrade+0x6d0/0x6d0
[ 2294.272063]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2294.272783]  ? wait_for_completion_io+0x270/0x270
[ 2294.273500]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2294.274183]  ? vfs_write+0x354/0xa70
[ 2294.274735]  ? fput_many+0x2f/0x1a0
[ 2294.275284]  ? ksys_write+0x1a9/0x260
[ 2294.275852]  ? __ia32_sys_read+0xb0/0xb0
[ 2294.276461]  __x64_sys_sendmmsg+0x99/0x100
[ 2294.277088]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2294.277854]  do_syscall_64+0x33/0x40
[ 2294.278406]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2294.279155] RIP: 0033:0x7f4820600b19
[ 2294.279718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2294.282372] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2294.283491] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2294.284531] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2294.285571] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2294.286609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2294.287654] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:16:30 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 95)

13:16:30 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xfffff000, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x129}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x6}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xffffff7f, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000010f000000010000000000000000000000002000000020000020000000d7f4005fd7f4655f0102ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000040200"/90, 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="012e040a798b18a9b89ef89a55b2"], 0xe)

13:16:30 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x9effffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2308.846697] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[ 2308.850887] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[ 2308.873794] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
13:16:30 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xc00e0000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x500}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x7}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2308.901924] FAULT_INJECTION: forcing a failure.
[ 2308.901924] name failslab, interval 1, probability 0, space 0, times 0
[ 2308.903774] CPU: 0 PID: 12392 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2308.904765] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.905993] Call Trace:
[ 2308.906382]  dump_stack+0x107/0x167
[ 2308.906931]  should_fail.cold+0x5/0xa
[ 2308.907522]  ? create_object.isra.0+0x3a/0xa20
[ 2308.908186]  should_failslab+0x5/0x20
[ 2308.908763]  kmem_cache_alloc+0x5b/0x310
[ 2308.909360]  create_object.isra.0+0x3a/0xa20
[ 2308.910023]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2308.910761]  kmem_cache_alloc+0x159/0x310
[ 2308.911390]  dst_alloc+0x9e/0x5d0
[ 2308.911907]  rt_dst_alloc+0x73/0x440
[ 2308.912471]  ip_route_output_key_hash_rcu+0x93d/0x2a90
[ 2308.913263]  ip_route_output_key_hash+0x18d/0x340
[ 2308.913978]  ? ip_route_output_key_hash_rcu+0x2a90/0x2a90
[ 2308.914775]  ? mark_lock+0xf5/0x2df0
[ 2308.915338]  ip_route_output_flow+0x23/0x150
[ 2308.915984]  ip_tunnel_xmit+0x70e/0x2f40
[ 2308.916605]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2308.917319]  sit_tunnel_xmit+0xef0/0x2960
[ 2308.917959]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.918572]  ? ipip_rcv+0x4f0/0x4f0
[ 2308.919119]  ? skb_crc32c_csum_help+0x80/0x80
[ 2308.919784]  ? lock_acquire+0x197/0x470
[ 2308.920373]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2308.921033]  ? netif_skb_features+0x373/0xbe0
[ 2308.921705]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2308.922365]  __dev_queue_xmit+0x17ec/0x2710
[ 2308.923011]  ? find_held_lock+0x2c/0x110
[ 2308.923628]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2308.924316]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.924914]  ? lock_acquire+0x197/0x470
[ 2308.925513]  ? ip_finish_output2+0x220/0x21f0
[ 2308.926167]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2308.926960]  neigh_connected_output+0x382/0x4d0
[ 2308.927649]  ip_finish_output2+0x6f1/0x21f0
[ 2308.928307]  ? nf_hook_slow+0xfc/0x1e0
[ 2308.928870]  ? ip_frag_next+0x9e0/0x9e0
[ 2308.929465]  ? nf_hook+0x160/0x510
[ 2308.929983]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2308.930761]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2308.931476]  ? ip_fragment.constprop.0+0x240/0x240
[ 2308.932209]  ? nf_hook+0x510/0x510
[ 2308.932737]  ip_output+0x2f7/0x600
[ 2308.933283]  ip_send_skb+0xdd/0x260
[ 2308.933815]  udp_send_skb+0x6da/0x11d0
[ 2308.934407]  udp_sendmsg+0x197f/0x2170
[ 2308.934980]  ? ip_frag_init+0x350/0x350
[ 2308.935607]  ? udp_setsockopt+0xc0/0xc0
[ 2308.936193]  ? mark_lock+0xf5/0x2df0
[ 2308.936763]  ? mark_lock+0xf5/0x2df0
[ 2308.937304]  ? lock_chain_count+0x20/0x20
[ 2308.937931]  ? lock_chain_count+0x20/0x20
[ 2308.938558]  ? __lock_acquire+0x1657/0x5b00
[ 2308.939223]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2308.939816]  ? __lock_acquire+0x1657/0x5b00
[ 2308.940476]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2308.941229]  ? lock_acquire+0x197/0x470
[ 2308.941823]  ? find_held_lock+0x2c/0x110
[ 2308.942422]  ? lock_acquire+0x197/0x470
[ 2308.943020]  ? find_held_lock+0x2c/0x110
[ 2308.943624]  ? __might_fault+0xd3/0x180
[ 2308.944220]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.944825]  ? sock_has_perm+0x1ea/0x280
[ 2308.945445]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2308.946210]  ? __import_iovec+0x458/0x590
[ 2308.946844]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2308.947597]  inet6_sendmsg+0x105/0x140
[ 2308.948179]  ? inet6_compat_ioctl+0x320/0x320
[ 2308.948828]  __sock_sendmsg+0xf2/0x190
[ 2308.949409]  ____sys_sendmsg+0x334/0x870
[ 2308.949997]  ? sock_write_iter+0x3d0/0x3d0
[ 2308.950640]  ? do_recvmmsg+0x6d0/0x6d0
[ 2308.951204]  ? __lock_acquire+0x1657/0x5b00
[ 2308.951876]  ___sys_sendmsg+0xf3/0x170
[ 2308.952447]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2308.953137]  ? vmacache_find+0x55/0x2a0
[ 2308.953728]  ? lock_acquire+0x197/0x470
[ 2308.954337]  ? find_held_lock+0x2c/0x110
13:16:30 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2308.954934]  ? __might_fault+0xd3/0x180
[ 2308.955649]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.956255]  ? asm_exc_page_fault+0x1e/0x30
[ 2308.956907]  __sys_sendmmsg+0x195/0x470
[ 2308.957528]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2308.958154]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.958794]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2308.959504]  ? wait_for_completion_io+0x270/0x270
[ 2308.960224]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2308.960896]  ? vfs_write+0x354/0xa70
[ 2308.961454]  ? fput_many+0x2f/0x1a0
[ 2308.961983]  ? ksys_write+0x1a9/0x260
[ 2308.962550]  ? __ia32_sys_read+0xb0/0xb0
[ 2308.963141]  __x64_sys_sendmmsg+0x99/0x100
[ 2308.963771]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2308.964517]  do_syscall_64+0x33/0x40
[ 2308.965088]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2308.965822] RIP: 0033:0x7f4820600b19
[ 2308.966384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.969004] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2308.970135] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2308.971197] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2308.972273] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2308.973337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2308.974387] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:16:30 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xfffffffffffffd58, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="01350403c99727641a7a18d6dd11eb1042d154bc9faa0889a89abf5ccc25ed98a078aa90d44270357a9ba87b32b4b1b75302466f78aaf09f953ae466a55d011b71944d3c8564c962d3efdcf462ff34e9cd7c252f45c6952ac62d6b57507bc82450f69a1efb080fc9f0b9bab0413b426b93cc650fcc0e024128a506a2670ce76b942b0b56347a25384accdd926de9e60886aea6ec88e6112512531e1195b0052944163dfc1b84a4aa29582773d5990102f57e8e67de98a7eeb813036d1b4b7d3a992a2cb7c73d32b10626230a108195a79541b5a7dbef6dd504e884f247ebbf705df50c1ac35ae755806a993281dd4a2ef0d1547177f9239992d72b21415de4e0bfab6da0bbaf4be0410d27944167230e8cf3724d99757b406977c65ff48a23ed7204a19db4ab3d6d4198b2738969908e6b9e636924e2c727c06bf629385591ae7e4a4bd7ed1d3b05e0669427a3192665e1e172f3898da3f55587ecaaec4a74c433ce859af536b6b570e050c213588ec22f9d094274803768f354e7ded1cffb02d1d2175cea65482a55bf4d57ae02e6edba5c140df76a11d3cbc137620b8671b90e0fb5bd784b7a7e3d8660bef236316fd13469b41703a7c1f15078a79c510275e67d65d70036a99585c545d90883404d90d7d7d58fba7d5c5645037473606b6e370353b3b4274e9a5d828dedb8b9ac8dff97d7bc8a68143b3b7431941890b08c585a8bd5f8a71d0154e01043bfe563a0765eb5e72bd358047e3a947c47d4fbed8df4b69ec7691c51d45984007c8ba36eda5bc16b7e934b2f31ce5ca348132b4da3fc1d46ff4dd8d7f54213775a0bebec67d6ba7f893c351ba8f6e673724103b7cd86242819b9f1be706d5dc9bcd85bb695888a2444fdbf5f502f3d1de801f02e3bd92dde85e4b5b1039ccf1a9282874f0517429006db04de653926f3b4b01d578208989972c1cce5c2a8b699613f703e36333ffb830d7541aba8deb039ba5b81656b5364bd27cc987aab01b9e2debd96414c8d31e50378d23a8c67ade6f0eed5799c2e0c50b4f3c82933d7705d5a68f21ddeefdc99c54c61ed7b94229dbee2f0a33d93f3402e133d9462e8072d1a92a50be6c16a6ea096d515584e2b8e3c1ffccaa3157d245e845e2ba144a4fedc7b902e429c928d353e2139595ccbeb3bfc0163e77585c565e8cb99ca01dd8092421c1ef76d954023e76bae206455d53eecab98d576752ed51c7729cf8b28da965090ab3fd3bd9d95f95a3536cd5254dfc5ceba37263ecf826a00f702a2c786788f5ccd9e4352c04c0c761dfac6076f2431059950ef2fae42e0e444f961c90cdb15ff38f4fc222715b7226daf52a3e4d604a30cbccd34313ac3e521fc6bf108c77c8a1e6eaec8e5f48fc0ec6289d389dde18e6858a978972e2ece9188e316afccdda9318da925766288be896096e3f6ce147602d29b6827134389e74e3a8659cf2db4250cf2abf6e8ef048e0c0984582f8f792370bec2a117351b9a5b3157afcf89afd3a278a538a2bbdba32e16b8046a4bb39382f550b9dccf9ba3c646048498c9fc983ba3ffeddaa12340cb5f196e311e9a76aacd663c5e253b4cbf63233a38de62094ebca24986da9ab1bd4cd2fcd683dd8562de9b26bae6ceb4b93749def84e9f297ca2a4d11bb19ccf54a5ebdab2c53359eae543a0992301b9307120135b1198dc53d0786be35e88db2b6cd40b1092e3855c1c15db18d4278fcb790e7b408d9a2b97e01232f09913155e1953f2f9f6b7644c4d33ac9aa6935cbb7c1c55102ce6a6aae9b0539b0d9307b77b98c6cd245fb1c9271be643474a663ffaf823660d4aaa41cd1f759c54ef32c5fe7440b45092207971afd2c3806ab08fc6eb6215c5d0c6b1a2a4c619e970a7020818479ea4024b01aec95a2b6ae40e7b9e73126d5d6891835e8f16063dbd1737e9e4c367886c392b2ee42e0117368628d28c3301d62a8138143b06d2343a939aeaf25f5934a9061fcbe101cee5053cf6624baf7866b12022f46cd065db1f2700852385dbf9b2879f01680abae74b67d032267d1dcee42bc68026668704d2211d86475fff06a96d52c9fe4e875a87586753476a5ba03e23591ab9aad573095e5d1dcdee400e47d152d6b0949cf19116b826a0cc8155c456a79f0d7fb811c38d22c3ec418716c63795da97f23380518d69818874dbcc5c53aeec4e319e65b5fab9e2dece270a1a067775fe59398276ec9eb6073bbd3f6f01ce4156a462836ccd3a624fc943a42e296f2939d3f4e77bf98b18b8e52447d690f527252be2eaf444a55e954226e45f3b2ceb86a25a90250c51be42b3f11cad792cd725cc1e06a5428fac2bbcc27afa9a3ffbb6533bedce95c5f29ac2e909084b7fc50383bca9883452af66b5fb2bfa331673ad49a0017ee66e0509bb4ed791ed2a9eef42acde2716c6eaa0579cb7458ef82dbc848bc350918541c07f3e6210f82af5138528220c44a43a501ded3926a001f4417391a428c395a6fcc53ce037c474f6a8cb4639c0e5bca3015292b4aeaf3ceb3fa7a3bacaf4ff42d647521ff21a070e457a50bc5c7df93d8c9806be52b96fc3c86705c5f58073c85d1e5bc136b1e789a7eff24c98d506f1a9013275a3bc4e01edf14af5e0284957b860f52a4ad912207dd5e087ef337424de850984f99fb7110e69732d51343e9d81fc50718ea1094c6123f74ac3eb0bc5fef704833c26ebdba9e84c88b635087b0f40829341ac3ce4c1d03dac95d19ede393867eb550afa481f2feea0b804d3c6c1d41364bd7d92a589b4875d19b6cf52c87143bb11bd1c0fcdf159e26450e9521da12ec6387da334338eb8c657eb7c77a01ab4e76830c40bf7e16a2d5f02a6f0eac8849f5948946ec4a74eb1cb2848b92cd7beee67d6c5dc0062b392a09118e2211e2077e0752f6251c7ab76dbe87a46a2d54efc8d45e3065ccdd4d714c4d141a8e73945e1abd4296e9edb0f23529e40b69e2da3938887971e44e0846350fba7be2a56f7cc4b5b5c81a6020d8302eb36983f76bb62e0b3a912b056321559b4fc98ba5266d7a78c0543accf28270a161d6ca9066a77051608a59aa56d3661a11201bc3673850a6841800c6bb955f097584453e5b0bdb1d675b7b6b8b9a520e956c35e7f3d7c4a3220730119e2e55d636808e8b8729fea691848e345ac696a741206b98df1353d9441dbebf7ff24f4fd140fe01c2961787959886f7c875b1ddd173a8a24bd32e7f5c78fb38af361b2b20da5e5f47ed270bb42b865a9cd973a2d52747baf50dc9275b51fac41dba9677bb83abed56505d8a2ebe6dc8afc07602a3bc6e0385ef4b83af68b84f0e01cb9fe215f95205fe5e39f159cff4203d2b9f99a05f37f6567077e3063647da1691ff4fcf951df05a708369a032461cd018345c17eeb5f68d669eef923636db2af0e9740959e78a51f476b546d4971c4a99ad2743bc86b3c1c5e8fbef798e73d433d534a133431da2fd40c5633ca014be19f4750b83a7d3089cfd1534b973da8ec1a44c8dccde279dd335c4089e62f6a1623fbe56559594713a836ca3b3f2d08977430730a0a3dc91820193e292874ae342d6f0c5591735ed59e5c3b2ac61b1158fafb174fa17679c82d2f15f77d5443f8357873e1b949b2fc641644f63fc2c283678cf5c3b837c00ef8a143a6798fa52b92ba995a69850ee3a90dd67a9ea3e1e884d8cb567ac7a08eb8c332d8f6b24fe3c2a9e8e9e3357aa7795264bcebb00e2b1b722672c4e2e63c2de47f9216f71e338202151b19c8bf7bd66a8862af9a3cb67cc9e797cce7ecadb9704ac6f83a817780503f28cfe35a50f370d9f34858951747da8913696cfec5a4f6ad02d81c4a8e3fe411756a2bfd258b318dfd35d8854ecdd6e08f2ef6df103d79e404a1c95301a117dc822f33ba2069389fed580f56752d41688e6cc3d14c2ab0dc64e1ad64693987322f407dc2d48062994a95e1c99ecc86b45f3a42310fab1413f1e27fc1324250bf75cfdef2c4fa4da317115f3aa15b9d815c9a2be99c657d5e283bec2c2df87a92af51aa6cfea33a7d2e9d78b39929a7c9797792e7865c039645f625ffffc59b12557a37fa88848052e663ea130195d04ecede6207eb62bb0ac965b84848596de7a12115be79b2e2042cd4f1a085ae3b3dd4f07fce981ec25165ecaca29de0b78fc8d02bdca4e8b0fccfb7d8573a76a2afd5492ec93ef0090dd9354b2b4f11e2e07d92ced40643d45912807a866a823bdd625570d3055b2634b25e03da08948f55cbee96cc49ff369d477153796198e2ac7bfbd452018bbea5e85f1db8f048a27d30f9a9e030dce9a8744b1ff1a2bd849b66611aad97e0d795644ce1c369e61c3eeedd6bcc01e1ff5faa2f8a6cdb770a2d8c5748bc25203bd68a467c765e9d4003dab6e13f91d32fb89e564483a15d6c849cec1bc28d17e163a5a24bade10935fc5aedd56885e2982d5c61087ef9fadcebb4cbf3ff28b89977cf3ba6e2497909b20717905e6c01a7b2498c273cb0d54f31a0d9e223b71bf5887dbb791d323f4796a659ff6377a6f43cef08ce942775ab0d0a9071ba94681a89f28106bc1ae35e8c930ac4d6429054c5f88a437746c23855a55f790a01eac3676f099fad086c9856f72a15eca970e488e44c9aba56d27c2721b2db4486b94afd9682f2cbfab2d80b7b5f5524467265b1ee41f43500cbd2b5e69cf86e84268aec809096ad3086cefa06925f4038c86ed4cb3cd12f9040c6ab6de4bc7c097ac5030074828b0ef2548d5cbf1269265ebf282f9a9cf1a39f05cf6f9e872e6a42af94994cbaaebd298f9cc51aaff043efb12cf9866cea7968bd95379d1ee5149af5890fdc233ac04ab951ba93bdb8fa755bb0892f75483ee7fb654c33002dc4e960cfee36b955352a68fe834a45e1c6f1982326f66f1346d909c00d394085c07b3c3a331507cd59c2880087428af93e15ba00ecdd950751ea322d6af512af38fe9b1e2bb1d28cd0b3a9da77ba1ef2bce4eef03b61aa255b43aa6c4777f8ad0a6bc1497490ef389a0d6144f74d8e802c36b519b46fd92c419c61ae54aa2993144f803ee7396c4347e3ac4f48b471feb159809d6cfb1700306b64314f7665659c5efc2032cf16dac32095929a04b0067b40180d7454ede424f09fd088311214f4e404a8874c528d3a461c36c8187eb70b53ea24e0b93d5c6b41c5f6fddfc846d01a851579da4ad6d196a7ac72a2691fc613f9a0b89949feb2cb7846a9034fe3d8354ce6f705a6d3e57eead51b2e739200f4a2ff2632b95bb2a1ae05eb9e0cd3f8a8553dc572a3511d7cd664aee3a2c66858a9999c3b9300c836ae3dcd5241b2b1d88d8a3b93c0de815b9c3a44fb547eb1e0b1e5ab53ee82621fe449b359ded50eb16d6cabb57fdc65a3d950c646da7054ffa8b151432416ae461a6cd4680723e847c0a89bbb2bf410a029f4b818806c24691578c92bb0b2067f3851aec1bf72e975c1f0a60ca81f6dc8c25c5c64630fd580e7e16ccd896cac3f47b744754836bfc63eae8f661fe896fdfb1a30de5658865a96f2e97b8153590cfc02d3c18603de953f6bb476666de33a3bcb885c1f000e3fee51524a0adb16984214902f1e739a8c17fa153b2557f10682f5974f6c7541985d7b8094f64a73eb4d5974a35dded5b0893c4be0e07785423e731f9a8e50c3aad54fc4325c1db9da110d01ccc9b7605ee1b975c075544b818868d089333c280d8816bab1dcfec57cc0e96e4529196812b09f1b65a823adca1d6793f83ba5c7a6d593621bc9c5b66e63e78a07cc9aec913adbc658107e"], 0x1007)

13:16:30 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x9}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:30 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xffffff7f, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2309.063094] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[ 2309.153411] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[ 2309.220566] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[ 2323.272050] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
13:16:44 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 96)

13:16:44 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xf0ffffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xffffff9e, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 5:
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000400), 0x6e, &(0x7f00000006c0)=[{&(0x7f00000004c0)=""/102, 0x66}, {&(0x7f0000000680)=""/56, 0x38}], 0x2, &(0x7f0000000700)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r0=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [<r1=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x138}, 0x2000)
ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, &(0x7f0000000900)={0x4, 0x28, '\x00', 0x1, &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x1000003)
write$bt_hci(r3, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000002a40)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000540)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000280)}, 0x0)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = syz_io_uring_setup(0x3bac, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x35d}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000480)=<r10=>0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x20010, r1, 0x0)
openat(r2, &(0x7f00000001c0)='./file0\x00', 0x84040, 0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r8, &(0x7f0000000640)=@IORING_OP_WRITE={0x17, 0x0, 0x4004, @fd=r6, 0x5, &(0x7f00000005c0)="e1773a8cbfb579a32349d441bf9998a9183b42aad6d215cdfae3f7752c4b4b8eafab3f69409caefbdc95c9031ec06981264e0a0b7187534db4e30f5bbb70475cb6f4d8c725a64ed0153328dc815c1a409f1a5afacea0b662b6da741a4f1b87efbf7ea120df273f4aba2d305979418eee6999068613c5a62132c1d76065ed", 0x7e, 0x4, 0x0, {0x0, r11}}, 0x10000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000003080)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="4d56f93d97c42b39d2e64fb6c9c1d9e6213e210def802d63eb96c580bc0bb6981d1b6153fcabd3b89af27ac3fb8b533700737391ceb6bf0800"], 0x16ec}, 0x1, 0x0, 0x0, 0x88}, 0x800)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @write_sync_train_params={{0xc78, 0x9}, {0x3, 0x1f, 0x1, 0x1}}}, 0xd)
syz_io_uring_submit(0x0, r5, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x1}, 0x2)

13:16:44 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xffffff9e, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2323.305924] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2323.378280] FAULT_INJECTION: forcing a failure.
[ 2323.378280] name failslab, interval 1, probability 0, space 0, times 0
[ 2323.380178] CPU: 1 PID: 12451 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2323.381178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2323.382364] Call Trace:
[ 2323.382757]  dump_stack+0x107/0x167
[ 2323.383290]  should_fail.cold+0x5/0xa
[ 2323.383866]  should_failslab+0x5/0x20
[ 2323.384431]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2323.385155]  ? ip_tunnel_xmit+0xedf/0x2f40
[ 2323.385780]  pskb_expand_head+0x15a/0x1040
[ 2323.386396]  ? tnl_update_pmtu+0x381/0x1450
[ 2323.387041]  ip_tunnel_xmit+0xedf/0x2f40
[ 2323.387655]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2323.388347]  sit_tunnel_xmit+0xef0/0x2960
[ 2323.388961]  ? lock_downgrade+0x6d0/0x6d0
[ 2323.389560]  ? ipip_rcv+0x4f0/0x4f0
[ 2323.390090]  ? skb_crc32c_csum_help+0x80/0x80
[ 2323.390744]  ? lock_acquire+0x197/0x470
[ 2323.391319]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2323.391969]  ? netif_skb_features+0x373/0xbe0
[ 2323.392628]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2323.393289]  __dev_queue_xmit+0x17ec/0x2710
[ 2323.393922]  ? find_held_lock+0x2c/0x110
[ 2323.394512]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2323.395180]  ? lock_downgrade+0x6d0/0x6d0
[ 2323.395789]  ? lock_acquire+0x197/0x470
[ 2323.396366]  ? ip_finish_output2+0x220/0x21f0
[ 2323.397021]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2323.397789]  neigh_connected_output+0x382/0x4d0
[ 2323.398475]  ip_finish_output2+0x6f1/0x21f0
[ 2323.399114]  ? nf_hook_slow+0xfc/0x1e0
[ 2323.399689]  ? ip_frag_next+0x9e0/0x9e0
[ 2323.400270]  ? nf_hook+0x160/0x510
[ 2323.400790]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2323.401527]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2323.402241]  ? ip_fragment.constprop.0+0x240/0x240
[ 2323.402945]  ? nf_hook+0x510/0x510
[ 2323.403477]  ip_output+0x2f7/0x600
[ 2323.404009]  ip_send_skb+0xdd/0x260
[ 2323.404545]  udp_send_skb+0x6da/0x11d0
[ 2323.405125]  udp_sendmsg+0x197f/0x2170
[ 2323.405696]  ? ip_frag_init+0x350/0x350
[ 2323.406286]  ? __lock_acquire+0x1657/0x5b00
[ 2323.406910]  ? udp_setsockopt+0xc0/0xc0
[ 2323.407505]  ? mark_lock+0xf5/0x2df0
[ 2323.408078]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2323.408834]  ? SOFTIRQ_verbose+0x10/0x10
[ 2323.409425]  ? lock_chain_count+0x20/0x20
[ 2323.410037]  ? clockevents_program_event+0x14b/0x360
[ 2323.410779]  ? lock_acquire+0x197/0x470
[ 2323.411364]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2323.411966]  ? __lock_acquire+0x1657/0x5b00
[ 2323.412609]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2323.413355]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2323.414135]  ? lock_acquire+0x197/0x470
[ 2323.414708]  ? find_held_lock+0x2c/0x110
[ 2323.415300]  ? __might_fault+0xd3/0x180
[ 2323.415888]  ? lock_downgrade+0x6d0/0x6d0
[ 2323.416491]  ? sock_has_perm+0x1ea/0x280
[ 2323.417081]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2323.417854]  ? __import_iovec+0x458/0x590
[ 2323.418461]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2323.419218]  inet6_sendmsg+0x105/0x140
[ 2323.419792]  ? inet6_compat_ioctl+0x320/0x320
[ 2323.420448]  __sock_sendmsg+0xf2/0x190
[ 2323.421015]  ____sys_sendmsg+0x334/0x870
[ 2323.421608]  ? sock_write_iter+0x3d0/0x3d0
[ 2323.422226]  ? do_recvmmsg+0x6d0/0x6d0
[ 2323.422796]  ? __lock_acquire+0x1657/0x5b00
[ 2323.423437]  ___sys_sendmsg+0xf3/0x170
[ 2323.424019]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2323.424687]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2323.425337]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2323.425997]  ? lock_acquire+0x197/0x470
[ 2323.426577]  ? find_held_lock+0x2c/0x110
[ 2323.427172]  ? __might_fault+0xd3/0x180
[ 2323.427762]  ? lock_downgrade+0x6d0/0x6d0
[ 2323.428373]  ? io_schedule_timeout+0x140/0x140
[ 2323.429052]  __sys_sendmmsg+0x195/0x470
[ 2323.429640]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2323.430266]  ? lock_downgrade+0x6d0/0x6d0
[ 2323.430890]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2323.431605]  ? wait_for_completion_io+0x270/0x270
[ 2323.432308]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2323.432980]  ? vfs_write+0x354/0xa70
[ 2323.433522]  ? fput_many+0x2f/0x1a0
[ 2323.434053]  ? ksys_write+0x1a9/0x260
[ 2323.434608]  ? __ia32_sys_read+0xb0/0xb0
[ 2323.435211]  __x64_sys_sendmmsg+0x99/0x100
[ 2323.435836]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2323.436588]  do_syscall_64+0x33/0x40
[ 2323.437128]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2323.437873] RIP: 0033:0x7f4820600b19
[ 2323.438410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2323.441048] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2323.442145] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2323.443167] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2323.444206] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2323.445225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2323.446256] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:16:44 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x2}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:16:44 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, 0x0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf0}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xfffffff0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, 0x0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xfffffff0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:44 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xfffff000, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:58 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 97)

13:16:58 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000000140)="0300000000d4000f00000000000000f0cb4838a49aac9f199321489a0b99a4014feda75e8325d3fc4255e9e00f06a4709e35e96a36b31f651d2d1322f3127309771c78838afc7d369493251b527d06182cbc40f49647bccdb281b5864745f73f4326f10ea382facc", 0x68, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f00000000c0)="ed4100004300000400000000d7f4655fd7f4655f000000000000000002", 0x1d, 0x1600}], 0x1000000, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x400000, 0x1)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:16:58 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xffffffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:58 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x17b}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:58 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, 0x0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:58 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:58 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0xffffffff, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:58 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xffffff7f, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2337.691413] FAULT_INJECTION: forcing a failure.
[ 2337.691413] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.693245] CPU: 1 PID: 12497 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2337.694236] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2337.695412] Call Trace:
[ 2337.695803]  dump_stack+0x107/0x167
[ 2337.696336]  should_fail.cold+0x5/0xa
[ 2337.696898]  should_failslab+0x5/0x20
[ 2337.697453]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2337.698176]  ? ip_tunnel_xmit+0xedf/0x2f40
[ 2337.698782]  ? trace_hardirqs_on+0x5b/0x180
[ 2337.699419]  pskb_expand_head+0x15a/0x1040
[ 2337.700040]  ? tnl_update_pmtu+0x381/0x1450
[ 2337.700670]  ip_tunnel_xmit+0xedf/0x2f40
[ 2337.701269]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2337.701958]  sit_tunnel_xmit+0xef0/0x2960
[ 2337.702574]  ? lock_downgrade+0x6d0/0x6d0
[ 2337.703177]  ? ipip_rcv+0x4f0/0x4f0
[ 2337.703704]  ? skb_crc32c_csum_help+0x80/0x80
[ 2337.704359]  ? lock_acquire+0x197/0x470
[ 2337.704931]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2337.705573]  ? netif_skb_features+0x373/0xbe0
[ 2337.706222]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2337.706866]  __dev_queue_xmit+0x17ec/0x2710
[ 2337.707500]  ? find_held_lock+0x2c/0x110
[ 2337.708097]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2337.708762]  ? lock_downgrade+0x6d0/0x6d0
[ 2337.709358]  ? lock_acquire+0x197/0x470
[ 2337.709932]  ? ip_finish_output2+0x220/0x21f0
[ 2337.710589]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2337.711346]  neigh_connected_output+0x382/0x4d0
[ 2337.712033]  ip_finish_output2+0x6f1/0x21f0
[ 2337.712658]  ? nf_hook_slow+0xfc/0x1e0
[ 2337.713223]  ? ip_frag_next+0x9e0/0x9e0
[ 2337.713792]  ? nf_hook+0x160/0x510
[ 2337.714311]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2337.715055]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2337.715763]  ? ip_fragment.constprop.0+0x240/0x240
[ 2337.716473]  ? nf_hook+0x510/0x510
[ 2337.717002]  ip_output+0x2f7/0x600
[ 2337.717525]  ip_send_skb+0xdd/0x260
[ 2337.718060]  udp_send_skb+0x6da/0x11d0
[ 2337.718634]  udp_sendmsg+0x197f/0x2170
[ 2337.719202]  ? ip_frag_init+0x350/0x350
[ 2337.719791]  ? __lock_acquire+0x1657/0x5b00
[ 2337.720407]  ? udp_setsockopt+0xc0/0xc0
[ 2337.721001]  ? mark_lock+0xf5/0x2df0
[ 2337.721547]  ? mark_lock+0xf5/0x2df0
[ 2337.722092]  ? lock_chain_count+0x20/0x20
[ 2337.722696]  ? lock_acquire+0x197/0x470
[ 2337.723279]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2337.723872]  ? __lock_acquire+0x1657/0x5b00
[ 2337.724511]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2337.725252]  ? mark_held_locks+0x9e/0xe0
[ 2337.725848]  ? trace_hardirqs_on+0x5b/0x180
[ 2337.726467]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2337.727248]  ? lock_release+0x98/0x680
[ 2337.727810]  ? find_held_lock+0x2c/0x110
[ 2337.728398]  ? __might_fault+0xd3/0x180
[ 2337.728977]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2337.729719]  ? sock_has_perm+0x1ea/0x280
[ 2337.730302]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2337.731036]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2337.731834]  ? __import_iovec+0x2e4/0x590
[ 2337.732427]  ? __import_iovec+0x458/0x590
[ 2337.733021]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2337.733768]  inet6_sendmsg+0x105/0x140
[ 2337.734329]  ? inet6_compat_ioctl+0x320/0x320
[ 2337.734965]  __sock_sendmsg+0xf2/0x190
[ 2337.735525]  ____sys_sendmsg+0x334/0x870
[ 2337.736114]  ? sock_write_iter+0x3d0/0x3d0
[ 2337.736718]  ? do_recvmmsg+0x6d0/0x6d0
[ 2337.737284]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2337.738030]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2337.738792]  ? trace_hardirqs_on+0x5b/0x180
[ 2337.739418]  ___sys_sendmsg+0xf3/0x170
[ 2337.739982]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2337.740645]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2337.741285]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2337.741932]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2337.742569]  ? finish_task_switch+0x126/0x5d0
[ 2337.743208]  ? finish_task_switch+0xef/0x5d0
[ 2337.743835]  ? __switch_to+0x572/0xf70
[ 2337.744394]  ? __switch_to_asm+0x3a/0x60
[ 2337.744971]  ? __switch_to_asm+0x34/0x60
[ 2337.745559]  ? __schedule+0x82c/0x1ea0
[ 2337.746125]  ? io_schedule_timeout+0x140/0x140
[ 2337.746798]  __sys_sendmmsg+0x195/0x470
[ 2337.747373]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2337.748000]  ? lock_downgrade+0x6d0/0x6d0
[ 2337.748611]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2337.749304]  ? wait_for_completion_io+0x270/0x270
[ 2337.749994]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2337.750658]  ? vfs_write+0x354/0xa70
[ 2337.751192]  ? fput_many+0x2f/0x1a0
[ 2337.751716]  ? ksys_write+0x1a9/0x260
[ 2337.752268]  ? __ia32_sys_read+0xb0/0xb0
[ 2337.752861]  __x64_sys_sendmmsg+0x99/0x100
[ 2337.753464]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2337.754201]  do_syscall_64+0x33/0x40
[ 2337.754732]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2337.755459] RIP: 0033:0x7f4820600b19
[ 2337.755996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2337.758590] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2337.759671] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2337.760690] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2337.761696] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2337.762711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2337.763718] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:16:59 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2337.768266] EXT4-fs (loop5): bad geometry: block count 256 exceeds size of device (11 blocks)
13:16:59 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x300}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:59 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x4}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:59 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 98)

[ 2337.869753] EXT4-fs (loop5): bad geometry: block count 256 exceeds size of device (11 blocks)
13:16:59 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xf, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:16:59 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:59 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:16:59 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xffffff9e, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2337.973893] FAULT_INJECTION: forcing a failure.
[ 2337.973893] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.975769] CPU: 1 PID: 12518 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2337.976795] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2337.978013] Call Trace:
[ 2337.978409]  dump_stack+0x107/0x167
[ 2337.978948]  should_fail.cold+0x5/0xa
[ 2337.979511]  ? skb_clone+0x14f/0x3d0
[ 2337.980071]  should_failslab+0x5/0x20
[ 2337.980633]  kmem_cache_alloc+0x5b/0x310
[ 2337.981237]  skb_clone+0x14f/0x3d0
[ 2337.981771]  __skb_tstamp_tx+0x422/0x8d0
[ 2337.982376]  __dev_queue_xmit+0x1770/0x2710
[ 2337.983023]  ? find_held_lock+0x2c/0x110
[ 2337.983623]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2337.984320]  ? lock_downgrade+0x6d0/0x6d0
[ 2337.984929]  ? lock_acquire+0x197/0x470
[ 2337.985516]  ? ip_finish_output2+0x220/0x21f0
[ 2337.986182]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2337.986957]  neigh_connected_output+0x382/0x4d0
[ 2337.987654]  ip_finish_output2+0x6f1/0x21f0
[ 2337.988302]  ? nf_hook_slow+0xfc/0x1e0
[ 2337.988879]  ? ip_frag_next+0x9e0/0x9e0
[ 2337.989466]  ? nf_hook+0x160/0x510
[ 2337.990002]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2337.990748]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2337.991470]  ? ip_fragment.constprop.0+0x240/0x240
[ 2337.992187]  ? nf_hook+0x510/0x510
[ 2337.992723]  ip_output+0x2f7/0x600
[ 2337.993252]  ip_send_skb+0xdd/0x260
[ 2337.993799]  udp_send_skb+0x6da/0x11d0
[ 2337.994386]  udp_sendmsg+0x197f/0x2170
[ 2337.994961]  ? ip_frag_init+0x350/0x350
[ 2337.995552]  ? __lock_acquire+0x1657/0x5b00
[ 2337.996192]  ? udp_setsockopt+0xc0/0xc0
[ 2337.996795]  ? mark_lock+0xf5/0x2df0
[ 2337.997363]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2337.998132]  ? SOFTIRQ_verbose+0x10/0x10
[ 2337.998742]  ? clockevents_program_event+0x14b/0x360
[ 2337.999492]  ? lock_acquire+0x197/0x470
[ 2338.000096]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2338.000695]  ? __lock_acquire+0x1657/0x5b00
[ 2338.001350]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2338.002117]  ? perf_event_task_disable+0x390/0x390
[ 2338.002838]  ? lock_downgrade+0x6d0/0x6d0
[ 2338.003450]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2338.004172]  ? lock_acquire+0x197/0x470
[ 2338.004755]  ? find_held_lock+0x2c/0x110
[ 2338.005356]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2338.006126]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2338.006927]  ? trace_hardirqs_on+0x5b/0x180
[ 2338.007568]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2338.008369]  ? sock_has_perm+0x1ea/0x280
[ 2338.008966]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2338.009725]  ? _copy_from_user+0xd9/0x1b0
[ 2338.010339]  ? __sanitizer_cov_trace_pc+0x4e/0x60
[ 2338.011064]  ? __import_iovec+0x458/0x590
[ 2338.011675]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2338.012455]  inet6_sendmsg+0x105/0x140
[ 2338.013042]  ? inet6_compat_ioctl+0x320/0x320
[ 2338.013707]  __sock_sendmsg+0xf2/0x190
[ 2338.014287]  ____sys_sendmsg+0x334/0x870
[ 2338.014884]  ? trace_hardirqs_on+0x5b/0x180
[ 2338.015518]  ? sock_write_iter+0x3d0/0x3d0
[ 2338.016155]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2338.016968]  ? ___sys_sendmsg+0xd2/0x170
[ 2338.017578]  ___sys_sendmsg+0xf3/0x170
[ 2338.018157]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2338.018835]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2338.019495]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2338.020167]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2338.020832]  ? finish_task_switch+0x126/0x5d0
[ 2338.021487]  ? finish_task_switch+0xef/0x5d0
[ 2338.022145]  ? __switch_to+0x572/0xf70
[ 2338.022721]  ? __switch_to_asm+0x3a/0x60
[ 2338.023322]  ? __switch_to_asm+0x34/0x60
[ 2338.023937]  ? __schedule+0x82c/0x1ea0
[ 2338.024520]  ? io_schedule_timeout+0x140/0x140
[ 2338.025215]  __sys_sendmmsg+0x195/0x470
[ 2338.025806]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2338.026443]  ? lock_downgrade+0x6d0/0x6d0
[ 2338.027074]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2338.027795]  ? wait_for_completion_io+0x270/0x270
[ 2338.028509]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2338.029196]  ? vfs_write+0x354/0xa70
[ 2338.029748]  ? fput_many+0x2f/0x1a0
[ 2338.030287]  ? ksys_write+0x1a9/0x260
[ 2338.030854]  ? __ia32_sys_read+0xb0/0xb0
[ 2338.031463]  __x64_sys_sendmmsg+0x99/0x100
[ 2338.032087]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2338.032846]  do_syscall_64+0x33/0x40
[ 2338.033396]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2338.034152] RIP: 0033:0x7f4820600b19
[ 2338.034713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2338.037408] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2338.038525] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2338.039573] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2338.040619] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2338.041667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2338.042706] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:16:59 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x5}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 99)

13:17:14 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x500}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xfffffff0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400000, 0x12)
flock(r1, 0x5)
write$P9_RREADLINK(r0, &(0x7f00000000c0)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)
write$bt_hci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="01b72e040affffffff42cdd4ffff00"], 0xe)

13:17:14 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x8}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x6}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x14, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x28, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:14 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0xffffffff, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2353.081129] FAULT_INJECTION: forcing a failure.
[ 2353.081129] name failslab, interval 1, probability 0, space 0, times 0
[ 2353.083022] CPU: 0 PID: 12555 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2353.084058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2353.085272] Call Trace:
[ 2353.085676]  dump_stack+0x107/0x167
[ 2353.086233]  should_fail.cold+0x5/0xa
[ 2353.086814]  ? skb_clone+0x14f/0x3d0
[ 2353.087380]  should_failslab+0x5/0x20
[ 2353.087951]  kmem_cache_alloc+0x5b/0x310
[ 2353.088583]  skb_clone+0x14f/0x3d0
[ 2353.089130]  __skb_tstamp_tx+0x422/0x8d0
[ 2353.089750]  __dev_queue_xmit+0x1770/0x2710
[ 2353.090406]  ? find_held_lock+0x2c/0x110
[ 2353.091005]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2353.091687]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.092306]  ? lock_acquire+0x197/0x470
[ 2353.092891]  ? find_held_lock+0x2c/0x110
[ 2353.093497]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2353.094272]  ip_finish_output2+0x1514/0x21f0
[ 2353.094936]  ? ip_frag_next+0x9e0/0x9e0
[ 2353.095515]  ? nf_hook+0x160/0x510
[ 2353.096048]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2353.096804]  __ip_finish_output.part.0+0x5f3/0xb50
13:17:14 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2353.097525]  ? ip_fragment.constprop.0+0x240/0x240
[ 2353.098360]  ? nf_hook+0x510/0x510
[ 2353.098901]  ip_output+0x2f7/0x600
[ 2353.099435]  ip_local_out+0xb4/0x1a0
[ 2353.099996]  iptunnel_xmit+0x591/0x8b0
[ 2353.100581]  ip_tunnel_xmit+0x1248/0x2f40
[ 2353.101211]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2353.101912]  sit_tunnel_xmit+0xef0/0x2960
[ 2353.102533]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.103143]  ? ipip_rcv+0x4f0/0x4f0
[ 2353.103674]  ? skb_crc32c_csum_help+0x80/0x80
[ 2353.104336]  ? lock_acquire+0x197/0x470
[ 2353.104909]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2353.105558]  ? netif_skb_features+0x373/0xbe0
[ 2353.106214]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2353.106858]  __dev_queue_xmit+0x17ec/0x2710
[ 2353.107499]  ? find_held_lock+0x2c/0x110
[ 2353.108101]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2353.108766]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.109369]  ? lock_acquire+0x197/0x470
[ 2353.109950]  ? ip_finish_output2+0x220/0x21f0
[ 2353.110606]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2353.111385]  neigh_connected_output+0x382/0x4d0
[ 2353.112093]  ip_finish_output2+0x6f1/0x21f0
[ 2353.112728]  ? nf_hook_slow+0xfc/0x1e0
[ 2353.113292]  ? ip_frag_next+0x9e0/0x9e0
[ 2353.113877]  ? nf_hook+0x160/0x510
[ 2353.114399]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2353.115154]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2353.115862]  ? ip_fragment.constprop.0+0x240/0x240
[ 2353.116579]  ? nf_hook+0x510/0x510
[ 2353.117116]  ip_output+0x2f7/0x600
[ 2353.117663]  ip_send_skb+0xdd/0x260
[ 2353.118198]  udp_send_skb+0x6da/0x11d0
[ 2353.118776]  udp_sendmsg+0x197f/0x2170
[ 2353.119353]  ? ip_frag_init+0x350/0x350
[ 2353.119937]  ? __lock_acquire+0x1657/0x5b00
[ 2353.120582]  ? udp_setsockopt+0xc0/0xc0
[ 2353.121192]  ? mark_lock+0xf5/0x2df0
[ 2353.121752]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2353.122507]  ? SOFTIRQ_verbose+0x10/0x10
[ 2353.123112]  ? clockevents_program_event+0x14b/0x360
[ 2353.123853]  ? lock_acquire+0x197/0x470
[ 2353.124441]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2353.125040]  ? __lock_acquire+0x1657/0x5b00
[ 2353.125680]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2353.126448]  ? perf_event_task_disable+0x390/0x390
[ 2353.127158]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.127763]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2353.128477]  ? lock_acquire+0x197/0x470
[ 2353.129060]  ? find_held_lock+0x2c/0x110
[ 2353.129665]  ? __might_fault+0xd3/0x180
[ 2353.130249]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.130863]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2353.131640]  ? sock_has_perm+0x1ea/0x280
[ 2353.132247]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2353.133024]  ? __import_iovec+0x458/0x590
[ 2353.133627]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2353.134389]  inet6_sendmsg+0x105/0x140
[ 2353.134963]  ? inet6_compat_ioctl+0x320/0x320
[ 2353.135616]  __sock_sendmsg+0xf2/0x190
[ 2353.136195]  ____sys_sendmsg+0x334/0x870
[ 2353.136797]  ? sock_write_iter+0x3d0/0x3d0
[ 2353.137406]  ? do_recvmmsg+0x6d0/0x6d0
[ 2353.137983]  ? __lock_acquire+0x1657/0x5b00
[ 2353.138633]  ___sys_sendmsg+0xf3/0x170
[ 2353.139207]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2353.139889]  ? _raw_spin_unlock_irq+0x1f/0x30
13:17:14 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x600}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2353.140548]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2353.141273]  ? lock_acquire+0x197/0x470
[ 2353.141857]  ? find_held_lock+0x2c/0x110
[ 2353.142460]  ? __might_fault+0xd3/0x180
[ 2353.143045]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.143648]  ? io_schedule_timeout+0x140/0x140
[ 2353.144347]  __sys_sendmmsg+0x195/0x470
[ 2353.144934]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2353.145573]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.146196]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2353.146904]  ? wait_for_completion_io+0x270/0x270
[ 2353.147596]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2353.148282]  ? vfs_write+0x354/0xa70
[ 2353.148829]  ? fput_many+0x2f/0x1a0
[ 2353.149368]  ? ksys_write+0x1a9/0x260
[ 2353.149928]  ? __ia32_sys_read+0xb0/0xb0
[ 2353.150525]  __x64_sys_sendmmsg+0x99/0x100
[ 2353.151137]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2353.151890]  do_syscall_64+0x33/0x40
[ 2353.152443]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2353.153191] RIP: 0033:0x7f4820600b19
[ 2353.153728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2353.156352] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2353.157450] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2353.158469] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2353.159484] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2353.160516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2353.161553] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:17:14 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x7}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2353.244278] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:17:29 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) (fail_nth: 100)

13:17:29 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
execveat(r0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)=[&(0x7f00000000c0)='\xff\xff\xff\xff\xff\xff', &(0x7f0000000140)='\xff\xff\xff\xff\xff\xff', &(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='@$\x00'], &(0x7f0000000380)=[&(0x7f0000000300)='(\',\\\x00', &(0x7f0000000340)='ext4\x00'], 0x400)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:17:29 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xc0, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x700}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xf, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2368.366372] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2368.408041] FAULT_INJECTION: forcing a failure.
[ 2368.408041] name failslab, interval 1, probability 0, space 0, times 0
[ 2368.409941] CPU: 1 PID: 12610 Comm: syz-executor.0 Not tainted 5.10.214 #1
[ 2368.410949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2368.412156] Call Trace:
[ 2368.412550]  dump_stack+0x107/0x167
[ 2368.413089]  should_fail.cold+0x5/0xa
[ 2368.413646]  ? skb_clone+0x14f/0x3d0
[ 2368.414192]  should_failslab+0x5/0x20
[ 2368.414748]  kmem_cache_alloc+0x5b/0x310
[ 2368.415348]  skb_clone+0x14f/0x3d0
[ 2368.415873]  __skb_tstamp_tx+0x422/0x8d0
[ 2368.416479]  __dev_queue_xmit+0x1770/0x2710
[ 2368.417118]  ? find_held_lock+0x2c/0x110
[ 2368.417707]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2368.418375]  ? lock_downgrade+0x6d0/0x6d0
[ 2368.418979]  ? lock_acquire+0x197/0x470
[ 2368.419557]  ? find_held_lock+0x2c/0x110
[ 2368.420167]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2368.420935]  ip_finish_output2+0x1514/0x21f0
[ 2368.421583]  ? ip_frag_next+0x9e0/0x9e0
[ 2368.422167]  ? nf_hook+0x160/0x510
[ 2368.422688]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2368.423429]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2368.424161]  ? ip_fragment.constprop.0+0x240/0x240
[ 2368.424870]  ? nf_hook+0x510/0x510
[ 2368.425407]  ip_output+0x2f7/0x600
[ 2368.425936]  ip_local_out+0xb4/0x1a0
[ 2368.426488]  iptunnel_xmit+0x591/0x8b0
[ 2368.427084]  ip_tunnel_xmit+0x1248/0x2f40
[ 2368.427716]  ? ip_md_tunnel_xmit+0x1840/0x1840
[ 2368.428426]  sit_tunnel_xmit+0xef0/0x2960
[ 2368.429045]  ? lock_downgrade+0x6d0/0x6d0
[ 2368.429653]  ? ipip_rcv+0x4f0/0x4f0
[ 2368.430182]  ? skb_crc32c_csum_help+0x80/0x80
[ 2368.430841]  ? lock_acquire+0x197/0x470
[ 2368.431426]  ? __dev_queue_xmit+0x1c2/0x2710
[ 2368.432071]  ? netif_skb_features+0x373/0xbe0
[ 2368.432743]  dev_hard_start_xmit+0x1cb/0x6f0
[ 2368.433397]  __dev_queue_xmit+0x17ec/0x2710
[ 2368.434040]  ? find_held_lock+0x2c/0x110
[ 2368.434635]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2368.435308]  ? lock_downgrade+0x6d0/0x6d0
[ 2368.435914]  ? lock_acquire+0x197/0x470
[ 2368.436507]  ? ip_finish_output2+0x220/0x21f0
[ 2368.437177]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2368.437954]  neigh_connected_output+0x382/0x4d0
[ 2368.438649]  ip_finish_output2+0x6f1/0x21f0
[ 2368.439292]  ? nf_hook_slow+0xfc/0x1e0
[ 2368.439869]  ? ip_frag_next+0x9e0/0x9e0
[ 2368.440467]  ? nf_hook+0x160/0x510
[ 2368.441002]  ? __ip_finish_output.part.0+0xb50/0xb50
[ 2368.441746]  __ip_finish_output.part.0+0x5f3/0xb50
[ 2368.442463]  ? ip_fragment.constprop.0+0x240/0x240
[ 2368.443178]  ? nf_hook+0x510/0x510
[ 2368.443709]  ip_output+0x2f7/0x600
[ 2368.444250]  ip_send_skb+0xdd/0x260
[ 2368.444788]  udp_send_skb+0x6da/0x11d0
[ 2368.445369]  udp_sendmsg+0x197f/0x2170
[ 2368.445946]  ? ip_frag_init+0x350/0x350
[ 2368.446537]  ? __lock_acquire+0x1657/0x5b00
[ 2368.447170]  ? udp_setsockopt+0xc0/0xc0
[ 2368.447776]  ? mark_lock+0xf5/0x2df0
[ 2368.448351]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2368.449110]  ? SOFTIRQ_verbose+0x10/0x10
[ 2368.449706]  ? lock_chain_count+0x20/0x20
[ 2368.450319]  ? clockevents_program_event+0x14b/0x360
[ 2368.451062]  ? lock_acquire+0x197/0x470
[ 2368.451651]  udpv6_sendmsg+0x1b4e/0x2af0
[ 2368.452253]  ? __lock_acquire+0x1657/0x5b00
[ 2368.452894]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2368.453642]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2368.454400]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2368.455179]  ? trace_hardirqs_on+0x5b/0x180
[ 2368.455825]  ? lock_acquire+0x1b9/0x470
[ 2368.456414]  ? find_held_lock+0x2c/0x110
[ 2368.457014]  ? __might_fault+0xd3/0x180
[ 2368.457592]  ? lock_downgrade+0x6d0/0x6d0
[ 2368.458199]  ? sock_has_perm+0x1ea/0x280
[ 2368.458789]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 2368.459562]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2368.460346]  ? trace_hardirqs_on+0x5b/0x180
[ 2368.460972]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2368.461758]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2368.462517]  inet6_sendmsg+0x105/0x140
[ 2368.463082]  ? inet6_compat_ioctl+0x320/0x320
[ 2368.463733]  __sock_sendmsg+0xf2/0x190
[ 2368.464310]  ____sys_sendmsg+0x334/0x870
[ 2368.464904]  ? sock_write_iter+0x3d0/0x3d0
[ 2368.465520]  ? do_recvmmsg+0x6d0/0x6d0
[ 2368.466097]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2368.466854]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2368.467630]  ? trace_hardirqs_on+0x5b/0x180
[ 2368.468278]  ___sys_sendmsg+0xf3/0x170
[ 2368.468848]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2368.469518]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2368.470171]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2368.470825]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2368.471477]  ? finish_task_switch+0x126/0x5d0
[ 2368.472122]  ? finish_task_switch+0xef/0x5d0
[ 2368.472767]  ? __switch_to+0x572/0xf70
[ 2368.473328]  ? __switch_to_asm+0x3a/0x60
[ 2368.473919]  ? __switch_to_asm+0x34/0x60
[ 2368.474515]  ? __schedule+0x82c/0x1ea0
[ 2368.475100]  ? io_schedule_timeout+0x140/0x140
[ 2368.475780]  __sys_sendmmsg+0x195/0x470
[ 2368.476375]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2368.477003]  ? lock_downgrade+0x6d0/0x6d0
[ 2368.477628]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2368.478330]  ? wait_for_completion_io+0x270/0x270
[ 2368.479028]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2368.479702]  ? vfs_write+0x354/0xa70
[ 2368.480246]  ? fput_many+0x2f/0x1a0
[ 2368.480788]  ? ksys_write+0x1a9/0x260
[ 2368.481343]  ? __ia32_sys_read+0xb0/0xb0
[ 2368.481941]  __x64_sys_sendmmsg+0x99/0x100
[ 2368.482557]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2368.483308]  do_syscall_64+0x33/0x40
[ 2368.483848]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2368.484602] RIP: 0033:0x7f4820600b19
[ 2368.485146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2368.487792] RSP: 002b:00007f481db76188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2368.488907] RAX: ffffffffffffffda RBX: 00007f4820713f60 RCX: 00007f4820600b19
[ 2368.489933] RDX: 000000000000002f RSI: 0000000020004d00 RDI: 0000000000000003
[ 2368.490962] RBP: 00007f481db761d0 R08: 0000000000000000 R09: 0000000000000000
[ 2368.491995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 2368.493036] R13: 00007ffc9110a83f R14: 00007f481db76300 R15: 0000000000022000
13:17:29 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x2}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xec0, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x9}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x900}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="012e040affffffffffff00000000a12c84f3895708079c989490a66b5507ded5c30abebdd2beb8b01458c7c38c5c071aedd3b6c12c475cadb820f9958a696915af65aea599a6f921c36ddde90d67a7f14d0caf0bbb14a8c1e762ec8c28752a964bc559c94b36d80088f0b079"], 0xe)

13:17:29 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x14, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:29 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x3}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x28, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

13:17:45 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x33fe0, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(r0, &(0x7f0000000000)='./file0\x00', 0x4901, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:17:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x4}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 1:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xec0}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2384.250156] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
13:17:45 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2384.282147] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
13:17:45 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = dup(0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2384.320722] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:17:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x5}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x1}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xf6}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:17:45 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = dup(0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf00}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf0}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x6}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2384.509633] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
13:17:45 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xc0, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x7b01}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2, 0x0)

13:17:45 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x200003a4, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = dup(0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2384.592606] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
13:17:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x7}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x18b}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xc00e}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:45 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xec0, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:59 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x300}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:59 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x3, 0x0)

13:17:59 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:59 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x33fe0, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:59 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x9}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:17:59 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x7ffff000, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:17:59 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
mount(&(0x7f0000000140)=@filename='./file1/file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='ufs\x00', 0x1, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x1000, 0x0, &(0x7f0000000140), 0x220002, &(0x7f00000002c0)={[{@shortname_win95}, {@utf8no}], [{@smackfstransmute={'smackfstransmute', 0x3d, '\xff\xff\xff\xff\xff\xff'}}, {@smackfsroot={'smackfsroot', 0x3d, '.'}}, {@permit_directio}, {@seclabel}, {@fsname}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@obj_type={'obj_type', 0x3d, 'ext4\x00'}}, {@obj_role={'obj_role', 0x3d, 'ext4\x00'}}, {@context={'context', 0x3d, 'system_u'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
mount$cgroup2(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x1, &(0x7f0000000440)={[{}, {@memory_localevents}, {@subsystem='io'}, {@subsystem='hugetlb'}, {@memory_localevents}, {}, {@memory_localevents}, {@memory_recursiveprot}, {@memory_recursiveprot}], [{@smackfsroot={'smackfsroot', 0x3d, '\xff\xff\xff\xff\xff\xff'}}]})
fallocate(r0, 0x3, 0x0, 0x30000000000)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r1 = openat(r0, &(0x7f0000000380)='./file0\x00', 0x185020, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000))
fallocate(r2, 0x3, 0x0, 0x30000000000)
write$bt_hci(r2, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:17:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2398.274922] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2398.303551] cgroup2: Unknown parameter 'io'
[ 2398.309180] cgroup2: Unknown parameter 'io'
13:18:13 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xfffffdef, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
dup(r0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x4, 0x0)

13:18:13 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0xf}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x34000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x500}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x200003a4, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 5:
ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f00000002c0)={{0xe0, 0x7}, 0x100, './file0\x00'})
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r2, 0x4b4a, 0x0)
copy_file_range(r2, &(0x7f00000000c0)=0xfffffffffffff800, r1, &(0x7f0000000140)=0x8, 0xa0, 0x0)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x103000, 0x100)

13:18:13 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
dup(r0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2412.455254] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:18:13 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x5, 0x0)

13:18:13 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x600}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x80000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x328, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:13 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x6, 0x0)

13:18:13 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x480900, 0x89854b39d08874e7)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0xe)

[ 2412.766686] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:18:27 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
socketpair(0x11, 0x6, 0x6, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2000)
sendmsg$nl_generic(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000003080)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="4d56f93d97c42b39d2e64fb6c9c1d9e6213e210def802d63eb96c580bc0bb6981d1b6153fcabd3b89af27ac3fb8b533700737391ceb6bf0800"], 0x16ec}, 0x1, 0x0, 0x0, 0x88}, 0x800)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc9, 0x3f}}}, 0x7)
socketpair(0x11, 0x6, 0x6, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2000)
sendmsg$nl_generic(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000003080)=ANY=[@ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="4d56f93d97c42b39d2e64fb6c9c1d9e6213e210def802d63eb96c580bc0bb6981d1b6153fcabd3b89af27ac3fb8b533700737391ceb6bf0800"], 0x16ec}, 0x1, 0x0, 0x0, 0x88}, 0x800)
setsockopt$bt_hci_HCI_FILTER(r3, 0x0, 0x2, &(0x7f0000000000)={0x6d, [0x1000, 0x5], 0x7}, 0x10)

13:18:27 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x400300}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x7, 0x0)

13:18:27 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x7ffff000, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
dup(r0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r1, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x700}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x2}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2426.427228] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:18:27 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf0ffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, 0x0, 0x0)

13:18:27 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x900}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x3}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x8, 0x0)

13:18:27 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x8000, 0x93)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
r3 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x2100, 0x0)
execveat(r3, &(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[&(0x7f0000000180)='\xff\xff\xff\xff\xff\xff', &(0x7f00000001c0)='ext4\x00', &(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='ext4\x00'], &(0x7f0000000480)=[&(0x7f0000000380)='\x00', &(0x7f00000003c0)='-+\x00', &(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='$:^\x00'], 0x400)
r4 = syz_mount_image$msdos(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0xffff, 0x1, &(0x7f00000015c0)=[{&(0x7f00000005c0)="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", 0x1000, 0x3f}], 0x4c0020, &(0x7f0000001600)={[{@nodots}, {@fat=@dos1xfloppy}, {@nodots}, {@fat=@quiet}, {@dots}, {@dots}, {@nodots}, {@dots}, {@nodots}], [{@measure}, {@euid_lt={'euid<', 0xee00}}, {@pcr={'pcr', 0x3d, 0x39}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]})
faccessat2(r4, &(0x7f00000016c0)='./file0\x00', 0x0, 0x200)
ftruncate(r2, 0x1000003)
write$bt_hci(r2, &(0x7f0000000580)=ANY=[@ANYBLOB='\x00'/14], 0xe)
fcntl$lock(r1, 0x0, &(0x7f00000004c0)={0x2, 0x1, 0x80000001, 0x100000001})

13:18:27 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x2, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0xfffffdef, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:27 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, 0x0, 0x0)

13:18:41 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x1000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:41 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, 0x0, 0x0)

13:18:41 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x328, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:41 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xec0}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x4}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:41 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
openat(r0, &(0x7f0000000500)='./file0\x00', 0x2100, 0x144)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
fallocate(r1, 0x3, 0x0, 0x30000000000)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r2 = openat(r1, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
syz_mount_image$nfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x5, 0x4, &(0x7f0000000480)=[{&(0x7f0000000140)="5970bf045dd2f76eced0d05fd3d124a05e945d9d5f72816936da44ff5bbb57fe997aff8c9f5ef28690518d1c736f315a19c833c551653eeab2e4c1c675d980deda478ddd63a0172e93d4a0fc2536dde6c7091459570033643ab70f323625784c43eb0ddd5fdd4433a92a5dcb02f07220fb95879cf769a398ad066db98f0a901945ad5ffe7340f8aa7906a999b5c156bea1fc931f499ae72e2b3582a60c8f5b", 0x9f, 0x4}, {&(0x7f00000002c0)="d8e628993c71def08d1c400635a604851d1eb780ee9c368e4a779817c0c7833df0d1306929266457f42c16ce335dcd30823995d0af5fb00523b62e57c6333622d6a0e02c79ffff66d33d32ec8cd875a19e6ad09ad77b4b09e8c99eb3d475c63a5d69db9c1f8731b7efe88bc8a587528707e54084073572879d6f8dc03fea4ee922e4d9e8cf32e1268f84c362c9f27b99812ffd7ffe29aa4e2e0a07fc51ddd70ca8a5cd4e3e9dfbca647919c323c88e9355330d68", 0xb4, 0x1ff}, {&(0x7f0000000380)="0afc5ea66fabb0b38455e6d58eb8f98f907ddf6a03ae101171849915b6060b9f62de896207e23274a141aa245050691b7ec4e23303b60e3ede8089ec29106a929b7bc7e49def5bc8cc55b375bfa1fdefd6dda05717b3936d9331f784d7b9e56c7ab4bca8e6aaab21862e63a0fce85f2021932c43bdb86588b652d4587fb24d72e39407ac342af1a90d7e1f63331cdc8b081262f14c4da189c5a2b274ca27298225f1e1c0cf", 0xa5, 0x9}, {&(0x7f0000000440)="ddf49d933e37628ccb39de84c808f327842318dc7c19899b417de85d6126", 0x1e, 0x2a2}], 0x800, &(0x7f00000005c0)={[{'!#'}, {')[k!^-!'}, {'\xff\xff\xff\xff\xff\xff'}, {'&,\'\"@/'}, {'\xff\xff\xff\xff\xff\xff'}, {'\xff\xff\xff\xff\xff\xff'}, {}, {'\xff\xff\xff\xff\xff\xff'}], [{@appraise}, {@uid_gt={'uid>', 0xee01}}, {@fowner_lt={'fowner<', 0xee00}}, {@pcr={'pcr', 0x3d, 0x26}}]})
ftruncate(r2, 0x1000003)
write$bt_hci(r2, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:18:41 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x9, 0x0)

13:18:41 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x3, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2440.372320] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:18:41 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

13:18:41 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x2000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:41 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf00}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x5}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:41 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0xa, 0x0)

13:18:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x6}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:55 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x4, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:55 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:55 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

13:18:55 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0xb, 0x0)

13:18:55 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000000)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000200)={{'\x00', 0x2}, {0x401}, 0x4, 0x0, 0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000180)="405e8d71c13379977efd29931683edc739191a98fd523b765fa0530df6426e2b8322ca68ce6ea2d4d21bf55b571f176a471cc074fb7a00dca48391dbedd8c4f78b37d958f8c8f6b67f12b7a6de0ad251ab6351e3992c10a0270ca3c11d99202c162b7f28837af27331", 0x69, 0x0, &(0x7f00000005c0)={0x2, 0x157, {0x0, 0xc, 0x8e, "9aabcb6d1a8aec347526b4e40763343ba934ed9625cb1ae498bb7ebf4232c1fc265e25503b6c8f81c3d55c21d47b1bcb89a625a9b53240666f7c21015395acab15b38fcc92d09b88a40400c063b3e5835794fd74d796bdcceb792f83c1ccea641716fed4a6ecd87cab233ecaaad7bdeb1dd4c2ff01208f55a598c350789e3c46919797100a284dd74c197b2b269e", 0xbc, "ba28a69f893fcca4325f0f11b6146d647b3c37ad9b1c75077406eb156961b5a65cb102f3aacb88b716e6d078eae6968233d03591b3c6081cdecf8b626e2561dfb5a768add96a11486e796dd17344b12249493b9c21a1c90e809a835a4a6215b22ca87128b1afdd5a94c61b3c4d4b540fb922de65e255e55c431c668df6d0b713f5451436341ca37b5c8a41f0687a0b5e78ec7361d11b257b172ac225bc369344da0b2a9ab239459f4141ca439194e1c718f46875a18790418da2ef83"}, 0xaf, "cc0c5e5650ba445f9848c47340ca6bf3eff244ed671e549f90d6a32c6b22448e0bba70cfa6965b4754dadcd876229cfaa5a17fdc09e2c3fa32b0452600ab82088c57eb4835a8e4d58d8926b21861f6a821bf0c69656bb25acb9342c85776ab25ba44713c6f06df4473a2828dbe2ce5f3e25bffad479f803a5c6f846166910e2453424b9491a0ba4b37d367b86337f9432c6bf198a8c6606fd9d7f435a36e22e7b1f181d7bafdd09a38480ca92e99dd"}, 0x212})
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000002c0)={{0xcc, 0x4b, 0x9, 0x3be, 0x39d, 0x7, 0x213, 0xa0}, "622a5c3660b2419c2b77ccc8ac3bcf3bc9ab8f3b0dc095d320e0c7f918d740f2f3c0cc3ed00bb8909787a168015f2c52e3d14fcde394be3520c3f91120ef8167e7318fee1ba4b79e10d3ca643c4f65ffe5cb81833e4faf3dc413d18bc69d95f767996ea6d60dc032ce31a9572c7a19b740d0", ['\x00', '\x00']}, 0x292)
openat(r0, &(0x7f0000000580)='./file1\x00', 0x208100, 0x60)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x880, 0x121)
write$bt_hci(r1, &(0x7f0000000800)=ANY=[@ANYBLOB="012e040afffffffeffff00000000fbe8d3117fbb76d831838aacd48529b8783877bead0d3afe30b5ba0fb135f848ffee652fc82d71969552456b2ac8d1a58dcfd0a1308e873fa72befc4c6c3d96dabe502e8dcb1c0f8f2981decf093fac29a1fcd088e813d66b729c46a4530930d6e7858482da02f982732838dea6f83289221ebae55058b31189520e202eac918af38fa4b9eb8c52f47a585be140461a22c662853412eb3a10b7a15c878805d318e27727c15dc2c79540ade3d017026b60c714c19439589d15a701015f2b8c11fc6c1586804a3deff2fc1ac48c00f90020848b2de2f4a6be4d9e2a59cc9072284ece3e38ad67a"], 0xe)

13:18:55 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x8b01}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2453.968439] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
13:18:55 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0xc, 0x0)

13:18:55 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x4000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:18:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

13:18:55 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xc00e}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2454.043675] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
13:18:55 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x5, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:18:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x7}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2454.104877] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)!
[ 2454.105752] EXT4-fs (loop5): group descriptors corrupted!
13:18:55 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000ddff00000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x9d}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff2932d8a1ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x3fa, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0x5, 0x5, &(0x7f00000015c0)=[{&(0x7f00000005c0)="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", 0x1000, 0x80000001}, {&(0x7f00000002c0)="11cf963fa0c28b40d41d7abf613a3342b2e61908505a4a892429cce933e92862ecd0bf2077c9ede651f36e461d4b7ea52dea23c22559fa79e0b876cdfdb7c86247eeee379374872e13abb718bb6ce1b7a711c1a083eaf2e342cd0e8da530ca37c8bca402a51f0ddc4cdd39a2b63b0ff49e48c25416eea6dce4ce868a1ddd15201fdbf07db3d05636378659c71e1a6c7567c15d7ebc13d7c6547e6975fc63b46e47ed91a666a4041a99c0a0ff068a5a8fe35a3a1e627f2d89ef6f183f9d5bfedfd10893bbc8062ab3f4f7f1bc244bd48cb0f58bebc7d38cda8da5", 0xda, 0x8001}, {&(0x7f00000003c0)="bc3b97ca854e71967ccbb31ca23d92737a8b4c83c6d5671ab29fb8d6fde53818a832dcda646bf6544106636acc8cdad4f7d5876bf3c7f097e25303eee87919d22786f4215939a58f4bd30ab7601566dfd6971ef676aee5bfb76ac9e6a2d8e27c08e9a26ba6385d28f502cda98edda6ff002c72f46b6ae8b3b8a2d4125b2d976cf5a905eeb264f2a00948790497c215b7043dbcde81e531656ecd97578f356d0f440c84d7524061be5fa6af5b5ff9dcfefe874f542f49cbbd648fb38c0288ad6a0ddde1f2f79511f38f3915bb5f8a49871961555fbbee891c1f869b7332f380b057a5200ecdf69a840a3944e72a912b7b5e562b9b72b61864", 0xf8, 0x400}, {&(0x7f0000000140)="33f57f81eede761a2d69b1d00c273d5cbff2cf31a1ee273650889d779d98b93369921803dda676efd850c3b4054a52966219c5da577eba5c7f626d4d7b85c198f478d4ccf0e770806d0d4bcaff69a7ac750d503468df8c8a280cb85a534ae1824f0ecdfa6550114534e797272a989c61f11b38f863a1b04bdac0a7", 0x7b, 0x3}, {&(0x7f00000004c0)="b3c989e4a814f3d516c44247a0bc4ff48e13dc30dbd4f271dcf16781362ecd2ba23074547783ba4c3d8579592f349d07fdb70ab72fbb176f11a34ee71392720f7e68da01e379d0716b3313494dedf7cfc534c5a49e99c0034c831c2f4c2d386f31ac98282cd35a968f127ab5d5c7464bfdf39b7d24a2e84e65070682a92f2eac62d2f810df83e75ea387eb05716b8e0abbd3ff5853737ee1d7f9bd9ecea301c40d69f241ed2dc0ab1780d1d8b71bb3961b0773f6e5134bd7", 0xb8, 0xad}], 0x2000000, &(0x7f0000001b00)=ANY=[@ANYBLOB="62736464662c6d696e5f62617463685f74696d653d9814303030303030303030303030303030322c8a6572726f72733d72656d6f756e742d726f2c6175746f5f64615f616c6c6f633d3078303030303030303030303030303030392c64656c616c6c6f632c61626f72742c6e6f6175746f5f64615f616c6c6f632c6d6561737572652c00"])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r2, 0x4b4a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000001640)={{0x1, 0x1, 0x18, <r3=>r2, {0x6}}, './file1\x00'})
ftruncate(r1, 0x1000003)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000001680)={{0x1, 0x1, 0x18, <r4=>r0}, './file2\x00'})
write$bt_hci(r4, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r5 = syz_open_dev$ttys(0xc, 0x2, 0x1)
write(r2, &(0x7f0000001bc0)="6a2bedc7cc573ecc78785cb2b7b839af997fb4e37803a4f4ef63aa023a81d0da0137771a2b87db09a0123c00b2e318ff0d19e3e3e302d9e2e60c3df72b47007c52506044fddd1bab7372c51e36cc811cd5ab02ada9db10ff35fe7cdb7bce0335d6f18cfb47de53baf0ac53946fe3de83983e10c0091fb24be8a6c94d824674292036b33430b6ed1296e91d4aea381a45be10749984254bda8fa0f2b7ca2029349c72c356343981324feadb7a410e7bd9f2c71de2a65599bfb51051c52780061bfd9cfaa4c284a1b159261fc0d1f316a59cac3a", 0xd3)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f00000001c0)={0x0, 0x0, 0x2, 0x9, 0x10, &(0x7f0000001700)="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"})

[ 2454.120231] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[ 2454.136753] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)!
[ 2454.137584] EXT4-fs (loop5): group descriptors corrupted!
13:18:55 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x2, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

13:19:08 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x6, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(0xffffffffffffffff, 0x8010661b, &(0x7f0000000000))

13:19:08 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x5000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0xd, 0x0)

13:19:08 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x8}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x3, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x34000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2467.284610] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:19:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

13:19:08 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x6000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x9}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x80000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x7, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0xe, 0x0)

13:19:08 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x4, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:08 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000540)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000280)}, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x9)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000003)
write$bt_hci(r2, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

[ 2467.474210] EXT4-fs (loop5): bad geometry: block count 256 exceeds size of device (11 blocks)
[ 2467.501618] EXT4-fs (loop5): bad geometry: block count 256 exceeds size of device (11 blocks)
13:19:22 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
fallocate(r1, 0x3, 0x0, 0x30000000000)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
openat(r1, &(0x7f0000000000)='./file0\x00', 0x104102, 0x20)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:19:22 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x7000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x5, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0xf, 0x0)

13:19:22 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

13:19:22 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x8, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x400300}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2480.905229] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:19:22 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x200, 0x1)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:19:22 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x6, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x9000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, 0x0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf0ffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x10, 0x0)

[ 2481.072634] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:19:22 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x9, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chroot(&(0x7f0000000000)='./file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:19:22 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x1000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, 0x0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xa, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x2000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x7b010000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:22 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x1cd}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2481.332008] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:19:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x300}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x7, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x9effffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xb, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x11, 0x0)

13:19:36 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, 0x0, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x5, &(0x7f0000000500)=[{&(0x7f00000002c0)="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", 0x222, 0x400}, {&(0x7f0000000080)="030000000400000005000000d4000f", 0xf, 0x6}, {&(0x7f00000005c0)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="e943002000040000d7f4006565000000000000ff0702", 0x16, 0x1600}, {&(0x7f0000000a00)="c8814878b86721a76244be89ce9f3636c194c78f5a8abcaccbd902d2cea11975f82cb539419f74232dccc7678d2bb028e0fe99d2eb4e3e8156e7f0fc9767ab967b7062b6471e333fc50dc2dd84282abf7384482b578048d45a53c55eb8e547a3a8c13c7a9253c30c8165840ad47fd73aa3486601aaf0083a65ab03ab7ece32e939c2380cdcfff82c2c526c90001ca65734e0ee9e243a67453ee32c026b1a17551a9615b6fc8f8932f63ce7d957c4c3f2ffb87e25daefa40aa19b7e81569afb0a4c6886b6ac565204f97771d5a91b6d7cc4cb7c8cfa9f986908b87938c879787be5de97259d95375962fca4b37ce3502a2e", 0x117, 0x3f000000000000}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
fallocate(r1, 0x3, 0x0, 0x30000000000)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r2, 0x4b4a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f00000001c0)=ANY=[@ANYBLOB="010500000100000018000000", @ANYRES32=<r3=>r2, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r4, 0x4b4a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, r4, {r0}}, './file0\x00'})
setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)=@ng={0x4, 0x9, "ba667f5cd2a3c88f5992ce"}, 0xd, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x102)
ftruncate(r5, 0x1000003)
write$bt_hci(r5, &(0x7f0000000580)={0x1, @inquiry={{0x401, 0x5}, {"81f860", 0x6, 0x90}}}, 0x9)

[ 2494.888574] EXT4-fs (loop5): VFS: Found ext4 filesystem with unknown checksum algorithm.
13:19:36 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x0, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x4000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xc00e0000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x500}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2494.995878] EXT4-fs (loop5): VFS: Found ext4 filesystem with unknown checksum algorithm.
13:19:36 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x12, 0x0)

13:19:49 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x13, 0x0)

13:19:49 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x8, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x600}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:49 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xc, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:19:49 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x0, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:49 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x5000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf0ffffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:49 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
lsetxattr$security_ima(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)=@sha1={0x1, "36c7627697ba270a61c7b404e5e7209a11ef70ba"}, 0x15, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
renameat2(r1, &(0x7f0000000000)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00', 0x6)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000580)={<r2=>0x0, <r3=>0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}], 0x0, "46dacd8396fe92"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000052240)={0x0, ""/256, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000052440)={<r5=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000053640)={0x0, ""/256, 0x0, <r6=>0x0})
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r7, &(0x7f0000000040)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)="10", 0xffd0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000008c0)="7f", 0x1}], 0x1}}], 0x28, 0x8080)
ioctl$BTRFS_IOC_TREE_SEARCH(r7, 0xd0009411, &(0x7f0000000940)={{<r8=>0x0, 0x1c000000000, 0x7ff, 0x2, 0xfffffffffffffe00, 0x8, 0x1, 0x5, 0x8000, 0x9, 0xc1b8, 0x101, 0x5, 0x2, 0x779}})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={<r9=>0x0, ""/256, <r10=>0x0, <r11=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000580)={<r12=>r11, <r13=>r10, "66811f68e0c440bba4bcf609493241b2512dbb6769ef1fdb21219441b9d2937255c56ea8b443729c72bc47cf6386f73b7ce88432ac6f99b63a93b89e7443b46a773671dded77dc24ba79debef1df5ffcd9e2222930e25f8b7e1873aae1853d7d55b7b3b64a43657809e8ea816519bc0c7323593b9e24a473e537db27b2a3ba9b30d958d7ff8d4867d47df99ca9958a196ce0c3c2c20e2a72af42aafe94c107a043d58527121953dfabf2d3ba6f3e7b2f09c47a4a55c3f5a3e68724037035d781567270a828be9bbe626a85ac9fe77bfa461f8903fcd4986a3dcc6fa6ec88fc174630b23dd02e3cf61e2117f78c9d99aa7daf6f8a7d6c4a01ad17f50051be2848", "53e73264eba58c5de5d2384abbe8dd8ea72be01bfcd6daa041050a23a5ec27d5dcf0aed87f9bcc869c6ebf1c3630de884b54dd6680e1dea34f661675f984828459321f42fb83d749067850004e9da3375748fa74a4330a66e3ea1e62f2f6413aef353e78ed2acf544d3beb96eefde8336ba9c02208396979ec975179883dacee433aefb6ff1cd41b6438d2f32e0763cdc310e834afb6b92ba385e602882f705da688e37726aef9cc058a02dab68133c46f77e2355193c18fc3c0d70c5856ca61d344026973f15aa81b370a08537ef3733f3c6e5ca3c7b5de9386956019ec0bba0cd387dd3f63606989591987a9dfb27d9225a164158997325d0ef88eae9e1fc00645611ce229cf3e40de15b3798048876412e5224b27b51f15785fc3f6dd8af730312e558319274b8ada98580edfb7097b11502fce5a5abc504db249764eef116b808513d550660c186ed0f5f4921fb7b6cc0529c1eb72438455c1f667d0bd0b171b89b519612913b0152cd1b420b2a9a4df55199a0ebe110d1fcf5eebb46b91e7ae1c5c95c48038dd738f8cf670c2de9bb3d3a6f092d5738fa7ed3d6a657841bb3bed0dee2895781d82e4e2dc6b51998e88e86ff53f21a4ae8ac780306d35e90eb2dc5a3f3a7d43f5dd7ce3807cb00600f7e8754eabcc815bbef1a5382cd7ca73cc85d53020c051882911aecdf9b0ce7c1bfdfa8d820d5efd4b60bacb7e64d98fac78810f085c51a19b89289772196915c93a0503694ed2af76b6960aecf0f1af22ada485b6ac62befdf35a0916678df405ca99925089cd3812d7b09e3f91f4daa94d464df0725249ede75cc626be7a8ed7cb87c0ed46675ed79618746c44729fe831f1cf4e485815bd9f7cdf455f6437f736858cf3026b18ba39d1bddbf58e9952b7d4b566955b80cc3c058fca3cb7e6c5159c3e7367d09ef3e8881179f51c10baf5cf29c8dcdbebdfa73cda0d9ccf8ab5af9240f88f78633be5d7d91da541cfcc01d59ac4936edf9920b67d19a1a093cfd4e594a8b369da465604212c6af340f0ade89223c631ba2db120ac9cfa9bda5b00358cea4c63d66f2b99dd3d575657609224a8874f12e80025173bfe43d35072e1ca14d097201178a8e27e62d4ecad1833aef65d12690ab97e0a15fd60302d1e7e516c3a9440e8535d0d4615d173607be209fcf2b91227519a808f51bc24197c0d63d0e522cf60427c95fae6e6c4bff0f4adb0902b8746738b1098bcf3a884850b7d18856d5ed07580965a693c8f95654cba9fb33f8c46b01347b074e5709fe982852e0f23e5a83215b3547edca8386bd9ebeda5807f3e6fe9dd1b3030abe916e3b7ba9c0b6130acd60f0c9719b3eb136bc8f3690b3f8e8f0d99f88bc6492024e59be459d5a08eaff70c6be9aa884faf2b69a915e191dd6ad34c75e30a06a714969e7a679756d8a76b1c8524deb5d6c868ef5e216369e6bb5207052fd7e5df3fcf8763ca2bfd9db080558571e851862dcd200491138dfd8e5b285f2e68d5e4968d8259c3df6d28fc5fb636ecc7d3fcb3f4af712c8b1d69f9012b07f7e34d8e5e76708c0a50b75d880b65fff32b4cd092fd1c6b2c36c36bea6a1308144ffc8ef9f6f717fe63dbfdfc0a95fc89ada3cb322a9033c5e72b5bc4cf8aadc1f730955fffde0a2881779e1d61b2874269bf1aec2fd075a1616cd3908edcd912f86a8003f39ad8330cde56d5875d495fa2d0941a07b20502f4211ed029b6546bfc50aa2299f8bcf6d524fac760cb74ed195f9cd8f99a027ab4556ccbb486d6a8a0914e654b6add10e68084c6f2e4c66a001bc09de3bf665642833680e4452a21f4686b865ba8e7ed9ac6a5cb932b25aa71a7b1e0146a4cf6390b96bd66fe6f26117b215a1262c8b8fbeed354937d55ca22a8c5927e20a620f4999bd91c0b523188a22efde8809abd90628c9593df695e4e3aad21831ff7db1d39b8839f476342c77cbeb15d12ed034c483c13cde875dc01fd14c1a8ec5529686d957b061f935cb9dbc24a8396cbc705cf7fb9d2169f7e3558ac7869fbd1c43aa9c9399ef0034366833c275000b59870c2ae4f2589c3c0d6b85b74b0a32a04bb5252e1e5201a3d082755a09720377361c5969e67842091fb92b6f7dc38abfb821bd40d0f1040595eb9481e5d28aa25605d87827e0905b350d9fd2750390f5d9025ef6ea30d15f616e932a4559d5c72b873300c8ff0dd44d4df7cd74f4f12f22d2855b2648bb6ecf492cc967cf9c32197c8ba8ec9d1e71aaf612a4dc4bc77aa49d858a6a0086160d0cabc5b31f8873d76cd4106f6a23031e75f6b97ec47a2fd26761ede9d980e40432d797da8e6e923d8bae939d925b84b944da98cd262a3009049d6983c2c17ddb1e693a24302b03497906af4323d0c5b2fb58eb6f9f5c256e56ec880e4d90e82ccc4b722e8f506217c9831d59e9de32e8f36163a43bb2ceb5cdcad19632d9d12bc64b2516cc8a28ddfb84f5c77e2aac8e1d45a7f31cae51f9fbc8a6629144518c291f2b5d5e7612d72213936c09653a91978a678eed3c90b9234ed165f581bfd1dd1dcf0c1286c1c3ce6fa77cced6db8c7ab033a565aa05193d6435ac3e45cd9957f0215cf0b45e71627f0b67dd979d04b916ac5317e73787704936f14a07988abfdc676b7a2cc5e2ace9e4a8b6773617c9067a01b984fcac1ad4d254c21c3259953e5c63fd3353cc4cb41b109c24280e7f40e8ee7f4dd232f6f774f37484cc9c7b5a7bcee9a1a9fef639d691592f63986777812c2e922a5ce336a8600856f94fd5eb3773794b252b971035b604d375cbd7ae53a42e0d1245b351bd11c02e0aaaa4ee7734c31be793398ef7a01d80a9f10d1265a3ec1f20bfb7434567b0a3e63a4a31edd15fc92eaee1e765c7dc8937a716e095bb1a6ac9cd63c5ad726c3d9b92d56a0f678a36c3ace4184139f2218f2b579458d94eb2c286e8ec8e098e62b76df1c4c9b5a8ece01172a75aadee376586c4b76de4d7b07c703eb35ffc7be32d78a94b0c8eddba4d4d6ff8712791a53ca61a92416afc7005c83193c4258a05d8a4aae34bc3d770a083df1badc1629659804152a351552c66265197ea63cc0ae3712b38b8b88ab1674ebeafd41211e62fb2bf1036c7865456478470a3e7276f2c60343d2a90b4a2799720f3a602930b656f369f59fbfd991d9c9d74fa0f46f8e7b8a37f78e212b03a9de446ef4f6d44e75f754dab9d5f0314ec30a302ba619b5bb85a474695ceef68a9b6669669387656e19335918d3d8537759b79f5a368b4b603f2891f151b8c828340811f87509f269ef4390e3b2a58fc8167b5ae7413d35d55667cab25636790be0beea3fc242af0d4a3a9c7d663fad6dbea1909ebf24fb38e95e014cc6afa979e83c21f5961a674c50300d9f9cb7e73708c316e66a9417719b3d9ae63e1ce33c437e900830c65825354ee88b17dec89dde804b7dc17203fa18072afa405a3add8a56cffb7fb691fac87c79bc09fb238e797f5a12e19ba70ef8f167ba0f45c46f32169295a5e6d86f566be3ee415b14e846bf358681ec554fa9d92f3573f41656a50b88596337ef766f98c5df83ff4f33185694a63d429e152b9f11c954f08f21b2607445be9d533c32fdb637537e94c4bd05ec69eb031c63cdccaa90ac852b0ce95d13ffa86ee708da2463d3d122dc235d50d92dfb55b49db8d6b6dc15701ec36006f55cbf4bdc45a67dc20874484175801514654a01a553b06817b179f92a9c8c34fe0d66529f6ca7f2b9b3f3724b80b6421448b96fd394a2f027864308f2b5788cd7b5098387cdeae1cb2ed26a4452ca0c5e28ef5c3c384181e9431ae5e0dfc7542a2a6037cb70468ee5787648223dc9c05696b9b28e1b8f78446798aed0f98e0092d32c356608b71d0716810fa247886f59eb360370221e8b2720654c6352da009c4bb0e7855a65d40e458739567c6f23b2c519126e012afa244d8a99733a1d1598b6c59f3ec9062e0c892f99540768bc9fe6bcb163577f05a7c1817b1806d3f766169aa1590fccc26b696a3e5ff5e338fd076f36e9713fd2b284ffd5ccbb68cc45d00249cbacf293908ccd47bfe1ce91329c75750762e91be71ef76ad2dddbea7ba8edaf70bf860a80ea8acc7183532b8f3498b1b2de9538e40b6cbc9b7f88c73b8952abd9c2d832d4d92bd2d00830d37418f33e58de35b49321654c762510b54c216a9f698772ddfe5082c8539e8158f3ea4e5b6fb4ce48dbac281fc20a7aebb5ecb021fede4c9c17e01e7fe5d8bda4e6fc6844a6014551044632654be6c519778ab18e28a67107163fff2ee942d2257d5dbeb3e19d6190ce4f9fc117e1d23f1f317baa0c377ea3b72d49ae28ecba77277a516cae36ba6ee91bcef308871efb5245cd9420bac262f3e91c96645ec5097ee802f0f103e9fcf8de5d809404006c91613e5eac580a05b135844e09e412fc728213a15ef64c035ce57c5c68724242d7f039c9b139609f523b9d8b2e90e3c85367ab09133d8c319b2d70b6d85ae0662b37a280ba8d02f80cb62e49dff9d062f536de074992998f0fe94a4a96310f262f3363d084ff5bf8bd0769a6c1f73a241b962310f21af08a8f7849ad64dfd37f665a3cedc817a788fcce1e739f784d8e336f5b83b6a1cf73225be911355e65945af07fef1190e31080d6b177b716f2244167e6eec76a275b4a3125df0eb196fd4fde958924282b47094497c1ffe0a128d6d9e409c69bb0c20a4fdc19a8b7ec4c4a54afb8746554c2846b2b713a91f678e688493db73e46ea8359357fe93e5f62542ecf874a56d7f7417f18b4fd0327b231ab73ad60d6532e533ccff78926faaab23722516a6525588c8b7fd064d12fe22994a19d20303f0761d4b6b59101884adeee090519df00f79b066bcfabbc92de6e9a6e8bf2fa5fb57d0c8cfa0448c61532f77faab33b25291bdd300a2c64c341c2a5a96a326e1a4216b4723c849ce2b6cd084693d0792571751a44ba30b80b62b4ff0cefcb5d508b93688abaf3283f8918861b35468ed4a44d4e2db9196531d9ad4d2ed8cd47457732e522289cc8cb3e45ac065075394826abcdf9787d8f0a89e79e3a053df27007f3316459cc7acb571486fae3e81238c8a329cfc2f2655bd349b29856babab75908b7d07657ffaa6e02981772e328465c2a82871fc1bc63ddbf12e2b124ace7a646e1412f95d04346e4ad5580e4de7a0b5c9deaf8e4449e222504a3d08825d30e745b7e875783cc8127f628c158e39333f07d6b1a14570b0632e1defa0803dbf8d6f987ffd3ac29243facf91ae4fdff11ea015b95df174438984598dea0ff3e820f973a987c6fa69a31fc6e5ba4920e6d7db43fa0cc6765351d781259d05caac19ee5d01d14101e369a567fc67dce565c42c1b16ab3c38a34bff78d64c7df1de4"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {0x0, r11}], 0x0, "46dacd8396fe92"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000053840)={0x100, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {0x0, r5}, {}, {}, {}, {0x0, r6}, {0x0, r11}], 0x5, "bfdaa6d2e94059"})
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:19:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xfffff000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2508.090196] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:19:49 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x6000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:19:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x700}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0x900}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x0, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x14, 0x0)

13:20:02 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x9, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4a, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000002c0)={0x4, 0xfffffffffffffffb, 0x0, 0x800, 0x6, [{0x4, 0x100, 0x8000}, {0x7ff, 0x3cdb, 0x7, '\x00', 0xf8f}, {0x280, 0x40, 0x7, '\x00', 0x330f}, {0x81, 0x8, 0x92, '\x00', 0x100}, {0x7, 0x50, 0x0, '\x00', 0x88}, {0x8001, 0x800, 0x0, '\x00', 0x685}]})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x13)
setxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)={0x0, 0xfb, 0xbf, 0x83731909472cd3d7, 0x40, "6a90d1652dbb5659a08ad348cdc8b713", "b9b13c5b9d4f852d083a0c1b5f3b172c2f5622908c5bd81234a274e1f3d9456a92d71fcfd7a383bee707e0a12c52dc3867acc051d14611e6dad52143749d405dd956d81b828d2626c64e3291602113a830152eca069cd1f7c51ac575bcc5d50393b2ec55d2d00ffdad3294886f4db8068e6171bc3b1ed216b02829bd8d989a077c0d98556c9341598c00c7757d5a4af73838fff6afb24e809c3516d7ca1c2e5002b2a32908e26b8f9285"}, 0xbf, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:20:02 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xffffff7f}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xd, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x7000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xffffff9e}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xec0}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2521.253144] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:20:02 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xe, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x9000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x15, 0x0)

13:20:02 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xfffffff0}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:02 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xa, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x16, 0x0)

13:20:16 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf00}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xb, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf000000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x44083, 0x8}, 0x18)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x897216db574bd34, 0x48)
ftruncate(r0, 0x1000003)
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000540)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000280)}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4, 0x4000, @fd_index=0x5, 0x1ff, 0x0, 0x0, 0x10, 0x0, {0x6}}, 0x7fff)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:20:16 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xffffffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x3}, @void}}}, 0x24}}, 0x0)

[ 2535.436851] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2535.453373] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2535.461345] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
13:20:16 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x10}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x28, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x8b010000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xc00e}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4a, 0x0)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f00000000c0)={'syztnl0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x2f, 0x4, 0x12, 0x1, 0x69, @loopback, @local, 0x8056, 0x10, 0xbe, 0x7fffffff}})
write$bt_hci(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="012e040affffffffffff000000006f75e8631cfab3d2e9cc4f78617e"], 0xe)

[ 2535.559916] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
13:20:16 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xc, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x17, 0x0)

[ 2535.566820] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
13:20:16 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x2}, @void}}}, 0x24}}, 0x0)

13:20:16 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xcd01}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2535.657005] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:20:31 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x9effffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xf000}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x18, 0x0)

13:20:31 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x5}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xd, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x9, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
utimes(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0))
ftruncate(0xffffffffffffffff, 0x1000003)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

[ 2550.260575] EXT4-fs (loop5): bad geometry: block count 256 exceeds size of device (11 blocks)
[ 2550.283782] EXT4-fs (loop5): bad geometry: block count 256 exceeds size of device (11 blocks)
13:20:31 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x6}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x24f, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xc00e0000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{0x1, 0x0, 0xffff}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xfffffe01}}, './file0\x00'})
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = openat(r0, &(0x7f0000000740)='./file0\x00', 0x80, 0x1e4)
openat(r4, &(0x7f0000000780)='./file0\x00', 0x400000, 0x10)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0xf5)
lsetxattr$security_selinux(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), &(0x7f0000000340)='system_u:object_r:ppp_device_t:s0\x00', 0x22, 0x2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'sit0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'vxcan1\x00'})
ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000140)={@ipv4, 0x0, r5})
connect(r1, &(0x7f0000000140)=@can={0x1d, r5}, 0x80)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x1000003)
write$bt_hci(r6, &(0x7f0000000580)=ANY=[@ANYBLOB="010e040affffffffff7e9d0e2128"], 0xe)
creat(&(0x7f0000000380)='./file0\x00', 0x11)

13:20:31 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x19, 0x0)

13:20:31 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x8}, @void}}}, 0x24}}, 0x0)

13:20:31 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xe, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2550.490017] netlink: 'syz-executor.3': attribute type 8 has an invalid length.
[ 2550.498606] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2550.504701] netlink: 'syz-executor.3': attribute type 8 has an invalid length.
13:20:31 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1a, 0x0)

13:20:31 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x3}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2550.575717] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2550.583830] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2550.610537] kauditd_printk_skb: 49 callbacks suppressed
[ 2550.610557] audit: type=1400 audit(1712496031.932:144): avc:  denied  { relabelto } for  pid=13427 comm="syz-executor.5" name="file0" dev="loop5" ino=17 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:ppp_device_t:s0 tclass=file permissive=1
[ 2550.652397] audit: type=1400 audit(1712496031.974:145): avc:  denied  { write } for  pid=13427 comm="syz-executor.5" name="file0" dev="loop5" ino=17 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:ppp_device_t:s0 tclass=file permissive=1
[ 2550.655765] audit: type=1400 audit(1712496031.974:146): avc:  denied  { open } for  pid=13427 comm="syz-executor.5" path="/syzkaller-testdir875615541/syzkaller.oEs4J0/340/file0/file0" dev="loop5" ino=17 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:ppp_device_t:s0 tclass=file permissive=1
13:20:51 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x9}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf0ffffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r1, 0x4b4a, 0x0)
r2 = syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0xf8, 0x1, &(0x7f00000001c0)=[{&(0x7f00000003c0)="4de01bf5418e004be81c34b1ba115e9d0c81dc8348387983d0e7d752ee10d501e33f080749ea653dafab93ac37eb599abdb184ab797ad20855a0fbfa60180df4dfe4bccf544ac1e11c85831019e00ab80d48959106ed7b6886ec3056449193bb9a507b57b098a6aaf961fe94bc5ede8faae2897d01cd1db04b06129e902683c1579985a5f9ff287d", 0x88, 0xf1a}], 0x80004, &(0x7f0000000480)={[{@size={'size', 0x3d, [0x36, 0x34, 0x2d, 0x2d, 0x33, 0x23, 0x30]}}, {@mpol={'mpol', 0x3d, {'interleave', '=relative', @void}}}, {@mode={'mode', 0x3d, 0xc0}}, {@huge_within_size}, {@huge_always}, {@nr_inodes={'nr_inodes', 0x3d, [0x30, 0x33, 0x6b]}}, {@size}], [{@obj_user={'obj_user', 0x3d, '\'\\]\\[#^/$'}}, {@euid_eq}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@smackfsdef={'smackfsdef', 0x3d, 'ext4\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@seclabel}, {@fsuuid={'fsuuid', 0x3d, {[0x36, 0x33, 0x36, 0x34, 0x37, 0x63, 0x65, 0x32], 0x2d, [0x0, 0x38, 0x30, 0x37], 0x2d, [0x37, 0x35, 0x61, 0x65], 0x2d, [0x34, 0x33, 0x62, 0x64], 0x2d, [0x36, 0x32, 0x33, 0x63, 0x35, 0x66, 0x38, 0x66]}}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@subj_user={'subj_user', 0x3d, 'ext4\x00'}}]})
ioctl$AUTOFS_IOC_SETTIMEOUT(r2, 0x80049367, &(0x7f00000005c0)=0x4)
pwrite64(r1, &(0x7f00000000c0)="e45a04d6d1789744a26c87a707ef", 0xe, 0x6)
write$bt_hci(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="012e040a00000000000000000000a948fb1e3e5d81c0b6c19a52a736439404718a8a335789cd09258a5e4adc2f587c3122dd26132d4930b22c9f6621acd9c97bf612d0346cdc6c2cebe5393870123629265f8caa862e28bb84fbbe2449a88ff7142872c209aa972cab52a572b9b8b9c1bbef223a0aba433a14c3cca10c23f1ab3af4fe992bdf1476f5360d5a188072aeef212bd2eb6ade0b07d1eed815558760538b7ffc299bc697a05970201e1f7c7090c7a737483d9f2ab2523240e13b0465e692e49d788236eff0fefd657de7b461"], 0xe)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x902, 0x8)

13:20:51 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1b, 0x0)

13:20:51 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x300, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x10}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2569.875188] netlink: 'syz-executor.7': attribute type 1 has an invalid length.
[ 2569.918508] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2569.934054] netlink: 'syz-executor.7': attribute type 1 has an invalid length.
13:20:51 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xfffff000}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0xa}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x28, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x500, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xffffff7f}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:20:51 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1c, 0x0)

13:20:51 executing program 5:
chdir(&(0x7f0000000040)='./file0\x00')
mount$9p_unix(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x4004, &(0x7f0000000140)={'trans=unix,', {[{@access_uid={'access', 0x3d, 0xee01}}, {@msize={'msize', 0x3d, 0x6}}, {@mmap}, {@cache_mmap}, {@access_uid}, {@noextend}, {@dfltuid={'dfltuid', 0x3d, 0xee01}}], [{@uid_gt}, {@pcr={'pcr', 0x3d, 0x2e}}, {@fsmagic={'fsmagic', 0x3d, 0x26}}, {@obj_role}, {@smackfstransmute={'smackfstransmute', 0x3d, '#'}}, {@permit_directio}]}})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x145a3, 0x164)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000054b94c7"], 0xe)

[ 2570.147897] netlink: 'syz-executor.7': attribute type 8 has an invalid length.
[ 2570.165165] netlink: 'syz-executor.7': attribute type 8 has an invalid length.
13:21:04 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x117}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:04 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0xb}, @void}}}, 0x24}}, 0x0)

13:21:04 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
mount(&(0x7f0000000180)=@filename='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000480)='ext4\x00', 0x80010, &(0x7f00000004c0)='usrjquota')
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3ff, 0x1, &(0x7f0000000140)=[{&(0x7f00000002c0)="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", 0xff, 0x5}], 0x1000, &(0x7f00000003c0)={[{@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@dioread_nolock}, {@oldalloc}, {@jqfmt_vfsold}, {@abort}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x6}}], [{@obj_user={'obj_user', 0x3d, 'ext4\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '^'}}, {@dont_appraise}]})

13:21:04 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x600, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:04 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xffffff9e}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:04 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1d, 0x0)

13:21:04 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xfffffff0}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x10}, @void}}}, 0x24}}, 0x0)

[ 2583.721965] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2583.728730] netlink: 'syz-executor.3': attribute type 16 has an invalid length.
[ 2583.744895] netlink: 'syz-executor.3': attribute type 16 has an invalid length.
13:21:05 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x700, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4a, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4310d9c5d3fdcffd0655fd7f4655f00", 0x1d, 0x1600}], 0x0, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES16=r0, @ANYRESDEC=r0])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:21:05 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x129}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x22e, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x11}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1e, 0x0)

13:21:05 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xffffffff}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x600}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="0005"], 0xe)

13:21:05 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x117}, @void}}}, 0x24}}, 0x0)

13:21:05 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x300, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2583.987259] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:21:19 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x900, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:19 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x21, 0x0)

13:21:19 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x500, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:19 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
mount(&(0x7f00000004c0)=@sg0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='afs\x00', 0x45000, &(0x7f00000005c0)='\x00')
chdir(&(0x7f0000000040)='./file0\x00')
statx(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x100, 0x200, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f00000003c0)={{}, {0x1, 0x4}, [{0x2, 0x2}, {0x2, 0x2}], {0x4, 0x3}, [{0x8, 0x2}, {0x8, 0xa, r0}, {0x8, 0x0, 0xee00}], {0x10, 0x1}, {0x20, 0x7}}, 0x4c, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000))
fallocate(r2, 0x3, 0x0, 0x30000000000)
openat(r1, &(0x7f00000000c0)='./file1\x00', 0x58b00, 0x68)
write$bt_hci(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="4b4e0645dc08cc7a13f021d52488a7056597f031ef094817403f7d166e419329ebf9e284655d38b2677564cb3d4472e4176b5891cc0c329eee13a427caf0e89399d76b3a4def6b5b31d9dfd2fb534fe96ef5bc58c33b5a50d9c9b681cd148f96ed7a"], 0xe)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xb, 0x810, r2, 0x0)

13:21:19 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:19 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x129}, @void}}}, 0x24}}, 0x0)

13:21:19 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x3}, @void}}}, 0x24}}, 0x0)

[ 2597.948774] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2597.957969] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2597.961457] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'.
13:21:34 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x2}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3801}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x10}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
sendmsg$inet6(r0, &(0x7f0000000780)={&(0x7f00000000c0)={0xa, 0x4e23, 0x3ff, @private1, 0x8001}, 0x1c, &(0x7f0000000700)=[{&(0x7f0000000140)="ab283926b1d5fa86ae273d313297d2bed306e4c412c20f489f8393ac83b1fe89863989df84ce6c123880fb65452a27fae1099db95b03279a35685fadb9435e41743dc8872dc2d7b1ae5350400e1fb23b595e68c55084512dba8b5d906943e3f4c6006f6474edeb1a9448ff901aea39372c45aa1fb0d30ac5e9a9016fa2495a6d53650e3ae4d6ee31cb22cecacf03ed5b093bca778af78ad734334c7b960ef2c3f88b5fbbba4cda63", 0xa8}, {&(0x7f00000002c0)}, {&(0x7f0000000300)="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", 0xfe}, {&(0x7f0000000400)="efd42c323bc486c76c34624e96cdf8c769683bcd3dec890986196ef5ba78ce57725421e1ca2f328722d5e8fa8acc2f093fed127b95cd384a6af533bf507cdcee41610989ace1d658eefbe556baf1f5bb0ca63dba4d39b422c91ecdd668af5456582026afbff4f7e1530fc72d70ee4f8a22936c5f4bcf1e43d49d5e4bafa1685ce8f83f8a22f170b9", 0x88}, {&(0x7f00000004c0)="06bfde52a61fd789986015ef7636670d19cb1f5bb9e8d41e0583cf8e3143a7c16b6567a3ec088d61e63da4c7c66120c4030e8f19328aa9510d7a73ebd96251d7d550a2b7dec3ff020be27684ee9ad1e136d29c9c2b379b66b2ade0e5391c164d61532c617c95036f28823b6ec75d215408843d667951081c92c8a819907bccb691b21ff5784fef4491a728b0a05bb434f268810630f4ae125a7d", 0x9a}, {&(0x7f00000005c0)="f22f1bdd9703d33babd7625cc5a01e635344a3b2c98db98b137bb78a058d570f7e9d42af555f6fa0e7cdc0c443f9bc397e4b1ec6adb8ddb7772e439e99c00755e43eb49fb6b9278cc55ad28f9fcf6f", 0x4f}, {&(0x7f0000000640)="47d230cf542499aa57eff86d96d8c63c527ba33309366f79864eada248ff692da97e289297cc22bfef563a4addb959fe2bb501d6d71a635cb82b7aeab9f48bb1896b84510c163bf1c9b12f88b82dde2a6c8515b2babc6aadc9b437b4048209be81a2aaf1ad536159db36cddb700611bca2e0cac30955b8e1df287e95b8eda8510eae88978ac6a4548f3ef5c2ef674e30fd4c4ff7f409e69a70cd6f596ce8d5a49aa64b075cbbf17b4deca8838b", 0xad}], 0x7}, 0x0)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="012e040affffffffffff00000081"], 0xe)
write(r0, &(0x7f0000000000)="1f550dd3e8542cc01a356c11380153ea0ea4076b4ba0617c3bdae6827a69a96dbf8e44369f7c1f1e760f7fd5f8bf37468263e056b8", 0x35)

13:21:34 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x22, 0x0)

13:21:34 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x600, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xa00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2612.925292] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2612.931678] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'.
13:21:34 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0xf}}, 0x0)

[ 2612.963689] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:21:34 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xb00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x2}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x23, 0x0)

13:21:34 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x700, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
unlink(&(0x7f0000000000)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:21:34 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x14}}, 0x0)

13:21:34 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x5}, @void}}}, 0x24}}, 0x0)

13:21:34 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x24, 0x0)

[ 2613.184053] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:21:34 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x4}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x25, 0x0)

13:21:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0xc0}}, 0x0)

13:21:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x5}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x900, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xc00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
lsetxattr$security_capability(&(0x7f0000000000)='.\x00', &(0x7f00000000c0), &(0x7f0000000140)=@v2={0x2000000, [{0x7, 0x5}, {0x1, 0x3}]}, 0x14, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:21:49 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x6}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0xec0}}, 0x0)

[ 2628.285156] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:21:49 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000004fa8d204000004000046d9", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000000000)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x1000, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:21:49 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x6}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x26, 0x0)

[ 2628.465206] netlink: 'syz-executor.6': attribute type 8 has an invalid length.
13:21:49 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xd00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2628.479255] netlink: 'syz-executor.6': attribute type 8 has an invalid length.
13:21:49 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xa00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x33fe0}}, 0x0)

13:21:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x7}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x9}, @void}}}, 0x24}}, 0x0)

13:21:49 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x5, &(0x7f00000003c0)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x100000000400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0x73, 0x1}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc08}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000340)="cb8cca3c761c267e0fa2b4a937eca5a76ef9c6a4c54081fc97cd2beaf13c4cbc51a76d1ed56e00267cf229d6e763f80cc6fc9469bd74152b849253053acce2bc89508713330cdc682a7fb238a8ea", 0x4e, 0x3}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
recvfrom$unix(r0, &(0x7f0000000140)=""/151, 0x97, 0x1, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)

[ 2628.657822] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
13:21:50 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x200003a4}}, 0x0)

[ 2628.705616] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
13:22:03 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xe00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:03 executing program 5:
syz_mount_image$ext4(&(0x7f0000000340)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1604}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="012e040a34abbea063c3ed93ffff"], 0xe)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r1, 0x4b4a, 0x0)
rmdir(&(0x7f00000001c0)='./file0\x00')
r2 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000380)='./file0\x00', 0x2, 0x8, &(0x7f0000001800)=[{&(0x7f00000003c0)="58d743e202a8688db7087304c6457143d870d30224abe27bcb3e1fec97b643e341691c3bccc785af045e4d81ce4bb34ba504658e29e3be3df498b221ce68458fbbc29598deb52a605da4f36de0cea9fd7aa8af0aa1a91bca736de1b36ddab5e67529543009a817ebabf8f7665b28a7b28454cea22ace191bf3269b2fa0eac7d456dc259fec69bc90f0c21f2cd07f954501918dc05b37ed0d965e01d3fbb2aedfdbd488e4600d047e0b86512a4a2e8c8f5592c4badd0b0265cff16108584b9d6f", 0xc0, 0x2}, {&(0x7f0000000480)="3e4b6bfb2ef77fdeb524c9b293c51c37815aec71cddcf3a4b9083c38585e2fd809f8df4b29e21c1c8ee0160355df339ba9e0211900436a5d168c5869433882239dd84234cb424c1bac3bfebaa1c2b7b444b5ef60d910a95719fb3807772f57cedbada68777684fabe23d7830866a37341f5aac982c9246e647bbf26679ceda516417f1c8dcd8a8f6c19b5bf8ed194f8d56b2bb6fb384f74185ecaf998ce9b9bc86b76915f063f69d3f37369aa6a45a683bfe252d475f7a2ba446955c506fa8134b", 0xc1, 0x6ca1}, {&(0x7f00000005c0)="6bcba1b9fd397539a748cc88a082c54069e0e26794ae16d972b1d3f964f2b7f1efbfd0276d8f7aee65408a4b0e076e4749dfa54618423accd86f6e2b7f1c2ca5e8873ec78e4aa0b08c027e72d21706a41eb5094a54b168e5c448ce0275b32ba0a6908357beb40dfd32c3d1fed07a53ac04bc5cc2a9f99af4313458fcb6b9819ef559f69199bc61c2cd2ba193f7adf27d15ead27683cf168fbc056cba18", 0x9d, 0x3}, {&(0x7f0000000680)="b112ebda333609b26ed0d00ac1fbab488ec4e63fd4d53a17", 0x18, 0x7}, {&(0x7f00000006c0)="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", 0x1000, 0x5bd}, {&(0x7f00000016c0)="463150d9bf5e4fdb24094a573ccd42f5b6a51bf83c97b19cffd79b1255018c16f66d7e2e3e4d59077bda99e94b0290521a7c4bfc5035b5c473c2466caf22a088ca6e873f5586", 0x46, 0x2}, {&(0x7f0000001740)="d998e9182e0fe6285001c77aa35c7f361cc1766c64546ebc7f232262aae306f743012acec6c063f2f9a17b450f81bb51922a3236379f10e7f8c57d0f04d4fc49e64d66fc6841aa82de", 0x49, 0x3}, {&(0x7f00000017c0)="63c1c154", 0x4, 0x400}], 0x40000, &(0x7f00000018c0)={[{@mpol={'mpol', 0x3d, {'default', '', @void}}}, {@huge_never}, {@nr_inodes={'nr_inodes', 0x3d, [0x70, 0x31, 0x6d]}}, {@huge_always}, {@huge_never}, {@huge_advise}, {@mpol={'mpol', 0x3d, {'bind', '=static', @val={0x3a, [0x38, 0xc]}}}}, {}], [{@appraise_type}]})
openat(r2, &(0x7f0000001980)='./file0\x00', 0x6a02, 0x1)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/114, 0x72}, {&(0x7f00000002c0)=""/102, 0x66}, {&(0x7f0000000000)=""/14, 0xe}], 0x3)

13:22:03 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x27, 0x0)

13:22:03 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x7ffff000}}, 0x0)

13:22:03 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0xa}, @void}}}, 0x24}}, 0x0)

13:22:03 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xb00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:03 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x8}, @val={0x8}, @void}}}, 0x24}}, 0x0)

[ 2642.540267] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 2642.557811] EXT4-fs error (device loop5): ext4_fill_super:4962: inode #2: comm syz-executor.5: iget: special inode unallocated
[ 2642.561817] EXT4-fs (loop5): get root inode failed
[ 2642.562702] EXT4-fs (loop5): mount failed
13:22:03 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0xfffffdef}}, 0x0)

13:22:03 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x9}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:03 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0xb}, @void}}}, 0x24}}, 0x0)

13:22:03 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x28, 0x0)

13:22:04 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xc00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2643.341641] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 2643.346327] EXT4-fs error (device loop5): ext4_fill_super:4962: inode #2: comm syz-executor.5: iget: special inode unallocated
[ 2643.353174] EXT4-fs (loop5): get root inode failed
[ 2643.354214] EXT4-fs (loop5): mount failed
[ 2647.464490] Bluetooth: hci0: command 0x0409 tx timeout
[ 2649.512473] Bluetooth: hci0: command 0x041b tx timeout
[ 2651.560515] Bluetooth: hci0: command 0x040f tx timeout
[ 2652.067271] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2652.068829] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2652.071727] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2652.118949] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2652.120288] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2652.122459] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2653.610572] Bluetooth: hci0: command 0x0419 tx timeout
13:22:28 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x29, 0x0)

13:22:28 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x10}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f00000005c0)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff6aa071c02a477e55ced8db43f19f04b50e60c2ab59f711de02265fc44b7683321cebf93d50c08b98fcdd852c1905a91423e84ec8fcb67ee0a8cb46b5ce582c78fb906ff262f3e76a0b84940ac2f4d065b77eb47cdb00c5207bf1648ec87af7ec8471f6", 0x453, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140), 0x2, 0x1)
lseek(r1, 0x4, 0x4)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
fspick(r0, &(0x7f0000000180)='./file0\x00', 0xdeb6b58456f73b66)

13:22:28 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xec0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x8}, 0x0)

13:22:28 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xd00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2667.212939] netlink: 'syz-executor.6': attribute type 16 has an invalid length.
[ 2667.240783] netlink: 'syz-executor.6': attribute type 16 has an invalid length.
[ 2667.265014] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 2667.272408] EXT4-fs error (device loop5): __ext4_new_inode:1068: comm syz-executor.5: reserved inode found cleared - inode=1
13:22:28 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0xf0}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x117}, 0x0)

13:22:28 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x11}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x1cd}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xe00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc01}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:22:28 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2a, 0x0)

13:22:28 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x117}, @void}}}, 0x24}}, 0x0)

13:22:28 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x129}, 0x0)

13:22:40 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x2)

13:22:40 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x129}, @void}}}, 0x24}}, 0x0)

13:22:40 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x4b4a, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r2 = dup(r0)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x4b4a, 0x0)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000006, 0x50, 0xffffffffffffffff, 0x8c178000)
ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000140)={0x2, {0x2, 0x4, 0x9, 0x3bd, 0xfff7, 0x2}})
ioctl$TIOCL_PASTESEL(r1, 0x4b4a, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000000000)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="9368969321243f061b1b2ed4767be5f1d4b0e03dd5b7b0d05c3785ccb63ed847aae0699b34d19fdd02acf9303400b5fb27c9fc9f28d83e1692baa71bc2bd32ad2807aa7337c480b79667bb4fb5c2beaa4a021221d8db2da3696b36e1b3a4f45468873776ddecdd568357cf24935bee4e570895a4a5459b289962ae2ff3f28b5fee1664106de37c162fa55afff5bc793421fe3240f563fc495966b2f35335feb2eb0f426d4924537f13028ea4ac550378f333ee783ab807a66d86330995e2e431198afa97ea1702140012c8e894bb24ec9480fb13d1a8df", @ANYRESHEX=r0, @ANYRES64=r0, @ANYRES16=r1])
chdir(&(0x7f0000000040)='./file0\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x1000003)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
fallocate(r4, 0x3, 0x0, 0x30000000000)
write$bt_hci(r4, &(0x7f0000000580)=ANY=[@ANYBLOB="012e0400000000"], 0xe)
openat(r4, &(0x7f00000000c0)='./file0\x00', 0x100, 0x0)
write$bt_hci(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="012e040afffffbffffff6d72ee2e5df086360c67a510020000771cbb778130125c00970bf5f00cc735df4117b22146de1fd11dc215379a95383668f507491576b124251bbfebf5f63b20c055b156a60a1711064c56f1a326a84b545cdd3725447929c2983ed672beaf7e26410c6702b3fcae035d6936a6db3f822c79e64be65e3a820aa9d335e74d7e9b928076cf263f8e6b3ad838e335d4025c8a7097efdb2ea61ba081a2178c1656bdf9bb42b492b85faa46f5468dc02718b75b2d52f1442c637c9ad43fbe0a022110a189cf6fad686163101a94571fd69fa3a0fb235bd45cb035a09436dbc9d4c72f2c9a94306f196d05f6d407"], 0xe)

13:22:40 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x80000}, 0x0)

13:22:41 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xec0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x300}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x2800, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x4f02, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x1, 0x2}, 0x0)

[ 2679.767661] EXT4-fs (loop5): Unrecognized mount option "“h–“!$?.Ôv{åñÔ°à=Õ·°Ð\7…̶>ØGªài›4џݬù04" or missing value
13:22:41 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3801}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x3)

13:22:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x500}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf00, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x1, 0x3}, 0x0)

13:22:41 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000000)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)

13:22:41 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0xf}}, 0x0)

13:22:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x600}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:41 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x4)

13:22:41 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xc00e, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2680.070003] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:22:56 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x8)

13:22:56 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
umount2(&(0x7f0000000000)='./file0\x00', 0x2)
chdir(&(0x7f0000000040)='./file0\x00')
open(&(0x7f00000002c0)='./file0\x00', 0xc0, 0x100)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
fallocate(r0, 0x3, 0x0, 0x30000000000)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
openat(r0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x28)
umount2(&(0x7f00000000c0)='./file0\x00', 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
link(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)

13:22:56 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x2800, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x700}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:56 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x1, 0x4}, 0x0)

13:22:56 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x14}}, 0x0)

13:22:56 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0xf000, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

[ 2695.454103] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:22:56 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x1, 0x5}, 0x0)

[ 2695.550250] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
13:22:56 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0xc0}}, 0x0)

13:22:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(0xffffffffffffffff, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x900}, @val={0x8}, @void}}}, 0x24}}, 0x0)

13:22:56 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x2e02, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:57 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='oom_adj\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)='1', 0x1}], 0x6)
r1 = accept(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @my}, &(0x7f0000000040)=0x80)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
read$snapshot(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup(r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = fcntl$dupfd(r1, 0x406, r2)
openat$cgroup_ro(r5, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
fallocate(r7, 0x3, 0x0, 0x30000000000)
write$bt_hci(r7, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r4, 0x325, 0x34000, 0x0, {{}, {@val={0x8}, @val={0x8, 0x3, r8}, @void}}}, 0x24}}, 0x0)

13:22:57 executing program 3:
read$snapshot(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x181200, 0x10, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0x24}, 0x1, 0x6}, 0x0)

13:22:57 executing program 5:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
fallocate(r1, 0x3, 0x0, 0x30000000000)
write$bt_hci(r1, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
ftruncate(r0, 0x1000003)
write$bt_hci(r0, &(0x7f0000000580)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@none}}}, 0xe)
ioctl$CDROMREADTOCENTRY(r0, 0x5306, &(0x7f0000000000)={0x9, 0x5, 0x1, 0x0, @lba=0x101, 0x4})

13:22:57 executing program 6:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x24, r2, 0x325, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @void}}}, 0xec0}}, 0x0)

13:22:57 executing program 0:
syz_mount_image$iso9660(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x224100, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x2342, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x0, 0x655fdee0d527b5a3}, 0xc0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4040000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x41004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xa)

[ 2695.820309] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
2024/04/07 13:23:02 Manager.NewInput call failed: read tcp 127.0.0.1:53126->127.0.0.1:36325: i/o timeout

VM DIAGNOSIS:
13:25:32  Registers:
info registers vcpu 0
RAX=ffffffff83e68b60 RBX=0000000000000000 RCX=ffffffff83e5094c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e69168 RBP=fffffbfff09c6450 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85673a48 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e68b6e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1a131c1328 CR3=0000000004e26000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=652022746f6f72223d74636361207469
XMM02=3d6c616e696d72657420322e322e302e XMM03=3d656d616e74736f682022646873732f
XMM04=40404040404040404040404040404040 XMM05=5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a
XMM06=20202020202020202020202020202020 XMM07=00000000000000000000000000000000
XMM08=652075253d64692073253d706f000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=8e4f5d3d1bcff03395b0e0d4064a7417
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff83e68b60 RBX=0000000000000001 RCX=ffffffff83e5094c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e69168 RBP=ffffed1001130000 RSP=ffff88800898fe70
R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001
R12=0000000000000001 R13=ffffffff85673a48 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e68b6e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb819ddbc88 CR3=000000000fe2a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffff00000000000000000000
XMM02=ffffffffffff00000000000000000000 XMM03=00000000000000000000000000000000
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000073707574726174732064 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000